last executing test programs:

2.77946973s ago: executing program 0 (id=1774):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x2e, &(0x7f00000000c0)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x64, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x8000, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x3, 0x0, @void}}}}}}}, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pipe2$9p(&(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x1c1c41, 0x6)
write$P9_RVERSION(r5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r6 = dup(r2)
write$P9_RLERRORu(r6, &(0x7f0000000300)=ANY=[@ANYBLOB="5300000007000046009d40edce82cd28e1e1edab51", @ANYBLOB='Nd'], 0x53)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[], [], 0x6b}})
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x2d)
syz_clone(0x18b24200, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0)
r9 = open(&(0x7f0000000200)='./file0\x00', 0x40080c0, 0xe)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
syz_read_part_table(0x5c9, &(0x7f0000000880)="$eJzs0jFoW0cYAOD/vaKoHYJFCLjQpRCTSUmKOiRQiVKMIrzYIaQhQ+dCMhQSyODBSFUyp8nULSGJDcaL6dBOhi7GMhgb5MnIq+dCvWkwr8h6XmxTCsZ13XzfoNP999/9d/wvONfS+CPLsiQisuJB7Md8JeLxF3+/+9uF+u2Jz+98c/deRBKPImLy2qPfBitJnnFw6i/5fCqfTxQr3bdr47sLpfUrm52x92lEYRC/EBGtwf7W7MjRekl8dfIn8z+yWFsZefb8SePFdO3hVmNmp5DHX918V23eH60+SIfzpfS43dkx39jJ6u+N3prbyKb+fH3xeqHT7VdW87xyctJK/Bct7mUDn2aD/n89s/PmcrvX7k9enX96o3ypt9x8ud/338/6mgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAdgsbYy8uz5k8aL6drDrcbMzpffX6t/9lP9h1c331Wb90erD9Jh3lL679Qf696a28g+jtcXrxc6F/qV1TyvnJxOfc7W4f6/udzutfuTV+ef3ihf6i03XyY/Pz7rOwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA50v99nZE3L0XkcR3ETGelmYH8awYUdo+mj9VHI4TxUr37dr47kJp/cpmZ+z9nTy+lEa04pP9/7/u/04fOuGj4dCKiPT03sU/81cAAAD//xmKiIU=")
fcntl$setlease(r9, 0x400, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r9)

1.880651557s ago: executing program 0 (id=1783):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(r0, 0x0, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f00000000c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e24, 0xfff, @local, 0x9}, {0xa, 0x4e22, 0xd, @loopback, 0x3}, r3, 0x40}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffd, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @empty, 0xfffffffc}, r3}}, 0x48)
r4 = dup2(r2, r2)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r4, &(0x7f00000008c0)={0x16, 0x98, 0xfa00, {0x0, 0x2, r3, 0x10, 0x0, @in={0x2, 0x4e22, @loopback}}}, 0xa0)
r5 = gettid()
timer_create(0xeae0d1814e5870d5, &(0x7f0000533fa0)={0x0, 0x28, 0x4, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
ioperm(0x1, 0x8, 0x9)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r8}, 0x10)
r9 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="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", 0x108, r9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r10, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
fgetxattr(0xffffffffffffffff, &(0x7f00000002c0)=@known='security.selinux\x00', 0x0, 0x0)
r11 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000df0300000000000000000000000000000000000087c8c02327922eadfaf3840aa781b9dd23653a3b7d4fca151d2748c20fe01ed2e1a39e9e0d5702aaa78fa7ad20790c92b8cef9e77a103a96cabb79835f8857311d5250488bb4f38d7213791c3c0f9d119dea026f304db3be5224a060d3295f429aa04f9196f1234729d28543f90ef987d40809cadc62ba438f49f3a9c933a5751c1c6bb3d22ab7e9e3fce1223974e97b2fa5a5d0744f29991212db1050bcaa30e2eb87eb54da39c55e4380ebbee24be76f7f61dd9de560e3ab447dbe16e9064e567021a0ab31c122eb64574f4edd8b881377338bbedf40c54f247ed4144c5e"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000d60000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.491719115s ago: executing program 3 (id=1787):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = syz_io_uring_setup(0x16d2, &(0x7f00000000c0)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="170000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x94, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x485e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x2acc0, 0x0)
pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r6 = dup(r5)
write$P9_RLERRORu(r6, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb6)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1.468120045s ago: executing program 3 (id=1788):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xa0242, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x42)
sendfile(r3, r3, 0x0, 0x80000000)

1.348845494s ago: executing program 4 (id=1789):
r0 = syz_io_uring_setup(0x16d2, &(0x7f00000000c0)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1.282009974s ago: executing program 4 (id=1790):
mmap(&(0x7f0000261000/0xc00000)=nil, 0xc00000, 0x3000003, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000651000/0x4000)=nil, 0x4000, 0x2, &(0x7f0000000000)=0x9, 0x4, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="190000000400000008000000ff"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)

1.258601524s ago: executing program 3 (id=1791):
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x0)

1.245082394s ago: executing program 4 (id=1792):
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000540)={[{@delalloc}, {@data_err_abort}, {@barrier_val}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@oldalloc}, {@dioread_nolock}]}, 0x1, 0x560, &(0x7f0000002240)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000))
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r3, &(0x7f0000000000)="fa", 0xfffffdef)
fchown(r0, 0x0, 0x0)
setgroups(0x1, &(0x7f0000000280)=[0x0])
r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x441, 0x108)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)=""/255, 0xff}], &(0x7f00000002c0)=[0x5]}, 0x20)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="0b00000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffffffffff3900000000000000000000000000000000000000000000000000000000000000000073797a300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000710002000000000001000000f90000000a"], 0x189)
r5 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r5, 0x400, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1000, 0x80)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
unshare(0x62040200)

1.183944814s ago: executing program 3 (id=1793):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd0000001000020004001000080001", 0x53}], 0x1)

1.158018924s ago: executing program 3 (id=1794):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
sendfile(r0, r1, 0x0, 0x8000002b)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000001c0)={0x2, 0x4, 0x8, 0x1, 0x80, r1, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
r3 = inotify_add_watch(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x8c7)
write$binfmt_elf32(r1, &(0x7f0000000080)=ANY=[@ANYRES16, @ANYRES32=r3, @ANYRES8=r3], 0x69)
close(r2)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

991.115563ms ago: executing program 0 (id=1796):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29, <r2=>0xffffffffffffffff}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001c80)={0xffffffffffffffff, 0xe0, &(0x7f0000001b80)={0x0, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000001cc0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000380)=[0x0], &(0x7f00000006c0), <r6=>0x0, 0x59, &(0x7f0000000940)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000001ac0), &(0x7f0000000340), 0x8, 0xeb, 0x8, 0x6, &(0x7f00000009c0)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x6, &(0x7f0000000640)=ANY=[@ANYBLOB="f444caea5c290dd7efbf130b28755b4708ba4473c8b04db03576b9637e83bb71ba5a29cc9391773d", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8a7f0000000000bfa200000000000007020005d6b500f8ffffffb7030000080000ed8592ecb5998ce400850000000100"], &(0x7f0000000240)='GPL\x00', 0x600006, 0x0, 0x0, 0x40f00, 0x0, '\x00', r5, @fallback=0xe, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r7 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000b00)=ANY=[@ANYRESDEC=r4, @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095f7603daf63dd0ea7ff737e369b4ab7f7cd933f33581660c7a0b190e06a4b3b829d10b29500e1603a4bf4"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r9}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r10, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r12=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r10, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000007c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="010002000000000000000f0000000500300000000000080031000700000008000300", @ANYRES32=r12, @ANYBLOB="a29923126653b11db6f1863c82d36689a201f5a7bc91fc9b6266036e1b740e2a4d73f60affecc757b753265ab8dc571056d48331a021c249d7c2099cab44e948638084e13d78a726233157147ad7b7406f7846e9275c095730db4c8bcfb5d85e697bc80a6996e2efdd3e00000000000000b794b08f9dcf6d1a6235f009424fa246d9b362a66cfef4762945a9839fc57130bfe0b992f80416c78a8d412a388a900018c3ec46ed"], 0x2c}}, 0x0)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x50, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r13}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r7, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=@getchain={0x74, 0x66, 0xa00, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r5, {0x1, 0xfff1}, {0x0, 0x4}, {0x10, 0x2}}, [{0x8}, {0x8, 0xb, 0x7}, {0x8, 0xb, 0x4}, {0x8, 0xb, 0x5}, {0x8, 0xb, 0x2}, {0x8, 0xb, 0xfffffffe}, {0x8, 0xb, 0x10001}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0x9}, {0x8, 0xb, 0x87bb}]}, 0x74}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000580)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r14 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file1\x00', 0x18000, &(0x7f0000003a00)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRESOCT, @ANYBLOB="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", @ANYRES32, @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7ffffdbd}]})
statfs(&(0x7f0000000000)='./file1\x00', &(0x7f0000002a00)=""/4096)
r15 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000e4d081c8153a373afe51f2769ef717a206d4c6460763dce23050001424d79c2e0f666ec4d8ae6c5978bc8b080df821b4780d8cbc9dc0382095999bd316412155d5ea5f37125346eaf1f2b508aa543180dc13e4ab21dd8829187028c763a797541f37cd4c1cda0d05", @ANYRES32=r14, @ANYBLOB="0000000000000000b7080000000000007b8af8ff09000000bfa200000200000007020000f877352c8da9e7ffffffb703000008000000b704d10f033b0000850000"], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r15}, 0x10)
setgroups(0x0, 0x0)

906.662603ms ago: executing program 0 (id=1797):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000740)=[@in6={0xa, 0x4e23, 0x6, @empty, 0x8000}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x34000811)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[], 0x1000f)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
bpf$BPF_LINK_CREATE(0x8, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff, 0x16, 0x0, @val=@iter={0x0}}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1a)

763.350652ms ago: executing program 2 (id=1799):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x0, 0x0, 0x9, 0x0, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"]}, 0x298)

671.825572ms ago: executing program 2 (id=1800):
r0 = syz_io_uring_setup(0x16d2, &(0x7f00000000c0)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

639.607172ms ago: executing program 2 (id=1801):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x1})
fcntl$lock(r0, 0x26, &(0x7f0000000040)={0x0, 0x0, 0x5, 0x7})
fcntl$lock(r0, 0x25, &(0x7f00000000c0)={0x1, 0x2, 0x0, 0x80000000})
recvmsg(r0, &(0x7f0000000280)={&(0x7f00000021c0)=@nfc, 0x80, &(0x7f00000001c0), 0x0, &(0x7f0000002340)=""/231, 0xe7}, 0x40010000)
getresgid(&(0x7f0000000140), &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000240)=<r2=>0x0)
accept4(r0, &(0x7f0000002440)=@llc, &(0x7f00000001c0)=0x80, 0x800)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)={0x4c, r4, 0x1, 0x70bd2b, 0x4000, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0xfffffffa}, {0x6}}]}, 0x4c}}, 0x4040000)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000200)='./file0\x00', 0x10814, &(0x7f00000002c0)=ANY=[@ANYBLOB='umask=00000000000000000000000,flush,nodots,dots,gid=', @ANYRESDEC=r2, @ANYRES8=r1, @ANYRES16, @ANYBLOB="1500bba7d41fabba4332de3ca642acf6f8de847e3f21783608008708a887d30aaf0a14b0691d48445fe3b4d1ddde1b81337b2c3b5f88535d7f6fa931b84783704494cebe49ca9f6269b05edde0246c360d0566b4056f0f02ccab035d3d0a5cde0b31bd424949fe23c0a0a25691738006c5c6acdf101fecdb4f79abdfb95c6afaea03dd5903b5240565f31504c207a9a2aa6c8108fb973081e90412a3c6cfa3b2513693727fad9acd8108acb8b90fab033c9dac0dc3e5a61c513e7b5edc5d76320f0e54045ea2b7b8fb1f78d3d346e26ee5ed6926cea1ffe0a1"], 0x1, 0x1fa, &(0x7f0000000500)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r5, 0x2007ffc)

382.638971ms ago: executing program 2 (id=1802):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @broadcast})
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f2f8db0", 0x1b}, {&(0x7f0000000100)="08f2bf2aab80006558", 0x9}], 0x2)

338.63335ms ago: executing program 4 (id=1803):
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x0)

299.99913ms ago: executing program 4 (id=1804):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd0000001000020004001000080001", 0x53}], 0x1)

280.37159ms ago: executing program 4 (id=1805):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(r0, 0x0, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f00000000c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e24, 0xfff, @local, 0x9}, {0xa, 0x4e22, 0xd, @loopback, 0x3}, r3, 0x40}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffd, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @empty, 0xfffffffc}, r3}}, 0x48)
r4 = dup2(r2, r2)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r4, &(0x7f00000008c0)={0x16, 0x98, 0xfa00, {0x0, 0x2, r3, 0x10, 0x0, @in={0x2, 0x4e22, @loopback}}}, 0xa0)
r5 = gettid()
timer_create(0xeae0d1814e5870d5, &(0x7f0000533fa0)={0x0, 0x28, 0x4, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
ioperm(0x1, 0x8, 0x9)

228.55387ms ago: executing program 2 (id=1806):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x1})
fcntl$lock(r0, 0x26, &(0x7f0000000040)={0x0, 0x0, 0x5, 0x7})
fcntl$lock(r0, 0x25, &(0x7f00000000c0)={0x1, 0x2, 0x0, 0x80000000})
recvmsg(r0, &(0x7f0000000280)={&(0x7f00000021c0)=@nfc, 0x80, &(0x7f00000001c0), 0x0, &(0x7f0000002340)=""/231, 0xe7}, 0x40010000)
getresgid(&(0x7f0000000140), &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000240)=<r2=>0x0)
accept4(r0, &(0x7f0000002440)=@llc, &(0x7f00000001c0)=0x80, 0x800)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000140)={0x4c, r4, 0x1, 0x70bd2b, 0x4000, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0xfffffffa}, {0x6}}]}, 0x4c}}, 0x4040000)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000200)='./file0\x00', 0x10814, &(0x7f00000002c0)=ANY=[@ANYBLOB='umask=00000000000000000000000,flush,nodots,dots,gid=', @ANYRESDEC=r2, @ANYRES8=r1, @ANYRES16, @ANYBLOB="1500bba7d41fabba4332de3ca642acf6f8de847e3f21783608008708a887d30aaf0a14b0691d48445fe3b4d1ddde1b81337b2c3b5f88535d7f6fa931b84783704494cebe49ca9f6269b05edde0246c360d0566b4056f0f02ccab035d3d0a5cde0b31bd424949fe23c0a0a25691738006c5c6acdf101fecdb4f79abdfb95c6afaea03dd5903b5240565f31504c207a9a2aa6c8108fb973081e90412a3c6cfa3b2513693727fad9acd8108acb8b90fab033c9dac0dc3e5a61c513e7b5edc5d76320f0e54045ea2b7b8fb1f78d3d346e26ee5ed6926cea1ffe0a1"], 0x1, 0x1fa, &(0x7f0000000500)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r5, 0x2007ffc)

194.0579ms ago: executing program 3 (id=1807):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(r0, 0x0, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f00000000c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e24, 0xfff, @local, 0x9}, {0xa, 0x4e22, 0xd, @loopback, 0x3}, r3, 0x40}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xfffd, 0x0, @empty, 0x4}, {0xa, 0x0, 0x0, @empty, 0xfffffffc}, r3}}, 0x48)
r4 = dup2(r2, r2)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r4, &(0x7f00000008c0)={0x16, 0x98, 0xfa00, {0x0, 0x2, r3, 0x10, 0x0, @in={0x2, 0x4e22, @loopback}}}, 0xa0)
r5 = gettid()
timer_create(0xeae0d1814e5870d5, &(0x7f0000533fa0)={0x0, 0x28, 0x4, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
ioperm(0x1, 0x8, 0x9)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r8}, 0x10)
r9 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="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", 0x108, r9)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r10, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
fgetxattr(0xffffffffffffffff, &(0x7f00000002c0)=@known='security.selinux\x00', 0x0, 0x0)
r11 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000df0300000000000000000000000000000000000087c8c02327922eadfaf3840aa781b9dd23653a3b7d4fca151d2748c20fe01ed2e1a39e9e0d5702aaa78fa7ad20790c92b8cef9e77a103a96cabb79835f8857311d5250488bb4f38d7213791c3c0f9d119dea026f304db3be5224a060d3295f429aa04f9196f1234729d28543f90ef987d40809cadc62ba438f49f3a9c933a5751c1c6bb3d22ab7e9e3fce1223974e97b2fa5a5d0744f29991212db1050bcaa30e2eb87eb54da39c55e4380ebbee24be76f7f61dd9de560e3ab447dbe16e9064e567021a0ab31c122eb64574f4edd8b881377338bbedf40c54f247ed4144c5e"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000d60000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

107.720469ms ago: executing program 1 (id=1809):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000001000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f0000000080)=0x14)
ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f00000000c0)=0x32)
close(r1)

107.53197ms ago: executing program 1 (id=1810):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0xf, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x18}, {{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

76.894399ms ago: executing program 1 (id=1811):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x0, 0x0, 0x9, 0x0, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"]}, 0x298)

76.44962ms ago: executing program 1 (id=1812):
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x4, 0x7, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

30.643689ms ago: executing program 1 (id=1813):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000240)='kfree\x00', r0}, 0x18)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080), r1)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="be90e5a91b4f12abedf217b7de691e2a40020982a5a1d7dfaa1028301a240fdfa82de4a13e4056f61b767f929c58d931a5968cb474de655eded1d541dc11dc07e98c4a03423971eab6362da5e7e16502b44ba004755188e7a5ce06d71a594ac01297d1d39b95c89ad843a8ff59a5b758f83f32503ce2286076083cde6a3702aa9ea0471bfed0063f79df0a70d17a93471a1c6d649f5c8734fb110121ebe40fddeb66cedc6bf553d728ab920d3c25c4fd6062ba56324cb7c2589e4ea405858a7dd42bf6df1c9d58e90b", @ANYRES16=r2, @ANYBLOB="01000000000000000000060000002800070073797374656d5f753a6f626a6563745f723a756465765f7661725f72756e5f743a73300014000300fe8000000000000000400000000000bb140002"], 0x64}, 0x1, 0x0, 0x0, 0x40}, 0x20000040)

30.387169ms ago: executing program 1 (id=1814):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xa0242, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x42)
sendfile(r2, r2, 0x0, 0x80000000)

30.090719ms ago: executing program 0 (id=1815):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd0000001000020004001000080001", 0x53}], 0x1)

10.088569ms ago: executing program 2 (id=1816):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000fdff01000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000048000000090a010400000000000000000100000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000300c0009800800014044"], 0x90}}, 0x0)

0s ago: executing program 0 (id=1817):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000857b29a60edb0000000000002000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000400000000dfffff1918120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70200001400000bb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r2}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c0000000000008001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000ff010000000000000700000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000001000007b8af8ff000000ccbfa200000000000007020000f8ffffffb7030000d7cdbb5d3f9c95d86df1a108000000b7050000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r5, &(0x7f0000000f40)=ANY=[@ANYBLOB="c5b09bc253f82adf3f45b8154b67de08aab56b1a5e705b6d2973948add752970fb37bf311c411a9664bf41d27314ec5ad7c923f23a05e14590bc3ef4fe9b68ae256d3b0bfc7964eb244d24c3737f0b80c2a09c17cb3a81bc917c05068d4e189ac3d780deb957b00125ae3b08"], 0x19)
close(r5)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x5)
perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x0, 0x0, 0x10, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0x5, 0x6}, 0x11a434, 0x4, 0x4, 0x8, 0x0, 0xfffffffe, 0xffff}, 0x0, 0x2000000000000000, 0xffffffffffffffff, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x0, &(0x7f0000000c80)={[{@nombcache}, {@usrjquota}, {@errors_remount}, {@dioread_lock}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@mblk_io_submit}, {@minixdf}, {@barrier_val}, {@min_batch_time={'min_batch_time', 0x3d, 0x2}}, {}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$eJzs3c9rHNcdAPDvrFY/7VYqFFr3JCi0BuNV5ap2C4Wq9FAKNRjaUw+1xWotHK20RrsylhCJTQjkEkhCbsnF5/y8hFzz45BL8n8EGyeRTRxyCAqzP6SVtCvvOtKuHX8+MNZ7M2/2ve+82TfPmtFuAE+tyfSfTMSJiHg5iRivr08iYrCaykbM1so92NzIp0sSW1v/+Sqplrm/uZGPpn1Sx+qZX0fExy9EnMrsr7e8tr44VywWVur5qcrS1any2vrpK0tzC4WFwvLZ6ZmZM+f+dO7s4cX6zefrx++88s/fvzP73fO/evelT5KYjeP1bc1xHJbJmKwfk8H0EO7yj8OurG/ef7aDQk1nQPYoG0OX0o4ZqPfKiRiPgYP6Z7SXLQMAjspzEbHVzkDbLQDAEy2pXf//1u92AAC90vg9wP3NjXxj6e9vJHrr7t8jYqQWf+P+Zm1Ltn7PbqR6H3TsfrLrzkgSEROHUP9kRLzxwf/fSpc4ovuQAK3cuBkRlyYm94//yb5nFrr1h9arF5ozk3s2Gv+gdz5M5z9/bjX/y2zPf6LF/Ge4xXv3UTz8/Z+5fQjVtJXO//7a9Gzbg6b46yYG6rmfVed8g8nlK8VCOrb9PCJOxuBwmp8+oI6T976/125b8/zv61efeTOtP/25UyJzOzu8e5/5ucrcj4m52d2bEb/Jtoo/Hf+Hq/2ftJn/Xuiwjn/95cXX221L40/jbSz74z9aW7ciftey/5PtMsmBzydOVU+HqcZJ0cJ7szHWrv7J7E7/p0taf+P/Ar2Q9v/YwfFPJM3Pa5Y7funtp8U+uzX+UbtCzed/6/hbn/9DyX+r6aH6uutzlcrKdMRQ8u/968/s7NvIN8qn8Z/8bev3f2P8a3H+/y99/UsdHojsnS/ffvT4j1Ya/3xX/d91IkYeLA60q7+z/p/ZtU8n41+nDXzU4wYAAAAAAAAAAAAAAAAAAAAAAAAA3chExPFIMrntdCaTy9W+w/uXMZYplsqVU5dLq8vzUf2u7IkYzDQ+6nK86fNQp+ufh9/In9mT/2NE/CIiXhsereZz+VJxvt/BAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDdsTbf/5/6YnhP4YF+tBAAOBIjLuwA8LRJstl+NwEA6LWRrkqPHlk7AIDe6e76DwD8FLj+A8DT5yHX/71/BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADdunD+fLpsfbu5kU/z89fWVhdL107PF8qLuaXVfC5fWrmaWyiVFoqFXL601PaFbtR+FEulqzOxvHp9qlIoV6bKa+sXl0qry5WLV5bmFgoXC4M9iwwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOldeW1+cKxYLKxJ9SSx+WuuHx6U9Et0l4kat/x6X9hxeIoZ2RonR/gxOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE+AHwIAAP//4VQjgA==")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000040), 0x208e24b)

kernel console output (not intermixed with test programs):

yz.1.1157" path="/dev/input/event0" dev="devtmpfs" ino=242 ioctlcmd=0x450a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  102.340687][ T6747] EXT4-fs: Ignoring removed oldalloc option
[  102.384264][ T6747] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.418473][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.430141][ T6752] SELinux: syz.1.1160 (6752) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  102.462246][ T6754] syzkaller1: entered promiscuous mode
[  102.467912][ T6754] syzkaller1: entered allmulticast mode
[  102.577576][ T6760] loop4: detected capacity change from 0 to 2048
[  102.608594][ T6760] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.630015][   T29] audit: type=1400 audit(1734771237.100:3889): avc:  denied  { execute } for  pid=6759 comm="syz.4.1164" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  102.654556][ T6760] netlink: 'syz.4.1164': attribute type 10 has an invalid length.
[  102.655633][   T29] audit: type=1400 audit(1734771237.130:3890): avc:  denied  { execute_no_trans } for  pid=6759 comm="syz.4.1164" path="/273/file0/file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  102.686513][ T6760] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  102.706504][ T6767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.715081][ T6767] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.732588][ T6767] syz.3.1166[6767] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.732858][ T6767] syz.3.1166[6767] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.737701][ T6769] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  102.744408][ T6767] syz.3.1166[6767] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.778114][ T6155] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  102.807291][ T6155] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  102.819689][ T6155] EXT4-fs (loop4): This should not happen!! Data will be lost
[  102.819689][ T6155] 
[  102.829543][ T6155] EXT4-fs (loop4): Total free blocks count 0
[  102.835725][ T6155] EXT4-fs (loop4): Free/Dirty block details
[  102.841632][ T6155] EXT4-fs (loop4): free_blocks=2415919104
[  102.847500][ T6155] EXT4-fs (loop4): dirty_blocks=16
[  102.852669][ T6155] EXT4-fs (loop4): Block reservation details
[  102.858777][ T6155] EXT4-fs (loop4): i_reserved_data_blocks=1
[  102.865983][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.977152][ T6777] loop4: detected capacity change from 0 to 512
[  103.006038][ T6777] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.019939][ T6777] ext4 filesystem being mounted at /277/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  103.062102][ T6781] FAULT_INJECTION: forcing a failure.
[  103.062102][ T6781] name failslab, interval 1, probability 0, space 0, times 0
[  103.075133][ T6781] CPU: 0 UID: 0 PID: 6781 Comm: syz.2.1171 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  103.085921][ T6781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  103.096084][ T6781] Call Trace:
[  103.099419][ T6781]  <TASK>
[  103.102534][ T6781]  dump_stack_lvl+0xf2/0x150
[  103.107161][ T6781]  dump_stack+0x15/0x1a
[  103.111404][ T6781]  should_fail_ex+0x223/0x230
[  103.116149][ T6781]  should_failslab+0x8f/0xb0
[  103.121116][ T6781]  kmem_cache_alloc_noprof+0x52/0x320
[  103.126563][ T6781]  ? alloc_empty_file+0xd0/0x200
[  103.131610][ T6781]  ? _raw_spin_unlock+0x26/0x50
[  103.136501][ T6781]  alloc_empty_file+0xd0/0x200
[  103.141303][ T6781]  alloc_file_pseudo+0xc3/0x140
[  103.146183][ T6781]  sock_alloc_file+0x9b/0x1c0
[  103.150915][ T6781]  do_accept+0x1e3/0x390
[  103.155319][ T6781]  __sys_accept4+0xc3/0x150
[  103.159866][ T6781]  __x64_sys_accept4+0x53/0x60
[  103.164652][ T6781]  x64_sys_call+0x2824/0x2dc0
[  103.169368][ T6781]  do_syscall_64+0xc9/0x1c0
[  103.173978][ T6781]  ? clear_bhb_loop+0x55/0xb0
[  103.178704][ T6781]  ? clear_bhb_loop+0x55/0xb0
[  103.183540][ T6781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.189571][ T6781] RIP: 0033:0x7f8d6d365d29
[  103.194024][ T6781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.213734][ T6781] RSP: 002b:00007f8d6b9d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  103.222186][ T6781] RAX: ffffffffffffffda RBX: 00007f8d6d555fa0 RCX: 00007f8d6d365d29
[  103.230246][ T6781] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  103.238234][ T6781] RBP: 00007f8d6b9d7090 R08: 0000000000000000 R09: 0000000000000000
[  103.246237][ T6781] R10: 0000000000080800 R11: 0000000000000246 R12: 0000000000000001
[  103.254268][ T6781] R13: 0000000000000000 R14: 00007f8d6d555fa0 R15: 00007ffe0c0565b8
[  103.262309][ T6781]  </TASK>
[  103.285521][   T29] audit: type=1400 audit(1734771237.750:3891): avc:  denied  { write } for  pid=2981 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  103.299844][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.307109][   T29] audit: type=1400 audit(1734771237.750:3892): avc:  denied  { remove_name } for  pid=2981 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  103.338674][   T29] audit: type=1400 audit(1734771237.750:3893): avc:  denied  { rename } for  pid=2981 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  103.361150][   T29] audit: type=1400 audit(1734771237.750:3894): avc:  denied  { add_name } for  pid=2981 comm="syslogd" name="messages.0" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  103.442479][ T6787] loop4: detected capacity change from 0 to 512
[  103.451987][ T6787] journal_path: Non-blockdev passed as './file0'
[  103.458476][ T6787] EXT4-fs: error: could not find journal device path
[  103.537088][ T6794] loop3: detected capacity change from 0 to 1024
[  103.546382][ T6794] EXT4-fs: Ignoring removed oldalloc option
[  103.584027][ T6794] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.645391][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.783575][ T6811] loop3: detected capacity change from 0 to 2048
[  103.798326][ T6811] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.835618][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.976892][ T6827] loop3: detected capacity change from 0 to 512
[  103.986595][ T6827] journal_path: Non-blockdev passed as './file0'
[  103.993126][ T6827] EXT4-fs: error: could not find journal device path
[  104.100990][ T6830] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  104.232460][ T6833] __nla_validate_parse: 5 callbacks suppressed
[  104.232482][ T6833] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1189'.
[  104.359937][ T6838] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1191'.
[  104.395927][ T6840] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=6840 comm=syz.1.1192
[  104.428852][ T6840] pim6reg: entered allmulticast mode
[  104.437286][ T6840] pim6reg: left allmulticast mode
[  104.765047][ T6865] loop4: detected capacity change from 0 to 1024
[  104.772830][ T6865] EXT4-fs: Ignoring removed oldalloc option
[  104.795744][ T6865] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.846880][ T6878] FAULT_INJECTION: forcing a failure.
[  104.846880][ T6878] name failslab, interval 1, probability 0, space 0, times 0
[  104.859715][ T6878] CPU: 1 UID: 0 PID: 6878 Comm: syz.0.1195 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  104.870525][ T6878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  104.880829][ T6878] Call Trace:
[  104.884193][ T6878]  <TASK>
[  104.887234][ T6878]  dump_stack_lvl+0xf2/0x150
[  104.891882][ T6878]  dump_stack+0x15/0x1a
[  104.896111][ T6878]  should_fail_ex+0x223/0x230
[  104.900900][ T6878]  should_failslab+0x8f/0xb0
[  104.905585][ T6878]  kmem_cache_alloc_noprof+0x52/0x320
[  104.910992][ T6878]  ? __se_sys_getcwd+0x44/0x3d0
[  104.915970][ T6878]  __se_sys_getcwd+0x44/0x3d0
[  104.920712][ T6878]  ? __secure_computing+0x9f/0x1c0
[  104.925932][ T6878]  __x64_sys_getcwd+0x31/0x40
[  104.930675][ T6878]  x64_sys_call+0x1f29/0x2dc0
[  104.935413][ T6878]  do_syscall_64+0xc9/0x1c0
[  104.939994][ T6878]  ? clear_bhb_loop+0x55/0xb0
[  104.944715][ T6878]  ? clear_bhb_loop+0x55/0xb0
[  104.949473][ T6878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.955551][ T6878] RIP: 0033:0x7f018b285d29
[  104.960088][ T6878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.980001][ T6878] RSP: 002b:00007f01898f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000004f
[  104.988565][ T6878] RAX: ffffffffffffffda RBX: 00007f018b475fa0 RCX: 00007f018b285d29
[  104.996621][ T6878] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000020000140
[  105.004677][ T6878] RBP: 00007f01898f7090 R08: 0000000000000000 R09: 0000000000000000
[  105.012680][ T6878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.020720][ T6878] R13: 0000000000000000 R14: 00007f018b475fa0 R15: 00007ffc3540e568
[  105.028733][ T6878]  </TASK>
[  105.037458][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.087389][ T6906] loop3: detected capacity change from 0 to 512
[  105.115966][ T6906] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.141499][ T6906] ext4 filesystem being mounted at /254/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.155949][ T6919] geneve0: entered allmulticast mode
[  105.189330][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.219135][ T6925] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1202'.
[  105.261894][ T6933] netlink: 664 bytes leftover after parsing attributes in process `+}[@'.
[  105.284252][ T6937] loop2: detected capacity change from 0 to 512
[  105.292964][ T6937] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  105.317349][ T6937] EXT4-fs (loop2): 1 truncate cleaned up
[  105.325427][ T6937] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.328294][ T6943] loop0: detected capacity change from 0 to 1024
[  105.349113][ T6943] EXT4-fs: Ignoring removed oldalloc option
[  105.384495][ T6943] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.515141][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.604396][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.658671][ T7006] loop2: detected capacity change from 0 to 512
[  105.667409][ T7007] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1211'.
[  105.677904][ T7006] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  105.690519][ T7007] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1211'.
[  105.711155][ T7007] loop0: detected capacity change from 0 to 1024
[  105.726617][ T7006] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.1209: iget: bad extra_isize 7 (inode size 256)
[  105.741546][ T7006] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.1209: couldn't read orphan inode 15 (err -117)
[  105.756170][ T7007] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.768759][ T7006] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.779526][ T7007] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.807445][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.844845][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.864629][ T7018] syz.2.1216[7018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.864837][ T7018] syz.2.1216[7018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.880889][ T7018] syz.2.1216[7018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.894820][ T7020] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1215'.
[  105.991950][ T7033] SELinux: syz.1.1221 (7033) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  106.010484][ T7039] loop4: detected capacity change from 0 to 164
[  106.026770][ T7039] rock: corrupted directory entry. extent=41, offset=65536, size=8
[  106.149701][ T7053] can0: slcan on ptm0.
[  106.194258][ T7046] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.241885][ T7061] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1229'.
[  106.283653][ T7052] can0 (unregistered): slcan off ptm0.
[  106.290426][ T7046] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.318247][ T7069] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1240'.
[  106.358713][ T7074] loop2: detected capacity change from 0 to 512
[  106.374735][ T7074] EXT4-fs error (device loop2): ext4_get_journal_inode:5809: inode #32: comm syz.2.1231: iget: special inode unallocated
[  106.401104][ T7074] EXT4-fs (loop2): Remounting filesystem read-only
[  106.407814][ T7074] EXT4-fs (loop2): no journal found
[  106.413194][ T7074] EXT4-fs (loop2): can't get journal size
[  106.420775][ T7046] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.433845][ T7074] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  106.449345][ T7074] EXT4-fs (loop2): failed to initialize system zone (-117)
[  106.467310][ T7074] EXT4-fs (loop2): mount failed
[  106.482723][ T7046] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.525536][ T7087] loop2: detected capacity change from 0 to 1024
[  106.560271][ T7046] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.570871][ T7087] EXT4-fs: Ignoring removed oldalloc option
[  106.598969][ T7046] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.616107][ T7087] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.631327][ T7046] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.662758][ T7046] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.715928][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.795340][ T7108] syz.2.1233[7108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.795406][ T7108] syz.2.1233[7108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.818589][ T7108] syz.2.1233[7108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.849009][ T7108] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1233'.
[  107.213802][   T29] kauditd_printk_skb: 3972 callbacks suppressed
[  107.213821][   T29] audit: type=1326 audit(1734771241.680:7867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f350b77cce7 code=0x7ffc0000
[  107.243668][   T29] audit: type=1326 audit(1734771241.680:7868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f350b721f29 code=0x7ffc0000
[  107.267272][   T29] audit: type=1326 audit(1734771241.680:7869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f350b77cce7 code=0x7ffc0000
[  107.290711][   T29] audit: type=1326 audit(1734771241.680:7870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f350b721f29 code=0x7ffc0000
[  107.314225][   T29] audit: type=1326 audit(1734771241.740:7871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f350b77cce7 code=0x7ffc0000
[  107.337837][   T29] audit: type=1326 audit(1734771241.740:7872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f350b721f29 code=0x7ffc0000
[  107.361393][   T29] audit: type=1326 audit(1734771241.740:7873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f350b77cce7 code=0x7ffc0000
[  107.385601][   T29] audit: type=1326 audit(1734771241.740:7874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f350b721f29 code=0x7ffc0000
[  107.409191][   T29] audit: type=1326 audit(1734771241.740:7875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f350b77cce7 code=0x7ffc0000
[  107.432549][   T29] audit: type=1326 audit(1734771241.740:7876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7036 comm="syz.4.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f350b721f29 code=0x7ffc0000
[  107.619950][ T7129] netlink: 'syz.0.1243': attribute type 9 has an invalid length.
[  107.719498][ T7133] syzkaller1: entered promiscuous mode
[  107.725125][ T7133] syzkaller1: entered allmulticast mode
[  107.745757][ T7135] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=7135 comm=syz.0.1246
[  107.781723][ T7135] pim6reg: entered allmulticast mode
[  107.790143][ T7134] pim6reg: left allmulticast mode
[  107.927552][ T7143] loop0: detected capacity change from 0 to 512
[  107.962361][ T7147] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=7147 comm=syz.2.1252
[  107.967897][ T7143] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.999812][ T7143] ext4 filesystem being mounted at /239/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  108.033444][ T7156] netlink: 'syz.1.1255': attribute type 9 has an invalid length.
[  108.235529][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.283671][ T7165] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  108.594438][ T7177] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  108.860114][ T7182] syzkaller1: entered promiscuous mode
[  108.865821][ T7182] syzkaller1: entered allmulticast mode
[  108.913988][ T7184] loop0: detected capacity change from 0 to 512
[  108.944456][ T7184] EXT4-fs (loop0): 1 truncate cleaned up
[  108.950709][ T7184] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.978155][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.040751][ T7192] netlink: 'syz.2.1268': attribute type 9 has an invalid length.
[  109.053912][ T7188] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.063566][ T7188] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.073360][ T7194] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=7194 comm=syz.4.1269
[  109.080684][ T7188] syz.0.1266[7188] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.086254][ T7188] syz.0.1266[7188] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.107545][ T7188] syz.0.1266[7188] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.120175][ T7197] FAULT_INJECTION: forcing a failure.
[  109.120175][ T7197] name failslab, interval 1, probability 0, space 0, times 0
[  109.144443][ T7197] CPU: 1 UID: 0 PID: 7197 Comm: syz.3.1271 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  109.155239][ T7197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  109.165559][ T7197] Call Trace:
[  109.168889][ T7197]  <TASK>
[  109.171868][ T7197]  dump_stack_lvl+0xf2/0x150
[  109.176508][ T7197]  dump_stack+0x15/0x1a
[  109.180775][ T7197]  should_fail_ex+0x223/0x230
[  109.185580][ T7197]  should_failslab+0x8f/0xb0
[  109.190290][ T7197]  __kmalloc_noprof+0xab/0x3f0
[  109.195151][ T7197]  ? bpf_test_init+0xc7/0x170
[  109.199954][ T7197]  bpf_test_init+0xc7/0x170
[  109.204490][ T7197]  bpf_prog_test_run_xdp+0x321/0x8b0
[  109.209905][ T7197]  ? __rcu_read_unlock+0x4e/0x70
[  109.214887][ T7197]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  109.220742][ T7197]  bpf_prog_test_run+0x20f/0x3a0
[  109.225886][ T7197]  __sys_bpf+0x400/0x7a0
[  109.230177][ T7197]  __x64_sys_bpf+0x43/0x50
[  109.234753][ T7197]  x64_sys_call+0x2914/0x2dc0
[  109.239440][ T7197]  do_syscall_64+0xc9/0x1c0
[  109.243957][ T7197]  ? clear_bhb_loop+0x55/0xb0
[  109.248728][ T7197]  ? clear_bhb_loop+0x55/0xb0
[  109.253428][ T7197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.259494][ T7197] RIP: 0033:0x7f6460475d29
[  109.264105][ T7197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.283768][ T7197] RSP: 002b:00007f645eae1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  109.292531][ T7197] RAX: ffffffffffffffda RBX: 00007f6460665fa0 RCX: 00007f6460475d29
[  109.300806][ T7197] RDX: 0000000000000050 RSI: 0000000020000600 RDI: 000000000000000a
[  109.308852][ T7197] RBP: 00007f645eae1090 R08: 0000000000000000 R09: 0000000000000000
[  109.316843][ T7197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.324832][ T7197] R13: 0000000000000000 R14: 00007f6460665fa0 R15: 00007ffccb27e1b8
[  109.332927][ T7197]  </TASK>
[  109.366172][ T7198] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.374711][ T7198] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.381987][ T7200] loop3: detected capacity change from 0 to 1024
[  109.389897][ T7200] EXT4-fs: Ignoring removed oldalloc option
[  109.396911][ T7198] syz.2.1270[7198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.396980][ T7198] syz.2.1270[7198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.413276][ T7198] syz.2.1270[7198] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.429756][ T7200] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.498068][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.537258][ T7213] 9pnet: p9_errstr2errno: server reported unknown error �ÿÿ
[  109.680125][ T7221] __nla_validate_parse: 7 callbacks suppressed
[  109.680146][ T7221] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1279'.
[  109.738009][ T7224] syzkaller1: entered promiscuous mode
[  109.743587][ T7224] syzkaller1: entered allmulticast mode
[  109.752591][ T7226] netlink: 'syz.1.1280': attribute type 9 has an invalid length.
[  109.760799][ T7226] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1280'.
[  110.285110][ T7241] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.1287'.
[  110.334828][ T7251] netlink: 'syz.2.1292': attribute type 9 has an invalid length.
[  110.342675][ T7251] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1292'.
[  110.376898][ T7256] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=7256 comm=syz.2.1293
[  110.383618][ T7252] loop4: detected capacity change from 0 to 512
[  110.508579][ T7252] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.527442][ T7252] ext4 filesystem being mounted at /299/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  110.623446][ T7272] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1299'.
[  110.647818][ T7272] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  110.656125][ T7272] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  110.664480][ T7272] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  110.672916][ T7272] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  110.681920][ T7272] vxlan0: entered promiscuous mode
[  110.729498][ T7252] infiniband syz!: set active
[  110.734524][ T7252] infiniband syz!: added team_slave_0
[  110.742344][ T7286] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1300'.
[  110.757632][ T7252] RDS/IB: syz!: added
[  110.761841][ T7288] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1302'.
[  110.762953][ T7252] smc: adding ib device syz! with port count 1
[  110.777354][ T7252] smc:    ib device syz! port 1 has pnetid 
[  110.808867][ T7275] batadv_slave_0: left promiscuous mode
[  110.816808][ T7275] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  110.843835][ T7275] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  110.852777][ T7275] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  110.862062][ T7275] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  110.871253][ T7275] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  110.947280][ T7293] netlink: 'syz.3.1304': attribute type 9 has an invalid length.
[  110.955099][ T7293] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1304'.
[  110.997120][ T7299] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=7299 comm=syz.2.1309
[  111.200480][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.798939][ T7336] loop4: detected capacity change from 0 to 128
[  111.843407][ T7338] FAULT_INJECTION: forcing a failure.
[  111.843407][ T7338] name failslab, interval 1, probability 0, space 0, times 0
[  111.856284][ T7338] CPU: 1 UID: 0 PID: 7338 Comm: syz.2.1321 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  111.866988][ T7338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  111.877071][ T7338] Call Trace:
[  111.880386][ T7338]  <TASK>
[  111.883467][ T7338]  dump_stack_lvl+0xf2/0x150
[  111.888185][ T7338]  dump_stack+0x15/0x1a
[  111.892389][ T7338]  should_fail_ex+0x223/0x230
[  111.897236][ T7338]  should_failslab+0x8f/0xb0
[  111.901875][ T7338]  kmem_cache_alloc_node_noprof+0x59/0x320
[  111.907744][ T7338]  ? __alloc_skb+0x10b/0x310
[  111.912464][ T7338]  __alloc_skb+0x10b/0x310
[  111.916959][ T7338]  __ipv6_ifa_notify+0x129/0x8f0
[  111.922443][ T7338]  ? probe_sched_wakeup+0x81/0xa0
[  111.927785][ T7338]  ? enqueue_timer+0xe7/0x2a0
[  111.932531][ T7338]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  111.938415][ T7338]  inet6_addr_modify+0x5f0/0xcb0
[  111.943438][ T7338]  ? xas_load+0x3ae/0x3d0
[  111.947843][ T7338]  ? __rcu_read_unlock+0x4e/0x70
[  111.952846][ T7338]  ? ipv6_get_ifaddr+0x344/0x370
[  111.957912][ T7338]  inet6_rtm_newaddr+0x488/0x5a0
[  111.962903][ T7338]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[  111.968446][ T7338]  rtnetlink_rcv_msg+0x6aa/0x710
[  111.973524][ T7338]  ? avc_has_perm_noaudit+0x1cc/0x210
[  111.978974][ T7338]  netlink_rcv_skb+0x12c/0x230
[  111.983978][ T7338]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  111.989550][ T7338]  rtnetlink_rcv+0x1c/0x30
[  111.994003][ T7338]  netlink_unicast+0x599/0x670
[  111.998813][ T7338]  netlink_sendmsg+0x5cc/0x6e0
[  112.003636][ T7338]  ? __pfx_netlink_sendmsg+0x10/0x10
[  112.008987][ T7338]  __sock_sendmsg+0x140/0x180
[  112.013741][ T7338]  ____sys_sendmsg+0x312/0x410
[  112.018535][ T7338]  __sys_sendmmsg+0x227/0x4b0
[  112.023272][ T7338]  __x64_sys_sendmmsg+0x57/0x70
[  112.028211][ T7338]  x64_sys_call+0x29aa/0x2dc0
[  112.032910][ T7338]  do_syscall_64+0xc9/0x1c0
[  112.037456][ T7338]  ? clear_bhb_loop+0x55/0xb0
[  112.042203][ T7338]  ? clear_bhb_loop+0x55/0xb0
[  112.046945][ T7338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.052920][ T7338] RIP: 0033:0x7f8d6d365d29
[  112.057422][ T7338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.077655][ T7338] RSP: 002b:00007f8d6b9d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  112.086101][ T7338] RAX: ffffffffffffffda RBX: 00007f8d6d555fa0 RCX: 00007f8d6d365d29
[  112.094594][ T7338] RDX: 04000000000001f2 RSI: 0000000020000000 RDI: 0000000000000009
[  112.102640][ T7338] RBP: 00007f8d6b9d7090 R08: 0000000000000000 R09: 0000000000000000
[  112.110692][ T7338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.118726][ T7338] R13: 0000000000000000 R14: 00007f8d6d555fa0 R15: 00007ffe0c0565b8
[  112.126996][ T7338]  </TASK>
[  112.172561][ T7343] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=7343 comm=syz.4.1322
[  112.225638][   T29] kauditd_printk_skb: 1648 callbacks suppressed
[  112.225653][   T29] audit: type=1326 audit(1734771246.700:9523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7344 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8d6d365d29 code=0x7ffc0000
[  112.266027][   T29] audit: type=1326 audit(1734771246.740:9524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7344 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d6d365d29 code=0x7ffc0000
[  112.289725][   T29] audit: type=1326 audit(1734771246.740:9525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7344 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d6d365d29 code=0x7ffc0000
[  112.313255][   T29] audit: type=1326 audit(1734771246.740:9526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7344 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8d6d365d29 code=0x7ffc0000
[  112.336920][   T29] audit: type=1326 audit(1734771246.740:9527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7344 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d6d365d29 code=0x7ffc0000
[  112.360557][   T29] audit: type=1326 audit(1734771246.740:9528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7344 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d6d365d29 code=0x7ffc0000
[  112.389238][   T29] audit: type=1326 audit(1734771246.760:9529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.0.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  112.413089][   T29] audit: type=1326 audit(1734771246.760:9530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.0.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  112.436750][   T29] audit: type=1326 audit(1734771246.760:9531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.0.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  112.461079][   T29] audit: type=1326 audit(1734771246.760:9532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7353 comm="syz.0.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  112.499749][ T7358] loop2: detected capacity change from 0 to 2048
[  112.562004][ T7358]  loop2: p1 < > p4
[  112.582182][ T7358] loop2: p4 size 8388608 extends beyond EOD, truncated
[  112.595480][ T7370] loop3: detected capacity change from 0 to 512
[  112.618628][ T7368] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1333'.
[  112.729608][ T7370] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1334: corrupted in-inode xattr: invalid ea_ino
[  112.745328][ T7370] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1334: couldn't read orphan inode 15 (err -117)
[  112.748094][ T7384] loop0: detected capacity change from 0 to 128
[  112.758614][ T7370] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.785799][ T7386] FAULT_INJECTION: forcing a failure.
[  112.785799][ T7386] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  112.799188][ T7386] CPU: 0 UID: 0 PID: 7386 Comm: syz.1.1339 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  112.809958][ T7386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  112.820046][ T7386] Call Trace:
[  112.823392][ T7386]  <TASK>
[  112.826362][ T7386]  dump_stack_lvl+0xf2/0x150
[  112.831146][ T7386]  dump_stack+0x15/0x1a
[  112.835339][ T7386]  should_fail_ex+0x223/0x230
[  112.840124][ T7386]  should_fail_alloc_page+0xfd/0x110
[  112.845454][ T7386]  __alloc_pages_noprof+0x109/0x340
[  112.850754][ T7386]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  112.856198][ T7386]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  112.861775][ T7386]  handle_mm_fault+0xdd7/0x2ac0
[  112.866653][ T7386]  ? __rcu_read_lock+0x36/0x50
[  112.871495][ T7386]  __get_user_pages+0xf2c/0x2670
[  112.876505][ T7386]  ? path_openat+0x1a5a/0x1fa0
[  112.881458][ T7386]  faultin_page_range+0x101/0x5d0
[  112.886518][ T7386]  do_madvise+0x42b/0x2a70
[  112.890968][ T7386]  ? __seccomp_filter+0x53c/0x1180
[  112.896179][ T7386]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  112.901854][ T7386]  ? __secure_computing+0x9f/0x1c0
[  112.907005][ T7386]  __x64_sys_madvise+0x61/0x70
[  112.911905][ T7386]  x64_sys_call+0x23ab/0x2dc0
[  112.916617][ T7386]  do_syscall_64+0xc9/0x1c0
[  112.921193][ T7386]  ? clear_bhb_loop+0x55/0xb0
[  112.926128][ T7386]  ? clear_bhb_loop+0x55/0xb0
[  112.930843][ T7386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.936794][ T7386] RIP: 0033:0x7f4f8c8a5d29
[  112.941276][ T7386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.961002][ T7386] RSP: 002b:00007f4f8af17038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  112.969537][ T7386] RAX: ffffffffffffffda RBX: 00007f4f8ca95fa0 RCX: 00007f4f8c8a5d29
[  112.977710][ T7386] RDX: 0000000000000017 RSI: 0000000000800000 RDI: 00000000200ec000
[  112.985878][ T7386] RBP: 00007f4f8af17090 R08: 0000000000000000 R09: 0000000000000000
[  112.993872][ T7386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.001863][ T7386] R13: 0000000000000000 R14: 00007f4f8ca95fa0 R15: 00007ffef39ae698
[  113.009865][ T7386]  </TASK>
[  113.109410][ T7370] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1334'.
[  113.192230][ T7393] Invalid ELF header magic: != ELF
[  113.202703][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.255356][ T7398] loop4: detected capacity change from 0 to 1024
[  113.265393][ T7398] EXT4-fs: Ignoring removed oldalloc option
[  113.278436][ T7398] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.406942][ T7403] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16498 sclass=netlink_route_socket pid=7403 comm=syz.0.1345
[  113.476223][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.599141][ T7420] netlink: 'syz.0.1352': attribute type 9 has an invalid length.
[  113.611427][ T7412] loop2: detected capacity change from 0 to 2048
[  113.646933][ T7412]  loop2: p1 p2 p3
[  113.673402][ T2999]  loop2: p1 p2 p3
[  113.680889][ T7424] loop0: detected capacity change from 0 to 4096
[  113.697074][ T7424] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.771825][ T3285] udevd[3285]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  113.792389][ T3538] udevd[3538]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  113.803953][ T3291] udevd[3291]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  113.856809][ T3291] udevd[3291]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  113.858193][ T3285] udevd[3285]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  113.873684][ T7433] loop4: detected capacity change from 0 to 128
[  113.880527][ T3538] udevd[3538]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  114.076689][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.134125][ T7443] loop2: detected capacity change from 0 to 1024
[  114.150802][ T7443] EXT4-fs: Ignoring removed oldalloc option
[  114.162458][ T7445] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16498 sclass=netlink_route_socket pid=7445 comm=syz.0.1360
[  114.228684][ T7443] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.252008][ T7449] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  114.261298][ T7449] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  114.263182][ T7456] netlink: 'syz.3.1364': attribute type 9 has an invalid length.
[  114.269974][ T7449] syz.4.1362[7449] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.277021][ T7449] syz.4.1362[7449] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.288633][ T7449] syz.4.1362[7449] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.303454][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.356926][ T7465] syz.3.1368[7465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.357043][ T7465] syz.3.1368[7465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.373873][ T7465] syz.3.1368[7465] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  114.379291][ T7467] loop2: detected capacity change from 0 to 512
[  114.429416][ T7467] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.451230][ T7467] ext4 filesystem being mounted at /278/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  114.456898][ T7471] loop0: detected capacity change from 0 to 4096
[  114.486858][ T7465] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.504683][ T7465] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.511804][ T7465] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.529291][ T7465] loop3: detected capacity change from 0 to 512
[  114.539124][ T7480] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7480 comm=syz.1.1372
[  114.541343][ T7471] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.565578][ T7476] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  114.572914][ T7476] IPv6: NLM_F_CREATE should be set when creating new route
[  114.609248][ T7465] EXT4-fs (loop3): too many log groups per flexible block group
[  114.617153][ T7465] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  114.624047][ T7465] EXT4-fs (loop3): mount failed
[  114.719262][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.733217][ T7489] loop3: detected capacity change from 0 to 1024
[  114.740512][ T7489] EXT4-fs: Ignoring removed oldalloc option
[  114.778880][ T7489] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.847150][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.889764][ T7500] netlink: 'syz.4.1378': attribute type 9 has an invalid length.
[  114.897772][ T7500] __nla_validate_parse: 4 callbacks suppressed
[  114.897788][ T7500] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1378'.
[  114.937239][ T7496] loop0: detected capacity change from 0 to 8192
[  114.945251][ T7496] /dev/loop0: Can't open blockdev
[  115.019435][ T7506] syzkaller1: entered promiscuous mode
[  115.025133][ T7506] syzkaller1: entered allmulticast mode
[  115.082208][ T7511] loop4: detected capacity change from 0 to 512
[  115.089187][ T7511] journal_path: Non-blockdev passed as './file0'
[  115.095605][ T7511] EXT4-fs: error: could not find journal device path
[  115.229114][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.292909][ T7519] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1384'.
[  115.319614][ T7519] bridge_slave_1: left allmulticast mode
[  115.326151][ T7519] bridge_slave_1: left promiscuous mode
[  115.331858][ T7519] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.342733][ T7523] loop3: detected capacity change from 0 to 128
[  115.350319][ T7519] bridge_slave_0: left allmulticast mode
[  115.356163][ T7519] bridge_slave_0: left promiscuous mode
[  115.362029][ T7519] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.483981][ T7531] loop0: detected capacity change from 0 to 1024
[  115.491028][ T7531] EXT4-fs: Ignoring removed oldalloc option
[  115.543254][ T7531] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.572757][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.603610][ T7540] netlink: 'syz.0.1391': attribute type 9 has an invalid length.
[  115.611423][ T7540] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1391'.
[  115.786367][ T7550] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  115.794986][ T7550] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  115.804200][ T7550] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(7)
[  115.810825][ T7550] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  115.812460][ T7554] loop0: detected capacity change from 0 to 1024
[  115.818652][ T7550] vhci_hcd vhci_hcd.0: Device attached
[  115.828286][ T7554] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  115.841612][ T7548] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  115.854532][ T7554] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.873661][ T7550] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(13)
[  115.880550][ T7550] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  115.888176][ T7550] vhci_hcd vhci_hcd.0: Device attached
[  115.894814][ T7557] vhci_hcd: connection closed
[  115.895161][ T6433] vhci_hcd: stop threads
[  115.904377][ T6433] vhci_hcd: release socket
[  115.908805][ T6433] vhci_hcd: disconnect device
[  115.914689][ T7551] vhci_hcd: connection closed
[  115.914925][ T6433] vhci_hcd: stop threads
[  115.924234][ T6433] vhci_hcd: release socket
[  115.928787][ T6433] vhci_hcd: disconnect device
[  115.936854][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.976324][ T7560] loop0: detected capacity change from 0 to 4096
[  115.994926][ T7563] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2049 sclass=netlink_route_socket pid=7563 comm=syz.4.1398
[  116.008740][ T7560] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.122402][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.180998][ T7571] loop0: detected capacity change from 0 to 128
[  116.187729][ T7565] wireguard0: entered promiscuous mode
[  116.193267][ T7565] wireguard0: entered allmulticast mode
[  116.358266][ T7584] hub 9-0:1.0: USB hub found
[  116.369911][ T7584] hub 9-0:1.0: 8 ports detected
[  116.414841][ T7588] loop0: detected capacity change from 0 to 512
[  116.634458][ T7604] loop4: detected capacity change from 0 to 128
[  116.668522][ T7610] loop2: detected capacity change from 0 to 512
[  116.693070][ T7610] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  116.786323][ T7610] EXT4-fs (loop2): 1 truncate cleaned up
[  116.786665][ T7610] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.839758][ T7624] FAULT_INJECTION: forcing a failure.
[  116.839758][ T7624] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.839792][ T7624] CPU: 1 UID: 0 PID: 7624 Comm: syz.2.1415 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  116.839824][ T7624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  116.839839][ T7624] Call Trace:
[  116.839847][ T7624]  <TASK>
[  116.839855][ T7624]  dump_stack_lvl+0xf2/0x150
[  116.839944][ T7624]  dump_stack+0x15/0x1a
[  116.839981][ T7624]  should_fail_ex+0x223/0x230
[  116.840007][ T7624]  should_fail+0xb/0x10
[  116.840055][ T7624]  should_fail_usercopy+0x1a/0x20
[  116.840092][ T7624]  _copy_from_user+0x1e/0xb0
[  116.840128][ T7624]  load_msg+0x17a/0x2c0
[  116.840158][ T7624]  do_mq_timedsend+0x23b/0x680
[  116.840249][ T7624]  __x64_sys_mq_timedsend+0xca/0x150
[  116.840345][ T7624]  x64_sys_call+0x2a68/0x2dc0
[  116.840371][ T7624]  do_syscall_64+0xc9/0x1c0
[  116.840396][ T7624]  ? clear_bhb_loop+0x55/0xb0
[  116.840489][ T7624]  ? clear_bhb_loop+0x55/0xb0
[  116.840514][ T7624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.840633][ T7624] RIP: 0033:0x7f8d6d365d29
[  116.840649][ T7624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.840668][ T7624] RSP: 002b:00007f8d6b9b6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2
[  116.840690][ T7624] RAX: ffffffffffffffda RBX: 00007f8d6d556080 RCX: 00007f8d6d365d29
[  116.840706][ T7624] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[  116.840750][ T7624] RBP: 00007f8d6b9b6090 R08: 0000000000000000 R09: 0000000000000000
[  116.840764][ T7624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.840779][ T7624] R13: 0000000000000000 R14: 00007f8d6d556080 R15: 00007ffe0c0565b8
[  116.840798][ T7624]  </TASK>
[  116.878189][ T7626] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  116.878282][ T7626] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  116.879556][ T7626] syz.4.1420[7626] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.879749][ T7626] syz.4.1420[7626] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.879816][ T7626] syz.4.1420[7626] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.931282][ T7622] wireguard0: entered promiscuous mode
[  116.931305][ T7622] wireguard0: entered allmulticast mode
[  117.493334][ T7659] loop3: detected capacity change from 0 to 128
[  117.530852][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.678417][ T7670] loop3: detected capacity change from 0 to 4096
[  117.696872][ T7670] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.839420][ T7680] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1436'.
[  117.874744][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.887067][ T7682] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  117.895819][ T7682] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  117.904503][ T7682] syz.1.1437[7682] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  117.954369][ T7690] loop3: detected capacity change from 0 to 1024
[  117.972605][ T7690] EXT4-fs: Ignoring removed nobh option
[  117.978314][ T7690] EXT4-fs: Ignoring removed oldalloc option
[  117.985659][ T7690] EXT4-fs: Mount option(s) incompatible with ext3
[  118.182127][ T7697] loop0: detected capacity change from 0 to 128
[  118.321506][ T7705] loop4: detected capacity change from 0 to 256
[  118.656683][ T7719] loop0: detected capacity change from 0 to 512
[  118.695470][ T7719] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  118.733369][ T7719] EXT4-fs (loop0): orphan cleanup on readonly fs
[  118.753434][ T7719] __quota_error: 268 callbacks suppressed
[  118.753531][ T7719] Quota error (device loop0): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  118.771018][ T7719] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  118.841537][ T7719] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  118.879533][ T7719] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1448: bg 0: block 40: padding at end of block bitmap is not set
[  118.915982][ T7728] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1452'.
[  118.927441][ T7719] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  118.952722][ T7719] EXT4-fs (loop0): 1 truncate cleaned up
[  118.969593][ T7719] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  118.997416][ T7719] geneve2: entered promiscuous mode
[  119.002802][ T7719] geneve2: entered allmulticast mode
[  119.323151][ T7756] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  119.339134][ T7756] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  119.348056][ T7756] bpf_get_probe_write_proto: 5 callbacks suppressed
[  119.348085][ T7756] syz.4.1458[7756] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  119.355252][ T7756] syz.4.1458[7756] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  119.366820][ T7756] syz.4.1458[7756] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  119.400046][ T7758] xt_TCPMSS: Only works on TCP SYN packets
[  119.437187][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.465179][   T29] audit: type=1326 audit(1734771253.940:9801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7759 comm="syz.1.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  119.493132][ T7760] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  119.508338][   T29] audit: type=1326 audit(1734771253.960:9802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7759 comm="syz.1.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  119.532006][   T29] audit: type=1326 audit(1734771253.960:9803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7759 comm="syz.1.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  119.556075][   T29] audit: type=1326 audit(1734771253.960:9804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7759 comm="syz.1.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  119.579677][   T29] audit: type=1326 audit(1734771253.960:9805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7759 comm="syz.1.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  119.603337][   T29] audit: type=1326 audit(1734771253.960:9806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7759 comm="syz.1.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  119.626889][   T29] audit: type=1326 audit(1734771253.960:9807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7759 comm="syz.1.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  119.650338][   T29] audit: type=1326 audit(1734771253.960:9808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7759 comm="syz.1.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  119.673883][   T29] audit: type=1326 audit(1734771253.960:9809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7759 comm="syz.1.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  119.733518][ T7764] xt_hashlimit: max too large, truncated to 1048576
[  119.762485][ T7766] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  119.800845][ T7770] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  119.862830][ T7778] loop2: detected capacity change from 0 to 512
[  119.870482][ T7778] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  119.892129][ T7778] EXT4-fs (loop2): 1 truncate cleaned up
[  119.898370][ T7778] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.007618][ T7781] loop4: detected capacity change from 0 to 2048
[  120.034856][ T7781] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.088399][ T7789] loop3: detected capacity change from 0 to 4096
[  120.125378][ T7793] hub 9-0:1.0: USB hub found
[  120.130247][ T7793] hub 9-0:1.0: 8 ports detected
[  120.340151][ T7797] xt_TCPMSS: Only works on TCP SYN packets
[  120.512479][ T7801] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1474'.
[  121.176852][ T7820] hub 9-0:1.0: USB hub found
[  121.182336][ T7820] hub 9-0:1.0: 8 ports detected
[  121.210231][ T7826] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  121.312206][ T7831] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1485'.
[  121.327933][ T7834] loop0: detected capacity change from 0 to 1024
[  121.335030][ T7834] EXT4-fs: Ignoring removed oldalloc option
[  121.407954][ T7843] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  121.417016][ T7843] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  121.426042][ T7843] syz.2.1491[7843] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  121.426203][ T7843] syz.2.1491[7843] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  121.437741][ T7843] syz.2.1491[7843] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  121.476770][ T7849] loop0: detected capacity change from 0 to 1024
[  121.495057][ T7849] EXT4-fs: Ignoring removed oldalloc option
[  121.531361][ T7855] hub 9-0:1.0: USB hub found
[  121.539961][ T7855] hub 9-0:1.0: 8 ports detected
[  121.637431][ T7860] $Hÿ: renamed from bond0 (while UP)
[  121.649055][ T7860] $Hÿ: entered promiscuous mode
[  121.654392][ T7860] bond_slave_0: entered promiscuous mode
[  121.660175][ T7860] bond_slave_1: entered promiscuous mode
[  121.794549][ T7866] loop4: detected capacity change from 0 to 1024
[  121.812551][ T7866] EXT4-fs: Ignoring removed oldalloc option
[  121.919049][ T7870] loop4: detected capacity change from 0 to 8192
[  121.947436][ T7872] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1501'.
[  121.975341][ T7870] FAULT_INJECTION: forcing a failure.
[  121.975341][ T7870] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  121.988835][ T7870] CPU: 1 UID: 0 PID: 7870 Comm: syz.4.1500 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  121.999647][ T7870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  122.009928][ T7870] Call Trace:
[  122.013311][ T7870]  <TASK>
[  122.016268][ T7870]  dump_stack_lvl+0xf2/0x150
[  122.020920][ T7870]  dump_stack+0x15/0x1a
[  122.025288][ T7870]  should_fail_ex+0x223/0x230
[  122.030056][ T7870]  should_fail+0xb/0x10
[  122.034243][ T7870]  should_fail_usercopy+0x1a/0x20
[  122.039451][ T7870]  _copy_from_user+0x1e/0xb0
[  122.044087][ T7870]  vmemdup_user+0x12e/0x1b0
[  122.048707][ T7870]  path_setxattrat+0x1c9/0x310
[  122.053547][ T7870]  __x64_sys_fsetxattr+0x6d/0x80
[  122.058567][ T7870]  x64_sys_call+0x29d2/0x2dc0
[  122.063288][ T7870]  do_syscall_64+0xc9/0x1c0
[  122.067878][ T7870]  ? clear_bhb_loop+0x55/0xb0
[  122.072589][ T7870]  ? clear_bhb_loop+0x55/0xb0
[  122.077344][ T7870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.083376][ T7870] RIP: 0033:0x7f350b785d29
[  122.087813][ T7870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.107648][ T7870] RSP: 002b:00007f3509df1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[  122.116105][ T7870] RAX: ffffffffffffffda RBX: 00007f350b975fa0 RCX: 00007f350b785d29
[  122.124111][ T7870] RDX: 0000000020000200 RSI: 0000000020000000 RDI: 0000000000000003
[  122.132137][ T7870] RBP: 00007f3509df1090 R08: 0000000000000000 R09: 0000000000000000
[  122.140133][ T7870] R10: 000000000000fe44 R11: 0000000000000246 R12: 0000000000000001
[  122.148159][ T7870] R13: 0000000000000000 R14: 00007f350b975fa0 R15: 00007ffd26950858
[  122.156170][ T7870]  </TASK>
[  122.288196][ T7879] loop2: detected capacity change from 0 to 512
[  122.296416][ T7877] loop4: detected capacity change from 0 to 4096
[  122.747118][ T7888] loop2: detected capacity change from 0 to 128
[  122.809566][ T7894] syzkaller1: entered promiscuous mode
[  122.815316][ T7894] syzkaller1: entered allmulticast mode
[  122.906479][ T7905] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1512'.
[  122.924481][ T7907] syzkaller1: entered promiscuous mode
[  122.930060][ T7907] syzkaller1: entered allmulticast mode
[  122.941552][ T7908] xt_policy: input policy not valid in POSTROUTING and OUTPUT
[  122.956653][ T7908] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1511'.
[  123.018697][ T7913] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7913 comm=syz.3.1511
[  123.033444][ T7910] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  123.040479][ T7912] syzkaller1: entered promiscuous mode
[  123.042749][ T7910] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  123.047594][ T7912] syzkaller1: entered allmulticast mode
[  123.059134][ T7910] syz.2.1514[7910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.061160][ T7910] syz.2.1514[7910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.072773][ T7910] syz.2.1514[7910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.629629][ T7933] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  123.651224][ T7933] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  123.722144][ T7941] FAULT_INJECTION: forcing a failure.
[  123.722144][ T7941] name failslab, interval 1, probability 0, space 0, times 0
[  123.734885][ T7941] CPU: 1 UID: 0 PID: 7941 Comm: syz.2.1526 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  123.745716][ T7941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  123.755794][ T7941] Call Trace:
[  123.759083][ T7941]  <TASK>
[  123.762038][ T7941]  dump_stack_lvl+0xf2/0x150
[  123.766775][ T7941]  dump_stack+0x15/0x1a
[  123.770972][ T7941]  should_fail_ex+0x223/0x230
[  123.775741][ T7941]  should_failslab+0x8f/0xb0
[  123.780391][ T7941]  __kmalloc_noprof+0xab/0x3f0
[  123.785208][ T7941]  ? fib6_info_alloc+0x2c/0x90
[  123.790017][ T7941]  ? __rcu_read_unlock+0x4e/0x70
[  123.795013][ T7941]  fib6_info_alloc+0x2c/0x90
[  123.799639][ T7941]  ip6_route_info_create+0x34c/0xba0
[  123.805099][ T7941]  ? cmp_ex_search+0x56/0x70
[  123.809727][ T7941]  ? bsearch+0x98/0xc0
[  123.813881][ T7941]  ip6_route_add+0x26/0x120
[  123.818424][ T7941]  addrconf_add_dev+0x1c6/0x240
[  123.823318][ T7941]  inet6_addr_add+0x1cc/0x660
[  123.828062][ T7941]  inet6_rtm_newaddr+0x4c7/0x5a0
[  123.833035][ T7941]  ? __pfx_inet6_rtm_newaddr+0x10/0x10
[  123.838608][ T7941]  rtnetlink_rcv_msg+0x6aa/0x710
[  123.843581][ T7941]  ? avc_has_perm_noaudit+0x1cc/0x210
[  123.849085][ T7941]  netlink_rcv_skb+0x12c/0x230
[  123.853946][ T7941]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  123.859628][ T7941]  rtnetlink_rcv+0x1c/0x30
[  123.864164][ T7941]  netlink_unicast+0x599/0x670
[  123.868964][ T7941]  netlink_sendmsg+0x5cc/0x6e0
[  123.873763][ T7941]  ? __pfx_netlink_sendmsg+0x10/0x10
[  123.879112][ T7941]  __sock_sendmsg+0x140/0x180
[  123.883910][ T7941]  ____sys_sendmsg+0x312/0x410
[  123.888712][ T7941]  __sys_sendmsg+0x19d/0x230
[  123.893404][ T7941]  __x64_sys_sendmsg+0x46/0x50
[  123.898198][ T7941]  x64_sys_call+0x2734/0x2dc0
[  123.902905][ T7941]  do_syscall_64+0xc9/0x1c0
[  123.907453][ T7941]  ? clear_bhb_loop+0x55/0xb0
[  123.912186][ T7941]  ? clear_bhb_loop+0x55/0xb0
[  123.916894][ T7941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.922834][ T7941] RIP: 0033:0x7f8d6d365d29
[  123.927390][ T7941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.947147][ T7941] RSP: 002b:00007f8d6b9d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  123.955594][ T7941] RAX: ffffffffffffffda RBX: 00007f8d6d555fa0 RCX: 00007f8d6d365d29
[  123.963595][ T7941] RDX: 0000000000000080 RSI: 0000000020000040 RDI: 0000000000000008
[  123.971600][ T7941] RBP: 00007f8d6b9d7090 R08: 0000000000000000 R09: 0000000000000000
[  123.979619][ T7941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.987682][ T7941] R13: 0000000000000000 R14: 00007f8d6d555fa0 R15: 00007ffe0c0565b8
[  123.995694][ T7941]  </TASK>
[  124.009777][   T29] kauditd_printk_skb: 115 callbacks suppressed
[  124.009796][   T29] audit: type=1326 audit(1734771258.480:9925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7932 comm="syz.0.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  124.039881][   T29] audit: type=1326 audit(1734771258.480:9926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7932 comm="syz.0.1523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  124.238398][ T7945] loop2: detected capacity change from 0 to 4096
[  124.409889][ T7962] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  124.438811][ T7963] netlink: 'syz.4.1533': attribute type 2 has an invalid length.
[  124.446642][ T7963] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1533'.
[  124.672544][ T7967] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  124.682869][ T7967] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  124.694576][ T7967] syz.4.1535[7967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  124.694809][ T7967] syz.4.1535[7967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  124.707896][ T7967] syz.4.1535[7967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  124.738987][ T7970] loop2: detected capacity change from 0 to 128
[  124.827818][ T7978] loop2: detected capacity change from 0 to 1024
[  124.834654][ T7978] EXT4-fs: Ignoring removed oldalloc option
[  124.865293][ T7982] loop0: detected capacity change from 0 to 1024
[  124.872035][ T7982] EXT4-fs: Ignoring removed oldalloc option
[  125.012123][ T7991] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1542'.
[  125.085264][ T7995] loop0: detected capacity change from 0 to 8192
[  125.101221][ T7995] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  125.114270][   T29] audit: type=1326 audit(1734771259.590:9927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8000 comm="syz.3.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6460475d29 code=0x7ffc0000
[  125.137836][   T29] audit: type=1326 audit(1734771259.590:9928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8000 comm="syz.3.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6460475d29 code=0x7ffc0000
[  125.161386][   T29] audit: type=1326 audit(1734771259.590:9929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8000 comm="syz.3.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6460475d29 code=0x7ffc0000
[  125.162256][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.185107][   T29] audit: type=1326 audit(1734771259.590:9930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8000 comm="syz.3.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6460475d29 code=0x7ffc0000
[  125.185142][   T29] audit: type=1326 audit(1734771259.590:9931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8000 comm="syz.3.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6460475d29 code=0x7ffc0000
[  125.193989][ T7995] FAT-fs (loop0): Filesystem has been set read-only
[  125.195976][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.217462][   T29] audit: type=1326 audit(1734771259.590:9932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8000 comm="syz.3.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6460475d29 code=0x7ffc0000
[  125.245078][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.247681][   T29] audit: type=1326 audit(1734771259.590:9933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8000 comm="syz.3.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6460475d29 code=0x7ffc0000
[  125.257770][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.279859][   T29] audit: type=1326 audit(1734771259.590:9934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8000 comm="syz.3.1546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6460475d29 code=0x7ffc0000
[  125.288681][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.354348][ T8001] FAULT_INJECTION: forcing a failure.
[  125.354348][ T8001] name failslab, interval 1, probability 0, space 0, times 0
[  125.356379][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.367045][ T8001] CPU: 0 UID: 0 PID: 8001 Comm: syz.3.1546 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  125.377539][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.386492][ T8001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  125.386510][ T8001] Call Trace:
[  125.386519][ T8001]  <TASK>
[  125.386560][ T8001]  dump_stack_lvl+0xf2/0x150
[  125.386602][ T8001]  dump_stack+0x15/0x1a
[  125.420648][ T8001]  should_fail_ex+0x223/0x230
[  125.425361][ T8001]  should_failslab+0x8f/0xb0
[  125.430065][ T8001]  kmem_cache_alloc_node_noprof+0x59/0x320
[  125.435939][ T8001]  ? __alloc_skb+0x10b/0x310
[  125.440639][ T8001]  __alloc_skb+0x10b/0x310
[  125.445173][ T8001]  ? audit_log_start+0x34c/0x6b0
[  125.450184][ T8001]  audit_log_start+0x368/0x6b0
[  125.455054][ T8001]  audit_seccomp+0x4b/0x130
[  125.459593][ T8001]  __seccomp_filter+0x6fa/0x1180
[  125.464604][ T8001]  ? fput+0x1c4/0x200
[  125.468643][ T8001]  __secure_computing+0x9f/0x1c0
[  125.473752][ T8001]  syscall_trace_enter+0xd1/0x1f0
[  125.478875][ T8001]  ? fpregs_assert_state_consistent+0x83/0xa0
[  125.484970][ T8001]  do_syscall_64+0xaa/0x1c0
[  125.489535][ T8001]  ? clear_bhb_loop+0x55/0xb0
[  125.494302][ T8001]  ? clear_bhb_loop+0x55/0xb0
[  125.499052][ T8001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.505006][ T8001] RIP: 0033:0x7f646047473c
[  125.509438][ T8001] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  125.529103][ T8001] RSP: 002b:00007f645eae1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  125.537575][ T8001] RAX: ffffffffffffffda RBX: 00007f6460665fa0 RCX: 00007f646047473c
[  125.545696][ T8001] RDX: 000000000000000f RSI: 00007f645eae10a0 RDI: 0000000000000009
[  125.553685][ T8001] RBP: 00007f645eae1090 R08: 0000000000000000 R09: 0000000000000000
[  125.561773][ T8001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  125.569822][ T8001] R13: 0000000000000000 R14: 00007f6460665fa0 R15: 00007ffccb27e1b8
[  125.577806][ T8001]  </TASK>
[  125.582128][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.591740][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.601657][ T7995] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  125.685998][ T8015] rdma_op ffff88811b30c580 conn xmit_rdma 0000000000000000
[  125.763621][ T8015] loop0: detected capacity change from 0 to 1024
[  125.780148][ T8026] netlink: 'syz.1.1553': attribute type 10 has an invalid length.
[  125.865494][ T8015] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  125.883934][ T8029] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1554'.
[  125.905412][ T8026] geneve1: entered promiscuous mode
[  125.924759][ T8026] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  125.934773][ T8029] lo: entered promiscuous mode
[  125.939584][ T8029] lo: entered allmulticast mode
[  125.972714][ T8029] tunl0: entered promiscuous mode
[  125.977967][ T8029] tunl0: entered allmulticast mode
[  125.996979][ T8030] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  126.027172][ T8029] gre0: entered promiscuous mode
[  126.032305][ T8029] gre0: entered allmulticast mode
[  126.144160][ T8029] gretap0: entered promiscuous mode
[  126.149500][ T8029] gretap0: entered allmulticast mode
[  126.194442][ T8029] erspan0: entered promiscuous mode
[  126.199801][ T8029] erspan0: entered allmulticast mode
[  126.254458][ T8029] ip_vti0: entered promiscuous mode
[  126.259760][ T8029] ip_vti0: entered allmulticast mode
[  126.295464][ T8029] ip6_vti0: entered promiscuous mode
[  126.300877][ T8029] ip6_vti0: entered allmulticast mode
[  126.334543][ T8029] sit0: entered promiscuous mode
[  126.339700][ T8029] sit0: entered allmulticast mode
[  126.366694][ T8029] ip6tnl0: entered promiscuous mode
[  126.372152][ T8029] ip6tnl0: entered allmulticast mode
[  126.409388][ T8029] ip6gre0: entered promiscuous mode
[  126.415384][ T8029] ip6gre0: entered allmulticast mode
[  126.448011][ T8029] syz_tun: entered promiscuous mode
[  126.453353][ T8029] syz_tun: entered allmulticast mode
[  126.484372][ T8029] ip6gretap0: entered promiscuous mode
[  126.489968][ T8029] ip6gretap0: entered allmulticast mode
[  126.526012][ T8029] vcan0: entered promiscuous mode
[  126.531202][ T8029] vcan0: entered allmulticast mode
[  126.655128][ T8029] bond0: entered promiscuous mode
[  126.660283][ T8029] bond_slave_0: entered promiscuous mode
[  126.666084][ T8029] bond_slave_1: entered promiscuous mode
[  126.671896][ T8029] bond0: entered allmulticast mode
[  126.677088][ T8029] bond_slave_0: entered allmulticast mode
[  126.683046][ T8029] bond_slave_1: entered allmulticast mode
[  126.748199][ T8029] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.762518][ T8029] team0: entered promiscuous mode
[  126.767677][ T8029] team_slave_0: entered promiscuous mode
[  126.773488][ T8029] team_slave_1: entered promiscuous mode
[  126.779509][ T8029] team0: entered allmulticast mode
[  126.784811][ T8029] team_slave_0: entered allmulticast mode
[  126.790669][ T8029] team_slave_1: entered allmulticast mode
[  126.802729][ T8029] 8021q: adding VLAN 0 to HW filter on device team0
[  126.811066][ T8029] dummy0: entered promiscuous mode
[  126.816263][ T8029] dummy0: entered allmulticast mode
[  126.822093][ T8029] nlmon0: entered promiscuous mode
[  126.827360][ T8029] nlmon0: entered allmulticast mode
[  126.834542][ T8029] caif0: entered promiscuous mode
[  126.839636][ T8029] caif0: entered allmulticast mode
[  126.844897][ T8029] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  126.864490][ T8035] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  126.873068][ T8035] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  126.890792][ T8035] syz.4.1557[8035] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.890857][ T8035] syz.4.1557[8035] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.902389][ T8035] syz.4.1557[8035] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.945222][ T8040] loop3: detected capacity change from 0 to 512
[  126.980066][ T8042] loop0: detected capacity change from 0 to 512
[  126.992333][ T8040] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1558: bg 0: block 393: padding at end of block bitmap is not set
[  127.008486][ T8040] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  127.017814][ T8040] EXT4-fs (loop3): 2 truncates cleaned up
[  127.113760][ T8050] loop2: detected capacity change from 0 to 1024
[  127.184354][ T8050] EXT4-fs: Ignoring removed oldalloc option
[  127.336975][ T8078] FAULT_INJECTION: forcing a failure.
[  127.336975][ T8078] name failslab, interval 1, probability 0, space 0, times 0
[  127.349689][ T8078] CPU: 1 UID: 0 PID: 8078 Comm: syz.3.1563 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  127.360405][ T8078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  127.370519][ T8078] Call Trace:
[  127.373808][ T8078]  <TASK>
[  127.376795][ T8078]  dump_stack_lvl+0xf2/0x150
[  127.381470][ T8078]  dump_stack+0x15/0x1a
[  127.385737][ T8078]  should_fail_ex+0x223/0x230
[  127.390612][ T8078]  should_failslab+0x8f/0xb0
[  127.395345][ T8078]  kmem_cache_alloc_node_noprof+0x59/0x320
[  127.401260][ T8078]  ? __alloc_skb+0x10b/0x310
[  127.405898][ T8078]  __alloc_skb+0x10b/0x310
[  127.410367][ T8078]  netlink_alloc_large_skb+0xad/0xe0
[  127.415677][ T8078]  netlink_sendmsg+0x3b4/0x6e0
[  127.420575][ T8078]  ? __pfx_netlink_sendmsg+0x10/0x10
[  127.425894][ T8078]  __sock_sendmsg+0x140/0x180
[  127.430614][ T8078]  ____sys_sendmsg+0x312/0x410
[  127.435408][ T8078]  __sys_sendmsg+0x19d/0x230
[  127.440201][ T8078]  __x64_sys_sendmsg+0x46/0x50
[  127.444984][ T8078]  x64_sys_call+0x2734/0x2dc0
[  127.449738][ T8078]  do_syscall_64+0xc9/0x1c0
[  127.454257][ T8078]  ? clear_bhb_loop+0x55/0xb0
[  127.458983][ T8078]  ? clear_bhb_loop+0x55/0xb0
[  127.463681][ T8078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.469673][ T8078] RIP: 0033:0x7f6460475d29
[  127.474525][ T8078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.494385][ T8078] RSP: 002b:00007f645ea9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  127.502826][ T8078] RAX: ffffffffffffffda RBX: 00007f6460666160 RCX: 00007f6460475d29
[  127.510839][ T8078] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 000000000000000b
[  127.518823][ T8078] RBP: 00007f645ea9f090 R08: 0000000000000000 R09: 0000000000000000
[  127.526905][ T8078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  127.534889][ T8078] R13: 0000000000000000 R14: 00007f6460666160 R15: 00007ffccb27e1b8
[  127.543011][ T8078]  </TASK>
[  128.074076][ T8093] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  128.543694][ T8097] netlink: 'syz.0.1568': attribute type 27 has an invalid length.
[  128.669806][ T8108] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1571'.
[  128.781027][ T8097] batadv_slave_0: left promiscuous mode
[  128.791720][ T8097] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  128.862101][ T8097] geneve0: left allmulticast mode
[  128.879841][ T8097] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  128.888479][ T8097] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  128.896952][ T8097] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  128.905399][ T8097] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  128.922285][ T8097] geneve2: left promiscuous mode
[  128.927326][ T8097] geneve2: left allmulticast mode
[  129.180374][ T8128] syzkaller1: entered promiscuous mode
[  129.185970][ T8128] syzkaller1: entered allmulticast mode
[  129.221535][   T29] kauditd_printk_skb: 44 callbacks suppressed
[  129.221550][   T29] audit: type=1400 audit(1734771263.690:9977): avc:  denied  { getopt } for  pid=8132 comm="syz.2.1579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  129.247229][   T29] audit: type=1400 audit(1734771263.690:9978): avc:  denied  { ioctl } for  pid=8132 comm="syz.2.1579" path="socket:[19448]" dev="sockfs" ino=19448 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  129.271970][   T29] audit: type=1400 audit(1734771263.690:9979): avc:  denied  { create } for  pid=8132 comm="syz.2.1579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  129.291868][   T29] audit: type=1400 audit(1734771263.690:9980): avc:  denied  { setopt } for  pid=8132 comm="syz.2.1579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  129.312274][   T29] audit: type=1400 audit(1734771263.790:9981): avc:  denied  { connect } for  pid=8132 comm="syz.2.1579" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  129.386071][ T8133] loop2: detected capacity change from 0 to 512
[  129.401945][ T8138] loop4: detected capacity change from 0 to 2048
[  129.410174][ T8138] EXT4-fs: Ignoring removed mblk_io_submit option
[  129.418051][ T8133] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  129.461469][ T8133] EXT4-fs (loop2): 1 truncate cleaned up
[  129.477702][   T29] audit: type=1400 audit(1734771263.950:9982): avc:  denied  { mount } for  pid=8149 comm="syz.1.1583" name="/" dev="hugetlbfs" ino=21512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  129.543173][   T29] audit: type=1326 audit(1734771264.010:9983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8142 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  129.566779][   T29] audit: type=1326 audit(1734771264.010:9984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8142 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  129.590252][   T29] audit: type=1326 audit(1734771264.010:9985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8142 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  129.613795][   T29] audit: type=1326 audit(1734771264.010:9986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8142 comm="syz.0.1581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f018b285d29 code=0x7ffc0000
[  129.796840][ T8162] netlink: 'syz.1.1587': attribute type 7 has an invalid length.
[  129.829015][ T8162] netlink: 'syz.1.1587': attribute type 7 has an invalid length.
[  129.944969][ T8162] netlink: 'syz.1.1587': attribute type 7 has an invalid length.
[  130.321406][ T6433] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:29: bg 0: block 234: padding at end of block bitmap is not set
[  130.336357][ T6433] EXT4-fs (loop4): Remounting filesystem read-only
[  130.386992][ T8181] loop4: detected capacity change from 0 to 512
[  130.539795][ T8187] xt_CT: You must specify a L4 protocol and not use inversions on it
[  130.541601][ T8188] loop3: detected capacity change from 0 to 1024
[  130.556563][ T8187] netlink: 'syz.0.1596': attribute type 4 has an invalid length.
[  130.565190][ T8188] EXT4-fs: Ignoring removed nobh option
[  130.570897][ T8188] EXT4-fs: Ignoring removed oldalloc option
[  130.581919][ T8188] EXT4-fs: Mount option(s) incompatible with ext3
[  130.610225][ T8190] syzkaller1: entered promiscuous mode
[  130.616145][ T8190] syzkaller1: entered allmulticast mode
[  130.736028][ T8197] loop4: detected capacity change from 0 to 2048
[  130.754064][ T8195] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1600'.
[  130.854237][ T8210] loop0: detected capacity change from 0 to 1024
[  130.866061][ T8210] EXT4-fs: Ignoring removed nobh option
[  130.871717][ T8210] EXT4-fs: Ignoring removed oldalloc option
[  130.895859][ T8210] EXT4-fs: Mount option(s) incompatible with ext3
[  130.909916][ T8213] loop4: detected capacity change from 0 to 512
[  130.916734][ T8213] ext4: Bad value for 'max_batch_time'
[  130.926165][ T8213] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1605'.
[  131.598357][ T8228] loop3: detected capacity change from 0 to 512
[  131.664871][ T8231] syzkaller1: entered promiscuous mode
[  131.670429][ T8231] syzkaller1: entered allmulticast mode
[  131.691590][ T8228] EXT4-fs: Invalid want_extra_isize 7
[  132.194473][ T8246] loop3: detected capacity change from 0 to 512
[  132.200954][ T8246] EXT4-fs: Ignoring removed bh option
[  132.267105][ T8246] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  132.401358][ T8248] loop4: detected capacity change from 0 to 512
[  132.410123][ T8246] EXT4-fs mount: 30 callbacks suppressed
[  132.410139][ T8246] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.434452][ T8248] EXT4-fs: Ignoring removed oldalloc option
[  132.441233][ T8259] loop2: detected capacity change from 0 to 1024
[  132.457691][ T8248] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  132.469089][ T8259] EXT4-fs: Ignoring removed nobh option
[  132.474711][ T8259] EXT4-fs: Ignoring removed oldalloc option
[  132.483769][ T8246] ext4 filesystem being mounted at /328/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.501337][ T8259] EXT4-fs: Mount option(s) incompatible with ext3
[  132.526275][ T8248] EXT4-fs (loop4): 1 truncate cleaned up
[  132.532482][ T8248] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.586213][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.858789][ T3306] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  132.893285][ T8271] syzkaller1: entered promiscuous mode
[  132.898849][ T8271] syzkaller1: entered allmulticast mode
[  132.918100][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.957561][ T8273] loop4: detected capacity change from 0 to 1024
[  132.973734][ T8273] EXT4-fs: Ignoring removed nobh option
[  132.979379][ T8273] EXT4-fs: Ignoring removed oldalloc option
[  132.986943][ T8273] EXT4-fs: Mount option(s) incompatible with ext3
[  133.085049][ T8277] syzkaller1: entered promiscuous mode
[  133.090627][ T8277] syzkaller1: entered allmulticast mode
[  133.210029][ T8282] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  133.230096][ T8282] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  133.239097][ T8282] syz.3.1630[8282] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.239179][ T8282] syz.3.1630[8282] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.251561][ T8282] syz.3.1630[8282] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.284934][ T8290] loop0: detected capacity change from 0 to 128
[  133.334316][ T8292] loop2: detected capacity change from 0 to 128
[  133.467914][ T8300] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1634'.
[  133.498996][ T8306] loop0: detected capacity change from 0 to 256
[  133.541747][ T8306] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  133.739409][ T8313] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1638'.
[  133.839127][ T8321] loop4: detected capacity change from 0 to 1024
[  133.862942][ T8321] EXT4-fs: Ignoring removed nobh option
[  133.868584][ T8321] EXT4-fs: Ignoring removed oldalloc option
[  133.875806][ T8324] syzkaller1: entered promiscuous mode
[  133.881381][ T8324] syzkaller1: entered allmulticast mode
[  133.894972][ T8321] EXT4-fs: Mount option(s) incompatible with ext3
[  134.120113][ T8349] loop3: detected capacity change from 0 to 128
[  134.484517][ T8362] loop3: detected capacity change from 0 to 128
[  134.566767][ T8327] cgroup: fork rejected by pids controller in /syz2
[  134.614075][   T29] kauditd_printk_skb: 69 callbacks suppressed
[  134.614093][   T29] audit: type=1400 audit(1734771269.090:10056): avc:  denied  { create } for  pid=8372 comm="syz.0.1647" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  134.634727][ T8373] block device autoloading is deprecated and will be removed.
[  134.672903][   T29] audit: type=1400 audit(1734771269.090:10057): avc:  denied  { write } for  pid=8372 comm="syz.0.1647" name="file0" dev="tmpfs" ino=1722 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  134.695934][   T29] audit: type=1400 audit(1734771269.090:10058): avc:  denied  { open } for  pid=8372 comm="syz.0.1647" path="/315/file0" dev="tmpfs" ino=1722 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  134.757579][   T29] audit: type=1400 audit(1734771269.200:10059): avc:  denied  { setattr } for  pid=8372 comm="syz.0.1647" name="file0" dev="tmpfs" ino=1722 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  134.780406][   T29] audit: type=1400 audit(1734771269.220:10060): avc:  denied  { unlink } for  pid=3307 comm="syz-executor" name="file0" dev="tmpfs" ino=1722 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  134.810304][ T8383] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[  134.857021][ T8385] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1650'.
[  134.924455][ T8387] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.947783][ T8387] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  134.961793][ T8393] loop0: detected capacity change from 0 to 512
[  134.969461][ T8387] syz.2.1651[8387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  134.969592][ T8387] syz.2.1651[8387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  134.985438][ T8393] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  135.007853][ T8387] syz.2.1651[8387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.030734][ T8393] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[  135.050460][ T8393] System zones: 1-12
[  135.055004][ T8393] EXT4-fs (loop0): orphan cleanup on readonly fs
[  135.065809][ T8393] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 361: padding at end of block bitmap is not set
[  135.083582][ T8393] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  135.100271][ T8393] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm +}[@: attempt to clear invalid blocks 33619980 len 1
[  135.114659][ T8393] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm +}[@: invalid indirect mapped block 1811939328 (level 0)
[  135.129338][ T8393] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm +}[@: invalid indirect mapped block 2 (level 2)
[  135.142974][ T8393] EXT4-fs (loop0): 1 truncate cleaned up
[  135.154158][ T8393] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  135.183408][ T8393] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (17031!=33349)
[  135.184167][   T29] audit: type=1400 audit(1734771269.660:10061): avc:  denied  { remount } for  pid=8382 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  135.236791][ T8408] loop3: detected capacity change from 0 to 1024
[  135.248022][ T8408] EXT4-fs: Ignoring removed nobh option
[  135.253716][ T8408] EXT4-fs: Ignoring removed oldalloc option
[  135.261850][ T8408] EXT4-fs: Mount option(s) incompatible with ext3
[  135.466384][ T8413] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  136.346755][ T8417] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  136.378322][ T8419] loop4: detected capacity change from 0 to 512
[  136.456913][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  136.543891][   T29] audit: type=1400 audit(1734771271.010:10062): avc:  denied  { append } for  pid=8431 comm="syz.4.1666" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  136.686794][   T29] audit: type=1400 audit(1734771271.160:10063): avc:  denied  { audit_write } for  pid=8431 comm="syz.4.1666" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  136.690353][ T8439] loop4: detected capacity change from 0 to 512
[  136.708145][   T29] audit: type=1107 audit(1734771271.160:10064): pid=8431 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='¯'
[  136.727210][ T8441] netlink: 'syz.1.1665': attribute type 10 has an invalid length.
[  136.876288][ T8440] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1669'.
[  136.905091][ T8439] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  136.962757][ T8439] EXT4-fs (loop4): orphan cleanup on readonly fs
[  137.007859][ T8439] Quota error (device loop4): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  137.081227][ T8439] EXT4-fs warning (device loop4): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  137.217839][ T8439] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  137.336999][ T8439] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1666: bg 0: block 40: padding at end of block bitmap is not set
[  137.400109][ T8452] loop0: detected capacity change from 0 to 1024
[  137.427900][ T8452] EXT4-fs: Ignoring removed oldalloc option
[  137.436215][ T8439] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  137.457030][ T8439] EXT4-fs (loop4): 1 truncate cleaned up
[  137.463298][ T8439] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  137.505166][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.537562][ T8452] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.628207][ T8466] loop3: detected capacity change from 0 to 128
[  137.636344][ T8458] loop4: detected capacity change from 0 to 2048
[  137.655030][ T8458] EXT4-fs: Ignoring removed mblk_io_submit option
[  137.685135][ T8458] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.705167][ T8478] loop1: detected capacity change from 0 to 4096
[  137.719155][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.730745][ T8478] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.867320][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.207554][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.541447][ T8494] SELinux:  Context @ is not valid (left unmapped).
[  140.572564][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  140.572581][   T29] audit: type=1400 audit(1734771275.010:10066): avc:  denied  { nlmsg_read } for  pid=8496 comm="syz.4.1685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  140.572613][   T29] audit: type=1400 audit(1734771275.010:10067): avc:  denied  { relabelto } for  pid=8492 comm="syz.2.1682" name="rdma.current" dev="tmpfs" ino=1812 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="@"
[  140.572647][   T29] audit: type=1400 audit(1734771275.010:10068): avc:  denied  { associate } for  pid=8492 comm="syz.2.1682" name="rdma.current" dev="tmpfs" ino=1812 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="@"
[  140.572681][   T29] audit: type=1400 audit(1734771275.020:10069): avc:  denied  { unlink } for  pid=3303 comm="syz-executor" name="rdma.current" dev="tmpfs" ino=1812 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="@"
[  140.600415][   T29] audit: type=1400 audit(1734771275.070:10070): avc:  denied  { getopt } for  pid=8496 comm="syz.4.1685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  140.730207][ T8495] loop1: detected capacity change from 0 to 128
[  140.738029][ T8495] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  140.750367][ T8495] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  144.604848][ T8509] loop0: detected capacity change from 0 to 4096
[  144.615053][ T8514] loop1: detected capacity change from 0 to 4096
[  144.684154][ T8526] netlink: 5 bytes leftover after parsing attributes in process `syz.3.1693'.
[  144.693121][ T8526] netlink: 5 bytes leftover after parsing attributes in process `syz.3.1693'.
[  144.712413][ T8514] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.724132][ T8527] bond1: entered promiscuous mode
[  144.730012][ T8527] bond1: entered allmulticast mode
[  144.735066][ T8509] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.742996][ T8527] 8021q: adding VLAN 0 to HW filter on device bond1
[  144.775041][ T8527] bond1 (unregistering): Released all slaves
[  144.971695][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.014674][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.030186][ T8540] loop4: detected capacity change from 0 to 1024
[  145.046238][ T8540] EXT4-fs: Ignoring removed oldalloc option
[  145.065055][ T8540] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.127839][ T8557] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1702'.
[  145.140574][ T8557] vlan2: entered allmulticast mode
[  145.145828][ T8557] bridge_slave_0: entered allmulticast mode
[  145.155231][ T8557] bridge_slave_0: left allmulticast mode
[  145.203477][ T8563] xt_hashlimit: max too large, truncated to 1048576
[  145.237258][   T29] audit: type=1400 audit(1734771279.710:10071): avc:  denied  { create } for  pid=8567 comm="syz.1.1707" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  145.268975][ T8570] netlink: 'syz.2.1706': attribute type 10 has an invalid length.
[  145.278290][   T29] audit: type=1326 audit(1734771279.750:10072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  145.302028][   T29] audit: type=1326 audit(1734771279.750:10073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  145.302059][   T29] audit: type=1326 audit(1734771279.750:10074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  145.302091][   T29] audit: type=1326 audit(1734771279.750:10075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  145.345408][ T8570] geneve1: entered promiscuous mode
[  145.372746][ T8572] loop3: detected capacity change from 0 to 4096
[  145.387983][ T8570] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.396951][ T8570] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.405981][ T8570] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.414792][ T8570] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  145.425499][ T8570] geneve1: entered allmulticast mode
[  145.431797][ T8570] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  145.435658][ T8572] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.500224][ T8574] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  145.524893][ T8574] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  145.549022][ T8574] syz.0.1719[8574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  145.549113][ T8574] syz.0.1719[8574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  145.564610][ T8574] syz.0.1719[8574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  145.576295][   T29] kauditd_printk_skb: 79 callbacks suppressed
[  145.576313][   T29] audit: type=1326 audit(1734771280.050:10155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4f8c89cce7 code=0x7ffc0000
[  145.617941][   T29] audit: type=1326 audit(1734771280.050:10156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4f8c841f29 code=0x7ffc0000
[  145.641372][   T29] audit: type=1326 audit(1734771280.050:10157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  145.665067][   T29] audit: type=1326 audit(1734771280.050:10158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4f8c89cce7 code=0x7ffc0000
[  145.688568][   T29] audit: type=1326 audit(1734771280.050:10159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4f8c841f29 code=0x7ffc0000
[  145.712158][   T29] audit: type=1326 audit(1734771280.050:10160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  145.736086][   T29] audit: type=1326 audit(1734771280.060:10161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4f8c89cce7 code=0x7ffc0000
[  145.759690][   T29] audit: type=1326 audit(1734771280.060:10162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4f8c841f29 code=0x7ffc0000
[  145.783334][   T29] audit: type=1326 audit(1734771280.060:10163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8c8a5d29 code=0x7ffc0000
[  145.806937][   T29] audit: type=1326 audit(1734771280.070:10164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8567 comm="syz.1.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4f8c89cce7 code=0x7ffc0000
[  145.832775][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.845683][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.036904][ T8604] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1721'.
[  146.106384][ T8611] loop3: detected capacity change from 0 to 1024
[  146.113179][ T8609] loop2: detected capacity change from 0 to 1024
[  146.123408][ T8611] EXT4-fs: Ignoring removed oldalloc option
[  146.129948][ T8609] EXT4-fs: Ignoring removed oldalloc option
[  146.167326][ T8611] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.196429][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.207799][ T8609] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.298059][ T8622] loop3: detected capacity change from 0 to 1024
[  146.310862][ T8622] EXT4-fs: Ignoring removed oldalloc option
[  146.376084][ T8628] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  146.486105][ T8633] loop0: detected capacity change from 0 to 512
[  146.520210][ T8633] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  146.534177][ T8622] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.555206][ T8633] EXT4-fs (loop0): 1 truncate cleaned up
[  146.561760][ T8633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.616104][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.752072][ T8640] FAULT_INJECTION: forcing a failure.
[  146.752072][ T8640] name failslab, interval 1, probability 0, space 0, times 0
[  146.764880][ T8640] CPU: 0 UID: 0 PID: 8640 Comm: syz.4.1733 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  146.775613][ T8640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  146.775634][ T8640] Call Trace:
[  146.775643][ T8640]  <TASK>
[  146.775653][ T8640]  dump_stack_lvl+0xf2/0x150
[  146.792688][ T8641] loop0: detected capacity change from 0 to 1024
[  146.796607][ T8640]  dump_stack+0x15/0x1a
[  146.804947][ T8641] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  146.807166][ T8640]  should_fail_ex+0x223/0x230
[  146.807246][ T8640]  should_failslab+0x8f/0xb0
[  146.817030][ T8641] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  146.821626][ T8640]  __kmalloc_cache_node_noprof+0x56/0x320
[  146.827865][ T8641] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  146.835778][ T8640]  ? __get_vm_area_node+0xfb/0x1c0
[  146.835822][ T8640]  __get_vm_area_node+0xfb/0x1c0
[  146.843748][ T8641] EXT4-fs error (device loop0): ext4_get_journal_inode:5809: inode #5: comm syz.0.1732: unexpected bad inode w/o EXT4_IGET_BAD
[  146.851596][ T8640]  __vmalloc_node_range_noprof+0x280/0xe80
[  146.857051][ T8641] EXT4-fs (loop0): no journal found
[  146.861652][ T8640]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  146.891572][ T8640]  ? mntput+0x49/0x70
[  146.895579][ T8640]  ? path_openat+0x1a5a/0x1fa0
[  146.900364][ T8640]  ? _parse_integer_limit+0x167/0x180
[  146.905855][ T8640]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  146.911495][ T8640]  __vmalloc_noprof+0x5e/0x70
[  146.916315][ T8640]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  146.921884][ T8640]  bpf_prog_alloc_no_stats+0x49/0x380
[  146.927277][ T8640]  ? bpf_prog_alloc+0x28/0x150
[  146.932073][ T8640]  bpf_prog_alloc+0x3a/0x150
[  146.936674][ T8640]  bpf_prog_create_from_user+0x73/0x240
[  146.942280][ T8640]  ? copy_bpf_fprog_from_user+0x237/0x240
[  146.948110][ T8640]  fanout_set_data+0x1d7/0x330
[  146.953059][ T8640]  packet_setsockopt+0x6e7/0xfd0
[  146.958123][ T8640]  ? __pfx_packet_setsockopt+0x10/0x10
[  146.963606][ T8640]  __sys_setsockopt+0x187/0x200
[  146.968470][ T8640]  __x64_sys_setsockopt+0x66/0x80
[  146.973532][ T8640]  x64_sys_call+0x282e/0x2dc0
[  146.978311][ T8640]  do_syscall_64+0xc9/0x1c0
[  146.982943][ T8640]  ? clear_bhb_loop+0x55/0xb0
[  146.987681][ T8640]  ? clear_bhb_loop+0x55/0xb0
[  146.992375][ T8640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.998338][ T8640] RIP: 0033:0x7f350b785d29
[  147.002764][ T8640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.022387][ T8640] RSP: 002b:00007f3509df1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  147.030840][ T8640] RAX: ffffffffffffffda RBX: 00007f350b975fa0 RCX: 00007f350b785d29
[  147.038816][ T8640] RDX: 0000000000000016 RSI: 0000000000000107 RDI: 0000000000000006
[  147.046860][ T8640] RBP: 00007f3509df1090 R08: 0000000000000010 R09: 0000000000000000
[  147.054905][ T8640] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000001
[  147.062883][ T8640] R13: 0000000000000000 R14: 00007f350b975fa0 R15: 00007ffd26950858
[  147.071024][ T8640]  </TASK>
[  147.074291][ T8640] syz.4.1733: vmalloc error: size 4096, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  147.090128][ T8640] CPU: 0 UID: 0 PID: 8640 Comm: syz.4.1733 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  147.100908][ T8640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  147.111031][ T8640] Call Trace:
[  147.114337][ T8640]  <TASK>
[  147.117295][ T8640]  dump_stack_lvl+0xf2/0x150
[  147.122009][ T8640]  dump_stack+0x15/0x1a
[  147.126211][ T8640]  warn_alloc+0x145/0x1b0
[  147.130641][ T8640]  __vmalloc_node_range_noprof+0x2a5/0xe80
[  147.136677][ T8640]  ? mntput+0x49/0x70
[  147.140742][ T8640]  ? path_openat+0x1a5a/0x1fa0
[  147.145587][ T8640]  ? _parse_integer_limit+0x167/0x180
[  147.150996][ T8640]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  147.156568][ T8640]  __vmalloc_noprof+0x5e/0x70
[  147.161354][ T8640]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  147.166942][ T8640]  bpf_prog_alloc_no_stats+0x49/0x380
[  147.172493][ T8640]  ? bpf_prog_alloc+0x28/0x150
[  147.177361][ T8640]  bpf_prog_alloc+0x3a/0x150
[  147.182015][ T8640]  bpf_prog_create_from_user+0x73/0x240
[  147.187637][ T8640]  ? copy_bpf_fprog_from_user+0x237/0x240
[  147.193385][ T8640]  fanout_set_data+0x1d7/0x330
[  147.198292][ T8640]  packet_setsockopt+0x6e7/0xfd0
[  147.203340][ T8640]  ? __pfx_packet_setsockopt+0x10/0x10
[  147.208864][ T8640]  __sys_setsockopt+0x187/0x200
[  147.213737][ T8640]  __x64_sys_setsockopt+0x66/0x80
[  147.218777][ T8640]  x64_sys_call+0x282e/0x2dc0
[  147.223473][ T8640]  do_syscall_64+0xc9/0x1c0
[  147.228101][ T8640]  ? clear_bhb_loop+0x55/0xb0
[  147.232899][ T8640]  ? clear_bhb_loop+0x55/0xb0
[  147.237633][ T8640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.243587][ T8640] RIP: 0033:0x7f350b785d29
[  147.248040][ T8640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.267719][ T8640] RSP: 002b:00007f3509df1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  147.276320][ T8640] RAX: ffffffffffffffda RBX: 00007f350b975fa0 RCX: 00007f350b785d29
[  147.284407][ T8640] RDX: 0000000000000016 RSI: 0000000000000107 RDI: 0000000000000006
[  147.292393][ T8640] RBP: 00007f3509df1090 R08: 0000000000000010 R09: 0000000000000000
[  147.300436][ T8640] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000001
[  147.308540][ T8640] R13: 0000000000000000 R14: 00007f350b975fa0 R15: 00007ffd26950858
[  147.316581][ T8640]  </TASK>
[  147.319714][ T8640] Mem-Info:
[  147.322828][ T8640] active_anon:17385 inactive_anon:9 isolated_anon:0
[  147.322828][ T8640]  active_file:6764 inactive_file:12462 isolated_file:0
[  147.322828][ T8640]  unevictable:0 dirty:275 writeback:0
[  147.322828][ T8640]  slab_reclaimable:2923 slab_unreclaimable:15551
[  147.322828][ T8640]  mapped:31956 shmem:3421 pagetables:861
[  147.322828][ T8640]  sec_pagetables:0 bounce:0
[  147.322828][ T8640]  kernel_misc_reclaimable:0
[  147.322828][ T8640]  free:1880489 free_pcp:5186 free_cma:0
[  147.368136][ T8640] Node 0 active_anon:69424kB inactive_anon:36kB active_file:27056kB inactive_file:49848kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:127824kB dirty:1100kB writeback:0kB shmem:13684kB writeback_tmp:0kB kernel_stack:3488kB pagetables:3444kB sec_pagetables:0kB all_unreclaimable? no
[  147.397002][ T8640] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  147.424102][ T8640] lowmem_reserve[]: 0 2866 7844 0
[  147.429288][ T8640] Node 0 DMA32 free:2950384kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953916kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[  147.458159][ T8640] lowmem_reserve[]: 0 0 4978 0
[  147.463044][ T8640] Node 0 Normal free:4556212kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:69424kB inactive_anon:36kB active_file:27056kB inactive_file:49848kB unevictable:0kB writepending:1100kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:17468kB local_pcp:1532kB free_cma:0kB
[  147.493473][ T8640] lowmem_reserve[]: 0 0 0 0
[  147.498033][ T8640] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  147.510784][ T8640] Node 0 DMA32: 4*4kB (M) 4*8kB (M) 4*16kB (M) 6*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950384kB
[  147.527053][ T8640] Node 0 Normal: 161*4kB (UME) 70*8kB (UME) 62*16kB (UME) 49*32kB (UME) 86*64kB (UME) 51*128kB (UME) 31*256kB (UME) 15*512kB (U) 19*1024kB (UME) 16*2048kB (UME) 1092*4096kB (UM) = 4556468kB
[  147.546107][ T8640] Node 0 hugepages_total=4 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  147.555664][ T8640] 23110 total pagecache pages
[  147.556362][ T8644] loop0: detected capacity change from 0 to 4096
[  147.560390][ T8640] 4 pages in swap cache
[  147.560400][ T8640] Free swap  = 124684kB
[  147.560408][ T8640] Total swap = 124996kB
[  147.560416][ T8640] 2097051 pages RAM
[  147.560430][ T8640] 0 pages HighMem/MovableOnly
[  147.560436][ T8640] 80180 pages reserved
[  147.624102][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.640119][ T8644] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.687989][ T8649] loop1: detected capacity change from 0 to 1024
[  147.695126][ T8649] EXT4-fs: Ignoring removed oldalloc option
[  147.701759][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.725047][ T8649] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.894467][ T8665] netlink: 'syz.2.1739': attribute type 10 has an invalid length.
[  147.902678][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.943924][ T8665] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  147.952910][ T8665] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  147.962026][ T8665] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  147.971231][ T8665] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  148.027154][ T8671] loop4: detected capacity change from 0 to 128
[  148.055300][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.116743][ T8677] loop0: detected capacity change from 0 to 1024
[  148.150154][ T8677] EXT4-fs: Ignoring removed nobh option
[  148.155812][ T8677] EXT4-fs: Ignoring removed oldalloc option
[  148.431967][ T8677] EXT4-fs: Mount option(s) incompatible with ext3
[  148.498028][ T8675] loop1: detected capacity change from 0 to 8192
[  148.657453][ T8687] loop2: detected capacity change from 0 to 1024
[  148.664191][ T8687] EXT4-fs: Ignoring removed oldalloc option
[  148.690741][ T8687] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.872216][ T8695] loop4: detected capacity change from 0 to 1024
[  148.879141][ T8695] EXT4-fs: Ignoring removed nobh option
[  148.884775][ T8695] EXT4-fs: Ignoring removed oldalloc option
[  148.891727][ T8695] EXT4-fs: Mount option(s) incompatible with ext3
[  149.025659][ T8701] loop0: detected capacity change from 0 to 1024
[  149.057653][ T8701] EXT4-fs: Ignoring removed oldalloc option
[  149.085446][ T8705] loop3: detected capacity change from 0 to 1024
[  149.092482][ T8705] EXT4-fs: Ignoring removed nobh option
[  149.098229][ T8705] EXT4-fs: Ignoring removed oldalloc option
[  149.108875][ T8705] EXT4-fs: Mount option(s) incompatible with ext3
[  149.124241][ T8701] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.171010][ T8709] loop1: detected capacity change from 0 to 1024
[  149.179002][ T8709] EXT4-fs: Ignoring removed nobh option
[  149.184731][ T8709] EXT4-fs: Ignoring removed oldalloc option
[  149.200786][ T8709] EXT4-fs: Mount option(s) incompatible with ext3
[  149.277833][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.425975][ T8717] netlink: 'syz.0.1756': attribute type 10 has an invalid length.
[  149.442223][ T8717] geneve1: entered promiscuous mode
[  149.461577][ T8717] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.469912][ T8717] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.478242][ T8717] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.486540][ T8717] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.509122][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.521798][ T8717] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  149.626278][ T8720] loop2: detected capacity change from 0 to 512
[  149.649428][ T8723] loop0: detected capacity change from 0 to 128
[  149.651686][ T8720] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.1757: corrupted xattr block 255: invalid header
[  149.674851][ T8720] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  149.685318][ T8720] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.699133][ T8723] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  149.712523][ T8720] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.1757: corrupted xattr block 255: invalid header
[  149.727386][ T8723] ext4 filesystem being mounted at /336/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  149.760062][ T8720] SELinux: (dev loop2, type ext4) getxattr errno 117
[  149.780756][ T8720] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.887535][ T8727] loop4: detected capacity change from 0 to 4096
[  149.913982][ T8727] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.096822][ T3307] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  150.126601][ T8743] loop2: detected capacity change from 0 to 4096
[  150.139199][ T8746] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1766'.
[  150.153115][ T8746] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1766'.
[  150.195947][ T8743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.259224][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.504470][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.609606][ T8764] loop2: detected capacity change from 0 to 128
[  150.759072][ T8770] loop2: detected capacity change from 0 to 1024
[  150.767041][ T8770] EXT4-fs: Ignoring removed nobh option
[  150.772641][ T8770] EXT4-fs: Ignoring removed oldalloc option
[  150.787460][ T8770] EXT4-fs: Mount option(s) incompatible with ext3
[  150.929408][   T29] kauditd_printk_skb: 134 callbacks suppressed
[  150.929428][   T29] audit: type=1400 audit(1734771285.400:10299): avc:  denied  { append } for  pid=8771 comm="syz.1.1773" name="rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  150.967312][ T8772] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  151.157998][   T29] audit: type=1400 audit(1734771285.620:10300): avc:  denied  { name_bind } for  pid=8774 comm="syz.0.1774" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  151.213462][ T8776] loop0: detected capacity change from 0 to 2048
[  151.262579][ T8778] loop4: detected capacity change from 0 to 128
[  151.562226][   T29] audit: type=1326 audit(1734771286.030:10301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.4.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350b785d29 code=0x7ffc0000
[  151.586271][   T29] audit: type=1326 audit(1734771286.030:10302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.4.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350b785d29 code=0x7ffc0000
[  151.609918][   T29] audit: type=1326 audit(1734771286.030:10303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.4.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f350b785d29 code=0x7ffc0000
[  151.633401][   T29] audit: type=1326 audit(1734771286.030:10304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.4.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350b785d29 code=0x7ffc0000
[  151.657001][   T29] audit: type=1326 audit(1734771286.030:10305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.4.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350b785d29 code=0x7ffc0000
[  151.680610][   T29] audit: type=1326 audit(1734771286.040:10306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.4.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f350b785d29 code=0x7ffc0000
[  151.704426][   T29] audit: type=1326 audit(1734771286.040:10307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.4.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350b785d29 code=0x7ffc0000
[  151.727975][   T29] audit: type=1326 audit(1734771286.040:10308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.4.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350b785d29 code=0x7ffc0000
[  151.774337][ T8795] loop4: detected capacity change from 0 to 2048
[  151.787016][ T8800] loop2: detected capacity change from 0 to 128
[  151.806367][ T8797] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  151.812967][ T8797] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  151.820514][ T8797] vhci_hcd vhci_hcd.0: Device attached
[  151.827528][ T8795] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.891360][ T8797] infiniband syz2: set active
[  151.896158][ T8797] infiniband syz2: added team0
[  151.917828][ T8797] RDS/IB: syz2: added
[  151.923926][ T8797] smc: adding ib device syz2 with port count 1
[  151.930270][ T8797] smc:    ib device syz2 port 1 has pnetid 
[  151.991207][ T8817] loop2: detected capacity change from 0 to 1024
[  151.999707][ T8817] EXT4-fs: Ignoring removed nobh option
[  152.005472][ T8817] EXT4-fs: Ignoring removed oldalloc option
[  152.011594][ T3358] vhci_hcd: vhci_device speed not set
[  152.018885][ T8817] EXT4-fs: Mount option(s) incompatible with ext3
[  152.073001][ T3358] usb 3-1: new full-speed USB device number 2 using vhci_hcd
[  152.184052][ T8801] vhci_hcd: connection reset by peer
[  152.189723][ T6155] vhci_hcd: stop threads
[  152.194106][ T6155] vhci_hcd: release socket
[  152.198529][ T6155] vhci_hcd: disconnect device
[  152.246870][ T8820] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1786'.
[  152.329031][ T8825] loop3: detected capacity change from 0 to 4096
[  152.340651][ T8825] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.422656][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.513846][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.547497][ T8834] loop4: detected capacity change from 0 to 1024
[  152.554802][ T8834] EXT4-fs: Ignoring removed nobh option
[  152.560393][ T8834] EXT4-fs: Ignoring removed oldalloc option
[  152.568882][ T8834] EXT4-fs: Mount option(s) incompatible with ext3
[  152.809681][ T8847] loop0: detected capacity change from 0 to 128
[  153.180474][ T8861] loop2: detected capacity change from 0 to 256
[  153.220934][ T8861] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  153.433364][ T8863] syzkaller1: entered promiscuous mode
[  153.438915][ T8863] syzkaller1: entered allmulticast mode
[  153.562392][ T8872] loop2: detected capacity change from 0 to 256
[  153.576242][ T8872] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  153.784756][ T8891] loop1: detected capacity change from 0 to 4096
[  153.796697][ T8524] ==================================================================
[  153.804820][ T8524] BUG: KCSAN: data-race in do_mpage_readpage / set_blocksize
[  153.812224][ T8524] 
[  153.814551][ T8524] write to 0xffff8881006374ae of 1 bytes by task 8891 on cpu 0:
[  153.822191][ T8524]  set_blocksize+0x215/0x270
[  153.826807][ T8524]  sb_set_blocksize+0x2c/0xb0
[  153.831585][ T8524]  ext4_fill_super+0xdca/0x3a10
[  153.836464][ T8524]  get_tree_bdev_flags+0x29f/0x310
[  153.841595][ T8524]  get_tree_bdev+0x1f/0x30
[  153.846028][ T8524]  ext4_get_tree+0x1c/0x30
[  153.850469][ T8524]  vfs_get_tree+0x56/0x1e0
[  153.854903][ T8524]  do_new_mount+0x227/0x690
[  153.859423][ T8524]  path_mount+0x49b/0xb30
[  153.863778][ T8524]  __se_sys_mount+0x27c/0x2d0
[  153.868471][ T8524]  __x64_sys_mount+0x67/0x80
[  153.873084][ T8524]  x64_sys_call+0x2c84/0x2dc0
[  153.877768][ T8524]  do_syscall_64+0xc9/0x1c0
[  153.882276][ T8524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.888189][ T8524] 
[  153.890517][ T8524] read to 0xffff8881006374ae of 1 bytes by task 8524 on cpu 1:
[  153.898062][ T8524]  do_mpage_readpage+0x55/0xcb0
[  153.902935][ T8524]  mpage_readahead+0x1ad/0x2d0
[  153.907730][ T8524]  blkdev_readahead+0x1c/0x30
[  153.912420][ T8524]  read_pages+0xa0/0x540
[  153.916673][ T8524]  page_cache_ra_unbounded+0x2b8/0x310
[  153.922140][ T8524]  page_cache_sync_ra+0x252/0x670
[  153.927191][ T8524]  filemap_get_pages+0x2c1/0x10e0
[  153.932228][ T8524]  filemap_read+0x221/0x6a0
[  153.936741][ T8524]  blkdev_read_iter+0x20e/0x2c0
[  153.941668][ T8524]  vfs_read+0x5dc/0x700
[  153.945837][ T8524]  ksys_read+0xe8/0x1b0
[  153.950007][ T8524]  __x64_sys_read+0x42/0x50
[  153.954523][ T8524]  x64_sys_call+0x2874/0x2dc0
[  153.959226][ T8524]  do_syscall_64+0xc9/0x1c0
[  153.963756][ T8524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.969694][ T8524] 
[  153.972027][ T8524] value changed: 0x0a -> 0x0c
[  153.976703][ T8524] 
[  153.979045][ T8524] Reported by Kernel Concurrency Sanitizer on:
[  153.985198][ T8524] CPU: 1 UID: 0 PID: 8524 Comm: udevd Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  153.995449][ T8524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  154.005518][ T8524] ==================================================================
[  154.026853][ T8891] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.065374][ T8896] loop0: detected capacity change from 0 to 2048
[  154.073537][ T8896] EXT4-fs: Ignoring removed mblk_io_submit option
[  154.095279][ T8896] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.140514][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.294054][ T6433] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:29: bg 0: block 234: padding at end of block bitmap is not set
[  154.308860][ T6433] EXT4-fs (loop0): Remounting filesystem read-only
[  154.386068][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.102940][ T3358] usb 3-1: enqueue for inactive port 0
[  157.108500][ T3358] usb 3-1: enqueue for inactive port 0
[  157.183256][ T3358] vhci_hcd: vhci_device speed not set