last executing test programs:

1.350449306s ago: executing program 1 (id=1683):
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000900), 0x0)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r2, 0x0, 0x0}, 0x10)

1.068020925s ago: executing program 1 (id=1687):
unshare(0x60400)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, @void, @value}, 0x94)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d85"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fcae68da850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r4}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r6, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r6, 0x40a85323, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x33e5, 0x9, 0x1)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r7}, 0x10)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0xc, 0x4, 0x4, 0x10000, 0x0, r8, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000100001000044d900000000000000000a20000000000a03000000000060000000070000000900010073797a300000000070000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d2c001280140001800c000100636f756e746572000400028014000180090001006c617374000000000400028008000340000001", @ANYRESDEC], 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x20050800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
unshare(0xe020280)

1.061300745s ago: executing program 0 (id=1688):
syz_io_uring_setup(0x10c, &(0x7f0000000380)={0x0, 0x5885, 0x4, 0xfffffffd, 0x4}, &(0x7f0000000340), &(0x7f0000000280))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
unshare(0x22020600)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_SYMLINKAT={0x26, 0x40, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00'})
io_uring_enter(0xffffffffffffffff, 0x3f70, 0x0, 0x0, 0x0, 0x0)

984.942635ms ago: executing program 2 (id=1689):
r0 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'geneve0\x00', &(0x7f0000000180)=@ethtool_cmd={0x23, 0x5, 0x9, 0x4, 0x0, 0x8, 0xb0, 0x8f, 0x0, 0x2, 0x3, 0xa82, 0xb, 0x7d, 0x9, 0xb5d0, [0x2]}})

984.570085ms ago: executing program 4 (id=1690):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000280))
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'geneve0\x00', &(0x7f0000000180)=@ethtool_cmd={0x23, 0x5, 0x9, 0x4, 0x0, 0x8, 0xb0, 0x8f, 0x0, 0x2, 0x3, 0xa82, 0xb, 0x7d, 0x9, 0xb5d0, [0x2]}})

890.633024ms ago: executing program 2 (id=1691):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a0102000000000000000002000000090003007379"], 0x68}}, 0x20048005)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0xefff}, 0x0)

890.209704ms ago: executing program 4 (id=1692):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff0000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
syz_pidfd_open(0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=@newtfilter={0x6c, 0x2c, 0xd27, 0xfffffffd, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x3c, 0x2, [@TCA_BASIC_EMATCHES={0x38, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xffff}}, @TCA_EMATCH_TREE_LIST={0x2c, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1}, @TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x9, 0x3, 0x1}, {0xfffc, 0xa4, 0x1}}}]}}]}]}]}}]}, 0x6c}}, 0x0)

811.462054ms ago: executing program 0 (id=1693):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000080)})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
mlockall(0x5)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket(0x10, 0x803, 0x0)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x20048005)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0xefff}, 0x0)

811.060714ms ago: executing program 1 (id=1694):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000300)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x5e)
bpf$MAP_LOOKUP_ELEM(0x4, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000280)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff0600ac28dfb231c8f539000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}, {&(0x7f0000000580)="6030de93780bf490aaa87c77d6ae2cbe27f9121e9143e0af51a4a274b5d2eba7d0b9f7d4789f8a552822a1f63dadaa350e0582338f89b063f85d4d92cd7e1071be5d30d102a915f01bb1ee68cb29f414d8e4d78d29b638cb4ffa078687881528408569ebd4636f2066e9296a9e7651b7b6343351d75a2a5d7ae3e883b8bafd3f6a881400d7b4f9240a2905384e32fd16b0d79a7087d58bdd", 0x98}, {&(0x7f00000010c0)="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", 0xff8}, {&(0x7f0000000640)="c9b931e44eefc380050f85be51b08d0b4b7c94e4766d3547a8fe1ef5b640b662d3ab424d6d3bdd450707155d4c6638ba2bc532371aa55b2fcef14e5a5cd27a571f9b0d7715e00851fbca030c67c005f79e6dd16060c0309f8333cc7be1909e31a121fb157748ccfec6e4e1b7d2ecb398", 0x70}], 0x4)

810.541074ms ago: executing program 2 (id=1695):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@deltaction={0x40, 0x18, 0x1, 0x0, 0x0, {0xa}, [@TCA_ACT_TAB={0x2c, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}]}, 0x40}}, 0x0)

765.191404ms ago: executing program 1 (id=1697):
r0 = socket(0x10, 0x80002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32=r0], 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
recvmmsg(r3, &(0x7f0000000d00)=[{{0x0, 0x0, 0x0}, 0xfffffffe}], 0x1, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r4, @ANYBLOB="030704707900000000000100040004000180"], 0x18}}, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r6=>0x0})
r7 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r6, @ANYBLOB="000020222a0b000000001c001a8008000280080002000800000047120000080002001040e5fb1915da80d6346e82330a71a80951ee5ccff5da22f7e842b84ba508763092de53d63feb2e0984a52d5c7d4e6b56c14d7ee3535a5f27db91cc0989294ee6deb5f68dc6ea3d10e3e8d21020892eeec2378bf812dee976bd2461568a1d31673b8ff0b5840e2d777a7ca64cda1caeabe56f439b7391f4fade9a"], 0x44}}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000300000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000008c0)='sys_enter\x00', r10}, 0x10)
r11 = epoll_create1(0x0)
epoll_pwait(r11, &(0x7f00000000c0)=[{}], 0x1, 0x100, 0x0, 0x0)
r12 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000040)={'lo\x00', <r13=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x5c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, r13, {0x0, 0x2}, {0xfff1, 0xffff}, {0xf, 0xfff1}}, [@qdisc_kind_options=@q_ingress={0xc}, @TCA_RATE={0x6, 0x5, {0x7, 0xf7}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0x6, 0x8, 0xfffffffa, 0x1, 0xffffff52, 0x6341}}, {0x4}}]}]}, 0x5c}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000240)=0x14)
r14 = socket(0x10, 0x803, 0x0)
r15 = syz_genetlink_get_family_id$smc(&(0x7f00000002c0), r14)
r16 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r16, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16=r15, @ANYBLOB="010000000000000000000200000014000200626f6e643000000000000000000000000900010073797a3000000000"], 0x34}}, 0x0)
sendmsg$SMC_PNETID_DEL(r16, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r15, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)

756.138394ms ago: executing program 2 (id=1698):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000480)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000014000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00', r1}, 0x10)
signalfd4(0xffffffffffffffff, &(0x7f0000000300)={[0xffffffffffffffff]}, 0x8, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, 0x0, &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000002800)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x13, r2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
memfd_create(&(0x7f0000000100)='\xf3u\t\x9f\x918\xc0ud\xb0l \xfd\xd7\x03\x00\x898\xf8\xb5\x90Xp\xe3$\x1c\x9b\a\x92H\x00\x00\x00\x00\x81\f\x1et\x10\x0e\xcfV9\xbe*\xd2d\xc8}\xd6\xdb\x88\xfb\xc7B\x8c\xa8\xb3~\x14\x11\xe3', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000003c0)='kmem_cache_free\x00', r3}, 0x10)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000080)=@sg0, 0x0, &(0x7f00000001c0)='./file0\x00') (fail_nth: 16)

740.823214ms ago: executing program 3 (id=1699):
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x19, &(0x7f0000000000)=0x84, 0xfde1)
r2 = io_uring_setup(0x9, &(0x7f00000001c0)={0x0, 0x164f, 0x0, 0xffffffff})
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r4 = socket$kcm(0x29, 0x2, 0x0)
write$cgroup_pressure(r4, &(0x7f0000000140)={'full'}, 0xfffffdef)
ioctl$sock_kcm_SIOCKCMATTACH(r4, 0x5452, &(0x7f0000000000))
sendmsg$kcm(r4, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x24000000)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000140)={0x42}, 0x10)
close_range(r2, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r2, @ANYRES32=0x1, @ANYRESOCT=r0, @ANYRES32=0x0, @ANYRES32, @ANYRES32], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$FIONREAD(0xffffffffffffffff, 0x541b, &(0x7f0000000380))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
connect$inet6(r1, &(0x7f0000000300)={0xa, 0x4e21, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0xeab9}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x200c8004, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @mcast2}, 0x1c)
sendto$inet6(r1, &(0x7f00000009c0)="c7cfcaaa22e10542fca5c0195350f15147657e0bfc59d383a47190db88690e6fedc3040ab5809ae02a54cd429cc3338c5afa0c9dce3f91950d1f567f358ac21154159130e88cbb6c43197813b2f23f3e442f80877490b393408142ebcfea6821f543e5ee9e27032e2b75d78f1b79f5a6bb6f0645e267770ef7e8f3a92148091217450ce8581e54223eeb6486205a209bf1fe854d211c03f8c3140fc3979d824082990d119473d20e94f253c9621fac339560ae46cb24b88bf2d01559bb658e343257b90f", 0xc4, 0xc001, 0x0, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x19, &(0x7f0000000340), 0x4)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000280), 0x4)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000080)=0x2, 0x8)

735.896044ms ago: executing program 0 (id=1700):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x200000, &(0x7f0000000380)={[{@dioread_lock}, {@noblock_validity}, {@jqfmt_vfsv1}, {@noblock_validity}]}, 0xfc, 0x564, &(0x7f00000008c0)="$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")
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10) (async)
r2 = socket(0x15, 0x5, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0) (async, rerun: 64)
sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
getsockopt(r2, 0x200000000114, 0x271e, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0) (async)
fallocate(0xffffffffffffffff, 0x3, 0x3, 0xffffffff) (async)
select(0x40, &(0x7f00000004c0)={0x8000000000000000, 0x6, 0x4, 0x7fff, 0x2e9, 0xb, 0x1ff, 0x9}, &(0x7f0000000500)={0x7, 0x3ff, 0xe, 0x0, 0xb, 0x4, 0x809, 0x7}, &(0x7f0000000540)={0x3800, 0x7, 0x3, 0x5, 0x3ff, 0x200, 0x8000000000000001, 0x5}, &(0x7f0000019580)={<r4=>0x77359400})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000003c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10) (async)
request_key(0x0, 0x0, &(0x7f0000000440)='wfdno', 0xfffffffffffffffc) (async, rerun: 32)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000195c0)=@base={0x5, 0x4, 0x7fe4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (rerun: 32)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000009c0)='kfree\x00', r9}, 0x10)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x15, 0x10, &(0x7f0000019780)=ANY=[@ANYBLOB="1800000008000000000000000800000018110000", @ANYRES32=r10, @ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, @sk_reuseport, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$FS_IOC_GETFSMAP(r3, 0xc0c0583b, &(0x7f0000000780)=ANY=[@ANYBLOB="000000004c900200010000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff000000000000010000000000000000000000000000000000000000000b00"/256]) (async)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000198c0)=ANY=[@ANYRES64=r6, @ANYBLOB="d0b7d2850014cbc4cbe98440449a9319001f73c52860e35c8981497fdf90c0136a6f94eef3b9082fde42e7a3a71c24b158fe98201d55df7f563d420b715eb835a4bde32c7e4506d45cb8b000ddecbb81d1a4568fef7231bdf6121b22bc340a36253f25b1754ec42c5070a30c797fc7c69cdb680256a4a5dfce2d2c5e642cd040adff67d028b828948f7ec10cf22ff4d6958c85bbcd923b20298618583485", @ANYRES32=r4, @ANYBLOB="7ee356ff6a75b741c45ddd44344a48dade78123de868f0c432cd91f9eaed15a355d0c02c712f43be6ae23beffafe1442d5e8e654b782f5047148f759bee546a560ddeaf7102ddd14f1c5c7954463ca681c99d256565a623e2a6a539807e804302e00da0c55d46a9bb997d4ac6a440ac7f0", @ANYRES64, @ANYRES16=r8, @ANYRESDEC=r0, @ANYRESDEC=r6], 0x50)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x7, &(0x7f0000000400)=ANY=[@ANYRES64=r7, @ANYRES32=r11, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r12}, 0x10) (async)
r13 = open$dir(&(0x7f0000000040)='./file0\x00', 0x8001, 0x10)
name_to_handle_at(r13, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000008100000009000000000000004c00568e000000"], &(0x7f0000000200), 0x400)
r14 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r14, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

703.795323ms ago: executing program 4 (id=1701):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xa0000000})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x10})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x391, 0x0, 0x1, 0xead9, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
syz_clone(0xe50c1700, 0x0, 0x0, 0x0, 0x0, 0x0)

414.483072ms ago: executing program 2 (id=1702):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$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")
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x80080, 0x50)
getdents(r1, 0xfffffffffffffffd, 0x58)

414.253163ms ago: executing program 0 (id=1703):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$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")
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x80080, 0x50)
getdents(r1, 0xfffffffffffffffd, 0x58)

375.085102ms ago: executing program 4 (id=1704):
syz_io_uring_setup(0x10c, &(0x7f0000000380)={0x0, 0x5885, 0x4, 0xfffffffd, 0x4}, &(0x7f0000000340), &(0x7f0000000280))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
unshare(0x22020600)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_SYMLINKAT={0x26, 0x40, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00'})
io_uring_enter(0xffffffffffffffff, 0x3f70, 0x0, 0x0, 0x0, 0x0)

353.774472ms ago: executing program 2 (id=1705):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r0, 0x0, 0x800000000}, 0x18)
r1 = socket$key(0xf, 0x3, 0x2)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
sendmsg$key(r1, &(0x7f0000000400)={0x10000000, 0x0, &(0x7f0000000040)={&(0x7f0000000840)=ANY=[@ANYBLOB="020e0080150000000000000000000000030005000000000002004e24ac1e00010000000000000000030006003c000000020000fc34000000000000000000000001001800000000000800120000000200fcffffff000000000600330000000000000000000000eafffd8000000000000000000000000000aa00000000000000000000000000000000040003"], 0xa8}}, 0x2)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, 0x0, 0x0, 0xaf05, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r2, 0x402, 0x8000003d)
r3 = open(&(0x7f00000007c0)='./file0\x00', 0x44000, 0x4a)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000060000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x444, &(0x7f0000000ac0)=ANY=[@ANYBLOB="75746638006d61703d6f983c756661703d6e6f726d616c2c6909000000f2ff00003dda5de4d586f0df206d65656b416d6f64653d3078303030303010303071303030303030302c73657373696f6e3d307830faffffff30303030303030f4e4b4f82c6d61736b3d4d4159574b50be30c8486470722677b93165cfe6f62127553b2017754598752d977369672c7063723d303030303030303030303030303030303030332c64566e745f6d6561737572652c00000000000000006bbf4d6406b59dbc529c00000000000000fada265ab14119997600a2299d2c35a2efc1bf037787a0d801f26d335ef2ba9ac2423a358ccbb776b21e1d3b", @ANYRESDEC=0x0, @ANYRESHEX], 0xfe, 0x667, &(0x7f00000002c0)="$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")
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
fcntl$notify(r3, 0x402, 0x8000003d)
r6 = socket$qrtr(0x2a, 0x2, 0x0)
bind$qrtr(r6, &(0x7f0000000780)={0x2a, 0xffffffff}, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
syz_usb_connect$cdc_ncm(0x3, 0x122, &(0x7f0000000440)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0xff, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x110, 0x2, 0x1, 0x7, 0x0, 0x5, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "37d19774aea7"}, {0x5, 0x24, 0x0, 0xfbff}, {0xd, 0x24, 0xf, 0x1, 0xd, 0x7, 0x4, 0x4}, {0x6, 0x24, 0x1a, 0x9}, [@mdlm_detail={0x9d, 0x24, 0x13, 0x3, "6156d734bb3ad7adf27f3a1db8c855daafc4310d9e10a16eed00593452eabd50d118b8fd64d9102ef086aa2e1e9f2593c8da6c067e84996d6f76434186eb13b3ca61c3851e3a3968640c5f4c230b2015adb7f275b7bb3675618a43092133000ceea8ec8f997a8f1549f7f3402c781aa9d738aec5610bcb72ce34ad8872a4df37b06811bd9c63a03a953d8046a9f3a34b3ea59d08415e18affe"}, @obex={0x5, 0x24, 0x15, 0xfff8}, @mbim={0xc, 0x24, 0x1b, 0x2, 0x8, 0x9e, 0xb4, 0x4af, 0x6}]}, {{0x9, 0x5, 0x81, 0x3, 0x40, 0x8, 0x9}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0xfc, 0x2, 0x2b}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0xc, 0x1, 0x4}}}}}}}]}}, &(0x7f00000006c0)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x310, 0x0, 0x0, 0xe, 0x10, 0x54}, 0x30, &(0x7f0000000940)={0x5, 0xf, 0x30, 0x4, [@ext_cap={0x7, 0x10, 0x2, 0xc, 0xd, 0x9, 0x9b}, @generic={0x17, 0x10, 0xa, "b97c6dafbf7b2c1064fc69affaf3e8256a721528"}, @ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x6, 0x8, 0xfffe}]}, 0x5, [{0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x423}}, {0x4, &(0x7f0000000980)=@lang_id={0x4, 0x3, 0x40c}}, {0xc3, &(0x7f0000000580)=@string={0xc3, 0x3, "d23037bd9bc157de7f6bd4a7e088c84b4db3786c08cb0d4fbd41e1fc86275cfca01defb6a34788a9f54e4c9cc73d14fa93f4072f8fca20c0ca8a99fc58fe18f93f0cc9e2ec4f4dc4948d12f08d87033f5952150121ac7fd8174475c7fac0bc1715de823f8d1c5e5fd6499e733918ce431675e00fb3ce811f3b0c2e81ba439ac9f96ec4f56c0a602575a294d2f162acc54083b95754cc2546e027283fbe81731700c4c20b1d8a6922736b92bf7284c1c3842afa2302243fb119af7d379576ea8b1b"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x41e}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x81a}}]})
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r8}, 0x10)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r9 = io_uring_setup(0x3454, &(0x7f0000000080)={0x0, 0xffffeffe, 0x18, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r9, 0x0, &(0x7f0000000740)=[{&(0x7f0000001700)=""/4095, 0xfff}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r9, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000002700)=""/4096, 0x1000}], 0x0, 0xa}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='rpcgss_svc_accept_upcall\x00', r7}, 0x18)
close_range(r2, r3, 0x0)

326.536672ms ago: executing program 4 (id=1706):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=<r2=>r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
setsockopt$IP_VS_SO_SET_EDITDEST(0xffffffffffffffff, 0x0, 0x489, &(0x7f0000000880)={{0x3a, @multicast1, 0x4e24, 0x4, 'sh\x00', 0x13, 0x4, 0x55}, {@private=0xa010101, 0x4e22, 0x10000, 0x5, 0x8, 0x2}}, 0x44)
sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x4730847a910b89da)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)={0x1c, r6, 0xc4fc9e906872338b, 0x10000, 0x0, {{0x15}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="e9ffffff010000020000000000000000000000daa7eb4e72dc1a8200"], 0x48)
r8 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)={0x38, 0x1403, 0x1, 0x70bd2d, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r11)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f0000000400)={'wlan0\x00', <r12=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r9, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, r10, 0x20, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r12}, @void}}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x401c4)
sendmsg$NL80211_CMD_SET_BSS(r8, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0x0, 0x1, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r12}, @void}}, [@NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x9}, @NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x100}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20004094}, 0x40000)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r6, 0x20, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r12}, @val={0xc, 0x99, {0xff, 0x5}}}}, ["", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x5}, 0x800)
sendmsg$NL80211_CMD_GET_MPP(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f0000000280)={0x70, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r12}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x70}, 0x1, 0x0, 0x0, 0x40000}, 0x4040010)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2000006, &(0x7f0000000240)=ANY=[@ANYRES8=r2], 0x25, 0x354, &(0x7f0000000fc0)="$eJzs3T9oJGUUAPC3N0k2FzyzhXBo42onyHGJWGiVcJxwmEJPFv81Ll7OP9n1IIsLschmG+WwUmwEreyu0PJqsRCxs7D1BDkVG687uODI7sz+y25MUmyM+PsV4fG+7833ZjIwk4V8+1orNq7MxtU7d27H/HwhZlYurMTdQpTiVCSR2YmJPpybnAcATri7aRp/ppmDZ3+80Is8+wHgv6v7/H/jzCBRHITJQcXX75tWWwDAFB3y7//nJmavTa0tAGCKsud/a/D8f3RkeM/H/DMHfyYAAJx4L7z8yrOraxGXy+X5iPoHzUqzEk8PxlevxltRi/U4H4uxG5G9KGRvC52fz1xau3i+3PFrKSqdimYlot5qVrI3hdWkW1+MpViMUl6f9uuTTv1St74cETut7vpRLzQrs7GQr//TQqzHcizGA2P1EZfWLi6X8wNU6r36VkQ75nsn0en/XCzGD6/HtajFlejUDvrfXiqXL6RrI/XNG8XuPAAAAAAAAAAAAAAAAAAAAAAAmIZz5b5Sf/+btN5qvn9574TSyP44lWw43x+one0PlBZ7u/NcT/buDzS6P0+zMhOn/tUzBwAAAAAAAAAAAAAAAAAAgJOjsTUX1VptfbOx9d7GcNAayrzz3ZffnI7e0Exe+nYyqIo8OXKc3sShIyfRXyLtl6fJyJw8SCJ6k3eqN272Ox6eU+yfxVh5JyiODRXynqq12plHfvlsUtVfnWCnm0li7LKMBoV8/aGh+v2dxHxE7O5XtX+wfMCcW2ma7le+/el4VRQiZuLIbRwi+Pb2mw8+0Tj7ZDfzdb7pw2OPL75465Mvft+o1qL9cH5t5jYbu+khjtzpdXwoGbp/Cvl1Lky4EyYH7UGmvdnYqiY//vHSQx99v2dyMvn+SYcz7+6/1ld7M3NZUIgoZY3+87nPTrj5Jwev3uvfvUf/xZ39fKV6c/vn3w5bFRG9C22jDgAAAAAAAAAAAAAAAAAAOBZD/yt+BE89P72OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOD4Db7/fyhoj2UOE9xrxfhQcX2zse/ip4/1VAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+B/7OwAA//+Yd3HU")
r13 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r13, &(0x7f0000000180)='2', 0x1, 0x8000c61)

326.177912ms ago: executing program 3 (id=1707):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000300)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x5e)
bpf$MAP_LOOKUP_ELEM(0x4, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000280)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff0600ac28dfb231c8f539000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}, {&(0x7f0000000580)="6030de93780bf490aaa87c77d6ae2cbe27f9121e9143e0af51a4a274b5d2eba7d0b9f7d4789f8a552822a1f63dadaa350e0582338f89b063f85d4d92cd7e1071be5d30d102a915f01bb1ee68cb29f414d8e4d78d29b638cb4ffa078687881528408569ebd4636f2066e9296a9e7651b7b6343351d75a2a5d7ae3e883b8bafd3f6a881400d7b4f9240a2905384e32fd16b0d79a7087d58bdd", 0x98}, {&(0x7f00000010c0)="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", 0xff8}, {&(0x7f0000000640)="c9b931e44eefc380050f85be51b08d0b4b7c94e4766d3547a8fe1ef5b640b662d3ab424d6d3bdd450707155d4c6638ba2bc532371aa55b2fcef14e5a5cd27a571f9b0d7715e00851fbca030c67c005f79e6dd16060c0309f8333cc7be1909e31a121fb157748ccfec6e4e1b7d2ecb398", 0x70}], 0x4)

280.166921ms ago: executing program 3 (id=1708):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a0102000000000000000002000000090003007379"], 0x68}}, 0x20048005)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0xefff}, 0x0)

275.635881ms ago: executing program 0 (id=1709):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@deltaction={0x40, 0x18, 0x1, 0x0, 0x0, {0xa}, [@TCA_ACT_TAB={0x2c, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}]}, 0x40}}, 0x0)

233.111332ms ago: executing program 3 (id=1710):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000080)})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
mlockall(0x5)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket(0x10, 0x803, 0x0)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x20048005)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0xefff}, 0x0)

158.295731ms ago: executing program 1 (id=1711):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x800042, &(0x7f0000000000), 0xfc, 0x570, &(0x7f00000008c0)="$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")
r0 = mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x7fff, 0x0)
mq_timedreceive(r0, 0x0, 0xffffffffffffffe7, 0x20004000, 0x0)

112.555131ms ago: executing program 3 (id=1712):
socket$xdp(0x2c, 0x3, 0x0)
mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff})
close(r0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb010018000000bab30000000018000000180000000c000000000000000000000300000000050000000500000008000000006f2e5f005f2e305f003000f87abf66ea81a30d1bad572288da779962fdabd32a3c04a45c5d531ea4462ce96acf9f1032b66776b450126ef828debf88ec96b9bb6bc7c2fd6b03ddd830cba39ddf5c4af0ed6db990f8d66ed55e379c87501bfdbcfe4beb50be0931779bf7032fd9c532cca598a6cdd6c810e8534faacc9c282751b30312961925b52d6daec578aad7"], &(0x7f0000000380)=""/203, 0x3c, 0xcb, 0x1, 0x1, 0x0, @void, @value}, 0x28)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_REMOVE(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="0100000000000000000004", @ANYRES8], 0x14}, 0x1, 0xfcffffff00000000}, 0x0)

92.780841ms ago: executing program 4 (id=1713):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r0}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
capset(&(0x7f0000000140)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
setrlimit(0x40000000000008, &(0x7f0000000000))
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

88.684001ms ago: executing program 0 (id=1714):
r0 = socket(0xa, 0x2, 0x0)
r1 = creat(0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x4c, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}]}, 0x4c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000340)={0x0, 0x2, &(0x7f0000000380)={&(0x7f00000003c0)={0x28, 0x3, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000a80)=@raw={'raw\x00', 0x8, 0x3, 0x4d8, 0x340, 0x11, 0x148, 0x340, 0x0, 0x440, 0x2a8, 0x2a8, 0x440, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x3f, 0x0, 0x20000000, 0x3, 0x7}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT0={0x48}}, {{@ip={@multicast2, @empty, 0x0, 0x0, 'vlan0\x00', 'netdevsim0\x00'}, 0x0, 0xd0, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@unspec=@quota={{0x38}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x538)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r7}, 0x10)
fsopen(&(0x7f0000000000)='omfs\x00', 0x1)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x8205, &(0x7f0000000480), 0x1, 0x618, &(0x7f0000000640)="$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")
write$binfmt_aout(r8, &(0x7f00000000c0)=ANY=[], 0xff2e)
r9 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000300)={0x3, 0x4, 0x4, 0xa, 0x0, r1, 0x80, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
rt_sigaction(0x31, &(0x7f00000005c0)={&(0x7f00000004c0)="1c3f8fe98898a6082900003e64400f14e0c4624d47632dc4018c590bc4427924d966f30faeca450f7766450f380ac0c44251464a7d", 0x40000000, &(0x7f0000000500)="c403492147a8328fa9d09ba272000000c4617dd7d7c4e1ad142e3636660f38331d00000000660f581ac4c201aaeff241181fc443f17dbb00000000020f0d14b8", {[0xfffffffffffffffd]}}, &(0x7f0000001540)={&(0x7f0000000600)="f2420f7c6cd50bc423217c9500000000eb0fe5d30f40c2f30f1ec82e42631c68f2ab0f7e332ef2490faef1460fae18", 0x0, &(0x7f00000014c0)="db79b6c4e1305eb92500000036640faeedc4637d5d829c2a000000ff8f1000008044dab60c00000036450f38cd2a66440f3a1741084ec4e181f9699036670f3acce000"}, 0x8, &(0x7f0000001580))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000400)={r9, 0x58, &(0x7f0000000380)}, 0x10)
ioctl$TCXONC(r8, 0x540a, 0x0)
ioctl$TCXONC(r8, 0x540a, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200c840, &(0x7f0000000240)={[{@discard}, {@noload}]}, 0x64, 0x537, &(0x7f0000000f80)="$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")
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000100))
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="110000000400000004000000ff"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r10, &(0x7f0000000140), &(0x7f0000000080)=@udp6=r0}, 0x20)

29.40068ms ago: executing program 1 (id=1715):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xa0000000})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x10})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x391, 0x0, 0x1, 0xead9, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x2, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
syz_clone(0xe50c1700, 0x0, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 3 (id=1716):
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000900)="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", 0x22e)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r2, 0x0, 0x0}, 0x10)

kernel console output (not intermixed with test programs):

(loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   86.962613][ T6961] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   86.970990][ T6961] EXT4-fs (loop3): orphan cleanup on readonly fs
[   86.977641][ T6961] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #3: comm syz.3.1154: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[   86.990254][ T6950] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.998983][ T6961] EXT4-fs (loop3): Remounting filesystem read-only
[   87.014076][ T6961] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   87.028835][ T6961] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   87.032207][ T6967] loop4: detected capacity change from 0 to 1024
[   87.037392][ T6961] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   87.043721][ T6967] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   87.054225][ T6961] SELinux: (dev loop3, type ext4) getxattr errno 5
[   87.054619][ T6961] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.084492][ T6967] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   87.093049][ T6967] EXT4-fs (loop4): orphan cleanup on readonly fs
[   87.099620][ T6967] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #3: comm syz.4.1158: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[   87.111243][ T6966] lo speed is unknown, defaulting to 1000
[   87.135352][ T6967] EXT4-fs (loop4): Remounting filesystem read-only
[   87.135739][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.141909][ T6967] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   87.165621][ T6967] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   87.172904][ T6967] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   87.185503][ T6967] SELinux: (dev loop4, type ext4) getxattr errno 5
[   87.192667][ T6967] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.264314][ T6974] loop2: detected capacity change from 0 to 512
[   87.290878][ T6974] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   87.342847][ T6974] EXT4-fs (loop2): invalid journal inode
[   87.350236][ T6974] EXT4-fs (loop2): can't get journal size
[   87.361781][ T6974] EXT4-fs (loop2): failed to initialize system zone (-117)
[   87.371025][ T6974] EXT4-fs (loop2): mount failed
[   87.444618][ T6988] loop1: detected capacity change from 0 to 1764
[   87.463767][ T6990] netlink: 'syz.4.1168': attribute type 4 has an invalid length.
[   87.476722][ T6988] ISOFS: unable to read i-node block
[   87.482072][ T6988] isofs_fill_super: get root inode failed
[   87.496020][ T6992] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1167'.
[   87.505192][ T6992] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1167'.
[   87.539897][ T6994] bpf_get_probe_write_proto: 8 callbacks suppressed
[   87.539915][ T6994] syz.4.1169[6994] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.547921][ T6994] syz.4.1169[6994] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.560481][ T6994] syz.4.1169[6994] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.582307][ T6994] siw: device registration error -23
[   87.615628][ T6996] syzkaller0: entered promiscuous mode
[   87.621168][ T6996] syzkaller0: entered allmulticast mode
[   87.698079][ T6994] loop4: detected capacity change from 0 to 256
[   87.704596][ T6994] vfat: Unknown parameter 'PL'
[   87.847224][ T7016] IPv6: NLM_F_CREATE should be specified when creating new route
[   87.868827][ T7003] lo speed is unknown, defaulting to 1000
[   87.964205][ T7023] loop1: detected capacity change from 0 to 1764
[   87.997880][ T7027] netlink: 'syz.4.1179': attribute type 4 has an invalid length.
[   88.028647][ T7023] ISOFS: unable to read i-node block
[   88.034000][ T7023] isofs_fill_super: get root inode failed
[   88.046498][ T7026] syzkaller0: entered promiscuous mode
[   88.052101][ T7026] syzkaller0: entered allmulticast mode
[   88.074326][ T7029] lo speed is unknown, defaulting to 1000
[   88.098928][   T29] kauditd_printk_skb: 489 callbacks suppressed
[   88.098944][   T29] audit: type=1326 audit(1734823898.721:4036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7022 comm="syz.1.1178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[   88.147675][ T7031] loop2: detected capacity change from 0 to 1024
[   88.169684][ T7031] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   88.192165][ T7033] lo speed is unknown, defaulting to 1000
[   88.217114][ T7035] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1182'.
[   88.226259][ T7035] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1182'.
[   88.236962][   T29] audit: type=1326 audit(1734823898.751:4037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7022 comm="syz.1.1178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[   88.260505][   T29] audit: type=1326 audit(1734823898.751:4038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7022 comm="syz.1.1178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[   88.284023][   T29] audit: type=1326 audit(1734823898.751:4039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7022 comm="syz.1.1178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[   88.307608][   T29] audit: type=1400 audit(1734823898.831:4040): avc:  denied  { create } for  pid=7032 comm="syz.4.1181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   88.338876][ T7031] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   88.374445][ T7031] EXT4-fs (loop2): orphan cleanup on readonly fs
[   88.397313][ T7031] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #3: comm syz.2.1180: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[   88.425992][ T7031] EXT4-fs (loop2): Remounting filesystem read-only
[   88.432640][ T7031] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   88.447385][ T7031] EXT4-fs (loop2): Cannot turn on quotas: error -117
[   88.458163][ T7031] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   88.507725][ T7031] SELinux: (dev loop2, type ext4) getxattr errno 5
[   88.522395][ T7031] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.534506][ T7046] syz.1.1185[7046] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.534563][ T7046] syz.1.1185[7046] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.573019][ T7046] syz.1.1185[7046] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.641098][ T7047] loop1: detected capacity change from 0 to 256
[   88.670607][   T29] audit: type=1326 audit(1734823899.291:4041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7052 comm="syz.4.1187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1809c25d29 code=0x7ffc0000
[   88.707483][ T7047] vfat: Unknown parameter 'PL'
[   88.714075][   T29] audit: type=1326 audit(1734823899.331:4042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7052 comm="syz.4.1187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1809c25d29 code=0x7ffc0000
[   88.764818][   T29] audit: type=1326 audit(1734823899.351:4043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7052 comm="syz.4.1187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1809c25d29 code=0x7ffc0000
[   88.788268][   T29] audit: type=1326 audit(1734823899.351:4044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7052 comm="syz.4.1187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1809c25d29 code=0x7ffc0000
[   88.811708][   T29] audit: type=1326 audit(1734823899.351:4045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7052 comm="syz.4.1187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1809c25d29 code=0x7ffc0000
[   88.873896][ T7055] lo speed is unknown, defaulting to 1000
[   88.890676][ T7061] loop4: detected capacity change from 0 to 1024
[   88.913897][ T7061] EXT4-fs: Ignoring removed nobh option
[   88.919580][ T7061] EXT4-fs: Ignoring removed bh option
[   88.950994][ T7072] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1196'.
[   88.960054][ T7072] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1196'.
[   88.969738][ T7061] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.995671][ T7061] netlink: '+}[@': attribute type 4 has an invalid length.
[   89.003670][ T7061] netlink: '+}[@': attribute type 4 has an invalid length.
[   89.011182][ T7075] loop1: detected capacity change from 0 to 512
[   89.016877][ T7076] loop0: detected capacity change from 0 to 164
[   89.023861][ T7075] EXT4-fs (loop1): filesystem is read-only
[   89.029909][ T7076] rock: directory entry would overflow storage
[   89.031710][ T7075] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   89.036090][ T7076] rock: sig=0x66, size=4, remaining=3
[   89.060113][ T7076] rock: directory entry would overflow storage
[   89.066318][ T7076] rock: sig=0x66, size=4, remaining=3
[   89.074299][ T7075] EXT4-fs (loop1): filesystem is read-only
[   89.080261][ T7075] EXT4-fs (loop1): orphan cleanup on readonly fs
[   89.089627][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.096282][ T7075] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1198: bg 0: block 64: padding at end of block bitmap is not set
[   89.113362][ T7075] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   89.116374][ T7079] syz.2.1200[7079] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.122596][ T7079] syz.2.1200[7079] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.134306][ T7079] syz.2.1200[7079] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.135465][ T7075] EXT4-fs (loop1): 1 orphan inode deleted
[   89.168428][ T7075] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   89.190691][ T7079] siw: device registration error -23
[   89.197147][ T7083] loop0: detected capacity change from 0 to 164
[   89.204476][ T7083] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   89.263253][ T7079] loop2: detected capacity change from 0 to 256
[   89.282198][ T7089] loop0: detected capacity change from 0 to 1764
[   89.283640][ T7079] vfat: Unknown parameter 'PL'
[   89.291627][ T7091] loop3: detected capacity change from 0 to 164
[   89.304018][ T7089] ISOFS: unable to read i-node block
[   89.309373][ T7089] isofs_fill_super: get root inode failed
[   89.316761][ T7091] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[   89.325768][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.334647][ T7091] FAULT_INJECTION: forcing a failure.
[   89.334647][ T7091] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.334735][ T7091] CPU: 1 UID: 0 PID: 7091 Comm: syz.3.1203 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[   89.334835][ T7091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   89.368561][ T7091] Call Trace:
[   89.371863][ T7091]  <TASK>
[   89.374829][ T7091]  dump_stack_lvl+0xf2/0x150
[   89.379473][ T7091]  dump_stack+0x15/0x1a
[   89.383776][ T7091]  should_fail_ex+0x223/0x230
[   89.388466][ T7091]  should_fail+0xb/0x10
[   89.392627][ T7091]  should_fail_usercopy+0x1a/0x20
[   89.397662][ T7091]  _copy_to_user+0x20/0xa0
[   89.402172][ T7091]  simple_read_from_buffer+0xa0/0x110
[   89.407612][ T7091]  proc_fail_nth_read+0xf9/0x140
[   89.412574][ T7091]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   89.418174][ T7091]  vfs_read+0x1a2/0x700
[   89.422411][ T7091]  ? __rcu_read_unlock+0x4e/0x70
[   89.427427][ T7091]  ? __fget_files+0x17c/0x1c0
[   89.432187][ T7091]  ksys_read+0xe8/0x1b0
[   89.436356][ T7091]  __x64_sys_read+0x42/0x50
[   89.440875][ T7091]  x64_sys_call+0x2874/0x2dc0
[   89.445578][ T7091]  do_syscall_64+0xc9/0x1c0
[   89.450182][ T7091]  ? clear_bhb_loop+0x55/0xb0
[   89.454904][ T7091]  ? clear_bhb_loop+0x55/0xb0
[   89.459587][ T7091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.465567][ T7091] RIP: 0033:0x7f9b4e3c473c
[   89.470043][ T7091] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   89.489657][ T7091] RSP: 002b:00007f9b4ca37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   89.498078][ T7091] RAX: ffffffffffffffda RBX: 00007f9b4e5b5fa0 RCX: 00007f9b4e3c473c
[   89.506063][ T7091] RDX: 000000000000000f RSI: 00007f9b4ca370a0 RDI: 0000000000000005
[   89.514037][ T7091] RBP: 00007f9b4ca37090 R08: 0000000000000000 R09: 0000000000000000
[   89.522011][ T7091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.529987][ T7091] R13: 0000000000000000 R14: 00007f9b4e5b5fa0 R15: 00007fff198ced18
[   89.538021][ T7091]  </TASK>
[   89.594388][ T7103] loop0: detected capacity change from 0 to 1024
[   89.595503][ T7104] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1210'.
[   89.601423][ T7103] EXT4-fs: Ignoring removed nobh option
[   89.609757][ T7104] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1210'.
[   89.615361][ T7103] EXT4-fs: Ignoring removed bh option
[   89.638924][ T7103] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.660519][ T7103] netlink: '+}[@': attribute type 4 has an invalid length.
[   89.685417][ T7103] netlink: '+}[@': attribute type 4 has an invalid length.
[   89.711766][ T7115] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1213'.
[   89.720693][ T7115] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1213'.
[   89.731516][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.753382][ T7119] IPv6: NLM_F_CREATE should be specified when creating new route
[   89.792072][ T7122] sd 0:0:1:0: device reset
[   89.856263][ T7123] xt_CT: No such helper "snmp"
[   89.859116][ T7128] loop0: detected capacity change from 0 to 1764
[   89.869474][ T7128] ISOFS: unable to read i-node block
[   89.874803][ T7128] isofs_fill_super: get root inode failed
[   90.128364][ T7137] lo speed is unknown, defaulting to 1000
[   90.149611][ T7139] lo speed is unknown, defaulting to 1000
[   90.886559][ T7144] FAULT_INJECTION: forcing a failure.
[   90.886559][ T7144] name failslab, interval 1, probability 0, space 0, times 0
[   90.899233][ T7144] CPU: 1 UID: 0 PID: 7144 Comm: syz.0.1225 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[   90.909981][ T7144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   90.920068][ T7144] Call Trace:
[   90.923359][ T7144]  <TASK>
[   90.926344][ T7144]  dump_stack_lvl+0xf2/0x150
[   90.930973][ T7144]  dump_stack+0x15/0x1a
[   90.935160][ T7144]  should_fail_ex+0x223/0x230
[   90.939923][ T7144]  should_failslab+0x8f/0xb0
[   90.944585][ T7144]  __kmalloc_cache_node_noprof+0x56/0x320
[   90.950419][ T7144]  ? __get_vm_area_node+0xfb/0x1c0
[   90.955573][ T7144]  __get_vm_area_node+0xfb/0x1c0
[   90.960616][ T7144]  __vmalloc_node_range_noprof+0x280/0xe80
[   90.966450][ T7144]  ? htable_create+0xee/0x430
[   90.971188][ T7144]  ? memcg_list_lru_alloc+0xce/0x4e0
[   90.976566][ T7144]  ? mod_objcg_state+0x2ea/0x4f0
[   90.981594][ T7144]  ? xas_load+0x3ae/0x3d0
[   90.985966][ T7144]  ? htable_create+0xee/0x430
[   90.990794][ T7144]  vmalloc_noprof+0x5e/0x70
[   90.995334][ T7144]  ? htable_create+0xee/0x430
[   91.000056][ T7144]  htable_create+0xee/0x430
[   91.004586][ T7144]  hashlimit_mt_check_common+0x597/0x6a0
[   91.010326][ T7144]  hashlimit_mt_check_v1+0x116/0x140
[   91.012065][ T7151] loop4: detected capacity change from 0 to 1024
[   91.015723][ T7144]  xt_check_match+0x259/0x4b0
[   91.015762][ T7144]  ? strnlen+0x28/0x50
[   91.015789][ T7144]  ? strcmp+0x21/0x50
[   91.022628][ T7151] EXT4-fs: Ignoring removed nobh option
[   91.026782][ T7144]  ? xt_find_match+0x1c1/0x1e0
[   91.026827][ T7144]  translate_table+0xa99/0xf70
[   91.026867][ T7144]  ? _copy_from_user+0x8d/0xb0
[   91.030931][ T7151] EXT4-fs: Ignoring removed bh option
[   91.034883][ T7144]  do_ipt_set_ctl+0x7bd/0x8b0
[   91.065007][ T7144]  nf_setsockopt+0x195/0x1b0
[   91.069720][ T7144]  ip_setsockopt+0xea/0x100
[   91.074329][ T7144]  udp_setsockopt+0x95/0xb0
[   91.078918][ T7144]  sock_common_setsockopt+0x64/0x80
[   91.084266][ T7144]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   91.090207][ T7144]  __sys_setsockopt+0x187/0x200
[   91.095071][ T7144]  __x64_sys_setsockopt+0x66/0x80
[   91.100180][ T7144]  x64_sys_call+0x282e/0x2dc0
[   91.104951][ T7144]  do_syscall_64+0xc9/0x1c0
[   91.109529][ T7144]  ? clear_bhb_loop+0x55/0xb0
[   91.114211][ T7144]  ? clear_bhb_loop+0x55/0xb0
[   91.118921][ T7144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.124915][ T7144] RIP: 0033:0x7faa17c25d29
[   91.129403][ T7144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.149028][ T7144] RSP: 002b:00007faa16291038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   91.157452][ T7144] RAX: ffffffffffffffda RBX: 00007faa17e15fa0 RCX: 00007faa17c25d29
[   91.165440][ T7144] RDX: 0000000000000040 RSI: 8001000000000000 RDI: 0000000000000009
[   91.173456][ T7144] RBP: 00007faa16291090 R08: 0000000000000358 R09: 0000000000000000
[   91.181434][ T7144] R10: 0000000020000740 R11: 0000000000000246 R12: 0000000000000001
[   91.189416][ T7144] R13: 0000000000000000 R14: 00007faa17e15fa0 R15: 00007ffe47ec95f8
[   91.197450][ T7144]  </TASK>
[   91.200765][ T7144] syz.0.1225: vmalloc error: size 65736, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0
[   91.214682][ T7144] CPU: 1 UID: 0 PID: 7144 Comm: syz.0.1225 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[   91.225380][ T7144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   91.235553][ T7144] Call Trace:
[   91.236793][ T7151] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.238891][ T7144]  <TASK>
[   91.238903][ T7144]  dump_stack_lvl+0xf2/0x150
[   91.258900][ T7144]  dump_stack+0x15/0x1a
[   91.263152][ T7144]  warn_alloc+0x145/0x1b0
[   91.267525][ T7144]  __vmalloc_node_range_noprof+0x2a5/0xe80
[   91.273368][ T7144]  ? memcg_list_lru_alloc+0xce/0x4e0
[   91.278730][ T7144]  ? mod_objcg_state+0x2ea/0x4f0
[   91.283754][ T7144]  ? xas_load+0x3ae/0x3d0
[   91.288118][ T7144]  ? htable_create+0xee/0x430
[   91.292849][ T7144]  vmalloc_noprof+0x5e/0x70
[   91.297373][ T7144]  ? htable_create+0xee/0x430
[   91.302142][ T7144]  htable_create+0xee/0x430
[   91.306716][ T7144]  hashlimit_mt_check_common+0x597/0x6a0
[   91.312427][ T7144]  hashlimit_mt_check_v1+0x116/0x140
[   91.317737][ T7144]  xt_check_match+0x259/0x4b0
[   91.322548][ T7144]  ? strnlen+0x28/0x50
[   91.326653][ T7144]  ? strcmp+0x21/0x50
[   91.330733][ T7144]  ? xt_find_match+0x1c1/0x1e0
[   91.335565][ T7144]  translate_table+0xa99/0xf70
[   91.340405][ T7144]  ? _copy_from_user+0x8d/0xb0
[   91.345190][ T7144]  do_ipt_set_ctl+0x7bd/0x8b0
[   91.349957][ T7144]  nf_setsockopt+0x195/0x1b0
[   91.354559][ T7144]  ip_setsockopt+0xea/0x100
[   91.359155][ T7144]  udp_setsockopt+0x95/0xb0
[   91.363746][ T7144]  sock_common_setsockopt+0x64/0x80
[   91.369022][ T7144]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   91.374966][ T7144]  __sys_setsockopt+0x187/0x200
[   91.379831][ T7144]  __x64_sys_setsockopt+0x66/0x80
[   91.384866][ T7144]  x64_sys_call+0x282e/0x2dc0
[   91.389605][ T7144]  do_syscall_64+0xc9/0x1c0
[   91.394116][ T7144]  ? clear_bhb_loop+0x55/0xb0
[   91.398797][ T7144]  ? clear_bhb_loop+0x55/0xb0
[   91.403610][ T7144]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.409526][ T7144] RIP: 0033:0x7faa17c25d29
[   91.413942][ T7144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.433700][ T7144] RSP: 002b:00007faa16291038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   91.442148][ T7144] RAX: ffffffffffffffda RBX: 00007faa17e15fa0 RCX: 00007faa17c25d29
[   91.450180][ T7144] RDX: 0000000000000040 RSI: 8001000000000000 RDI: 0000000000000009
[   91.458213][ T7144] RBP: 00007faa16291090 R08: 0000000000000358 R09: 0000000000000000
[   91.466192][ T7144] R10: 0000000020000740 R11: 0000000000000246 R12: 0000000000000001
[   91.474180][ T7144] R13: 0000000000000000 R14: 00007faa17e15fa0 R15: 00007ffe47ec95f8
[   91.482225][ T7144]  </TASK>
[   91.485324][ T7144] Mem-Info:
[   91.488626][ T7144] active_anon:103357 inactive_anon:0 isolated_anon:0
[   91.488626][ T7144]  active_file:13295 inactive_file:12883 isolated_file:0
[   91.488626][ T7144]  unevictable:0 dirty:386 writeback:0
[   91.488626][ T7144]  slab_reclaimable:3075 slab_unreclaimable:15568
[   91.488626][ T7144]  mapped:28710 shmem:100196 pagetables:781
[   91.488626][ T7144]  sec_pagetables:0 bounce:0
[   91.488626][ T7144]  kernel_misc_reclaimable:0
[   91.488626][ T7144]  free:1785243 free_pcp:7977 free_cma:0
[   91.528699][ T7162] loop2: detected capacity change from 0 to 2048
[   91.533922][ T7144] Node 0 active_anon:404264kB inactive_anon:0kB active_file:53180kB inactive_file:51532kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:114840kB dirty:1544kB writeback:0kB shmem:391620kB writeback_tmp:0kB kernel_stack:3328kB pagetables:3124kB sec_pagetables:0kB all_unreclaimable? no
[   91.568512][ T7144] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   91.595442][ T7144] lowmem_reserve[]: 0 2866 7844 0
[   91.600620][ T7144] Node 0 DMA32 free:2950284kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953916kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[   91.629285][ T7144] lowmem_reserve[]: 0 0 4978 0
[   91.632139][ T7162] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.634089][ T7144] Node 0 Normal free:4175096kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:404264kB inactive_anon:0kB active_file:53180kB inactive_file:51532kB unevictable:0kB writepending:1544kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:37640kB local_pcp:23800kB free_cma:0kB
[   91.676721][ T7144] lowmem_reserve[]: 0 0 0 0
[   91.681280][ T7144] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   91.694124][ T7144] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 3*16kB (M) 4*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950284kB
[   91.710323][ T7144] Node 0 Normal: 5*4kB (UME) 1*8kB (U) 2*16kB (UM) 1*32kB (E) 2*64kB (UM) 28*128kB (UM) 32*256kB (UME) 19*512kB (UE) 18*1024kB (UME) 17*2048kB (UE) 1001*4096kB (UM) = 4175068kB
[   91.728257][ T7144] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   91.737687][ T7144] 124081 total pagecache pages
[   91.742473][ T7144] 0 pages in swap cache
[   91.746776][ T7144] Free swap  = 124516kB
[   91.748579][ T7168] FAULT_INJECTION: forcing a failure.
[   91.748579][ T7168] name failslab, interval 1, probability 0, space 0, times 0
[   91.750930][ T7144] Total swap = 124996kB
[   91.750941][ T7144] 2097051 pages RAM
[   91.750948][ T7144] 0 pages HighMem/MovableOnly
[   91.750957][ T7144] 80180 pages reserved
[   91.763541][ T7168] CPU: 0 UID: 0 PID: 7168 Comm: syz.3.1231 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[   91.763573][ T7168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   91.801058][ T7168] Call Trace:
[   91.804192][ T7151] netlink: '+}[@': attribute type 4 has an invalid length.
[   91.804335][ T7168]  <TASK>
[   91.804346][ T7168]  dump_stack_lvl+0xf2/0x150
[   91.819215][ T7168]  dump_stack+0x15/0x1a
[   91.823424][ T7168]  should_fail_ex+0x223/0x230
[   91.828135][ T7168]  should_failslab+0x8f/0xb0
[   91.832769][ T7168]  kmem_cache_alloc_node_noprof+0x59/0x320
[   91.838664][ T7168]  ? __alloc_skb+0x10b/0x310
[   91.843392][ T7168]  __alloc_skb+0x10b/0x310
[   91.847838][ T7168]  ? audit_log_start+0x34c/0x6b0
[   91.852875][ T7168]  audit_log_start+0x368/0x6b0
[   91.857709][ T7168]  audit_seccomp+0x4b/0x130
[   91.862257][ T7168]  __seccomp_filter+0x6fa/0x1180
[   91.867218][ T7168]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   91.872944][ T7168]  ? vfs_write+0x596/0x920
[   91.877387][ T7168]  ? __schedule+0x6fa/0x930
[   91.881912][ T7168]  __secure_computing+0x9f/0x1c0
[   91.886930][ T7168]  syscall_trace_enter+0xd1/0x1f0
[   91.891991][ T7168]  do_syscall_64+0xaa/0x1c0
[   91.896619][ T7168]  ? clear_bhb_loop+0x55/0xb0
[   91.901303][ T7168]  ? clear_bhb_loop+0x55/0xb0
[   91.906028][ T7168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.911961][ T7168] RIP: 0033:0x7f9b4e3c5d29
[   91.916379][ T7168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.935999][ T7168] RSP: 002b:00007f9b4ca37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   91.944579][ T7168] RAX: ffffffffffffffda RBX: 00007f9b4e5b5fa0 RCX: 00007f9b4e3c5d29
[   91.952575][ T7168] RDX: 0000000020000000 RSI: 0000000000002284 RDI: 0000000000000009
[   91.960577][ T7168] RBP: 00007f9b4ca37090 R08: 0000000000000000 R09: 0000000000000000
[   91.968625][ T7168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.976602][ T7168] R13: 0000000000000000 R14: 00007f9b4e5b5fa0 R15: 00007fff198ced18
[   91.984595][ T7168]  </TASK>
[   91.992574][ T7168] sd 0:0:1:0: device reset
[   91.998626][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.026589][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.115158][ T7183] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1238'.
[   92.157370][ T7183] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1238'.
[   92.174228][ T7187] loop4: detected capacity change from 0 to 1024
[   92.180166][ T7176] lo speed is unknown, defaulting to 1000
[   92.182528][ T7187] EXT4-fs: Ignoring removed nobh option
[   92.192035][ T7187] EXT4-fs: Ignoring removed bh option
[   92.319870][ T7187] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.374194][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.434279][ T7198] loop0: detected capacity change from 0 to 1764
[   92.452461][ T7198] ISOFS: unable to read i-node block
[   92.458086][ T7198] isofs_fill_super: get root inode failed
[   92.524087][ T7203] IPv6: NLM_F_CREATE should be specified when creating new route
[   92.560440][ T7205] loop0: detected capacity change from 0 to 512
[   92.588895][ T7205] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   92.602149][ T7205] EXT4-fs (loop0): invalid journal inode
[   92.608142][ T7205] EXT4-fs (loop0): can't get journal size
[   92.614394][ T7205] EXT4-fs (loop0): failed to initialize system zone (-117)
[   92.623819][ T7205] EXT4-fs (loop0): mount failed
[   92.960944][ T7216] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1251'.
[   92.970045][ T7216] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1251'.
[   93.031871][ T7218] syzkaller0: entered promiscuous mode
[   93.037413][ T7218] syzkaller0: entered allmulticast mode
[   93.108144][ T7229] loop0: detected capacity change from 0 to 1024
[   93.116550][ T7229] EXT4-fs: Ignoring removed nobh option
[   93.122182][   T29] kauditd_printk_skb: 466 callbacks suppressed
[   93.122187][ T7229] EXT4-fs: Ignoring removed bh option
[   93.122198][   T29] audit: type=1326 audit(1734823903.741:4510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.157879][   T29] audit: type=1326 audit(1734823903.751:4511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.181359][   T29] audit: type=1326 audit(1734823903.751:4512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.184117][ T7233] loop3: detected capacity change from 0 to 1764
[   93.204898][   T29] audit: type=1326 audit(1734823903.751:4513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.235072][   T29] audit: type=1326 audit(1734823903.751:4514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.235109][   T29] audit: type=1326 audit(1734823903.751:4515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.235140][   T29] audit: type=1326 audit(1734823903.751:4516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.260074][ T7233] ISOFS: unable to read i-node block
[   93.282130][   T29] audit: type=1326 audit(1734823903.751:4517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.305579][ T7233] isofs_fill_super: get root inode failed
[   93.310827][   T29] audit: type=1326 audit(1734823903.751:4518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.363714][   T29] audit: type=1326 audit(1734823903.781:4519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7232 comm="syz.3.1257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[   93.419821][ T7229] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.512008][ T7250] loop4: detected capacity change from 0 to 512
[   93.519231][ T7250] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   93.528877][ T7250] EXT4-fs (loop4): invalid journal inode
[   93.532026][ T7253] lo speed is unknown, defaulting to 1000
[   93.534521][ T7250] EXT4-fs (loop4): can't get journal size
[   93.553811][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.575498][ T7250] EXT4-fs (loop4): failed to initialize system zone (-117)
[   93.582784][ T7250] EXT4-fs (loop4): mount failed
[   93.729473][ T7265] netlink: 'syz.1.1269': attribute type 21 has an invalid length.
[   93.874516][ T7282] capability: warning: `syz.1.1269' uses deprecated v2 capabilities in a way that may be insecure
[   94.039536][ T7291] loop4: detected capacity change from 0 to 512
[   94.048099][ T7291] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   94.059296][ T7291] EXT4-fs (loop4): invalid journal inode
[   94.066608][ T7291] EXT4-fs (loop4): can't get journal size
[   94.082823][ T7291] EXT4-fs (loop4): failed to initialize system zone (-117)
[   94.091404][ T7291] EXT4-fs (loop4): mount failed
[   94.271668][ T7284] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.280338][ T7284] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.338859][ T7294] netlink: 'syz.4.1280': attribute type 4 has an invalid length.
[   94.633196][ T7284] __nla_validate_parse: 8 callbacks suppressed
[   94.633216][ T7284] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1276'.
[   94.807708][ T7320] loop2: detected capacity change from 0 to 512
[   94.815468][ T7316] lo speed is unknown, defaulting to 1000
[   94.818337][ T7320] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   94.830616][ T7320] EXT4-fs (loop2): invalid journal inode
[   94.837407][ T7320] EXT4-fs (loop2): can't get journal size
[   94.885314][ T7320] EXT4-fs (loop2): failed to initialize system zone (-117)
[   94.892718][ T7320] EXT4-fs (loop2): mount failed
[   94.956668][ T7325] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1295'.
[   94.986035][ T7325] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1295'.
[   95.104184][ T7333] loop2: detected capacity change from 0 to 1024
[   95.123070][ T7333] EXT4-fs: Ignoring removed nobh option
[   95.128786][ T7333] EXT4-fs: Ignoring removed bh option
[   95.172749][ T7333] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.235082][ T7342] lo speed is unknown, defaulting to 1000
[   95.760786][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.798947][ T7351] loop1: detected capacity change from 0 to 512
[   95.806410][ T7351] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   95.809130][ T7355] IPv6: NLM_F_CREATE should be specified when creating new route
[   95.815538][ T7351] EXT4-fs (loop1): invalid journal inode
[   95.828296][ T7351] EXT4-fs (loop1): can't get journal size
[   95.850928][ T7351] EXT4-fs (loop1): failed to initialize system zone (-117)
[   95.862054][ T7351] EXT4-fs (loop1): mount failed
[   95.872066][ T7358] lo speed is unknown, defaulting to 1000
[   95.939300][ T7361] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1307'.
[   95.979430][ T7361] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1307'.
[   96.105645][ T7371] loop0: detected capacity change from 0 to 1024
[   96.120937][ T7367] lo speed is unknown, defaulting to 1000
[   96.150207][ T7371] EXT4-fs: Ignoring removed nobh option
[   96.155901][ T7371] EXT4-fs: Ignoring removed bh option
[   96.193643][ T7374] loop1: detected capacity change from 0 to 1764
[   96.219780][ T7371] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.239839][ T7374] ISOFS: unable to read i-node block
[   96.245285][ T7374] isofs_fill_super: get root inode failed
[   96.364112][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.578814][ T7399] loop1: detected capacity change from 0 to 512
[   96.593137][ T7399] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   96.602346][ T7399] EXT4-fs (loop1): invalid journal inode
[   96.610785][ T7399] EXT4-fs (loop1): can't get journal size
[   96.617484][ T7399] EXT4-fs (loop1): failed to initialize system zone (-117)
[   96.624790][ T7399] EXT4-fs (loop1): mount failed
[   96.668866][ T7406] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1324'.
[   96.678301][ T7406] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1324'.
[   96.793733][ T7416] lo speed is unknown, defaulting to 1000
[   96.869519][ T7422] FAULT_INJECTION: forcing a failure.
[   96.869519][ T7422] name failslab, interval 1, probability 0, space 0, times 0
[   96.882321][ T7422] CPU: 1 UID: 0 PID: 7422 Comm: syz.0.1331 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[   96.893038][ T7422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   96.903111][ T7422] Call Trace:
[   96.906432][ T7422]  <TASK>
[   96.909368][ T7422]  dump_stack_lvl+0xf2/0x150
[   96.913988][ T7422]  dump_stack+0x15/0x1a
[   96.918286][ T7422]  should_fail_ex+0x223/0x230
[   96.923076][ T7422]  should_failslab+0x8f/0xb0
[   96.927676][ T7422]  kmem_cache_alloc_noprof+0x52/0x320
[   96.933071][ T7422]  ? getname_flags+0x81/0x3b0
[   96.937751][ T7422]  getname_flags+0x81/0x3b0
[   96.942277][ T7422]  __x64_sys_rmdir+0x21/0x40
[   96.946929][ T7422]  x64_sys_call+0x27ca/0x2dc0
[   96.951658][ T7422]  do_syscall_64+0xc9/0x1c0
[   96.956241][ T7422]  ? clear_bhb_loop+0x55/0xb0
[   96.960931][ T7422]  ? clear_bhb_loop+0x55/0xb0
[   96.965605][ T7422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.971544][ T7422] RIP: 0033:0x7faa17c25d29
[   96.975970][ T7422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.995638][ T7422] RSP: 002b:00007faa16291038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[   97.004113][ T7422] RAX: ffffffffffffffda RBX: 00007faa17e15fa0 RCX: 00007faa17c25d29
[   97.012101][ T7422] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[   97.020121][ T7422] RBP: 00007faa16291090 R08: 0000000000000000 R09: 0000000000000000
[   97.028109][ T7422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.036090][ T7422] R13: 0000000000000000 R14: 00007faa17e15fa0 R15: 00007ffe47ec95f8
[   97.044078][ T7422]  </TASK>
[   97.089436][ T7426] loop2: detected capacity change from 0 to 1764
[   97.101385][ T7426] ISOFS: unable to read i-node block
[   97.106756][ T7426] isofs_fill_super: get root inode failed
[   97.111409][ T7431] lo speed is unknown, defaulting to 1000
[   97.120318][ T7432] loop1: detected capacity change from 0 to 512
[   97.128644][ T7432] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   97.191599][ T7436] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1337'.
[   97.202433][ T7436] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1337'.
[   97.238376][ T7432] EXT4-fs (loop1): invalid journal inode
[   97.245737][ T7432] EXT4-fs (loop1): can't get journal size
[   97.261907][ T7432] EXT4-fs (loop1): failed to initialize system zone (-117)
[   97.271949][ T7440] syz.0.1339[7440] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.272110][ T7440] syz.0.1339[7440] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.293928][ T7432] EXT4-fs (loop1): mount failed
[   97.329854][ T7440] syz.0.1339[7440] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.330691][ T7440] siw: device registration error -23
[   97.462585][ T7448] lo speed is unknown, defaulting to 1000
[   97.471988][ T7440] loop0: detected capacity change from 0 to 256
[   97.507441][ T7440] vfat: Unknown parameter 'PL'
[   97.768871][ T7469] FAULT_INJECTION: forcing a failure.
[   97.768871][ T7469] name failslab, interval 1, probability 0, space 0, times 0
[   97.781654][ T7469] CPU: 0 UID: 0 PID: 7469 Comm: syz.4.1348 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[   97.792389][ T7469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   97.802469][ T7469] Call Trace:
[   97.805756][ T7469]  <TASK>
[   97.808746][ T7469]  dump_stack_lvl+0xf2/0x150
[   97.813400][ T7469]  dump_stack+0x15/0x1a
[   97.817583][ T7469]  should_fail_ex+0x223/0x230
[   97.822344][ T7469]  should_failslab+0x8f/0xb0
[   97.826970][ T7469]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   97.832712][ T7469]  ? __d_alloc+0x3d/0x340
[   97.837242][ T7469]  __d_alloc+0x3d/0x340
[   97.841475][ T7469]  d_alloc_pseudo+0x1e/0x80
[   97.846078][ T7469]  alloc_file_pseudo+0x70/0x140
[   97.851007][ T7469]  __shmem_file_setup+0x1bb/0x1f0
[   97.856108][ T7469]  shmem_file_setup+0x3b/0x50
[   97.860818][ T7469]  __se_sys_memfd_create+0x31d/0x5c0
[   97.866132][ T7469]  __x64_sys_memfd_create+0x31/0x40
[   97.871347][ T7469]  x64_sys_call+0x2d4c/0x2dc0
[   97.876092][ T7469]  do_syscall_64+0xc9/0x1c0
[   97.880659][ T7469]  ? clear_bhb_loop+0x55/0xb0
[   97.885338][ T7469]  ? clear_bhb_loop+0x55/0xb0
[   97.890082][ T7469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.896022][ T7469] RIP: 0033:0x7f1809c25d29
[   97.900493][ T7469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.920119][ T7469] RSP: 002b:00007f1808296e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   97.928622][ T7469] RAX: ffffffffffffffda RBX: 00000000000004aa RCX: 00007f1809c25d29
[   97.936610][ T7469] RDX: 00007f1808296ef0 RSI: 0000000000000000 RDI: 00007f1809ca2409
[   97.944616][ T7469] RBP: 0000000020000100 R08: 00007f1808296bb7 R09: 00007f1808296e40
[   97.952637][ T7469] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000080
[   97.960647][ T7469] R13: 00007f1808296ef0 R14: 00007f1808296eb0 R15: 00000000200000c0
[   97.968690][ T7469]  </TASK>
[   98.023104][ T7476] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1349'.
[   98.107445][ T7482] loop0: detected capacity change from 0 to 2048
[   98.116636][ T7482] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.141027][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.161676][   T29] kauditd_printk_skb: 546 callbacks suppressed
[   98.161692][   T29] audit: type=1326 audit(1734823908.781:5066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.192014][   T29] audit: type=1326 audit(1734823908.781:5067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.215896][   T29] audit: type=1326 audit(1734823908.781:5068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.224714][ T7489] loop0: detected capacity change from 0 to 1764
[   98.239768][   T29] audit: type=1326 audit(1734823908.781:5069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.269408][   T29] audit: type=1326 audit(1734823908.781:5070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.269445][   T29] audit: type=1326 audit(1734823908.781:5071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.316327][   T29] audit: type=1326 audit(1734823908.781:5072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.330147][ T7489] ISOFS: unable to read i-node block
[   98.339873][   T29] audit: type=1326 audit(1734823908.781:5073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.345209][ T7489] isofs_fill_super: get root inode failed
[   98.356012][ T7493] netlink: 'syz.3.1356': attribute type 4 has an invalid length.
[   98.368778][   T29] audit: type=1326 audit(1734823908.781:5074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.405883][   T29] audit: type=1326 audit(1734823908.781:5075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7488 comm="syz.0.1354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[   98.515730][ T7497] lo speed is unknown, defaulting to 1000
[   98.532671][ T7502] loop0: detected capacity change from 0 to 512
[   98.541149][ T7502] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   98.551796][ T7502] EXT4-fs (loop0): invalid journal inode
[   98.560244][ T7502] EXT4-fs (loop0): can't get journal size
[   98.568133][ T7502] EXT4-fs (loop0): failed to initialize system zone (-117)
[   98.576775][ T7502] EXT4-fs (loop0): mount failed
[   98.612376][ T7507] IPVS: set_ctl: invalid protocol: 51 172.30.0.4:20004
[   98.687351][ T7514] loop3: detected capacity change from 0 to 2048
[   98.706636][ T7514] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.734607][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.748331][ T7523] lo speed is unknown, defaulting to 1000
[   98.769116][ T7525] netlink: 'syz.3.1367': attribute type 4 has an invalid length.
[   98.779529][ T7523] loop0: detected capacity change from 0 to 1024
[   98.786581][ T7523] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   98.799247][ T7523] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   98.807828][ T7523] EXT4-fs (loop0): orphan cleanup on readonly fs
[   98.814204][ T7523] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #3: comm syz.0.1366: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[   98.832705][ T7523] EXT4-fs (loop0): Remounting filesystem read-only
[   98.839380][ T7523] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   98.854129][ T7523] EXT4-fs (loop0): Cannot turn on quotas: error -117
[   98.861788][ T7523] SELinux: (dev loop0, type ext4) getxattr errno 5
[   98.927791][ T7538] loop4: detected capacity change from 0 to 512
[   98.931015][ T7537] lo speed is unknown, defaulting to 1000
[   98.934740][ T7538] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   98.952620][ T7538] EXT4-fs (loop4): invalid journal inode
[   98.968281][ T7538] EXT4-fs (loop4): can't get journal size
[   98.980876][ T7538] EXT4-fs (loop4): failed to initialize system zone (-117)
[   98.988418][ T7538] EXT4-fs (loop4): mount failed
[   99.039404][ T7555] netlink: 'syz.4.1378': attribute type 4 has an invalid length.
[   99.098493][ T7553] loop3: detected capacity change from 0 to 2048
[   99.129814][ T7567] syz.4.1383[7567] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.129891][ T7567] syz.4.1383[7567] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.149714][ T7567] syz.4.1383[7567] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.161735][ T7567] siw: device registration error -23
[   99.163980][ T7571] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[   99.184947][ T7571] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   99.192616][ T7571] vhci_hcd vhci_hcd.0: Device attached
[   99.201748][ T7567] loop4: detected capacity change from 0 to 256
[   99.212588][ T7573] vhci_hcd: connection closed
[   99.212906][ T7567] vfat: Unknown parameter 'PL'
[   99.222657][   T28] vhci_hcd: stop threads
[   99.227004][   T28] vhci_hcd: release socket
[   99.231462][   T28] vhci_hcd: disconnect device
[   99.311323][ T7590] lo speed is unknown, defaulting to 1000
[   99.344039][ T7592] lo speed is unknown, defaulting to 1000
[   99.549936][ T7611] syz.3.1397[7611] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.550051][ T7611] syz.3.1397[7611] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.558181][ T7607] loop4: detected capacity change from 0 to 2048
[   99.573063][ T7611] syz.3.1397[7611] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.604867][ T7611] siw: device registration error -23
[   99.623853][ T7618] loop2: detected capacity change from 0 to 128
[   99.671233][ T7624] loop2: detected capacity change from 0 to 128
[   99.675818][ T7611] loop3: detected capacity change from 0 to 256
[   99.682415][ T7624] FAULT_INJECTION: forcing a failure.
[   99.682415][ T7624] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   99.695490][ T7611] vfat: Unknown parameter 'PL'
[   99.697029][ T7624] CPU: 1 UID: 0 PID: 7624 Comm: syz.2.1401 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[   99.712497][ T7624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   99.722618][ T7624] Call Trace:
[   99.725905][ T7624]  <TASK>
[   99.729012][ T7624]  dump_stack_lvl+0xf2/0x150
[   99.733649][ T7624]  dump_stack+0x15/0x1a
[   99.737886][ T7624]  should_fail_ex+0x223/0x230
[   99.742625][ T7624]  should_fail+0xb/0x10
[   99.746791][ T7624]  should_fail_usercopy+0x1a/0x20
[   99.751840][ T7624]  strncpy_from_user+0x25/0x210
[   99.756778][ T7624]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   99.762439][ T7624]  ? getname_flags+0x81/0x3b0
[   99.767124][ T7624]  getname_flags+0xb0/0x3b0
[   99.771658][ T7624]  __x64_sys_renameat2+0x6e/0xa0
[   99.776611][ T7624]  x64_sys_call+0x1bf1/0x2dc0
[   99.781365][ T7624]  do_syscall_64+0xc9/0x1c0
[   99.785966][ T7624]  ? clear_bhb_loop+0x55/0xb0
[   99.790648][ T7624]  ? clear_bhb_loop+0x55/0xb0
[   99.795403][ T7624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.801472][ T7624] RIP: 0033:0x7fb251315d29
[   99.805897][ T7624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.825545][ T7624] RSP: 002b:00007fb24f981038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[   99.834089][ T7624] RAX: ffffffffffffffda RBX: 00007fb251505fa0 RCX: 00007fb251315d29
[   99.842148][ T7624] RDX: ffffffffffffff9c RSI: 0000000020000300 RDI: ffffffffffffff9c
[   99.850188][ T7624] RBP: 00007fb24f981090 R08: 0000000000000000 R09: 0000000000000000
[   99.858164][ T7624] R10: 0000000020000340 R11: 0000000000000246 R12: 0000000000000001
[   99.866142][ T7624] R13: 0000000000000000 R14: 00007fb251505fa0 R15: 00007ffdf8f04238
[   99.874128][ T7624]  </TASK>
[   99.914745][ T7622] syzkaller0: entered promiscuous mode
[   99.920323][ T7622] syzkaller0: entered allmulticast mode
[   99.992347][ T7630] lo speed is unknown, defaulting to 1000
[   99.997618][ T7636] loop0: detected capacity change from 0 to 1024
[  100.026532][ T7636] EXT4-fs: Ignoring removed nobh option
[  100.032210][ T7636] EXT4-fs: Ignoring removed bh option
[  100.033674][ T7632] lo speed is unknown, defaulting to 1000
[  100.086762][ T7636] EXT4-fs mount: 6 callbacks suppressed
[  100.086781][ T7636] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.238041][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.267588][ T7656] tipc: Enabled bearer <eth:wg0>, priority 10
[  100.270370][ T7652] loop2: detected capacity change from 0 to 2048
[  100.317066][ T7652] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.352598][ T7656] __nla_validate_parse: 3 callbacks suppressed
[  100.352613][ T7656] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1412'.
[  100.367837][ T7656] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1412'.
[  100.480579][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.563328][ T7671] syz.2.1416[7671] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.564172][ T7671] siw: device registration error -23
[  100.641426][ T7671] loop2: detected capacity change from 0 to 256
[  100.651282][ T7671] vfat: Unknown parameter 'PL'
[  100.898534][ T7692] loop2: detected capacity change from 0 to 1764
[  100.912238][ T7692] ISOFS: unable to read i-node block
[  100.917597][ T7692] isofs_fill_super: get root inode failed
[  100.923235][ T7694] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1425'.
[  100.932419][ T7694] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1425'.
[  101.027659][ T7696] loop2: detected capacity change from 0 to 2048
[  101.057673][ T7696] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.114169][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.153655][ T7706] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1428'.
[  101.163343][ T7707] loop3: detected capacity change from 0 to 512
[  101.170406][ T7707] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  101.180318][ T7706] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1428'.
[  101.180830][ T7707] EXT4-fs (loop3): invalid journal inode
[  101.197959][ T7707] EXT4-fs (loop3): can't get journal size
[  101.217825][ T7707] EXT4-fs (loop3): failed to initialize system zone (-117)
[  101.232835][ T7707] EXT4-fs (loop3): mount failed
[  101.321435][ T7718] lo speed is unknown, defaulting to 1000
[  101.387567][ T7725] loop2: detected capacity change from 0 to 1764
[  101.404267][ T7725] ISOFS: unable to read i-node block
[  101.409721][ T7725] isofs_fill_super: get root inode failed
[  101.443824][ T7733] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1440'.
[  101.452877][ T7733] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1440'.
[  101.497056][ T7734] netlink: 'syz.3.1438': attribute type 21 has an invalid length.
[  101.512892][ T7739] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1442'.
[  101.540100][ T7740] loop2: detected capacity change from 0 to 1024
[  101.547751][ T7740] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  101.551941][ T7734] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1438'.
[  101.565694][ T7740] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  101.569482][ T7736] lo speed is unknown, defaulting to 1000
[  101.585991][ T7740] EXT4-fs (loop2): orphan cleanup on readonly fs
[  101.596013][ T7740] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #3: comm syz.2.1441: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  101.652816][ T7740] EXT4-fs (loop2): Remounting filesystem read-only
[  101.659433][ T7740] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  101.674143][ T7740] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  101.686481][ T7747] loop4: detected capacity change from 0 to 512
[  101.720759][ T7747] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  101.738449][ T7747] EXT4-fs (loop4): invalid journal inode
[  101.749772][ T7740] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  101.754449][ T7747] EXT4-fs (loop4): can't get journal size
[  101.762301][ T7740] SELinux: (dev loop2, type ext4) getxattr errno 5
[  101.780229][ T7740] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.789925][ T7747] EXT4-fs (loop4): failed to initialize system zone (-117)
[  101.800295][ T7747] EXT4-fs (loop4): mount failed
[  101.882556][ T7752] syzkaller0: entered promiscuous mode
[  101.888148][ T7752] syzkaller0: entered allmulticast mode
[  101.920134][ T7758] lo speed is unknown, defaulting to 1000
[  102.000796][ T7763] netlink: 'syz.2.1449': attribute type 4 has an invalid length.
[  102.188456][ T7773] loop4: detected capacity change from 0 to 512
[  102.195825][ T7773] EXT4-fs: Ignoring removed i_version option
[  102.202039][ T7773] EXT4-fs: Ignoring removed nobh option
[  102.208636][ T7773] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  102.223405][ T7773] EXT4-fs (loop4): 1 truncate cleaned up
[  102.229883][ T7773] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.288653][ T7787] lo speed is unknown, defaulting to 1000
[  102.360584][ T7789] loop3: detected capacity change from 0 to 1024
[  102.367321][ T7789] EXT4-fs: Ignoring removed nobh option
[  102.373006][ T7789] EXT4-fs: Ignoring removed bh option
[  102.387579][ T7787] loop1: detected capacity change from 0 to 1024
[  102.396543][ T7787] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  102.409640][ T7787] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  102.417817][ T7787] EXT4-fs (loop1): orphan cleanup on readonly fs
[  102.424312][ T7787] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #3: comm syz.1.1458: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  102.425499][ T7789] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.454712][ T7787] EXT4-fs (loop1): Remounting filesystem read-only
[  102.461368][ T7787] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  102.464939][ T7791] lo speed is unknown, defaulting to 1000
[  102.476042][ T7787] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  102.519401][ T7787] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  102.545268][ T7787] SELinux: (dev loop1, type ext4) getxattr errno 5
[  102.556757][ T7787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.557449][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.902908][ T7811] loop0: detected capacity change from 0 to 1024
[  102.934843][ T7811] EXT4-fs: Ignoring removed nobh option
[  102.940542][ T7811] EXT4-fs: Ignoring removed bh option
[  102.972962][ T7811] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.018936][ T7811] netlink: '+}[@': attribute type 4 has an invalid length.
[  103.069697][ T7823] netlink: 'syz.0.1467': attribute type 4 has an invalid length.
[  103.125347][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.139402][ T7822] FAULT_INJECTION: forcing a failure.
[  103.139402][ T7822] name failslab, interval 1, probability 0, space 0, times 0
[  103.152067][ T7822] CPU: 1 UID: 0 PID: 7822 Comm: syz.1.1471 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  103.162843][ T7822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  103.172910][ T7822] Call Trace:
[  103.176200][ T7822]  <TASK>
[  103.179138][ T7822]  dump_stack_lvl+0xf2/0x150
[  103.183767][ T7822]  dump_stack+0x15/0x1a
[  103.187961][ T7822]  should_fail_ex+0x223/0x230
[  103.192740][ T7822]  should_failslab+0x8f/0xb0
[  103.197359][ T7822]  kmem_cache_alloc_noprof+0x52/0x320
[  103.202830][ T7822]  ? skb_clone+0x154/0x1f0
[  103.207349][ T7822]  skb_clone+0x154/0x1f0
[  103.211604][ T7822]  __netlink_deliver_tap+0x2bd/0x4f0
[  103.216916][ T7822]  netlink_unicast+0x64a/0x670
[  103.221694][ T7822]  netlink_sendmsg+0x5cc/0x6e0
[  103.226478][ T7822]  ? __pfx_netlink_sendmsg+0x10/0x10
[  103.231866][ T7822]  __sock_sendmsg+0x140/0x180
[  103.236559][ T7822]  ____sys_sendmsg+0x312/0x410
[  103.241358][ T7822]  __sys_sendmsg+0x19d/0x230
[  103.246044][ T7822]  __x64_sys_sendmsg+0x46/0x50
[  103.250820][ T7822]  x64_sys_call+0x2734/0x2dc0
[  103.255519][ T7822]  do_syscall_64+0xc9/0x1c0
[  103.260115][ T7822]  ? clear_bhb_loop+0x55/0xb0
[  103.264802][ T7822]  ? clear_bhb_loop+0x55/0xb0
[  103.269535][ T7822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.275491][ T7822] RIP: 0033:0x7fcecb845d29
[  103.280003][ T7822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.299740][ T7822] RSP: 002b:00007fcec9eb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  103.308310][ T7822] RAX: ffffffffffffffda RBX: 00007fcecba35fa0 RCX: 00007fcecb845d29
[  103.316405][ T7822] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  103.324521][ T7822] RBP: 00007fcec9eb7090 R08: 0000000000000000 R09: 0000000000000000
[  103.332546][ T7822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.340585][ T7822] R13: 0000000000000000 R14: 00007fcecba35fa0 R15: 00007ffe47a1b158
[  103.348581][ T7822]  </TASK>
[  103.376696][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.399339][ T7828] loop2: detected capacity change from 0 to 1024
[  103.417406][ T7828] EXT4-fs: Ignoring removed nobh option
[  103.423029][ T7828] EXT4-fs: Ignoring removed bh option
[  103.440539][ T7828] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.464951][   T29] kauditd_printk_skb: 333 callbacks suppressed
[  103.471177][   T29] audit: type=1326 audit(1734823914.081:5409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7825 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[  103.486974][ T7834] loop0: detected capacity change from 0 to 2048
[  103.503305][   T29] audit: type=1326 audit(1734823914.091:5410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7825 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[  103.526814][   T29] audit: type=1326 audit(1734823914.091:5411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7825 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[  103.550325][   T29] audit: type=1326 audit(1734823914.091:5412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7825 comm="syz.3.1472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b4e3c5d29 code=0x7ffc0000
[  103.600422][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.616693][ T7834] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.660464][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.706827][ T7851] netlink: 'syz.0.1478': attribute type 4 has an invalid length.
[  103.806399][   T29] audit: type=1400 audit(1734823914.431:5413): avc:  denied  { read write } for  pid=7833 comm="+}[@" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  103.857560][ T7861] lo speed is unknown, defaulting to 1000
[  103.858281][   T29] audit: type=1400 audit(1734823914.451:5414): avc:  denied  { open } for  pid=7833 comm="+}[@" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  103.886092][   T29] audit: type=1400 audit(1734823914.451:5415): avc:  denied  { ioctl } for  pid=7833 comm="+}[@" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  103.910423][   T29] audit: type=1400 audit(1734823914.471:5416): avc:  denied  { lock } for  pid=7833 comm="+}[@" path="socket:[19052]" dev="sockfs" ino=19052 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  103.990166][ T7864] lo speed is unknown, defaulting to 1000
[  104.003790][ T7866] loop4: detected capacity change from 0 to 512
[  104.016484][ T7866] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  104.033861][ T7866] EXT4-fs (loop4): invalid journal inode
[  104.043104][ T7866] EXT4-fs (loop4): can't get journal size
[  104.078330][ T7866] EXT4-fs (loop4): failed to initialize system zone (-117)
[  104.094308][ T7866] EXT4-fs (loop4): mount failed
[  104.153768][   T29] audit: type=1326 audit(1734823914.771:5417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7869 comm="syz.4.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1809c25d29 code=0x7ffc0000
[  104.177328][   T29] audit: type=1326 audit(1734823914.771:5418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7869 comm="syz.4.1486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1809c25d29 code=0x7ffc0000
[  104.220787][ T7871] loop4: detected capacity change from 0 to 1764
[  104.253490][ T7871] ISOFS: unable to read i-node block
[  104.258894][ T7871] isofs_fill_super: get root inode failed
[  104.287215][ T7873] lo speed is unknown, defaulting to 1000
[  104.467342][ T7884] loop4: detected capacity change from 0 to 512
[  104.493310][ T7882] loop1: detected capacity change from 0 to 2048
[  104.513316][ T7884] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.1490: casefold flag without casefold feature
[  104.547004][ T7884] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1490: couldn't read orphan inode 15 (err -117)
[  104.556796][ T7882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.576820][ T7884] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.612380][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.627918][ T7884] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.666889][ T4797] kernel write not supported for file bpf-prog (pid: 4797 comm: kworker/0:6)
[  104.678912][ T7902] lo speed is unknown, defaulting to 1000
[  104.734727][ T7904] loop1: detected capacity change from 0 to 1024
[  104.766276][ T7904] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  104.845094][ T7904] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  104.853191][ T7904] EXT4-fs (loop1): orphan cleanup on readonly fs
[  104.865111][ T7904] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #3: comm syz.1.1495: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  104.887417][ T7914] FAULT_INJECTION: forcing a failure.
[  104.887417][ T7914] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.900550][ T7914] CPU: 0 UID: 0 PID: 7914 Comm: syz.4.1500 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  104.911250][ T7914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  104.921420][ T7914] Call Trace:
[  104.924767][ T7914]  <TASK>
[  104.927719][ T7914]  dump_stack_lvl+0xf2/0x150
[  104.932351][ T7914]  dump_stack+0x15/0x1a
[  104.936643][ T7914]  should_fail_ex+0x223/0x230
[  104.941356][ T7914]  should_fail+0xb/0x10
[  104.945572][ T7914]  should_fail_usercopy+0x1a/0x20
[  104.950654][ T7914]  _copy_to_user+0x20/0xa0
[  104.955183][ T7914]  simple_read_from_buffer+0xa0/0x110
[  104.960613][ T7914]  proc_fail_nth_read+0xf9/0x140
[  104.965657][ T7914]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  104.971251][ T7914]  vfs_read+0x1a2/0x700
[  104.975427][ T7914]  ? __rcu_read_unlock+0x4e/0x70
[  104.980421][ T7914]  ? __fget_files+0x17c/0x1c0
[  104.985154][ T7914]  ksys_read+0xe8/0x1b0
[  104.989439][ T7914]  __x64_sys_read+0x42/0x50
[  104.993998][ T7914]  x64_sys_call+0x2874/0x2dc0
[  104.998710][ T7914]  do_syscall_64+0xc9/0x1c0
[  105.003237][ T7914]  ? clear_bhb_loop+0x55/0xb0
[  105.007940][ T7914]  ? clear_bhb_loop+0x55/0xb0
[  105.012642][ T7914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.018653][ T7914] RIP: 0033:0x7f1809c2473c
[  105.023094][ T7914] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  105.042884][ T7914] RSP: 002b:00007f1808297030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  105.051323][ T7914] RAX: ffffffffffffffda RBX: 00007f1809e15fa0 RCX: 00007f1809c2473c
[  105.059356][ T7914] RDX: 000000000000000f RSI: 00007f18082970a0 RDI: 0000000000000009
[  105.067454][ T7914] RBP: 00007f1808297090 R08: 0000000000000000 R09: 0000000000000000
[  105.075456][ T7914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.083567][ T7914] R13: 0000000000000000 R14: 00007f1809e15fa0 R15: 00007ffe9e4b4ea8
[  105.091573][ T7914]  </TASK>
[  105.095271][ T7904] EXT4-fs (loop1): Remounting filesystem read-only
[  105.101858][ T7904] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  105.116544][ T7904] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  105.166206][ T7904] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  105.190743][ T7904] SELinux: (dev loop1, type ext4) getxattr errno 5
[  105.204405][ T7904] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.392377][ T7934] loop1: detected capacity change from 0 to 2048
[  105.416674][ T7931] lo speed is unknown, defaulting to 1000
[  105.434373][ T7936] loop4: detected capacity change from 0 to 512
[  105.454136][ T7934] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.479716][ T7936] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1508: corrupted in-inode xattr: invalid ea_ino
[  105.525227][ T7936] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1508: couldn't read orphan inode 15 (err -117)
[  105.540619][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.551347][ T7941] __nla_validate_parse: 4 callbacks suppressed
[  105.551365][ T7941] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1509'.
[  105.566642][ T7941] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1509'.
[  105.585955][ T7936] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.694510][ T7936] netlink: 'syz.4.1508': attribute type 4 has an invalid length.
[  105.706926][ T7951] loop3: detected capacity change from 0 to 512
[  105.718394][ T7951] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  105.727339][ T7951] EXT4-fs (loop3): invalid journal inode
[  105.733253][ T7951] EXT4-fs (loop3): can't get journal size
[  105.744519][ T7951] EXT4-fs (loop3): failed to initialize system zone (-117)
[  105.748943][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.753920][ T7951] EXT4-fs (loop3): mount failed
[  105.863422][ T7957] loop0: detected capacity change from 0 to 1764
[  105.880864][ T7957] ISOFS: unable to read i-node block
[  105.886245][ T7957] isofs_fill_super: get root inode failed
[  105.910317][ T7962] lo speed is unknown, defaulting to 1000
[  106.063086][ T7976] loop0: detected capacity change from 0 to 1024
[  106.088218][ T7976] EXT4-fs: Ignoring removed nobh option
[  106.093881][ T7976] EXT4-fs: Ignoring removed bh option
[  106.117793][ T7981] FAULT_INJECTION: forcing a failure.
[  106.117793][ T7981] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.130939][ T7981] CPU: 0 UID: 0 PID: 7981 Comm: syz.2.1522 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  106.141794][ T7981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  106.151896][ T7981] Call Trace:
[  106.155269][ T7981]  <TASK>
[  106.158220][ T7981]  dump_stack_lvl+0xf2/0x150
[  106.162860][ T7981]  dump_stack+0x15/0x1a
[  106.167162][ T7981]  should_fail_ex+0x223/0x230
[  106.171890][ T7981]  should_fail+0xb/0x10
[  106.176079][ T7981]  should_fail_usercopy+0x1a/0x20
[  106.181304][ T7981]  _copy_from_user+0x1e/0xb0
[  106.185992][ T7981]  move_addr_to_kernel+0x82/0x120
[  106.191218][ T7981]  copy_msghdr_from_user+0x271/0x2a0
[  106.196590][ T7981]  __sys_sendmmsg+0x1e8/0x4b0
[  106.201430][ T7981]  __x64_sys_sendmmsg+0x57/0x70
[  106.206375][ T7981]  x64_sys_call+0x29aa/0x2dc0
[  106.211073][ T7981]  do_syscall_64+0xc9/0x1c0
[  106.215666][ T7981]  ? clear_bhb_loop+0x55/0xb0
[  106.220372][ T7981]  ? clear_bhb_loop+0x55/0xb0
[  106.225077][ T7981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.231329][ T7981] RIP: 0033:0x7fb251315d29
[  106.235777][ T7981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.255452][ T7981] RSP: 002b:00007fb24f960038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  106.263895][ T7981] RAX: ffffffffffffffda RBX: 00007fb251506080 RCX: 00007fb251315d29
[  106.271991][ T7981] RDX: 0000000000000001 RSI: 0000000020000bc0 RDI: 0000000000000003
[  106.279991][ T7981] RBP: 00007fb24f960090 R08: 0000000000000000 R09: 0000000000000000
[  106.288083][ T7981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.296171][ T7981] R13: 0000000000000000 R14: 00007fb251506080 R15: 00007ffdf8f04238
[  106.304165][ T7981]  </TASK>
[  106.308755][ T7976] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.339636][ T7976] netlink: '+}[@': attribute type 4 has an invalid length.
[  106.362923][ T7976] netlink: '+}[@': attribute type 4 has an invalid length.
[  106.390582][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.746743][ T7997] loop1: detected capacity change from 0 to 512
[  106.771036][ T7997] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  106.780225][ T7997] EXT4-fs (loop1): invalid journal inode
[  106.786671][ T7997] EXT4-fs (loop1): can't get journal size
[  106.792810][ T7997] EXT4-fs (loop1): failed to initialize system zone (-117)
[  106.800423][ T7997] EXT4-fs (loop1): mount failed
[  106.865082][ T8003] loop1: detected capacity change from 0 to 1764
[  106.874546][ T8003] ISOFS: unable to read i-node block
[  106.880054][ T8003] isofs_fill_super: get root inode failed
[  106.887204][ T8007] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1532'.
[  106.896372][ T8007] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1532'.
[  107.077620][ T8029] loop2: detected capacity change from 0 to 512
[  107.095873][ T8029] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  107.110263][ T8029] EXT4-fs (loop2): invalid journal inode
[  107.116055][ T8029] EXT4-fs (loop2): can't get journal size
[  107.123180][ T8029] EXT4-fs (loop2): failed to initialize system zone (-117)
[  107.130849][ T8029] EXT4-fs (loop2): mount failed
[  107.189429][ T8039] lo speed is unknown, defaulting to 1000
[  107.189889][ T8041] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1544'.
[  107.204265][ T8041] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1544'.
[  107.234509][ T8042] loop0: detected capacity change from 0 to 1024
[  107.241618][ T8042] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.252756][ T8042] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  107.261887][ T8042] EXT4-fs (loop0): orphan cleanup on readonly fs
[  107.268531][ T8042] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #3: comm syz.0.1543: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  107.288224][ T8042] EXT4-fs (loop0): Remounting filesystem read-only
[  107.294787][ T8042] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  107.309556][ T8042] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  107.316555][ T8042] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  107.329077][ T8042] SELinux: (dev loop0, type ext4) getxattr errno 5
[  107.338001][ T8042] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.422231][ T8051] FAULT_INJECTION: forcing a failure.
[  107.422231][ T8051] name failslab, interval 1, probability 0, space 0, times 0
[  107.434914][ T8051] CPU: 0 UID: 0 PID: 8051 Comm: syz.2.1546 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  107.445756][ T8051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  107.455976][ T8051] Call Trace:
[  107.459359][ T8051]  <TASK>
[  107.462338][ T8051]  dump_stack_lvl+0xf2/0x150
[  107.466956][ T8051]  dump_stack+0x15/0x1a
[  107.471136][ T8051]  should_fail_ex+0x223/0x230
[  107.475845][ T8051]  should_failslab+0x8f/0xb0
[  107.480447][ T8051]  kmem_cache_alloc_noprof+0x52/0x320
[  107.485893][ T8051]  ? skb_clone+0x154/0x1f0
[  107.490331][ T8051]  skb_clone+0x154/0x1f0
[  107.494652][ T8051]  nfnetlink_rcv+0x2de/0x15d0
[  107.499341][ T8051]  ? xas_load+0x3ae/0x3d0
[  107.503762][ T8051]  ? xas_load+0x3ae/0x3d0
[  107.508186][ T8051]  ? __rcu_read_unlock+0x4e/0x70
[  107.513204][ T8051]  ? xa_load+0xb9/0xe0
[  107.517347][ T8051]  ? memcg_list_lru_alloc+0xce/0x4e0
[  107.522640][ T8051]  ? should_fail_ex+0x31/0x230
[  107.527422][ T8051]  ? __rcu_read_unlock+0x4e/0x70
[  107.532477][ T8051]  ? avc_has_perm_noaudit+0x1cc/0x210
[  107.537871][ T8051]  ? avc_has_perm+0xd4/0x160
[  107.542502][ T8051]  ? should_fail_ex+0xd7/0x230
[  107.547342][ T8051]  netlink_unicast+0x599/0x670
[  107.552109][ T8051]  netlink_sendmsg+0x5cc/0x6e0
[  107.556891][ T8051]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.562226][ T8051]  __sock_sendmsg+0x140/0x180
[  107.566959][ T8051]  ____sys_sendmsg+0x312/0x410
[  107.571741][ T8051]  __sys_sendmsg+0x19d/0x230
[  107.576365][ T8051]  __x64_sys_sendmsg+0x46/0x50
[  107.581143][ T8051]  x64_sys_call+0x2734/0x2dc0
[  107.585924][ T8051]  do_syscall_64+0xc9/0x1c0
[  107.590518][ T8051]  ? clear_bhb_loop+0x55/0xb0
[  107.595279][ T8051]  ? clear_bhb_loop+0x55/0xb0
[  107.599960][ T8051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.605868][ T8051] RIP: 0033:0x7fb251315d29
[  107.610282][ T8051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.629923][ T8051] RSP: 002b:00007fb24f981038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.638425][ T8051] RAX: ffffffffffffffda RBX: 00007fb251505fa0 RCX: 00007fb251315d29
[  107.646432][ T8051] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  107.654489][ T8051] RBP: 00007fb24f981090 R08: 0000000000000000 R09: 0000000000000000
[  107.662458][ T8051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.670437][ T8051] R13: 0000000000000000 R14: 00007fb251505fa0 R15: 00007ffdf8f04238
[  107.678493][ T8051]  </TASK>
[  107.742236][ T8059] FAULT_INJECTION: forcing a failure.
[  107.742236][ T8059] name failslab, interval 1, probability 0, space 0, times 0
[  107.755097][ T8059] CPU: 1 UID: 0 PID: 8059 Comm: syz.0.1549 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  107.765826][ T8059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  107.775917][ T8059] Call Trace:
[  107.779220][ T8059]  <TASK>
[  107.782181][ T8059]  dump_stack_lvl+0xf2/0x150
[  107.786844][ T8059]  dump_stack+0x15/0x1a
[  107.791198][ T8059]  should_fail_ex+0x223/0x230
[  107.795891][ T8059]  should_failslab+0x8f/0xb0
[  107.800617][ T8059]  kmem_cache_alloc_noprof+0x52/0x320
[  107.806000][ T8059]  ? skb_clone+0x154/0x1f0
[  107.810427][ T8059]  skb_clone+0x154/0x1f0
[  107.814680][ T8059]  __netlink_deliver_tap+0x2bd/0x4f0
[  107.820007][ T8059]  netlink_unicast+0x64a/0x670
[  107.824785][ T8059]  netlink_sendmsg+0x5cc/0x6e0
[  107.829599][ T8059]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.835023][ T8059]  __sock_sendmsg+0x140/0x180
[  107.839733][ T8059]  ____sys_sendmsg+0x312/0x410
[  107.844580][ T8059]  __sys_sendmsg+0x19d/0x230
[  107.849202][ T8059]  __x64_sys_sendmsg+0x46/0x50
[  107.853975][ T8059]  x64_sys_call+0x2734/0x2dc0
[  107.858660][ T8059]  do_syscall_64+0xc9/0x1c0
[  107.863168][ T8059]  ? clear_bhb_loop+0x55/0xb0
[  107.867876][ T8059]  ? clear_bhb_loop+0x55/0xb0
[  107.872563][ T8059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.878477][ T8059] RIP: 0033:0x7faa17c25d29
[  107.882900][ T8059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.902516][ T8059] RSP: 002b:00007faa16291038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.910937][ T8059] RAX: ffffffffffffffda RBX: 00007faa17e15fa0 RCX: 00007faa17c25d29
[  107.918914][ T8059] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  107.926896][ T8059] RBP: 00007faa16291090 R08: 0000000000000000 R09: 0000000000000000
[  107.934866][ T8059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.942870][ T8059] R13: 0000000000000000 R14: 00007faa17e15fa0 R15: 00007ffe47ec95f8
[  107.950898][ T8059]  </TASK>
[  108.016516][ T8064] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1555'.
[  108.020003][ T8069] loop4: detected capacity change from 0 to 1024
[  108.025527][ T8064] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1555'.
[  108.032252][ T8069] EXT4-fs: Ignoring removed nobh option
[  108.046449][ T8069] EXT4-fs: Ignoring removed bh option
[  108.060164][ T8065] loop1: detected capacity change from 0 to 512
[  108.077345][ T8065] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  108.093890][ T8065] EXT4-fs (loop1): invalid journal inode
[  108.101975][ T8073] loop0: detected capacity change from 0 to 1024
[  108.104000][ T8065] EXT4-fs (loop1): can't get journal size
[  108.109160][ T8073] EXT4-fs: Ignoring removed nobh option
[  108.119751][ T8073] EXT4-fs: Ignoring removed bh option
[  108.120821][ T8069] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.126536][ T8078] netlink: 'syz.2.1560': attribute type 4 has an invalid length.
[  108.146560][ T8065] EXT4-fs (loop1): failed to initialize system zone (-117)
[  108.153851][ T8065] EXT4-fs (loop1): mount failed
[  108.160846][ T8069] netlink: 'syz.4.1558': attribute type 4 has an invalid length.
[  108.168907][ T8069] netlink: 'syz.4.1558': attribute type 4 has an invalid length.
[  108.186783][ T8073] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.200190][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.221310][ T8085] bpf_get_probe_write_proto: 2 callbacks suppressed
[  108.221329][ T8085] syz.2.1563[8085] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.228334][ T8085] syz.2.1563[8085] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.233881][ T8073] netlink: 'syz.0.1559': attribute type 4 has an invalid length.
[  108.240036][ T8085] syz.2.1563[8085] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.261925][ T8085] siw: device registration error -23
[  108.267478][ T8073] netlink: 'syz.0.1559': attribute type 4 has an invalid length.
[  108.304535][ T8085] loop2: detected capacity change from 0 to 256
[  108.311561][ T8085] vfat: Unknown parameter 'PL'
[  108.327425][ T8093] lo speed is unknown, defaulting to 1000
[  108.332107][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.351763][ T8096] netlink: 108 bytes leftover after parsing attributes in process `syz.2.1567'.
[  108.361067][ T8096] netlink: 108 bytes leftover after parsing attributes in process `syz.2.1567'.
[  108.475933][   T29] kauditd_printk_skb: 305 callbacks suppressed
[  108.475951][   T29] audit: type=1400 audit(1734823919.101:5724): avc:  denied  { create } for  pid=8113 comm="syz.0.1571" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  108.491153][ T8117] netlink: 'syz.1.1573': attribute type 4 has an invalid length.
[  108.516501][ T8118] loop2: detected capacity change from 0 to 1024
[  108.522934][   T29] audit: type=1400 audit(1734823919.131:5725): avc:  denied  { connect } for  pid=8113 comm="syz.0.1571" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  108.543518][ T8118] EXT4-fs: Ignoring removed nobh option
[  108.549162][ T8118] EXT4-fs: Ignoring removed bh option
[  108.562428][   T29] audit: type=1326 audit(1734823919.181:5726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[  108.568538][ T8125] FAULT_INJECTION: forcing a failure.
[  108.568538][ T8125] name failslab, interval 1, probability 0, space 0, times 0
[  108.585972][   T29] audit: type=1326 audit(1734823919.181:5727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[  108.598532][ T8125] CPU: 1 UID: 0 PID: 8125 Comm: syz.1.1575 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  108.598564][ T8125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  108.625067][   T29] audit: type=1326 audit(1734823919.251:5728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[  108.632633][ T8125] Call Trace:
[  108.632642][ T8125]  <TASK>
[  108.632668][ T8125]  dump_stack_lvl+0xf2/0x150
[  108.632781][ T8125]  dump_stack+0x15/0x1a
[  108.660121][   T29] audit: type=1326 audit(1734823919.251:5729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[  108.666313][ T8125]  should_fail_ex+0x223/0x230
[  108.666369][ T8125]  should_failslab+0x8f/0xb0
[  108.669658][   T29] audit: type=1326 audit(1734823919.271:5730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[  108.672572][ T8125]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  108.677181][   T29] audit: type=1326 audit(1734823919.271:5731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[  108.681289][ T8125]  ? shmem_alloc_inode+0x34/0x50
[  108.705133][   T29] audit: type=1326 audit(1734823919.281:5732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[  108.709714][ T8125]  shmem_alloc_inode+0x34/0x50
[  108.714305][   T29] audit: type=1326 audit(1734823919.281:5733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa17c25d29 code=0x7ffc0000
[  108.737613][ T8125]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  108.737644][ T8125]  alloc_inode+0x3c/0x160
[  108.737681][ T8125]  new_inode+0x1e/0x100
[  108.737700][ T8125]  shmem_get_inode+0x24e/0x730
[  108.759185][ T8118] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.766910][ T8125]  __shmem_file_setup+0x127/0x1f0
[  108.766949][ T8125]  shmem_file_setup+0x3b/0x50
[  108.829650][ T8128] netlink: 'syz.2.1572': attribute type 4 has an invalid length.
[  108.833151][ T8125]  __se_sys_memfd_create+0x31d/0x5c0
[  108.877447][ T8125]  __x64_sys_memfd_create+0x31/0x40
[  108.882709][ T8125]  x64_sys_call+0x2d4c/0x2dc0
[  108.887474][ T8125]  do_syscall_64+0xc9/0x1c0
[  108.891980][ T8125]  ? clear_bhb_loop+0x55/0xb0
[  108.896747][ T8125]  ? clear_bhb_loop+0x55/0xb0
[  108.901444][ T8125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.907468][ T8125] RIP: 0033:0x7fcecb845d29
[  108.911875][ T8125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.931571][ T8125] RSP: 002b:00007fcec9eb6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  108.940074][ T8125] RAX: ffffffffffffffda RBX: 0000000000000468 RCX: 00007fcecb845d29
[  108.948504][ T8125] RDX: 00007fcec9eb6ef0 RSI: 0000000000000000 RDI: 00007fcecb8c2409
[  108.956508][ T8125] RBP: 00000000200004c0 R08: 00007fcec9eb6bb7 R09: 00007fcec9eb6e40
[  108.964545][ T8125] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000480
[  108.972582][ T8125] R13: 00007fcec9eb6ef0 R14: 00007fcec9eb6eb0 R15: 0000000020000140
[  108.980561][ T8125]  </TASK>
[  109.035459][ T8134] lo speed is unknown, defaulting to 1000
[  109.055541][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.087819][ T8134] loop0: detected capacity change from 0 to 1024
[  109.099785][ T8134] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  109.142081][ T8134] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  109.190042][ T8134] EXT4-fs (loop0): orphan cleanup on readonly fs
[  109.214040][ T8134] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #3: comm syz.0.1576: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  109.258784][ T8150] lo speed is unknown, defaulting to 1000
[  109.291908][ T8134] EXT4-fs (loop0): Remounting filesystem read-only
[  109.298647][ T8134] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  109.300461][ T8154] lo speed is unknown, defaulting to 1000
[  109.313346][ T8134] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  109.339405][ T8134] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  109.354594][ T8134] SELinux: (dev loop0, type ext4) getxattr errno 5
[  109.370946][ T8134] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.444112][ T8162] loop3: detected capacity change from 0 to 1024
[  109.475595][ T8162] EXT4-fs: Ignoring removed nobh option
[  109.481220][ T8162] EXT4-fs: Ignoring removed bh option
[  109.499284][ T8165] x_tables: duplicate underflow at hook 1
[  109.528445][ T8162] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.531510][ T8165] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  109.589995][ T8169] syz.2.1591[8169] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.590177][ T8169] syz.2.1591[8169] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.640296][ T8169] syz.2.1591[8169] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.689775][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.705481][ T8174] siw: device registration error -23
[  109.788557][ T8174] loop2: detected capacity change from 0 to 256
[  109.808033][ T8174] vfat: Unknown parameter 'PL'
[  109.993057][ T8189] lo speed is unknown, defaulting to 1000
[  110.097607][ T8196] lo speed is unknown, defaulting to 1000
[  110.108528][ T8199] FAULT_INJECTION: forcing a failure.
[  110.108528][ T8199] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.121672][ T8199] CPU: 0 UID: 0 PID: 8199 Comm: syz.2.1601 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  110.132466][ T8199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  110.142647][ T8199] Call Trace:
[  110.145983][ T8199]  <TASK>
[  110.148965][ T8199]  dump_stack_lvl+0xf2/0x150
[  110.153673][ T8199]  dump_stack+0x15/0x1a
[  110.157852][ T8199]  should_fail_ex+0x223/0x230
[  110.162563][ T8199]  should_fail+0xb/0x10
[  110.166748][ T8199]  should_fail_usercopy+0x1a/0x20
[  110.171847][ T8199]  strncpy_from_user+0x25/0x210
[  110.176764][ T8199]  ? kstrtouint_from_user+0xb0/0xe0
[  110.182104][ T8199]  ? rtw8822c_cfo_track+0x670/0x680
[  110.187356][ T8199]  path_setxattrat+0xed/0x310
[  110.192138][ T8199]  __x64_sys_lsetxattr+0x71/0x90
[  110.197235][ T8199]  x64_sys_call+0x29c8/0x2dc0
[  110.201937][ T8199]  do_syscall_64+0xc9/0x1c0
[  110.206479][ T8199]  ? clear_bhb_loop+0x55/0xb0
[  110.211193][ T8199]  ? clear_bhb_loop+0x55/0xb0
[  110.215902][ T8199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.221943][ T8199] RIP: 0033:0x7fb251315d29
[  110.226388][ T8199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.246114][ T8199] RSP: 002b:00007fb24f981038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  110.254566][ T8199] RAX: ffffffffffffffda RBX: 00007fb251505fa0 RCX: 00007fb251315d29
[  110.262587][ T8199] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000020000080
[  110.270660][ T8199] RBP: 00007fb24f981090 R08: 0000000000000000 R09: 0000000000000000
[  110.278650][ T8199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.286689][ T8199] R13: 0000000000000000 R14: 00007fb251505fa0 R15: 00007ffdf8f04238
[  110.294711][ T8199]  </TASK>
[  110.390602][ T8214] loop4: detected capacity change from 0 to 1024
[  110.431917][ T8214] EXT4-fs: Ignoring removed nobh option
[  110.437599][ T8214] EXT4-fs: Ignoring removed bh option
[  110.460719][ T8224] loop0: detected capacity change from 0 to 1024
[  110.476470][ T8224] EXT4-fs: Ignoring removed nobh option
[  110.482095][ T8224] EXT4-fs: Ignoring removed bh option
[  110.507855][ T8224] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.521909][ T8214] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.544142][ T8235] bridge0: port 3(vlan2) entered blocking state
[  110.550510][ T8235] bridge0: port 3(vlan2) entered disabled state
[  110.603314][ T8235] vlan2: entered allmulticast mode
[  110.621868][ T8235] vlan2: left allmulticast mode
[  110.633192][ T8234] bridge0: port 3(vlan2) entered blocking state
[  110.639583][ T8234] bridge0: port 3(vlan2) entered disabled state
[  110.650797][ T8234] vlan2: entered allmulticast mode
[  110.664114][ T8234] vlan2: left allmulticast mode
[  110.689857][ T8238] lo speed is unknown, defaulting to 1000
[  110.705130][ T8224] validate_nla: 8 callbacks suppressed
[  110.705145][ T8224] netlink: '+}[@': attribute type 4 has an invalid length.
[  110.754380][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.798567][ T8247] __nla_validate_parse: 14 callbacks suppressed
[  110.798627][ T8247] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1618'.
[  110.820058][ T8247] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1618'.
[  110.830312][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.877732][ T8252] netlink: 'syz.1.1621': attribute type 4 has an invalid length.
[  110.910992][ T8257] loop4: detected capacity change from 0 to 512
[  110.934409][ T8256] loop0: detected capacity change from 0 to 2048
[  110.970927][ T8257] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1617: invalid indirect mapped block 256 (level 2)
[  111.000002][ T8267] loop0: detected capacity change from 0 to 512
[  111.009550][ T8263] loop2: detected capacity change from 0 to 512
[  111.037760][ T8269] loop3: detected capacity change from 0 to 1024
[  111.063585][ T8267] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1626: invalid indirect mapped block 256 (level 2)
[  111.078576][ T8269] EXT4-fs: Ignoring removed nobh option
[  111.084170][ T8269] EXT4-fs: Ignoring removed bh option
[  111.090852][ T8263] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  111.114776][ T8267] EXT4-fs (loop0): 2 truncates cleaned up
[  111.122589][ T8263] EXT4-fs (loop2): invalid journal inode
[  111.132511][ T8267] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.146860][ T8263] EXT4-fs (loop2): can't get journal size
[  111.172212][ T8272] lo speed is unknown, defaulting to 1000
[  111.179639][ T8263] EXT4-fs (loop2): failed to initialize system zone (-117)
[  111.187115][ T8257] EXT4-fs (loop4): 2 truncates cleaned up
[  111.193432][ T8257] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.214469][ T8263] EXT4-fs (loop2): mount failed
[  111.220118][ T8269] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.253240][ T8267] FAULT_INJECTION: forcing a failure.
[  111.253240][ T8267] name failslab, interval 1, probability 0, space 0, times 0
[  111.266032][ T8267] CPU: 1 UID: 0 PID: 8267 Comm: syz.0.1626 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  111.276771][ T8267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  111.286943][ T8267] Call Trace:
[  111.290237][ T8267]  <TASK>
[  111.293242][ T8267]  dump_stack_lvl+0xf2/0x150
[  111.297867][ T8267]  dump_stack+0x15/0x1a
[  111.302055][ T8267]  should_fail_ex+0x223/0x230
[  111.306841][ T8267]  should_failslab+0x8f/0xb0
[  111.311452][ T8267]  kmem_cache_alloc_noprof+0x52/0x320
[  111.316844][ T8267]  ? getname_flags+0x81/0x3b0
[  111.321994][ T8267]  getname_flags+0x81/0x3b0
[  111.326523][ T8267]  __x64_sys_symlink+0x40/0x60
[  111.331324][ T8267]  x64_sys_call+0x28b0/0x2dc0
[  111.336040][ T8267]  do_syscall_64+0xc9/0x1c0
[  111.340564][ T8267]  ? clear_bhb_loop+0x55/0xb0
[  111.344468][ T8269] netlink: '+}[@': attribute type 4 has an invalid length.
[  111.345256][ T8267]  ? clear_bhb_loop+0x55/0xb0
[  111.345289][ T8267]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.359544][ T8279] EXT4-fs error (device loop4): ext4_check_all_de:656: inode #12: block 7: comm syz.4.1617: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4278190093, rec_len=255, size=124 fake=0
[  111.363046][ T8267] RIP: 0033:0x7faa17c25d29
[  111.363066][ T8267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.363089][ T8267] RSP: 002b:00007faa16291038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  111.363110][ T8267] RAX: ffffffffffffffda RBX: 00007faa17e15fa0 RCX: 00007faa17c25d29
[  111.363124][ T8267] RDX: 0000000000000000 RSI: 0000000020000cc0 RDI: 0000000020000dc0
[  111.396716][ T8281] netlink: 'syz.3.1627': attribute type 4 has an invalid length.
[  111.405886][ T8267] RBP: 00007faa16291090 R08: 0000000000000000 R09: 0000000000000000
[  111.405906][ T8267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.454176][ T8267] R13: 0000000000000000 R14: 00007faa17e15fa0 R15: 00007ffe47ec95f8
[  111.462182][ T8267]  </TASK>
[  111.504518][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.519766][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.623348][ T8300] netlink: 'syz.2.1636': attribute type 4 has an invalid length.
[  111.683802][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.696231][ T8307] FAULT_INJECTION: forcing a failure.
[  111.696231][ T8307] name failslab, interval 1, probability 0, space 0, times 0
[  111.703072][ T8306] FAULT_INJECTION: forcing a failure.
[  111.703072][ T8306] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.708859][ T8307] CPU: 1 UID: 0 PID: 8307 Comm: syz.1.1637 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  111.732538][ T8307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  111.742599][ T8307] Call Trace:
[  111.745887][ T8307]  <TASK>
[  111.748838][ T8307]  dump_stack_lvl+0xf2/0x150
[  111.753457][ T8307]  dump_stack+0x15/0x1a
[  111.757659][ T8307]  should_fail_ex+0x223/0x230
[  111.762357][ T8307]  ? alloc_netdev_mqs+0x83c/0x9c0
[  111.767471][ T8307]  should_failslab+0x8f/0xb0
[  111.772081][ T8307]  __kmalloc_cache_noprof+0x4e/0x320
[  111.777375][ T8307]  ? __xdp_rxq_info_reg+0x163/0x180
[  111.782588][ T8307]  alloc_netdev_mqs+0x83c/0x9c0
[  111.787478][ T8307]  rtnl_create_link+0x233/0x680
[  111.792376][ T8307]  rtnl_newlink_create+0x133/0x5d0
[  111.797502][ T8307]  ? ns_capable+0x7d/0xb0
[  111.801848][ T8307]  ? netlink_ns_capable+0x88/0xa0
[  111.806933][ T8307]  rtnl_newlink+0xe9f/0x1250
[  111.811560][ T8307]  ? bpf_probe_read_kernel+0x49/0x70
[  111.816860][ T8307]  ? __rcu_read_unlock+0x34/0x70
[  111.821845][ T8307]  ? bpf_trace_run3+0x12b/0x1d0
[  111.826713][ T8307]  ? __memcg_slab_free_hook+0xc9/0x1e0
[  111.832200][ T8307]  ? __rcu_read_unlock+0x4e/0x70
[  111.837211][ T8307]  ? avc_has_perm_noaudit+0x1cc/0x210
[  111.842605][ T8307]  ? selinux_capable+0x1f2/0x260
[  111.847629][ T8307]  ? security_capable+0x81/0x90
[  111.853093][ T8307]  ? ns_capable+0x7d/0xb0
[  111.857438][ T8307]  ? __pfx_rtnl_newlink+0x10/0x10
[  111.862475][ T8307]  rtnetlink_rcv_msg+0x651/0x710
[  111.867524][ T8307]  ? ref_tracker_free+0x3a5/0x410
[  111.872554][ T8307]  ? __dev_queue_xmit+0x186/0x2090
[  111.877766][ T8307]  netlink_rcv_skb+0x12c/0x230
[  111.882540][ T8307]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  111.888032][ T8307]  rtnetlink_rcv+0x1c/0x30
[  111.892452][ T8307]  netlink_unicast+0x599/0x670
[  111.897290][ T8307]  netlink_sendmsg+0x5cc/0x6e0
[  111.902068][ T8307]  ? __pfx_netlink_sendmsg+0x10/0x10
[  111.907366][ T8307]  __sock_sendmsg+0x140/0x180
[  111.912122][ T8307]  ____sys_sendmsg+0x312/0x410
[  111.916925][ T8307]  __sys_sendmsg+0x19d/0x230
[  111.921541][ T8307]  __x64_sys_sendmsg+0x46/0x50
[  111.926319][ T8307]  x64_sys_call+0x2734/0x2dc0
[  111.931130][ T8307]  do_syscall_64+0xc9/0x1c0
[  111.935709][ T8307]  ? clear_bhb_loop+0x55/0xb0
[  111.940455][ T8307]  ? clear_bhb_loop+0x55/0xb0
[  111.945149][ T8307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.951074][ T8307] RIP: 0033:0x7fcecb845d29
[  111.955564][ T8307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.975194][ T8307] RSP: 002b:00007fcec9e96038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  111.983616][ T8307] RAX: ffffffffffffffda RBX: 00007fcecba36080 RCX: 00007fcecb845d29
[  111.991617][ T8307] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006
[  111.999591][ T8307] RBP: 00007fcec9e96090 R08: 0000000000000000 R09: 0000000000000000
[  112.007622][ T8307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  112.015598][ T8307] R13: 0000000000000001 R14: 00007fcecba36080 R15: 00007ffe47a1b158
[  112.023582][ T8307]  </TASK>
[  112.026609][ T8306] CPU: 0 UID: 0 PID: 8306 Comm: syz.4.1639 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  112.037329][ T8306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  112.047403][ T8306] Call Trace:
[  112.050699][ T8306]  <TASK>
[  112.053657][ T8306]  dump_stack_lvl+0xf2/0x150
[  112.058357][ T8306]  dump_stack+0x15/0x1a
[  112.062571][ T8306]  should_fail_ex+0x223/0x230
[  112.067277][ T8306]  should_fail+0xb/0x10
[  112.071510][ T8306]  should_fail_usercopy+0x1a/0x20
[  112.076575][ T8306]  _copy_from_user+0x1e/0xb0
[  112.081197][ T8306]  copy_msghdr_from_user+0x54/0x2a0
[  112.086431][ T8306]  ? __fget_files+0x17c/0x1c0
[  112.091202][ T8306]  __sys_sendmsg+0x13e/0x230
[  112.095902][ T8306]  __x64_sys_sendmsg+0x46/0x50
[  112.100697][ T8306]  x64_sys_call+0x2734/0x2dc0
[  112.104155][ T8312] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1642'.
[  112.105431][ T8306]  do_syscall_64+0xc9/0x1c0
[  112.118807][ T8306]  ? clear_bhb_loop+0x55/0xb0
[  112.123509][ T8306]  ? clear_bhb_loop+0x55/0xb0
[  112.128284][ T8306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.134220][ T8306] RIP: 0033:0x7f1809c25d29
[  112.138662][ T8306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.158386][ T8306] RSP: 002b:00007f1808297038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  112.166920][ T8306] RAX: ffffffffffffffda RBX: 00007f1809e15fa0 RCX: 00007f1809c25d29
[  112.174930][ T8306] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  112.183053][ T8306] RBP: 00007f1808297090 R08: 0000000000000000 R09: 0000000000000000
[  112.191192][ T8306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.199181][ T8306] R13: 0000000000000000 R14: 00007f1809e15fa0 R15: 00007ffe9e4b4ea8
[  112.207179][ T8306]  </TASK>
[  112.230484][ T8312] veth0_virt_wifi: entered promiscuous mode
[  112.247466][ T8312] veth0_virt_wifi: left promiscuous mode
[  112.251526][ T8320] loop0: detected capacity change from 0 to 512
[  112.261865][ T8320] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  112.271568][ T8320] EXT4-fs (loop0): invalid journal inode
[  112.278515][ T8320] EXT4-fs (loop0): can't get journal size
[  112.284484][ T8314] loop2: detected capacity change from 0 to 512
[  112.302165][ T8320] EXT4-fs (loop0): failed to initialize system zone (-117)
[  112.309492][ T8320] EXT4-fs (loop0): mount failed
[  112.350991][ T8328] loop3: detected capacity change from 0 to 2048
[  112.363718][ T8331] syz.2.1647[8331] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.363865][ T8331] syz.2.1647[8331] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.378706][ T8331] syz.2.1647[8331] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.393295][ T8331] siw: device registration error -23
[  112.432661][ T8339] netlink: 'syz.1.1651': attribute type 4 has an invalid length.
[  112.477945][ T8331] loop2: detected capacity change from 0 to 256
[  112.490326][ T8331] vfat: Unknown parameter 'PL'
[  112.497001][ T8350] loop0: detected capacity change from 0 to 512
[  112.513101][ T8350] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.531602][ T8350] ext4 filesystem being mounted at /343/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.579014][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.584071][ T8359] FAULT_INJECTION: forcing a failure.
[  112.584071][ T8359] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  112.601379][ T8359] CPU: 0 UID: 0 PID: 8359 Comm: syz.2.1658 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  112.612083][ T8359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  112.622180][ T8359] Call Trace:
[  112.625455][ T8359]  <TASK>
[  112.628391][ T8359]  dump_stack_lvl+0xf2/0x150
[  112.633107][ T8359]  dump_stack+0x15/0x1a
[  112.637273][ T8359]  should_fail_ex+0x223/0x230
[  112.641955][ T8359]  should_fail_alloc_page+0xfd/0x110
[  112.647299][ T8359]  __alloc_pages_noprof+0x109/0x340
[  112.652511][ T8359]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  112.657963][ T8359]  alloc_pages_noprof+0xe1/0x100
[  112.662921][ T8359]  pte_alloc_one+0x31/0x110
[  112.667483][ T8359]  __pte_alloc+0x33/0x2a0
[  112.671824][ T8359]  handle_mm_fault+0x1b4a/0x2ac0
[  112.676771][ T8359]  exc_page_fault+0x296/0x650
[  112.681473][ T8359]  asm_exc_page_fault+0x26/0x30
[  112.686416][ T8359] RIP: 0010:rep_movs_alternative+0x13/0x70
[  112.692227][ T8359] Code: cc cc cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f
[  112.711947][ T8359] RSP: 0018:ffffc90001747d30 EFLAGS: 00050202
[  112.718020][ T8359] RAX: ffff88810311cc78 RBX: 0000000020000180 RCX: 0000000000000004
[  112.725990][ T8359] RDX: 0000000000000001 RSI: 0000000020000180 RDI: ffffc90001747dac
[  112.733986][ T8359] RBP: 0000000000000000 R08: 0000000080000000 R09: 0000000000000000
[  112.741990][ T8359] R10: 0001c90001747dac R11: 0001c90001747daf R12: 0000000020000180
[  112.749968][ T8359] R13: ffff888108559340 R14: ffffc90001747dac R15: 0000000000000004
[  112.757947][ T8359]  _copy_from_user+0x73/0xb0
[  112.762548][ T8359]  do_ip_setsockopt+0x2e7/0x2340
[  112.767596][ T8359]  ip_setsockopt+0x63/0x100
[  112.772109][ T8359]  udp_setsockopt+0x95/0xb0
[  112.776654][ T8359]  sock_common_setsockopt+0x64/0x80
[  112.781870][ T8359]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  112.787793][ T8359]  __sys_setsockopt+0x187/0x200
[  112.792732][ T8359]  __x64_sys_setsockopt+0x66/0x80
[  112.797857][ T8359]  x64_sys_call+0x282e/0x2dc0
[  112.802553][ T8359]  do_syscall_64+0xc9/0x1c0
[  112.807122][ T8359]  ? clear_bhb_loop+0x55/0xb0
[  112.811880][ T8359]  ? clear_bhb_loop+0x55/0xb0
[  112.816557][ T8359]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.822470][ T8359] RIP: 0033:0x7fb251315d29
[  112.826935][ T8359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.846563][ T8359] RSP: 002b:00007fb24f981038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  112.854996][ T8359] RAX: ffffffffffffffda RBX: 00007fb251505fa0 RCX: 00007fb251315d29
[  112.863037][ T8359] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[  112.871044][ T8359] RBP: 00007fb24f981090 R08: 0000000000000004 R09: 0000000000000000
[  112.879047][ T8359] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000001
[  112.887052][ T8359] R13: 0000000000000000 R14: 00007fb251505fa0 R15: 00007ffdf8f04238
[  112.895033][ T8359]  </TASK>
[  112.948804][ T8365] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1660'.
[  112.967577][ T8365] bridge2: entered allmulticast mode
[  112.975360][ T8367] lo speed is unknown, defaulting to 1000
[  112.988711][ T8365] loop0: detected capacity change from 0 to 128
[  113.005184][ T8365] EXT4-fs warning (device loop0): ext4_init_metadata_csum:4626: metadata_csum and uninit_bg are redundant flags; please run fsck.
[  113.019764][ T8365] EXT4-fs (loop0): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  113.053124][ T8376] tmpfs: Bad value for 'mpol'
[  113.055323][ T8374] netlink: 'syz.4.1664': attribute type 4 has an invalid length.
[  113.096972][ T8381] FAULT_INJECTION: forcing a failure.
[  113.096972][ T8381] name failslab, interval 1, probability 0, space 0, times 0
[  113.109684][ T8381] CPU: 0 UID: 0 PID: 8381 Comm: syz.4.1668 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  113.120382][ T8381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  113.130501][ T8381] Call Trace:
[  113.133790][ T8381]  <TASK>
[  113.136778][ T8381]  dump_stack_lvl+0xf2/0x150
[  113.141472][ T8381]  dump_stack+0x15/0x1a
[  113.145790][ T8381]  should_fail_ex+0x223/0x230
[  113.150500][ T8381]  should_failslab+0x8f/0xb0
[  113.155249][ T8381]  kmem_cache_alloc_noprof+0x52/0x320
[  113.160669][ T8381]  ? skb_clone+0x154/0x1f0
[  113.165144][ T8381]  skb_clone+0x154/0x1f0
[  113.169441][ T8381]  __netlink_deliver_tap+0x2bd/0x4f0
[  113.174764][ T8381]  netlink_unicast+0x64a/0x670
[  113.179660][ T8381]  netlink_sendmsg+0x5cc/0x6e0
[  113.184466][ T8381]  ? __pfx_netlink_sendmsg+0x10/0x10
[  113.189516][ T8390] $Hÿ: renamed from bond0
[  113.189863][ T8381]  __sock_sendmsg+0x140/0x180
[  113.199062][ T8381]  ____sys_sendmsg+0x312/0x410
[  113.203854][ T8381]  __sys_sendmsg+0x19d/0x230
[  113.208514][ T8381]  __x64_sys_sendmsg+0x46/0x50
[  113.213312][ T8381]  x64_sys_call+0x2734/0x2dc0
[  113.218063][ T8381]  do_syscall_64+0xc9/0x1c0
[  113.222697][ T8381]  ? clear_bhb_loop+0x55/0xb0
[  113.227383][ T8381]  ? clear_bhb_loop+0x55/0xb0
[  113.232063][ T8381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.237994][ T8381] RIP: 0033:0x7f1809c25d29
[  113.242405][ T8381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.262037][ T8381] RSP: 002b:00007f1808297038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  113.270490][ T8381] RAX: ffffffffffffffda RBX: 00007f1809e15fa0 RCX: 00007f1809c25d29
[  113.278477][ T8381] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003
[  113.286571][ T8381] RBP: 00007f1808297090 R08: 0000000000000000 R09: 0000000000000000
[  113.294591][ T8381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.302598][ T8381] R13: 0000000000000000 R14: 00007f1809e15fa0 R15: 00007ffe9e4b4ea8
[  113.310601][ T8381]  </TASK>
[  113.321540][ T8390] $Hÿ: entered promiscuous mode
[  113.326699][ T8390] bond_slave_0: entered promiscuous mode
[  113.332460][ T8390] bond_slave_1: entered promiscuous mode
[  113.429042][ T8410] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1680'.
[  113.438388][ T8410] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1680'.
[  113.452382][ T8406] lo speed is unknown, defaulting to 1000
[  113.513551][   T29] kauditd_printk_skb: 127 callbacks suppressed
[  113.513639][   T29] audit: type=1400 audit(1734823924.131:5861): avc:  denied  { bind } for  pid=8415 comm="syz.0.1682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  113.570303][ T8424] FAULT_INJECTION: forcing a failure.
[  113.570303][ T8424] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.583446][ T8424] CPU: 0 UID: 0 PID: 8424 Comm: syz.2.1686 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  113.594139][ T8424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  113.604284][ T8424] Call Trace:
[  113.607577][ T8424]  <TASK>
[  113.610538][ T8424]  dump_stack_lvl+0xf2/0x150
[  113.615189][ T8424]  dump_stack+0x15/0x1a
[  113.619507][ T8424]  should_fail_ex+0x223/0x230
[  113.624201][ T8424]  should_fail+0xb/0x10
[  113.628366][ T8424]  should_fail_usercopy+0x1a/0x20
[  113.633431][ T8424]  _copy_from_user+0x1e/0xb0
[  113.638090][ T8424]  kstrtouint_from_user+0x76/0xe0
[  113.643123][ T8424]  ? htab_map_hash+0x15a/0x1d0
[  113.647940][ T8424]  ? 0xffffffff81000000
[  113.652097][ T8424]  ? selinux_file_permission+0x22a/0x360
[  113.657857][ T8424]  proc_fail_nth_write+0x4f/0x150
[  113.662894][ T8424]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  113.668581][ T8424]  vfs_write+0x281/0x920
[  113.672959][ T8424]  ? __fget_files+0x17c/0x1c0
[  113.677661][ T8424]  ksys_write+0xe8/0x1b0
[  113.681917][ T8424]  __x64_sys_write+0x42/0x50
[  113.686530][ T8424]  x64_sys_call+0x287e/0x2dc0
[  113.691247][ T8424]  do_syscall_64+0xc9/0x1c0
[  113.695810][ T8424]  ? clear_bhb_loop+0x55/0xb0
[  113.700552][ T8424]  ? clear_bhb_loop+0x55/0xb0
[  113.705236][ T8424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.711230][ T8424] RIP: 0033:0x7fb2513147df
[  113.715643][ T8424] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  113.735346][ T8424] RSP: 002b:00007fb24f981030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  113.743765][ T8424] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb2513147df
[  113.751809][ T8424] RDX: 0000000000000001 RSI: 00007fb24f9810a0 RDI: 0000000000000004
[  113.759786][ T8424] RBP: 00007fb24f981090 R08: 0000000000000000 R09: 0000000000000000
[  113.767778][ T8424] R10: 000000000000005a R11: 0000000000000293 R12: 0000000000000001
[  113.775866][ T8424] R13: 0000000000000000 R14: 00007fb251505fa0 R15: 00007ffdf8f04238
[  113.783981][ T8424]  </TASK>
[  113.798064][   T29] audit: type=1326 audit(1734823924.191:5862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8425 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[  113.821682][   T29] audit: type=1326 audit(1734823924.191:5863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8425 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[  113.845173][   T29] audit: type=1326 audit(1734823924.191:5864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8425 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[  113.868797][   T29] audit: type=1326 audit(1734823924.191:5865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8425 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[  113.892505][   T29] audit: type=1326 audit(1734823924.211:5866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8425 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[  113.916051][   T29] audit: type=1326 audit(1734823924.211:5867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8425 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[  113.939462][   T29] audit: type=1326 audit(1734823924.211:5868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8425 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[  113.963084][   T29] audit: type=1326 audit(1734823924.211:5869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8425 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[  113.986715][   T29] audit: type=1326 audit(1734823924.411:5870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8425 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcecb845d29 code=0x7ffc0000
[  114.019316][ T8436] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1692'.
[  114.057428][ T8444] netlink: 'syz.1.1694': attribute type 4 has an invalid length.
[  114.067706][ T8436] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1692'.
[  114.113847][ T8448] FAULT_INJECTION: forcing a failure.
[  114.113847][ T8448] name failslab, interval 1, probability 0, space 0, times 0
[  114.126542][ T8448] CPU: 1 UID: 0 PID: 8448 Comm: syz.2.1698 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  114.130570][ T8450] loop0: detected capacity change from 0 to 1024
[  114.137294][ T8448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  114.137364][ T8448] Call Trace:
[  114.137370][ T8448]  <TASK>
[  114.137377][ T8448]  dump_stack_lvl+0xf2/0x150
[  114.164668][ T8448]  dump_stack+0x15/0x1a
[  114.168982][ T8448]  should_fail_ex+0x223/0x230
[  114.173691][ T8448]  ? audit_log_d_path+0x96/0x250
[  114.178730][ T8448]  should_failslab+0x8f/0xb0
[  114.183418][ T8448]  __kmalloc_cache_noprof+0x4e/0x320
[  114.188794][ T8448]  audit_log_d_path+0x96/0x250
[  114.193622][ T8448]  ? __rcu_read_unlock+0x4e/0x70
[  114.198636][ T8448]  audit_log_d_path_exe+0x42/0x70
[  114.203798][ T8448]  audit_log_task+0x192/0x1c0
[  114.208571][ T8448]  audit_seccomp+0x68/0x130
[  114.213081][ T8448]  __seccomp_filter+0x6fa/0x1180
[  114.218037][ T8448]  ? putname+0xcf/0xf0
[  114.222118][ T8448]  ? __traceiter_kmem_cache_free+0x33/0x50
[  114.227947][ T8448]  ? kmem_cache_free+0xdc/0x2d0
[  114.232879][ T8448]  __secure_computing+0x9f/0x1c0
[  114.237906][ T8448]  syscall_trace_enter+0xd1/0x1f0
[  114.242992][ T8448]  ? fpregs_assert_state_consistent+0x83/0xa0
[  114.249122][ T8448]  do_syscall_64+0xaa/0x1c0
[  114.253629][ T8448]  ? clear_bhb_loop+0x55/0xb0
[  114.258360][ T8448]  ? clear_bhb_loop+0x55/0xb0
[  114.263064][ T8448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.269058][ T8448] RIP: 0033:0x7fb25131473c
[  114.273484][ T8448] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  114.293142][ T8448] RSP: 002b:00007fb24f981030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  114.301568][ T8448] RAX: ffffffffffffffda RBX: 00007fb251505fa0 RCX: 00007fb25131473c
[  114.309553][ T8448] RDX: 000000000000000f RSI: 00007fb24f9810a0 RDI: 000000000000000b
[  114.317538][ T8448] RBP: 00007fb24f981090 R08: 0000000000000000 R09: 0000000000000000
[  114.325522][ T8448] R10: 00000000200001c0 R11: 0000000000000246 R12: 0000000000000002
[  114.333526][ T8448] R13: 0000000000000000 R14: 00007fb251505fa0 R15: 00007ffdf8f04238
[  114.341524][ T8448]  </TASK>
[  114.377709][ T8450] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.399612][ T8454] lo speed is unknown, defaulting to 1000
[  114.421467][ T8451] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1697'.
[  114.427386][ T8462] loop2: detected capacity change from 0 to 2048
[  114.449091][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.464206][ T8462] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.501099][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.513979][ T8470] loop0: detected capacity change from 0 to 2048
[  114.537011][ T8474] netlink: 'syz.3.1707': attribute type 4 has an invalid length.
[  114.545978][ T8470] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.555753][ T8472] syz.4.1706[8472] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.561838][ T8472] syz.4.1706[8472] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.582295][ T8472] syz.4.1706[8472] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.597132][ T8472] siw: device registration error -23
[  114.599132][ T8478] loop2: detected capacity change from 0 to 164
[  114.636153][ T8478] Unable to read rock-ridge attributes
[  114.640252][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.643112][ T8478] Unable to read rock-ridge attributes
[  114.661931][ T8485] loop1: detected capacity change from 0 to 512
[  114.670789][ T8478] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  114.678154][ T8488] loop4: detected capacity change from 0 to 256
[  114.691804][ T8478] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  114.698632][ T8488] vfat: Unknown parameter 'PL'
[  114.704893][ T8485] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.1711: bad orphan inode 15
[  114.719873][ T8485] ext4_test_bit(bit=14, block=18) = 1
[  114.725334][ T8485] is_bad_inode(inode)=0
[  114.729558][ T8485] NEXT_ORPHAN(inode)=1023
[  114.733896][ T8485] max_ino=32
[  114.737147][ T8485] i_nlink=0
[  114.746537][ T8485] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2977: inode #15: comm syz.1.1711: corrupted xattr block 19: bad e_name length
[  114.768201][ T8485] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -117)
[  114.777777][ T8485] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  114.789951][ T8485] ext4 filesystem being mounted at /360/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  114.811634][ T8496] xt_hashlimit: max too large, truncated to 1048576
[  114.818664][ T3299] ==================================================================
[  114.826781][ T3299] BUG: KCSAN: data-race in filemap_flush / xas_set_mark
[  114.833745][ T3299] 
[  114.836097][ T3299] write to 0xffff8881004c11a4 of 4 bytes by task 50 on cpu 1:
[  114.843575][ T3299]  xas_set_mark+0x131/0x150
[  114.848092][ T3299]  __folio_start_writeback+0x1e8/0x430
[  114.853594][ T3299]  __block_write_full_folio+0x506/0x8c0
[  114.859180][ T3299]  block_write_full_folio+0x293/0x2b0
[  114.864592][ T3299]  write_cache_pages+0x62/0x100
[  114.869478][ T3299]  blkdev_writepages+0x59/0x90
[  114.873550][ T8496] loop0: detected capacity change from 0 to 1024
[  114.874255][ T3299]  do_writepages+0x1d8/0x480
[  114.885176][ T3299]  __writeback_single_inode+0x89/0x850
[  114.887637][ T8501] loop3: detected capacity change from 0 to 2048
[  114.890648][ T3299]  writeback_sb_inodes+0x461/0xa30
[  114.897682][ T8496] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  114.902056][ T3299]  __writeback_inodes_wb+0x9a/0x1a0
[  114.917506][ T3299]  wb_writeback+0x274/0x640
[  114.922049][ T3299]  wb_workfn+0x67f/0x940
[  114.926313][ T3299]  process_scheduled_works+0x483/0x9a0
[  114.931792][ T3299]  worker_thread+0x51d/0x6f0
[  114.936396][ T3299]  kthread+0x1d1/0x210
[  114.940470][ T3299]  ret_from_fork+0x4b/0x60
[  114.944894][ T3299]  ret_from_fork_asm+0x1a/0x30
[  114.949674][ T3299] 
[  114.951998][ T3299] read to 0xffff8881004c11a4 of 4 bytes by task 3299 on cpu 0:
[  114.959552][ T3299]  filemap_flush+0x9a/0x120
[  114.964062][ T3299]  sync_blockdev_nowait+0x29/0x40
[  114.969100][ T3299]  sync_filesystem+0xe3/0x190
[  114.973806][ T3299]  generic_shutdown_super+0x46/0x220
[  114.979101][ T3299]  kill_block_super+0x2a/0x70
[  114.983791][ T3299]  ext4_kill_sb+0x44/0x80
[  114.988135][ T3299]  deactivate_locked_super+0x7d/0x1c0
[  114.993520][ T3299]  deactivate_super+0x9f/0xb0
[  114.998208][ T3299]  cleanup_mnt+0x268/0x2e0
[  115.002628][ T3299]  __cleanup_mnt+0x19/0x20
[  115.007049][ T3299]  task_work_run+0x13a/0x1a0
[  115.011649][ T3299]  syscall_exit_to_user_mode+0xa8/0x120
[  115.017227][ T3299]  do_syscall_64+0xd6/0x1c0
[  115.021995][ T3299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.027922][ T3299] 
[  115.030244][ T3299] value changed: 0x02000021 -> 0x04000021
[  115.035971][ T3299] 
[  115.038291][ T3299] Reported by Kernel Concurrency Sanitizer on:
[  115.044471][ T3299] CPU: 0 UID: 0 PID: 3299 Comm: syz-executor Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[  115.055330][ T3299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  115.065389][ T3299] ==================================================================
[  115.080961][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  115.084504][ T8496] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  115.098379][ T8496] EXT4-fs (loop0): orphan cleanup on readonly fs
[  115.105212][ T8496] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #3: comm syz.0.1714: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[  115.121403][ T8504] lo speed is unknown, defaulting to 1000
[  115.124658][ T8496] EXT4-fs error (device loop0): ext4_quota_enable:7115: comm syz.0.1714: Bad quota inode: 3, type: 0
[  115.140599][ T8496] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  115.155411][ T8496] EXT4-fs (loop0): Cannot turn on quotas: error -117