last executing test programs:

4.90423405s ago: executing program 2 (id=640):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000080))
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f0000000000)=[{0x7, 0x0, 0x83}, {0x9, 0x0, 0xb187}], 0x2, 0x2, 0x0, 0x0, 0x42, 0x5c})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r3}, &(0x7f0000000000), &(0x7f00000005c0)=r4}, 0x20)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r5}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r7}})
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
splice(r2, 0x0, r8, 0x0, 0xf3a, 0x1000000000000000)

1.854657564s ago: executing program 2 (id=703):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
quotactl$Q_GETNEXTQUOTA(0x0, &(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, 0xee00, &(0x7f0000000100))
set_mempolicy(0x3, &(0x7f0000000040)=0x3, 0x6)
syz_mount_image$vfat(&(0x7f00000013c0), &(0x7f0000000280)='./file0\x00', 0x18000, &(0x7f0000001380)=ANY=[], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
r3 = epoll_create1(0x0)
r4 = socket$inet6(0xa, 0x3, 0x3)
connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e24, 0xfffffffd}, 0x1c)
sendmmsg(r4, &(0x7f0000000340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001b40)=ANY=[@ANYBLOB="10000000000000000a0100004df6ef621000000000000000290000003b"], 0x1030}}], 0x1, 0x4000000)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000200)={0x20000004})
finit_module(r5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a0000000400000008000000"], 0x50)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0x12, &(0x7f00000007c0)=ANY=[@ANYRES32=r1, @ANYBLOB="000000000000000028098f6814000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000850000004400000018310000020000000000000000000000bf9100000400000000000000000000008500000085000000b7000000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r6}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x8001, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r7], 0x20)

1.774744644s ago: executing program 1 (id=708):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x6000)
lseek(0xffffffffffffffff, 0x7ffffb, 0x0)
io_submit(0x0, 0x20000000000002c9, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x4000}])
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x0)
write$cgroup_int(r3, &(0x7f0000000000)=0x700, 0x12)

1.707301134s ago: executing program 1 (id=712):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r3}, &(0x7f0000000000), &(0x7f00000005c0)=r4}, 0x20)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r7}})
pipe(&(0x7f00000000c0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
splice(r2, 0x0, r9, 0x0, 0xf3a, 0x1000000000000000)
tee(r8, r1, 0x8, 0x0)
write$binfmt_script(r9, 0x0, 0xfffffe48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0x1b, &(0x7f0000000600)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffe}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@map_fd={0x18, 0x5, 0x1, 0x0, r9}, @jmp={0x5, 0x1, 0x4, 0x5, 0x2, 0x18, 0xfffffffffffffff0}, @call={0x85, 0x0, 0x0, 0x7}, @printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000380)='GPL\x00', 0x3, 0xfe, &(0x7f0000000700)=""/254, 0x41000, 0x11, '\x00', 0x0, 0x25, r9, 0x8, 0x0, 0x0, 0x10, &(0x7f00000003c0)={0x2, 0x0, 0xe, 0x62}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r5, r1, r5, r3, r1, r1, r0, r8, r0], 0x0, 0x10, 0x7, @void, @value}, 0x94)

1.350052413s ago: executing program 3 (id=724):
socket$nl_generic(0x10, 0x3, 0x10)
getpriority(0x1, 0x7)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) (fail_nth: 5)
dup(r0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000011c0)=@newtaction={0x14, 0x30, 0x25}, 0x14}}, 0x0)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
request_key(&(0x7f00000003c0)='ceph\x00', &(0x7f0000000440)={'syz', 0x0}, &(0x7f0000000480)='\x00', 0x0)

1.042160402s ago: executing program 3 (id=727):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)

1.030931832s ago: executing program 3 (id=729):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x8001, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0], 0x20)

995.817792ms ago: executing program 3 (id=731):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000380)=ANY=[@ANYRES32=0x1, @ANYBLOB="00a6ce4e343464abbe8737ec98aec7ef000000000000008000000000feffa5c7e6d9f047c025e24ebc64f9300f48395615ca84b4faf592e75ae2f360d87cb91f01c527bb2993937f4852a3ee24761c1828f57eaebbd6346eedf8015b81f95aa0389cadb06e4012452bbf2efb4ed444", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="034000000100"/28], 0x48)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0x0, 0x0)
read$char_usb(r2, &(0x7f0000000b00)=""/182, 0xb6)
mknod$loop(0x0, 0x2, 0x1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
select(0x0, 0x0, 0x0, 0x0, 0x0)

994.907612ms ago: executing program 2 (id=732):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffb, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='mm_page_alloc\x00', r1, 0x0, 0xf}, 0x18)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x72030, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x7, 0x0, 0x6, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT=r2], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', r4, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
move_pages(0x0, 0x2, &(0x7f0000000080)=[&(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil], 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)

912.638572ms ago: executing program 0 (id=735):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b000000000000", 0x10, 0x0, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000005c0)={0x58, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x82}}]}, 0x58}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
timer_create(0x2, 0x0, &(0x7f0000000280)=<r2=>0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x80001, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x101842, 0x0)
copy_file_range(0xffffffffffffffff, 0x0, r3, 0x0, 0xffffffffa003e459, 0x700000000000000)
clock_gettime(0x0, &(0x7f0000000040)={<r4=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES8=r4], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r6, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r6, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000180)={0x5, {{0x2, 0x0, @multicast2}}}, 0x88)
close_range(r5, 0xffffffffffffffff, 0x10000000000000)
timer_settime(r2, 0x1, &(0x7f0000000000)={{0x77359400}, {0x0, 0x3938700}}, &(0x7f0000000080))

901.493162ms ago: executing program 2 (id=736):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b000000000000", 0x10, 0x0, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000005c0)={0x58, r1, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x82}}]}, 0x58}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
timer_create(0x2, 0x0, &(0x7f0000000280)=<r2=>0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x80001, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0)
copy_file_range(0xffffffffffffffff, 0x0, r3, 0x0, 0xffffffffa003e459, 0x700000000000000)
clock_gettime(0x0, &(0x7f0000000040))
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r6, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r6, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
close_range(r5, 0xffffffffffffffff, 0x10000000000000)
timer_settime(r2, 0x1, &(0x7f0000000000)={{0x77359400}, {0x0, 0x3938700}}, &(0x7f0000000080))

816.837152ms ago: executing program 0 (id=737):
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x2, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
inotify_init()
r1 = creat(0x0, 0x4c)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f00000003c0)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x4}, @qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0x8, 0x2, 0x3}}]}, 0x44}}, 0x0)
r2 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000000080)={0x0, 0x0, 0x40001})
statx(r1, 0x0, 0x0, 0x0, &(0x7f0000000540))
ioctl$MON_IOCH_MFLUSH(r2, 0x9208, 0x5)
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='kfree\x00', r0}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x3, &(0x7f0000000000)={[{@nogrpid}, {@noload}, {@noload}]}, 0x1, 0x626, &(0x7f0000000100)="$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")
r4 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r4, &(0x7f0000000000)=ANY=[@ANYBLOB="7f454c4667030003000000000000000002003e00000000000103000038000000000000000f000000000020000100040000000000000000000300000008000000f30000008100000004000000040000000c00000000040000"], 0x58)
close(r4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x6, 0x4, &(0x7f0000000740)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x35}, [@jmp={0x5, 0x0, 0xa, 0x0, 0x9, 0xfffffffffffffff4, 0x10}]}, &(0x7f0000000840)='GPL\x00', 0xb6a, 0xa1, &(0x7f0000000880)=""/161, 0x41000, 0xa, '\x00', 0x0, 0x25, r4, 0x8, &(0x7f0000000940)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000000980)={0x2, 0x2, 0x70, 0x3}, 0x10, 0x0, 0x0, 0x3, &(0x7f00000009c0)=[r3, r3, r3, r3], &(0x7f0000000a00)=[{0x0, 0x2, 0xe, 0x5}, {0x0, 0x5, 0xb, 0x3}, {0x2, 0x5, 0xc, 0x3}], 0x10, 0x4, @void, @value}, 0x94)

816.570552ms ago: executing program 1 (id=738):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x20000, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) (async, rerun: 32)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) (async, rerun: 32)
r1 = io_uring_setup(0x3454, &(0x7f0000000080)={0x0, 0xffffeffe, 0x40, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) (async)
r2 = epoll_create1(0x0) (async, rerun: 64)
r3 = openat$loop_ctrl(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) (async, rerun: 64)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r4, 0x0, &(0x7f0000001700)=""/53}, 0x20) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async, rerun: 32)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) (async)
r6 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6) (async)
r7 = inotify_init1(0x0)
r8 = inotify_add_watch(r7, &(0x7f0000000200)='.\x00', 0x10000a0) (async)
r9 = dup(r7)
inotify_rm_watch(r9, r8) (async)
r10 = socket$inet_mptcp(0x2, 0x1, 0x106) (async)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) (async, rerun: 64)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r12}, 0x10) (async)
ioctl$TUNSETNOCSUM(r11, 0xc0189436, 0x1ffffffe) (async)
getsockopt$inet_mptcp_buf(r10, 0x6, 0x1, 0xfffffffffffffffd, &(0x7f0000000000)=0x2000000) (async)
epoll_pwait(r2, &(0x7f0000000180)=[{}], 0x1, 0xffffffff, 0x0, 0x0) (async)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r9, &(0x7f0000000140)={0x40002013}) (async)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil) (async, rerun: 32)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240), 0x0}, 0x20) (rerun: 32)

815.279762ms ago: executing program 2 (id=739):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffb, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='mm_page_alloc\x00', r1, 0x0, 0xf}, 0x18)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x72030, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x7, 0x0, 0x6, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT=r2], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', r4, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
move_pages(0x0, 0x2, &(0x7f0000000080)=[&(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil], 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)

726.403341ms ago: executing program 1 (id=740):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="e5ffec96ffffffff00000000007c02787c87020000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000a40)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080100000000000000d8ff0000ecffbea200000000c80007020000f8ffffffb703000200000000b761000000000000850000000100000095e99bb9f46a14020ecbdc2d3564d81ff0dfd38dc90f474774408299c0c6d52806d632e9920d55a82959cdbeecd548998ac0b5ed2e36b33d89b52f5bce3f56cbc148dab4dc50ea4a26cddb191d74fb1db033b4329a2c2e1827f084b6916631b20a0db22f2dfa3491d2e2a5e74159de6426a6c89581f97da732bd6006a4fa5d7cdb09e5ca31181bf6714ddb6bd83e3dc2b58c46a0d3ebda1be52961c843d45618f1620361a549a93e6de938c09298b76d27c787200b3ea35e46100c53a89b1e63b290526804544ad936274d1f1e464cda7c031a61558f0d3b069080ed9c0d15dd9229e23c946dd8eb49443aa4da8f4e2cd35ab900000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r4}, 0x2e)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r5 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x9)
sendfile(r6, r5, 0x0, 0x80)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r7}, 0x18)
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000340)={{0x1, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x4c, 0x80}, 0x91ab, 0xd0c214b, 0x0, 0x0, 0x0, 0x0, 0x2})
setfsgid(0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x46, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}, 0x1, 0x0, 0x0, 0x44}, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)

725.968422ms ago: executing program 4 (id=741):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
preadv(r0, &(0x7f0000000000)=[{&(0x7f0000000080)=""/4094, 0xffe}], 0x1, 0x33, 0x0)
ioctl$PPPIOCATTACH(r0, 0x4004743d, &(0x7f0000000080)=0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYRESHEX=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
r3 = fspick(r2, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x8000}, 0x18)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r4, 0x29, 0x37, &(0x7f0000000280)=ANY=[], 0x8)
setsockopt$inet6_opts(r4, 0x29, 0x39, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x14)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mount$9p_unix(&(0x7f0000000000)='\x00', &(0x7f0000000040)='.\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=unix'])
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r7}, 0x10)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001c00)=ANY=[@ANYBLOB="14030000260001000000000000000000010300800c00000000000000000000001802018014"], 0x314}], 0x1}, 0x0)
r9 = open(&(0x7f00000001c0)='./file0\x00', 0x2a4c0, 0x918d8ecf0d5d0600)
r10 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x8, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$KDFONTOP_SET_DEF(r10, 0x4b72, &(0x7f0000001080)={0x2, 0x1, 0x6, 0x11, 0x21, &(0x7f0000001240)="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"})
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000001100)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000411840a979f584ed653b3de36bc371e3607632599f827a6df6990730e6ca280e351cd0154448d061e1e798d56efa1ed0f65a5fa89a60f58e50f0237eb26268b190540e8636bf48892edfafb6136de8c818c6bc73a78ab84657e836c81134464b63de4f65bbaffb1f77e9e5566352084533b97bea48cf560bc306f3cf88808de138339907f89b6a9303686e11bbf937cd4b9a43607414934541e16824b679bb53c3c7550710ff8b72", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000100000085000000030000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r9, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r12}, 0x10)
mount(0x0, &(0x7f0000001fc0)='./file0\x00', &(0x7f0000002000)='devtmpfs\x00', 0x0, &(0x7f0000002040)='dirsync')
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a30000000000800410073697700140033006c6f"], 0x38}}, 0x0)

724.554261ms ago: executing program 2 (id=742):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
quotactl$Q_GETNEXTQUOTA(0x0, &(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, 0xee00, &(0x7f0000000100))
set_mempolicy(0x3, &(0x7f0000000040)=0x3, 0x6)
syz_mount_image$vfat(&(0x7f00000013c0), &(0x7f0000000280)='./file0\x00', 0x18000, &(0x7f0000001380)=ANY=[], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
r3 = epoll_create1(0x0)
r4 = socket$inet6(0xa, 0x3, 0x3)
connect$inet6(r4, &(0x7f00000002c0)={0xa, 0x4e24, 0xfffffffd}, 0x1c)
sendmmsg(r4, &(0x7f0000000340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001b40)=ANY=[@ANYBLOB="10000000000000000a0100004df6ef621000000000000000290000003b"], 0x1030}}], 0x1, 0x4000000)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000200)={0x20000004})
finit_module(r5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a0000000400000008000000"], 0x50)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0x12, &(0x7f00000007c0)=ANY=[@ANYRES32=r1, @ANYBLOB="000000000000000028098f6814000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000850000004400000018310000020000000000000000000000bf9100000400000000000000000000008500000085000000b7000000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r6}, 0x18)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64], 0x20)

623.132881ms ago: executing program 4 (id=743):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x101082)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SCSI_IOCTL_STOP_UNIT(r3, 0x6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x121, 0x121, 0x7, [@datasec={0xa, 0x8, 0x0, 0xf, 0x1, [{0x1, 0x101}, {0x2, 0x2, 0x1}, {0x3, 0x3, 0x4}, {0x3, 0x1, 0x1ff}, {0x2, 0xff, 0xb5f2}, {0x4, 0xa, 0xfffffffa}, {0x1, 0x7}, {0x4, 0xd, 0xfffffff7}], 'U'}, @restrict={0x2, 0x0, 0x0, 0xb, 0x4}, @union={0x4, 0x3, 0x0, 0x5, 0x1, 0x4, [{0x0, 0x1, 0x1}, {0x2, 0x1, 0x1}, {0x3, 0x0, 0x2}]}, @restrict={0x2, 0x0, 0x0, 0xb, 0x1}, @enum64={0x5, 0x7, 0x0, 0x13, 0x1, 0xa, [{0x1, 0xc, 0x8001}, {0xc, 0x8, 0x8001}, {0x7, 0x8, 0x6}, {0x1, 0x1, 0xfffffff0}, {0x4, 0x3, 0x3ff}, {0x9, 0x2}, {0xa, 0x5, 0x400}]}, @typedef={0x5, 0x0, 0x0, 0x8, 0x2}]}, {0x0, [0x0, 0x30, 0x2e, 0x30, 0x0]}}, &(0x7f00000005c0)=""/143, 0x143, 0x8f, 0x0, 0x3, 0x10000, @value=r3}, 0x28)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000080)='./file1\x00', 0x1808004, &(0x7f0000000d40)=ANY=[@ANYRES16=0x0, @ANYRES32], 0x4, 0x7c1, &(0x7f0000001a00)="$eJzs3U1sHOUZAOB3HIcEI6WIVimKQpgEKgUpmPUaTF0OsKzH9sB619pdV4mqikbEQVYcoFDUkgtElaCtWlU99Ui5cuuNqlIr9dD2VKkceukNiVNFpf6JqkJyNbPrxH9rh+D8QJ7H8n6zs+983zvr9bw7a++3AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABEUp+qVMaSaOTfXjiZDlafarfmtrl9tb/frmvWeWLduBFJ8R3798dH/+qt+9Llmw8WF8ficO/a4dhfNPvjwh0H73zsi8NDq9tvk9DVOnqFcUnE60VS504vLy++dA0SuY5+9OtPvMl/V4rLmayZd1r5XG0mS/NOK52cmKg8NDvdSafzRtY51elmc2m9ndW6rXZ6vP5AOjY5OZ5mo6daC82ZqVojW1356IPVSmUifWp0Pqu1O63mQ09Fpz6bNxp5c6aMqVa+G0XMo8UD8em8m3az2lyanl1aXhzfKdUiaGyrG/b0Hj+H77/zg1fe/+fSYvGAHNRJ0n9gVsfGqtWxiUcmH3m0UhmuVqrrV1Q2iEsRMRRRRFyTBy2fIbt7AIdPYahf/6MReTRjIU5GuuFrb0TsjXpMRTtaMVes+8veTVF9q/X/Kw/9/U/bjbu2/q9W+bsv33woyvp/pHftyKD6vymL6/31crwaF+JcnI7lWI7FeGl3+9+36xkPfdoeknXXZiKLZuTRiVbkMRe1ck3aX5PGZEzERFTimZiN6ehEGtORRyOy6MSp6EQ3svIRVY92ZFGLbrSiHWkcj3o8EGmMxWRMxnikkcVonIpWLEQzZuLBqJW9nI2l8n4f35DlwdvjV8/9+YO3iuVLQWPb7VbxZK4I+sc2QZvK/bb1f2WleL6wMUL9v9Vdg6M4XJ2V1foPAAAAfG4l5avvSfkS/z3l0nTeyL5xo9MCAAAAdlH5l//DRbO3WLonkuL8v7JF5HvXPTcAAABgdyTle+ySiBiJe3tLZ2MpXo/F2OpFAAAAAOAzqPz7/5GiGYl4rVyxOl2K838AAAD4nPjBoDn231+dY7czvy/5TTkHcHJx/uT9yflaEVc7v6e3Xb/5+qUeu9OHkgP9TspmYvjCHUlEDNezw8nq7Jcf7+u1H5aXh4YvbT5orv+k3d42gdg+gfJa/DiO9mKOnum1Z/q3JL1RRqbzRjZabzUeK6dELL67rzy/9L2IYvQfNucOJHF2aXlx9NkXls+UuVwserl4vj+B4rp5FFe+sG0uK/17IO7Zeo/3lm/E6I870hu3snb/h8qt/7dSzjM7cP+TtWO+Ecd6McdGeu3I6i29MfcXY46NPjYWtdqBoW52svvKypq972cxttOe7/BTeCPu68Xcd/y+XrNFFtV1WTy/OYvq2ix690UM7VIWbx197eR/ft9KsvGdshj/BFms7InYmAXAjXK2nPXnchW6vaxCRVEpFPV/Q929fXXLKzjW/vvyKL1nGR/3u42INbVuODZW98t9X1l1X4neEf14L+Z47/nE8KEt6kpliyP6i0sv/qF/RH/4nZ//4ptH/vjLctyrqm7vxAO9mH4Td/1uQI0t9vknG6rq28UWb285bvEcrNOoJnExYs93zr8YB19+9cKDS+dPP7f43OLz1er4ROXhSuWRauwtnyr0m20yBeDWtfNn7AyMuK3fRfLwoLPqfsW769K/FIzGs/FCLMeZOFG+2yAi7t087rvFmfiaf0M4scNZ68iaT3g5scO55eXY6ubYJAbEjq+5x778s7L56Jr8OADguji2TR3eof5femX+xA7n3etr+Yaz4xhcy7fy1Wt6bwDArSFrf5iMdN9M2u18/pmxycmxWnc2S9ut+tNpO5+aydK82c3a9dlacyZL59utbqu++sLxVNZJOwvz8612N51utdMY6uQny09+T/sf/d7J5mrNbl7vzDeyWidL661mt1bvplN5p57OLzzZyDuzWbvcuDOf1fPpvF7r5q1m2mkttOvZaJp2smxNYD6VNbv5dF4sNtP5dj5Xa1+MiMbCXJZOZZ16O5/vtnodro6VN6db7bmy29HNu/+3631/A8DN4OVXL5w7vby8+NLVLfz1SoJv9D4CAOup0gAAAAAAAAAAAAAAcPPb/Ha9Yu2neEfgJ1vYF9d8iFto4Wv9KRl7a4qlmySxG7fwrccfPzco5snX7p69sn62/k3Z6q2ubx6IuO3dn/bWPDE4+Pv937/d2dP3IuIqNl9JtolZd5i47ToflgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgS/8PAAD//9u2aZI=")
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1c1880, 0x0)

503.840531ms ago: executing program 0 (id=744):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r3=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r3, 0x7, {0x0, 0xff, 0x1}}, 0x18)
bind$can_j1939(r0, &(0x7f0000000480)={0x1d, r3, 0x1, {0x2, 0xe, 0x4}, 0xfd}, 0x18)

489.560621ms ago: executing program 4 (id=745):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01dfffffff0000000000210000000c00018008000100", @ANYRES32=r1], 0x20}}, 0x0)

444.998461ms ago: executing program 0 (id=746):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffb, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='mm_page_alloc\x00', r1, 0x0, 0xf}, 0x18)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x72030, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x7, 0x0, 0x6, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT=r2], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', r4, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
move_pages(0x0, 0x2, &(0x7f0000000080)=[&(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil], 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)

444.509381ms ago: executing program 4 (id=747):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b000000000000"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x10, &(0x7f0000000680), 0x1, 0x254, &(0x7f00000006c0)="$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")

375.752221ms ago: executing program 1 (id=748):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x101082)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SCSI_IOCTL_STOP_UNIT(r3, 0x6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000780)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x139, 0x139, 0x7, [@datasec={0xa, 0x8, 0x0, 0xf, 0x1, [{0x1, 0x101}, {0x2, 0x2, 0x1}, {0x3, 0x3, 0x4}, {0x3, 0x1, 0x1ff}, {0x2, 0xff, 0xb5f2}, {0x4, 0xa, 0xfffffffa}, {0x1, 0x7}, {0x4, 0xd, 0xfffffff7}], 'U'}, @enum64={0x5, 0x2, 0x0, 0x13, 0x0, 0xd, [{0x8, 0x3144, 0xb}, {0x2, 0x8}]}, @restrict={0x2, 0x0, 0x0, 0xb, 0x4}, @union={0x4, 0x2, 0x0, 0x5, 0x1, 0x4, [{0x2, 0x1, 0x1}, {0x3, 0x0, 0x2}]}, @restrict={0x2, 0x0, 0x0, 0xb, 0x1}, @enum64={0x5, 0x7, 0x0, 0x13, 0x1, 0xa, [{0x1, 0xc, 0x8001}, {0xc, 0x8, 0x8001}, {0x7, 0x8, 0x6}, {0x1, 0x1, 0xfffffff0}, {0x4, 0x3, 0x3ff}, {0x9, 0x2}, {0xa, 0x5, 0x400}]}, @typedef={0x5, 0x0, 0x0, 0x8, 0x2}]}, {0x0, [0x0, 0x30, 0x2e, 0x30, 0x0]}}, &(0x7f00000005c0)=""/143, 0x15b, 0x8f, 0x0, 0x3, 0x10000, @value=r3}, 0x28)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000080)='./file1\x00', 0x1808004, &(0x7f0000000d40)=ANY=[@ANYRES16=0x0, @ANYRES32], 0x4, 0x7c1, &(0x7f0000001a00)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1c1880, 0x0)

356.833831ms ago: executing program 0 (id=749):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x2) (fail_nth: 4)

207.683441ms ago: executing program 4 (id=750):
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000380)='sys_enter\x00', r0}, 0x10)
getrlimit(0x0, &(0x7f0000000000))

111.351921ms ago: executing program 0 (id=751):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001880)={'bond_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0) (fail_nth: 4)

59.9977ms ago: executing program 3 (id=752):
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c)
connect$pppl2tp(r0, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000001880)={'bond_slave_0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=@ipv4_delroute={0x60, 0x19, 0x1, 0x70bd2b, 0x25dfdbfe, {0x2, 0x10, 0x184, 0x6, 0x0, 0x4, 0xc8, 0x3, 0x2800}, [@RTA_METRICS={0x39, 0x8, 0x0, 0x1, "188ea97b5c3edf503b0ff061d9d727026b1b0936475b40036288e793c4cda0a92e3b105d990584560a0104ef1e3cfed520c4ea406f"}, @RTA_OIF={0x8, 0x4, r7}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4)

38.91276ms ago: executing program 4 (id=753):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000080)='./file1\x00', 0x1808004, &(0x7f0000000d40)=ANY=[@ANYRES16=0x0, @ANYRES32], 0x4, 0x7c1, &(0x7f0000001a00)="$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")
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0)

1.00035ms ago: executing program 3 (id=754):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffb, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='mm_page_alloc\x00', r1, 0x0, 0xf}, 0x18)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x72030, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x7, 0x0, 0x6, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT=r2], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', r4, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
move_pages(0x0, 0x2, &(0x7f0000000080)=[&(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil], 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)

0s ago: executing program 1 (id=755):
iopl(0x3)
r0 = syz_clone3(&(0x7f0000000000)={0x8001000, 0x0, 0x0, 0x0, {0xb}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = geteuid()
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000340)=ANY=[@ANYRESOCT=r2, @ANYRES64=<r4=>r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f00000002c0)='global_dirty_state\x00', r6, 0x0, 0xfffffffffffff46d}, 0xfffffdbb)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000580)=ANY=[@ANYRES32=r7, @ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000003000000850000008600000095", @ANYRESOCT=r6, @ANYBLOB="544863b89751ebfda0ab858f52854acd350a04d5dc2ccecb1516c62457240deb33309dd402c2ded935da668be728e3bce0e0825cf6bbd4ff1af1b173441f873df878faae6d6d944c55d74a2ee6b838e456f1c699e5b1612d77ae19c4b5bb59ed5b3f480e70c588c3f369f69fee5a35f088818be5e8cc70d6b80437b550b2bbc8ced0d0264239f321b7e5b46de7537b32c39febfc28b30ad7ec250031339608f2da7db44f778871089e7bb3e114fb2533b4dba610245cf6a656abefe1af79d382716849a611e67e5f476e36d4b87c362db56c12f05a073dc921ea2102a7ae6e5d871d6631a3f462005d751dfde0f7fb4faa5ff93b"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$pppl2tp(0x18, 0x1, 0x1)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r10, &(0x7f0000000000)={0xa, 0x0, 0x2, @local, 0x9}, 0xffffffffffffffbe)
connect$pppl2tp(r9, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r10, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r9, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="4bd0a5c43b1109b78c708964", @ANYRES32, @ANYRES8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYRES8=r4, @ANYRES64=r8, @ANYBLOB="ecdb63c47b764b0a2b0db54f7f55a463dbec392b10b9b9c0f0544dc2653186d583dad60d2616620ce27d8f0f0e85ea40fd3936665ea75a6754e0ae129190a0651d05fffc8ffcfb5dca605246aeb683f3", @ANYRES32=r0, @ANYRESDEC=r1], &(0x7f00000001c0)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xffffffffffffffd1)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
utimes(&(0x7f0000000300)='./file0\x00', &(0x7f00000004c0)={{0x77359400}, {0x77359400}})
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x100, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000080))
r11 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r11}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000380)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

kernel console output (not intermixed with test programs):

1 #0
[   46.590391][ T4299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   46.590894][ T4294] loop4: detected capacity change from 0 to 128
[   46.600510][ T4299] Call Trace:
[   46.600518][ T4299]  <TASK>
[   46.600525][ T4299]  dump_stack_lvl+0xf2/0x150
[   46.617535][ T4299]  dump_stack+0x15/0x1a
[   46.621735][ T4299]  should_fail_ex+0x223/0x230
[   46.626524][ T4299]  should_fail+0xb/0x10
[   46.630753][ T4299]  should_fail_usercopy+0x1a/0x20
[   46.635794][ T4299]  _copy_from_iter+0xd5/0xd00
[   46.640580][ T4299]  ? kmalloc_reserve+0x16e/0x190
[   46.644997][ T4294] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   46.645503][ T4299]  ? __build_skb_around+0x196/0x1f0
[   46.662656][ T4299]  ? __alloc_skb+0x21f/0x310
[   46.667254][ T4299]  ? __virt_addr_valid+0x1ed/0x250
[   46.669115][ T4294] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.672425][ T4299]  ? __check_object_size+0x364/0x520
[   46.688014][ T4299]  netlink_sendmsg+0x460/0x6e0
[   46.692887][ T4299]  ? __pfx_netlink_sendmsg+0x10/0x10
[   46.693870][ T4284] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.263'.
[   46.698171][ T4299]  __sock_sendmsg+0x140/0x180
[   46.712021][ T4299]  ____sys_sendmsg+0x312/0x410
[   46.716797][ T4299]  __sys_sendmsg+0x19d/0x230
[   46.721417][ T4299]  __x64_sys_sendmsg+0x46/0x50
[   46.726195][ T4299]  x64_sys_call+0x2734/0x2dc0
[   46.730908][ T4299]  do_syscall_64+0xc9/0x1c0
[   46.735419][ T4299]  ? clear_bhb_loop+0x55/0xb0
[   46.740095][ T4299]  ? clear_bhb_loop+0x55/0xb0
[   46.744818][ T4299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.750730][ T4299] RIP: 0033:0x7f20bc6f5d29
[   46.755134][ T4299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.774738][ T4299] RSP: 002b:00007f20bad67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.783167][ T4299] RAX: ffffffffffffffda RBX: 00007f20bc8e5fa0 RCX: 00007f20bc6f5d29
[   46.791130][ T4299] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000006
[   46.799109][ T4299] RBP: 00007f20bad67090 R08: 0000000000000000 R09: 0000000000000000
[   46.807147][ T4299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.815128][ T4299] R13: 0000000000000000 R14: 00007f20bc8e5fa0 R15: 00007ffd845b2608
[   46.823096][ T4299]  </TASK>
[   46.828306][ T4279] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.261: Invalid block bitmap block 0 in block_group 0
[   46.843096][ T4279] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.261: Failed to acquire dquot type 0
[   46.885217][ T3296] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   46.897179][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.897892][ T4304] loop0: detected capacity change from 0 to 764
[   46.921496][ T4306] loop4: detected capacity change from 0 to 512
[   46.930921][ T4306] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   46.946833][ T4308] bpf_get_probe_write_proto: 8 callbacks suppressed
[   46.946844][ T4308] syz.2.271[4308] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.958301][ T4308] syz.2.271[4308] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.972282][ T4306] EXT4-fs (loop4): 1 truncate cleaned up
[   46.986201][ T4308] syz.2.271[4308] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.989527][ T4306] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.040792][ T4311] lo speed is unknown, defaulting to 1000
[   47.055830][ T4306] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   47.071907][ T4313] lo speed is unknown, defaulting to 1000
[   47.078391][ T4306] EXT4-fs (loop4): Remounting filesystem read-only
[   47.081651][ T4314] sctp: [Deprecated]: syz.1.272 (pid 4314) Use of struct sctp_assoc_value in delayed_ack socket option.
[   47.081651][ T4314] Use struct sctp_sack_info instead
[   47.093901][ T4306] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -5)
[   47.121529][ T4315] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   47.161838][ T4306] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   47.180376][ T4306] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop4 ino=12
[   47.203328][ T4313] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.273'.
[   47.213903][ T4304] rock: directory entry would overflow storage
[   47.220079][ T4304] rock: sig=0x4f50, size=4, remaining=3
[   47.225735][ T4304] iso9660: Corrupted directory entry in block 6 of inode 1792
[   47.251388][ T4320] FAULT_INJECTION: forcing a failure.
[   47.251388][ T4320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   47.264539][ T4320] CPU: 1 UID: 0 PID: 4320 Comm: syz.3.275 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   47.275194][ T4320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   47.285244][ T4320] Call Trace:
[   47.288515][ T4320]  <TASK>
[   47.291437][ T4320]  dump_stack_lvl+0xf2/0x150
[   47.296110][ T4320]  dump_stack+0x15/0x1a
[   47.300325][ T4320]  should_fail_ex+0x223/0x230
[   47.305012][ T4320]  should_fail+0xb/0x10
[   47.309199][ T4320]  should_fail_usercopy+0x1a/0x20
[   47.314228][ T4320]  _copy_from_user+0x1e/0xb0
[   47.318948][ T4320]  move_addr_to_kernel+0x82/0x120
[   47.324058][ T4320]  __sys_sendto+0x12e/0x230
[   47.328574][ T4320]  __x64_sys_sendto+0x78/0x90
[   47.333254][ T4320]  x64_sys_call+0x29fa/0x2dc0
[   47.337979][ T4320]  do_syscall_64+0xc9/0x1c0
[   47.342470][ T4320]  ? clear_bhb_loop+0x55/0xb0
[   47.347138][ T4320]  ? clear_bhb_loop+0x55/0xb0
[   47.351806][ T4320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.357767][ T4320] RIP: 0033:0x7fc3e9815d29
[   47.362180][ T4320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.381783][ T4320] RSP: 002b:00007fc3e7e87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   47.390190][ T4320] RAX: ffffffffffffffda RBX: 00007fc3e9a05fa0 RCX: 00007fc3e9815d29
[   47.398161][ T4320] RDX: 0000000000000001 RSI: 0000000020847fff RDI: 0000000000000004
[   47.406182][ T4320] RBP: 00007fc3e7e87090 R08: 000000002005ffe4 R09: 000000000000001c
[   47.414143][ T4320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.422101][ T4320] R13: 0000000000000000 R14: 00007fc3e9a05fa0 R15: 00007fff31917be8
[   47.430083][ T4320]  </TASK>
[   47.451073][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.465864][ T4322] loop0: detected capacity change from 0 to 764
[   47.524940][ T4322] rock: directory entry would overflow storage
[   47.531134][ T4322] rock: sig=0x4f50, size=4, remaining=3
[   47.536716][ T4322] iso9660: Corrupted directory entry in block 6 of inode 1792
[   47.573023][ T4329] netlink: 'syz.0.279': attribute type 29 has an invalid length.
[   47.590225][ T4329] loop0: detected capacity change from 0 to 2048
[   47.594595][ T4327] loop3: detected capacity change from 0 to 4096
[   47.638211][ T4329] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.660135][ T4327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.675286][ T4337] loop1: detected capacity change from 0 to 128
[   47.694125][ T4337] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   47.729305][ T4337] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.737213][ T4335] loop2: detected capacity change from 0 to 4096
[   47.816888][ T4345] 9pnet_fd: Insufficient options for proto=fd
[   47.836198][ T4347] syz.1.283[4347] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   47.836248][ T4347] syz.1.283[4347] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   47.854143][ T4347] syz.1.283[4347] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   47.941746][ T4353] loop1: detected capacity change from 0 to 764
[   47.988366][ T4353] rock: directory entry would overflow storage
[   47.994584][ T4353] rock: sig=0x4f50, size=4, remaining=3
[   48.000131][ T4353] iso9660: Corrupted directory entry in block 6 of inode 1792
[   48.012442][ T4359] loop2: detected capacity change from 0 to 1024
[   48.022482][ T4361] SELinux:  policydb magic number 0x18 does not match expected magic number 0xf97cff8c
[   48.033379][ T4359] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   48.054006][ T4361] SELinux: failed to load policy
[   48.058604][ T4359] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   48.093981][ T4359] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e118, mo2=0000]
[   48.127736][ T4359] System zones: 0-1, 3-12
[   48.154367][ T4359] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #11: comm syz.2.288: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   48.205714][ T4372] program syz.1.294 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   48.224157][ T4359] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.288: couldn't read orphan inode 11 (err -117)
[   48.243927][ T4372] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   48.278962][ T4372] loop1: detected capacity change from 0 to 764
[   48.288328][ T4359] netlink: 12 bytes leftover after parsing attributes in process `syz.2.288'.
[   48.309638][ T4359] netlink: 12 bytes leftover after parsing attributes in process `syz.2.288'.
[   48.319645][ T4372] Symlink component flag not implemented
[   48.328671][ T4372] Symlink component flag not implemented (129)
[   48.349194][ T4372] rock: directory entry would overflow storage
[   48.355406][ T4372] rock: sig=0x4f50, size=4, remaining=3
[   48.361057][ T4372] iso9660: Corrupted directory entry in block 6 of inode 1792
[   48.379705][ T4359] bridge0: entered promiscuous mode
[   48.394043][ T4359] macvlan2: entered promiscuous mode
[   48.412017][ T4359] bridge0: port 3(macvlan2) entered blocking state
[   48.418963][ T4359] bridge0: port 3(macvlan2) entered disabled state
[   48.429209][ T4359] macvlan2: entered allmulticast mode
[   48.434678][ T4359] bridge0: entered allmulticast mode
[   48.448446][ T4377] loop1: detected capacity change from 0 to 128
[   48.456151][ T4359] macvlan2: left allmulticast mode
[   48.461317][ T4359] bridge0: left allmulticast mode
[   48.471519][ T4377] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.494968][ T4359] bridge0: left promiscuous mode
[   48.529484][ T4376] loop3: detected capacity change from 0 to 512
[   48.560001][ T4376] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.561781][ T4380] loop1: detected capacity change from 0 to 4096
[   48.600981][ T4384] syz.2.298[4384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.601092][ T4384] syz.2.298[4384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.621385][ T4384] syz.2.298[4384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   48.683346][ T4380] syz.1.297: attempt to access beyond end of device
[   48.683346][ T4380] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   48.792134][ T4397] loop3: detected capacity change from 0 to 2048
[   48.810003][ T4399] SELinux:  policydb magic number 0x18 does not match expected magic number 0xf97cff8c
[   48.821945][ T4399] SELinux: failed to load policy
[   48.850542][ T4403] program syz.2.306 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   48.867944][ T4403] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   48.880305][   T29] kauditd_printk_skb: 172 callbacks suppressed
[   48.880316][   T29] audit: type=1326 audit(1737070736.403:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   48.895815][ T4407] smc: net device bond0 applied user defined pnetid SYZ0
[   48.915784][ T4403] loop2: detected capacity change from 0 to 764
[   48.924729][ T4409] loop3: detected capacity change from 0 to 164
[   48.931080][   T29] audit: type=1326 audit(1737070736.443:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   48.944081][ T4407] smc: net device bond0 erased user defined pnetid SYZ0
[   48.954455][   T29] audit: type=1326 audit(1737070736.443:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   48.984790][   T29] audit: type=1326 audit(1737070736.443:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   48.993267][ T4409] Unable to read rock-ridge attributes
[   49.008280][   T29] audit: type=1326 audit(1737070736.443:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   49.037104][   T29] audit: type=1326 audit(1737070736.443:2208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   49.060465][   T29] audit: type=1326 audit(1737070736.443:2209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   49.083788][   T29] audit: type=1326 audit(1737070736.443:2210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   49.107170][   T29] audit: type=1326 audit(1737070736.443:2211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   49.107197][   T29] audit: type=1326 audit(1737070736.443:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4362 comm="syz.0.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   49.131630][ T4403] Symlink component flag not implemented
[   49.162167][ T4403] Symlink component flag not implemented (129)
[   49.168502][ T4409] Unable to read rock-ridge attributes
[   49.174677][ T4409] iso9660: Corrupted directory entry in block 4 of inode 1792
[   49.182506][ T4403] rock: directory entry would overflow storage
[   49.188709][ T4403] rock: sig=0x4f50, size=4, remaining=3
[   49.194271][ T4403] iso9660: Corrupted directory entry in block 6 of inode 1792
[   49.246457][ T4417] netlink: 'syz.2.312': attribute type 9 has an invalid length.
[   49.265749][ T4417] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4417 comm=syz.2.312
[   49.337220][ T4425] loop3: detected capacity change from 0 to 764
[   49.376945][ T4425] rock: directory entry would overflow storage
[   49.383171][ T4425] rock: sig=0x4f50, size=4, remaining=3
[   49.388767][ T4425] iso9660: Corrupted directory entry in block 6 of inode 1792
[   49.402528][ T4428] SELinux:  policydb magic number 0x18 does not match expected magic number 0xf97cff8c
[   49.412473][ T4428] SELinux: failed to load policy
[   49.446172][ T4430] syz.3.317[4430] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.450022][ T4430] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   49.471780][ T4430] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   49.837273][ T4445] program syz.4.322 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   49.866907][ T4445] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   49.891677][ T4447] loop4: detected capacity change from 0 to 764
[   49.927843][ T4445] Symlink component flag not implemented
[   49.962570][ T4445] Symlink component flag not implemented (129)
[   49.980299][ T4445] rock: directory entry would overflow storage
[   49.986518][ T4445] rock: sig=0x4f50, size=4, remaining=3
[   49.992098][ T4445] iso9660: Corrupted directory entry in block 6 of inode 1792
[   50.107410][ T4449] loop4: detected capacity change from 0 to 128
[   50.133803][ T4449] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.230976][ T4456] lo speed is unknown, defaulting to 1000
[   50.237958][ T4454] loop3: detected capacity change from 0 to 2048
[   50.324713][ T4462] loop4: detected capacity change from 0 to 764
[   50.337409][ T4462] rock: directory entry would overflow storage
[   50.343595][ T4462] rock: sig=0x4f50, size=4, remaining=3
[   50.349293][ T4462] iso9660: Corrupted directory entry in block 6 of inode 1792
[   50.358407][ T4464] FAULT_INJECTION: forcing a failure.
[   50.358407][ T4464] name failslab, interval 1, probability 0, space 0, times 0
[   50.371073][ T4464] CPU: 1 UID: 0 PID: 4464 Comm: syz.3.328 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   50.381672][ T4464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   50.391786][ T4464] Call Trace:
[   50.395071][ T4464]  <TASK>
[   50.398001][ T4464]  dump_stack_lvl+0xf2/0x150
[   50.402687][ T4464]  dump_stack+0x15/0x1a
[   50.406934][ T4464]  should_fail_ex+0x223/0x230
[   50.411736][ T4464]  should_failslab+0x8f/0xb0
[   50.416340][ T4464]  __kmalloc_node_noprof+0xad/0x410
[   50.421545][ T4464]  ? kfree+0x247/0x2f0
[   50.425726][ T4464]  ? tcp_sigpool_alloc_ahash+0x16e/0x6c0
[   50.431405][ T4464]  tcp_sigpool_alloc_ahash+0x16e/0x6c0
[   50.436910][ T4464]  tcp_md5_alloc_sigpool+0x1b/0x60
[   50.442029][ T4464]  tcp_md5_do_add+0x86/0x1c0
[   50.446660][ T4464]  tcp_v6_parse_md5_keys+0x3d7/0x430
[   50.451961][ T4464]  do_tcp_setsockopt+0xdbc/0x1550
[   50.457032][ T4464]  ? selinux_socket_setsockopt+0x1c9/0x200
[   50.462910][ T4464]  tcp_setsockopt+0x50/0xb0
[   50.467449][ T4464]  sock_common_setsockopt+0x64/0x80
[   50.472655][ T4464]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   50.478692][ T4464]  __sys_setsockopt+0x187/0x200
[   50.483575][ T4464]  __x64_sys_setsockopt+0x66/0x80
[   50.488705][ T4464]  x64_sys_call+0x282e/0x2dc0
[   50.493410][ T4464]  do_syscall_64+0xc9/0x1c0
[   50.497909][ T4464]  ? clear_bhb_loop+0x55/0xb0
[   50.502589][ T4464]  ? clear_bhb_loop+0x55/0xb0
[   50.507261][ T4464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.513299][ T4464] RIP: 0033:0x7fc3e9815d29
[   50.517703][ T4464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.537338][ T4464] RSP: 002b:00007fc3e7e87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   50.545753][ T4464] RAX: ffffffffffffffda RBX: 00007fc3e9a05fa0 RCX: 00007fc3e9815d29
[   50.553776][ T4464] RDX: 000000000000000e RSI: 0000000000000006 RDI: 0000000000000005
[   50.561754][ T4464] RBP: 00007fc3e7e87090 R08: 00000000000000d8 R09: 0000000000000000
[   50.569742][ T4464] R10: 0000000020000580 R11: 0000000000000246 R12: 0000000000000001
[   50.577768][ T4464] R13: 0000000000000000 R14: 00007fc3e9a05fa0 R15: 00007fff31917be8
[   50.585769][ T4464]  </TASK>
[   50.644670][ T4469] FAULT_INJECTION: forcing a failure.
[   50.644670][ T4469] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   50.657853][ T4469] CPU: 1 UID: 0 PID: 4469 Comm: syz.4.329 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   50.668471][ T4469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   50.678522][ T4469] Call Trace:
[   50.681793][ T4469]  <TASK>
[   50.684732][ T4469]  dump_stack_lvl+0xf2/0x150
[   50.689388][ T4469]  dump_stack+0x15/0x1a
[   50.693538][ T4469]  should_fail_ex+0x223/0x230
[   50.698213][ T4469]  should_fail+0xb/0x10
[   50.702359][ T4469]  should_fail_usercopy+0x1a/0x20
[   50.707378][ T4469]  _copy_from_user+0x1e/0xb0
[   50.712010][ T4469]  __se_sys_mount+0x119/0x2d0
[   50.716685][ T4469]  ? ksys_write+0x176/0x1b0
[   50.721281][ T4469]  __x64_sys_mount+0x67/0x80
[   50.725952][ T4469]  x64_sys_call+0x2c84/0x2dc0
[   50.730620][ T4469]  do_syscall_64+0xc9/0x1c0
[   50.735113][ T4469]  ? clear_bhb_loop+0x55/0xb0
[   50.739791][ T4469]  ? clear_bhb_loop+0x55/0xb0
[   50.744500][ T4469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.750383][ T4469] RIP: 0033:0x7fa843725d29
[   50.754789][ T4469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.774537][ T4469] RSP: 002b:00007fa841d97038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   50.782936][ T4469] RAX: ffffffffffffffda RBX: 00007fa843915fa0 RCX: 00007fa843725d29
[   50.790908][ T4469] RDX: 00000000200002c0 RSI: 0000000020000080 RDI: 0000000000000000
[   50.798946][ T4469] RBP: 00007fa841d97090 R08: 0000000020000400 R09: 0000000000000000
[   50.806976][ T4469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.814936][ T4469] R13: 0000000000000000 R14: 00007fa843915fa0 R15: 00007ffead465c28
[   50.822905][ T4469]  </TASK>
[   50.830773][ T4469] 9pnet_fd: Insufficient options for proto=fd
[   50.851420][ T4456] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.326'.
[   50.923950][ T4478] batadv_slave_1: entered promiscuous mode
[   50.931358][ T4477] batadv_slave_1: left promiscuous mode
[   50.950877][ T4482] loop3: detected capacity change from 0 to 2048
[   50.957798][ T4484] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   50.967083][ T4484] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   50.990214][ T4486] loop1: detected capacity change from 0 to 164
[   51.029268][ T4486] syz.1.333: attempt to access beyond end of device
[   51.029268][ T4486] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   51.046320][ T4486] syz.1.333: attempt to access beyond end of device
[   51.046320][ T4486] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.056069][ T4488] loop2: detected capacity change from 0 to 4096
[   51.060082][ T4486] syz.1.333: attempt to access beyond end of device
[   51.060082][ T4486] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.082013][ T4493] lo speed is unknown, defaulting to 1000
[   51.090975][ T4486] syz.1.333: attempt to access beyond end of device
[   51.090975][ T4486] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.095673][ T4488] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #15: comm syz.2.338: corrupted inode contents
[   51.104661][ T4486] syz.1.333: attempt to access beyond end of device
[   51.104661][ T4486] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.130129][ T4488] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #15: comm syz.2.338: mark_inode_dirty error
[   51.131056][ T4486] syz.1.333: attempt to access beyond end of device
[   51.131056][ T4486] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.153584][ T4488] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #15: comm syz.2.338: corrupted inode contents
[   51.156019][ T4486] syz.1.333: attempt to access beyond end of device
[   51.156019][ T4486] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.182255][ T4488] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #15: comm syz.2.338: mark_inode_dirty error
[   51.184818][ T4486] syz.1.333: attempt to access beyond end of device
[   51.184818][ T4486] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.197355][ T4493] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.339'.
[   51.207345][ T4486] syz.1.333: attempt to access beyond end of device
[   51.207345][ T4486] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   51.219761][ T4488] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #15: comm syz.2.338: corrupted inode contents
[   51.260552][ T4488] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #15: comm syz.2.338: mark_inode_dirty error
[   51.288673][ T4500] netlink: 'syz.2.338': attribute type 1 has an invalid length.
[   51.317165][ T4488] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #15: comm syz.2.338: corrupted inode contents
[   51.346390][ T4505] netlink: 40 bytes leftover after parsing attributes in process `syz.2.338'.
[   51.346536][ T4488] EXT4-fs error (device loop2): ext4_truncate:4240: inode #15: comm syz.2.338: mark_inode_dirty error
[   51.382914][ T4488] EXT4-fs error (device loop2) in ext4_setattr:5568: Corrupt filesystem
[   51.395101][ T4498] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #15: comm syz.2.338: corrupted inode contents
[   51.427486][ T4507] smc: net device bond0 applied user defined pnetid SYZ0
[   51.439838][ T4507] smc: net device bond0 erased user defined pnetid SYZ0
[   51.473003][ T3303] EXT4-fs warning (device loop2): ext4_evict_inode:259: couldn't mark inode dirty (err -117)
[   51.577416][ T4513] loop4: detected capacity change from 0 to 256
[   51.639444][ T4513] FAT-fs (loop4): Directory bread(block 64) failed
[   51.646339][ T4513] FAT-fs (loop4): Directory bread(block 65) failed
[   51.654497][ T4513] FAT-fs (loop4): Directory bread(block 66) failed
[   51.665417][ T4513] FAT-fs (loop4): Directory bread(block 67) failed
[   51.695868][ T4517] lo speed is unknown, defaulting to 1000
[   51.704090][ T4513] FAT-fs (loop4): Directory bread(block 68) failed
[   51.716252][ T4513] FAT-fs (loop4): Directory bread(block 69) failed
[   51.734021][ T4513] FAT-fs (loop4): Directory bread(block 70) failed
[   51.747198][ T4513] FAT-fs (loop4): Directory bread(block 71) failed
[   51.770024][ T4513] FAT-fs (loop4): Directory bread(block 72) failed
[   51.784297][ T4513] FAT-fs (loop4): Directory bread(block 73) failed
[   51.805627][ T4523] batadv_slave_1: entered promiscuous mode
[   51.811456][ T4525] loop2: detected capacity change from 0 to 512
[   51.811832][ T4517] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.346'.
[   51.852656][ T4525] ext4 filesystem being mounted at /68/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   51.854596][ T4522] batadv_slave_1: left promiscuous mode
[   51.986582][ T4532] netlink: 32 bytes leftover after parsing attributes in process `syz.0.351'.
[   52.038059][ T4530] netlink: 56 bytes leftover after parsing attributes in process `syz.1.350'.
[   52.048408][ T4530] netlink: 24 bytes leftover after parsing attributes in process `syz.1.350'.
[   52.136541][ T4540] netlink: 32 bytes leftover after parsing attributes in process `syz.0.352'.
[   52.171434][ T4543] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   52.222293][ T4542] loop1: detected capacity change from 0 to 512
[   52.251384][ T4546] FAULT_INJECTION: forcing a failure.
[   52.251384][ T4546] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.264552][ T4546] CPU: 0 UID: 0 PID: 4546 Comm: syz.3.353 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   52.275142][ T4546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   52.285209][ T4546] Call Trace:
[   52.288483][ T4546]  <TASK>
[   52.291403][ T4546]  dump_stack_lvl+0xf2/0x150
[   52.296010][ T4546]  dump_stack+0x15/0x1a
[   52.300201][ T4546]  should_fail_ex+0x223/0x230
[   52.304891][ T4546]  should_fail+0xb/0x10
[   52.309077][ T4546]  should_fail_usercopy+0x1a/0x20
[   52.314104][ T4546]  _copy_to_user+0x20/0xa0
[   52.318567][ T4546]  simple_read_from_buffer+0xa0/0x110
[   52.323948][ T4546]  proc_fail_nth_read+0xf9/0x140
[   52.327258][ T4542] EXT4-fs: inline encryption not supported
[   52.328881][ T4546]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   52.334704][ T4542] EXT4-fs: quotafile must be on filesystem root
[   52.340178][ T4546]  vfs_read+0x1a2/0x700
[   52.350620][ T4546]  ? __rcu_read_unlock+0x4e/0x70
[   52.355616][ T4546]  ? __fget_files+0x17c/0x1c0
[   52.360383][ T4546]  ksys_read+0xe8/0x1b0
[   52.364611][ T4546]  __x64_sys_read+0x42/0x50
[   52.369176][ T4546]  x64_sys_call+0x2874/0x2dc0
[   52.373862][ T4546]  do_syscall_64+0xc9/0x1c0
[   52.378430][ T4546]  ? clear_bhb_loop+0x55/0xb0
[   52.378495][ T4546]  ? clear_bhb_loop+0x55/0xb0
[   52.378516][ T4546]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.378538][ T4546] RIP: 0033:0x7fc3e981473c
[   52.378553][ T4546] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   52.378574][ T4546] RSP: 002b:00007fc3e7e66030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   52.378591][ T4546] RAX: ffffffffffffffda RBX: 00007fc3e9a06080 RCX: 00007fc3e981473c
[   52.378603][ T4546] RDX: 000000000000000f RSI: 00007fc3e7e660a0 RDI: 0000000000000006
[   52.378646][ T4546] RBP: 00007fc3e7e66090 R08: 0000000000000000 R09: 0000000000000000
[   52.378659][ T4546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.378672][ T4546] R13: 0000000000000001 R14: 00007fc3e9a06080 R15: 00007fff31917be8
[   52.378689][ T4546]  </TASK>
[   52.448534][ T4552] program syz.3.357 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   52.448685][ T4552] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   52.452779][ T4552] loop3: detected capacity change from 0 to 764
[   52.522127][ T4555] loop4: detected capacity change from 0 to 128
[   52.536847][ T4552] Symlink component flag not implemented
[   52.537030][ T4552] Symlink component flag not implemented (129)
[   52.550545][ T4552] rock: directory entry would overflow storage
[   52.556765][ T4552] rock: sig=0x4f50, size=4, remaining=3
[   52.562327][ T4552] iso9660: Corrupted directory entry in block 6 of inode 1792
[   52.563236][ T4555] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.598891][ T4560] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   52.611283][ T4560] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   52.615520][ T4562] netlink: 'syz.4.360': attribute type 29 has an invalid length.
[   52.634468][ T4562] loop4: detected capacity change from 0 to 2048
[   52.654496][ T4564] smc: net device bond0 applied user defined pnetid SYZ0
[   52.661771][ T4564] smc: net device bond0 erased user defined pnetid SYZ0
[   52.718034][ T4569] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   52.745346][ T4571] netlink: 32 bytes leftover after parsing attributes in process `syz.4.363'.
[   52.804301][ T4575] loop2: detected capacity change from 0 to 128
[   52.866471][ T4581] netlink: 8 bytes leftover after parsing attributes in process `syz.2.368'.
[   52.901817][ T4586] program syz.2.370 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   52.911190][ T4586] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   52.923127][ T4586] loop2: detected capacity change from 0 to 764
[   52.930535][ T4586] Symlink component flag not implemented
[   52.937502][ T4586] Symlink component flag not implemented (129)
[   52.944230][ T4586] rock: directory entry would overflow storage
[   52.950519][ T4586] rock: sig=0x4f50, size=4, remaining=3
[   52.956115][ T4586] iso9660: Corrupted directory entry in block 6 of inode 1792
[   52.987643][ T4588] lo speed is unknown, defaulting to 1000
[   53.073169][ T4588] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.371'.
[   53.125160][ T4591] netlink: 'syz.2.372': attribute type 29 has an invalid length.
[   53.139958][ T4591] loop2: detected capacity change from 0 to 2048
[   53.214628][ T4599] netlink: 32 bytes leftover after parsing attributes in process `syz.0.374'.
[   53.253588][ T4603] loop1: detected capacity change from 0 to 764
[   53.265718][ T4603] rock: directory entry would overflow storage
[   53.271887][ T4603] rock: sig=0x4f50, size=4, remaining=3
[   53.277599][ T4603] iso9660: Corrupted directory entry in block 6 of inode 1792
[   53.350108][ T4616] netlink: 'syz.3.382': attribute type 29 has an invalid length.
[   53.358983][ T4618] netlink: 80 bytes leftover after parsing attributes in process `syz.2.377'.
[   53.376749][ T4616] loop3: detected capacity change from 0 to 2048
[   53.391249][ T4621] bridge0: port 3(ip6gretap0) entered blocking state
[   53.398291][ T4621] bridge0: port 3(ip6gretap0) entered disabled state
[   53.407511][ T4621] ip6gretap0: entered allmulticast mode
[   53.408929][ T4623] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4623 comm=syz.2.384
[   53.414600][ T4621] ip6gretap0: entered promiscuous mode
[   53.430584][ T4624] bpf_get_probe_write_proto: 2 callbacks suppressed
[   53.430597][ T4624] syz.0.383[4624] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.438058][ T4624] syz.0.383[4624] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.438646][ T4621] bridge0: port 3(ip6gretap0) entered blocking state
[   53.449743][ T4624] syz.0.383[4624] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.460473][ T4621] bridge0: port 3(ip6gretap0) entered forwarding state
[   53.478127][ T4628] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4628 comm=syz.2.384
[   53.498033][ T4628] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4628 comm=syz.2.384
[   53.510397][ T4628] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4628 comm=syz.2.384
[   53.537200][ T4635] netlink: 'syz.0.387': attribute type 29 has an invalid length.
[   53.601723][ T4639] syz.3.388[4639] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.601839][ T4639] syz.3.388[4639] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.614739][ T4639] syz.3.388[4639] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.632409][ T4642] loop4: detected capacity change from 0 to 764
[   53.661541][ T4642] rock: directory entry would overflow storage
[   53.667770][ T4642] rock: sig=0x4f50, size=4, remaining=3
[   53.673319][ T4642] iso9660: Corrupted directory entry in block 6 of inode 1792
[   53.737818][ T4649] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.747192][ T4649] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.310343][   T29] kauditd_printk_skb: 435 callbacks suppressed
[   54.310370][   T29] audit: type=1400 audit(1737070741.833:2648): avc:  denied  { bind } for  pid=4652 comm="syz.1.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   54.364655][   T29] audit: type=1400 audit(1737070741.863:2649): avc:  denied  { read } for  pid=4652 comm="syz.1.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   54.384010][   T29] audit: type=1400 audit(1737070741.873:2650): avc:  denied  { read } for  pid=4654 comm="syz.2.394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   54.397390][ T4657] syz.2.395[4657] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.411162][ T4657] syz.2.395[4657] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.434049][ T4657] syz.2.395[4657] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.481348][   T29] audit: type=1326 audit(1737070742.003:2651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.2.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   54.534667][ T4666] loop1: detected capacity change from 0 to 764
[   54.560276][   T29] audit: type=1326 audit(1737070742.003:2652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.2.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   54.583562][   T29] audit: type=1326 audit(1737070742.003:2653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.2.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   54.606916][   T29] audit: type=1326 audit(1737070742.003:2654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.2.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   54.630160][   T29] audit: type=1326 audit(1737070742.003:2655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.2.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   54.630186][   T29] audit: type=1326 audit(1737070742.003:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.2.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   54.630225][   T29] audit: type=1326 audit(1737070742.003:2657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4656 comm="syz.2.395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   54.710139][ T4670] rock: directory entry would overflow storage
[   54.716347][ T4670] rock: sig=0x4f50, size=4, remaining=3
[   54.721964][ T4670] iso9660: Corrupted directory entry in block 6 of inode 1792
[   54.801937][ T4678] loop1: detected capacity change from 0 to 128
[   54.804937][ T4674] loop4: detected capacity change from 0 to 164
[   54.835140][ T4676] loop2: detected capacity change from 0 to 4096
[   54.842329][ T4674] Unable to read rock-ridge attributes
[   54.849592][ T4674] Unable to read rock-ridge attributes
[   54.859635][ T4683] SELinux:  policydb magic number 0x18 does not match expected magic number 0xf97cff8c
[   54.867478][ T4674] iso9660: Corrupted directory entry in block 4 of inode 1792
[   54.869761][ T4683] SELinux: failed to load policy
[   54.892707][ T4676] block device autoloading is deprecated and will be removed.
[   54.903174][ T4678] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.904070][ T4676] bio_check_eod: 11494 callbacks suppressed
[   54.904082][ T4676] syz.2.403: attempt to access beyond end of device
[   54.904082][ T4676] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   54.952435][ T4689] smc: net device bond0 applied user defined pnetid SYZ0
[   54.960427][ T4689] smc: net device bond0 erased user defined pnetid SYZ0
[   54.984860][ T4693] smc: net device bond0 applied user defined pnetid SYZ0
[   54.992211][ T4693] smc: net device bond0 erased user defined pnetid SYZ0
[   55.067740][ T4703] syz.2.412[4703] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   55.094132][ T4688] loop3: detected capacity change from 0 to 1024
[   55.148464][ T4688] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   55.161679][ T4709] loop4: detected capacity change from 0 to 764
[   55.181242][ T4688] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   55.191369][ T4713] netlink: 'syz.0.416': attribute type 29 has an invalid length.
[   55.206196][ T4709] rock: directory entry would overflow storage
[   55.212376][ T4709] rock: sig=0x4f50, size=4, remaining=3
[   55.217979][ T4709] iso9660: Corrupted directory entry in block 6 of inode 1792
[   55.222606][ T4713] loop0: detected capacity change from 0 to 2048
[   55.232137][ T4688] EXT4-fs error (device loop3): ext4_get_journal_inode:5809: comm syz.3.408: inode #1: comm syz.3.408: iget: illegal inode #
[   55.263276][ T4688] EXT4-fs (loop3): no journal found
[   55.268540][ T4688] EXT4-fs (loop3): can't get journal size
[   55.287257][ T4688] EXT4-fs (loop3): failed to initialize system zone (-22)
[   55.296794][ T4688] EXT4-fs (loop3): mount failed
[   55.310360][ T4715] loop4: detected capacity change from 0 to 2048
[   55.344241][ T4715]  loop4: p1 < > p4
[   55.348682][ T4715] loop4: p4 size 8388608 extends beyond EOD, truncated
[   55.367845][ T4722] loop3: detected capacity change from 0 to 128
[   55.386283][ T2998]  loop4: p1 < > p4
[   55.395662][ T4722] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.414877][ T2998] loop4: p4 size 8388608 extends beyond EOD, truncated
[   55.494780][ T4729] loop4: detected capacity change from 0 to 164
[   55.519120][ T4728] SELinux:  policydb magic number 0x18 does not match expected magic number 0xf97cff8c
[   55.529088][ T4728] SELinux: failed to load policy
[   55.535335][ T4729] Unable to read rock-ridge attributes
[   55.542005][ T4729] Unable to read rock-ridge attributes
[   55.563710][ T4729] iso9660: Corrupted directory entry in block 4 of inode 1792
[   55.605104][ T3491] udevd[3491]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   55.616169][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   55.617991][ T4735] batadv_slave_1: entered promiscuous mode
[   55.681429][ T4732] batadv_slave_1: left promiscuous mode
[   55.764973][ T4743] loop0: detected capacity change from 0 to 764
[   55.785865][ T4743] rock: directory entry would overflow storage
[   55.792042][ T4743] rock: sig=0x4f50, size=4, remaining=3
[   55.797672][ T4743] iso9660: Corrupted directory entry in block 6 of inode 1792
[   55.855883][ T4751] program syz.0.431 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   55.886045][ T4751] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   55.909650][ T4751] loop0: detected capacity change from 0 to 764
[   55.921554][ T4747] loop3: detected capacity change from 0 to 1024
[   55.945763][ T4751] Symlink component flag not implemented
[   55.951708][ T4751] Symlink component flag not implemented (129)
[   55.958979][ T4747] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   55.973006][ T4751] rock: directory entry would overflow storage
[   55.979237][ T4751] rock: sig=0x4f50, size=4, remaining=3
[   55.984855][ T4751] iso9660: Corrupted directory entry in block 6 of inode 1792
[   55.992472][ T4747] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   56.014974][ T4747] EXT4-fs error (device loop3): ext4_get_journal_inode:5809: comm syz.3.429: inode #1: comm syz.3.429: iget: illegal inode #
[   56.028301][ T4747] EXT4-fs (loop3): no journal found
[   56.033520][ T4747] EXT4-fs (loop3): can't get journal size
[   56.050074][ T4760] SELinux:  policydb magic number 0x18 does not match expected magic number 0xf97cff8c
[   56.063035][ T4760] SELinux: failed to load policy
[   56.075023][ T4747] EXT4-fs (loop3): failed to initialize system zone (-22)
[   56.090665][ T4747] EXT4-fs (loop3): mount failed
[   56.097001][ T4767] batadv_slave_1: entered promiscuous mode
[   56.105931][ T4769] program syz.4.437 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   56.125228][ T4766] batadv_slave_1: left promiscuous mode
[   56.134045][ T4769] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   56.170924][ T4777] loop1: detected capacity change from 0 to 512
[   56.187068][ T4769] loop4: detected capacity change from 0 to 764
[   56.208066][ T4781] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   56.211589][ T4779] loop0: detected capacity change from 0 to 2048
[   56.223782][ T4781] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   56.232104][ T4769] Symlink component flag not implemented
[   56.239067][ T4769] Symlink component flag not implemented (129)
[   56.246120][ T4779]  loop0: p1 < > p4
[   56.251017][ T4769] rock: directory entry would overflow storage
[   56.253830][ T4785] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4785 comm=syz.2.444
[   56.257200][ T4769] rock: sig=0x4f50, size=4, remaining=3
[   56.272051][ T4779] loop0: p4 size 8388608 extends beyond EOD, 
[   56.275057][ T4769] iso9660: Corrupted directory entry in block 6 of inode 1792
[   56.284171][ T4777] EXT4-fs (loop1): 1 orphan inode deleted
[   56.288596][ T4779] truncated
[   56.297955][ T4777] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.309014][ T3398] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:7: Failed to release dquot type 1
[   56.344141][ T4786] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4786 comm=syz.2.444
[   56.357219][ T4786] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4786 comm=syz.2.444
[   56.369700][ T4786] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4786 comm=syz.2.444
[   56.373570][ T2998]  loop0: p1 < > p4
[   56.399680][ T2998] loop0: p4 size 8388608 extends beyond EOD, truncated
[   56.419918][ T4790] autofs: Unknown parameter 'no9á ‘ýPƒ¹G!8°‰™�…EŸ8-ö¤ ™�ŠÇÅ–èEeÕ¬(�	IrÝ\•žu}ibˆŒ�ÞêT0;´Œmy´[Gc¯î#Ï>QkÏübYü&“àÌ#“w„@/VV¼Lë~1ƒ2§÷lÿh<yÞ¯ðÕMÈv÷«^7 !JÐ>–O„h'®ÈûrK1‚\kU{!�e½úó¬Üš7»ßß
[   56.419918][ T4790] ÄUúeâ[¦ÓÎ%#s'
[   56.436184][ T4788] loop4: detected capacity change from 0 to 4096
[   56.465134][ T3289] udevd[3289]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   56.480043][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   56.491031][ T4794] SELinux:  policydb magic number 0x18 does not match expected magic number 0xf97cff8c
[   56.507532][ T4794] SELinux: failed to load policy
[   56.514723][ T4797] loop1: detected capacity change from 0 to 512
[   56.529891][ T4797] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   56.542955][ T4788] syz.4.446: attempt to access beyond end of device
[   56.542955][ T4788] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   56.550420][ T4797] EXT4-fs (loop1): 1 truncate cleaned up
[   56.563415][ T4797] FAULT_INJECTION: forcing a failure.
[   56.563415][ T4797] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.576480][ T4797] CPU: 1 UID: 0 PID: 4797 Comm: syz.1.448 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   56.587116][ T4797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   56.597156][ T4797] Call Trace:
[   56.600486][ T4797]  <TASK>
[   56.603401][ T4797]  dump_stack_lvl+0xf2/0x150
[   56.608035][ T4797]  dump_stack+0x15/0x1a
[   56.612191][ T4797]  should_fail_ex+0x223/0x230
[   56.616863][ T4797]  should_fail+0xb/0x10
[   56.621012][ T4797]  should_fail_usercopy+0x1a/0x20
[   56.626023][ T4797]  _copy_to_user+0x20/0xa0
[   56.630443][ T4797]  simple_read_from_buffer+0xa0/0x110
[   56.635812][ T4797]  proc_fail_nth_read+0xf9/0x140
[   56.640762][ T4797]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   56.646345][ T4797]  vfs_read+0x1a2/0x700
[   56.650516][ T4797]  ? __rcu_read_unlock+0x4e/0x70
[   56.655442][ T4797]  ? __fget_files+0x17c/0x1c0
[   56.660113][ T4797]  ksys_read+0xe8/0x1b0
[   56.664339][ T4797]  __x64_sys_read+0x42/0x50
[   56.668885][ T4797]  x64_sys_call+0x2874/0x2dc0
[   56.673550][ T4797]  do_syscall_64+0xc9/0x1c0
[   56.678165][ T4797]  ? clear_bhb_loop+0x55/0xb0
[   56.682830][ T4797]  ? clear_bhb_loop+0x55/0xb0
[   56.687491][ T4797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.693371][ T4797] RIP: 0033:0x7f74ab71473c
[   56.697820][ T4797] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   56.717410][ T4797] RSP: 002b:00007f74a9d87030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   56.725869][ T4797] RAX: ffffffffffffffda RBX: 00007f74ab905fa0 RCX: 00007f74ab71473c
[   56.733847][ T4797] RDX: 000000000000000f RSI: 00007f74a9d870a0 RDI: 0000000000000007
[   56.741855][ T4797] RBP: 00007f74a9d87090 R08: 0000000000000000 R09: 0000000000000000
[   56.749864][ T4797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.757818][ T4797] R13: 0000000000000000 R14: 00007f74ab905fa0 R15: 00007fff37610ec8
[   56.765774][ T4797]  </TASK>
[   56.785187][ T4803] FAULT_INJECTION: forcing a failure.
[   56.785187][ T4803] name failslab, interval 1, probability 0, space 0, times 0
[   56.797851][ T4803] CPU: 1 UID: 0 PID: 4803 Comm: syz.1.451 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   56.808528][ T4803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   56.818612][ T4803] Call Trace:
[   56.821890][ T4803]  <TASK>
[   56.824825][ T4803]  dump_stack_lvl+0xf2/0x150
[   56.825591][ T4799] loop0: detected capacity change from 0 to 1024
[   56.829486][ T4803]  dump_stack+0x15/0x1a
[   56.837500][ T4799] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   56.839930][ T4803]  should_fail_ex+0x223/0x230
[   56.854154][ T4803]  should_failslab+0x8f/0xb0
[   56.858762][ T4803]  kmem_cache_alloc_node_noprof+0x59/0x320
[   56.859234][ T4799] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   56.864602][ T4803]  ? __alloc_skb+0x10b/0x310
[   56.864676][ T4803]  __alloc_skb+0x10b/0x310
[   56.874861][ T4799] EXT4-fs error (device loop0): ext4_get_journal_inode:5809: comm syz.0.450: inode #1: comm syz.0.450: iget: illegal inode #
[   56.879323][ T4803]  netlink_alloc_large_skb+0xad/0xe0
[   56.883780][ T4799] EXT4-fs (loop0): no journal found
[   56.896557][ T4803]  netlink_sendmsg+0x3b4/0x6e0
[   56.896588][ T4803]  ? __pfx_netlink_sendmsg+0x10/0x10
[   56.901852][ T4799] EXT4-fs (loop0): can't get journal size
[   56.907040][ T4803]  __sock_sendmsg+0x140/0x180
[   56.913656][ T4799] EXT4-fs (loop0): failed to initialize system zone (-22)
[   56.917042][ T4803]  ____sys_sendmsg+0x312/0x410
[   56.917071][ T4803]  __sys_sendmsg+0x19d/0x230
[   56.917105][ T4803]  __x64_sys_sendmsg+0x46/0x50
[   56.923956][ T4799] EXT4-fs (loop0): mount failed
[   56.927444][ T4803]  x64_sys_call+0x2734/0x2dc0
[   56.958215][ T4803]  do_syscall_64+0xc9/0x1c0
[   56.962736][ T4803]  ? clear_bhb_loop+0x55/0xb0
[   56.967408][ T4803]  ? clear_bhb_loop+0x55/0xb0
[   56.972135][ T4803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.978023][ T4803] RIP: 0033:0x7f74ab715d29
[   56.982437][ T4803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.002038][ T4803] RSP: 002b:00007f74a9d87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.010518][ T4803] RAX: ffffffffffffffda RBX: 00007f74ab905fa0 RCX: 00007f74ab715d29
[   57.018558][ T4803] RDX: 0000000000000010 RSI: 0000000020000000 RDI: 0000000000000004
[   57.026517][ T4803] RBP: 00007f74a9d87090 R08: 0000000000000000 R09: 0000000000000000
[   57.034508][ T4803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.042532][ T4803] R13: 0000000000000000 R14: 00007f74ab905fa0 R15: 00007fff37610ec8
[   57.050562][ T4803]  </TASK>
[   57.106270][ T4807] batadv_slave_1: entered promiscuous mode
[   57.115790][ T4806] batadv_slave_1: left promiscuous mode
[   57.168840][ T4814] loop4: detected capacity change from 0 to 164
[   57.184719][ T4814] Unable to read rock-ridge attributes
[   57.191577][ T4814] Unable to read rock-ridge attributes
[   57.208793][ T4814] iso9660: Corrupted directory entry in block 4 of inode 1792
[   57.236447][ T4818] loop3: detected capacity change from 0 to 4096
[   57.270683][ T4818] syz.3.458: attempt to access beyond end of device
[   57.270683][ T4818] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   57.496590][ T4831] loop4: detected capacity change from 0 to 512
[   57.514118][ T4838] batadv_slave_1: entered promiscuous mode
[   57.547049][ T4837] batadv_slave_1: left promiscuous mode
[   57.601283][ T4836] loop3: detected capacity change from 0 to 1024
[   57.626910][ T4836] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   57.645443][ T4836] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   57.657377][ T4836] EXT4-fs error (device loop3): ext4_get_journal_inode:5809: comm syz.3.465: inode #1: comm syz.3.465: iget: illegal inode #
[   57.671193][ T4836] EXT4-fs (loop3): no journal found
[   57.671590][ T4843] loop1: detected capacity change from 0 to 2048
[   57.676474][ T4836] EXT4-fs (loop3): can't get journal size
[   57.694044][ T4836] EXT4-fs (loop3): failed to initialize system zone (-22)
[   57.705369][ T4836] EXT4-fs (loop3): mount failed
[   57.724338][ T4843]  loop1: p1 < > p4
[   57.729061][ T4843] loop1: p4 size 8388608 extends beyond EOD, truncated
[   57.747930][ T2998]  loop1: p1 < > p4
[   57.752354][ T2998] loop1: p4 size 8388608 extends beyond EOD, truncated
[   57.787180][ T2998]  loop1: p1 < > p4
[   57.791534][ T2998] loop1: p4 size 8388608 extends beyond EOD, truncated
[   57.908101][ T4852] lo speed is unknown, defaulting to 1000
[   57.915747][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   57.928119][ T3491] udevd[3491]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   57.938397][ T4851] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   57.989912][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   57.989958][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   58.070952][ T4862] loop1: detected capacity change from 0 to 1024
[   58.114960][ T4862] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   58.152598][ T4862] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   58.156991][ T4866] lo speed is unknown, defaulting to 1000
[   58.188316][ T4862] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e118, mo2=0000]
[   58.217748][ T4862] System zones: 0-1, 3-12
[   58.228284][ T4862] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #11: comm syz.1.474: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   58.306688][ T4862] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.474: couldn't read orphan inode 11 (err -117)
[   58.355360][ T4862] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.474: Invalid block bitmap block 0 in block_group 0
[   58.398498][ T4862] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.474: Failed to acquire dquot type 0
[   58.421543][ T4866] __nla_validate_parse: 8 callbacks suppressed
[   58.421556][ T4866] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.475'.
[   58.468466][ T4873] program syz.1.477 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   58.469067][ T4871] loop3: detected capacity change from 0 to 764
[   58.485032][ T4873] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   58.503597][ T4871] rock: directory entry would overflow storage
[   58.509830][ T4871] rock: sig=0x4f50, size=4, remaining=3
[   58.515386][ T4871] iso9660: Corrupted directory entry in block 6 of inode 1792
[   58.544648][ T4873] loop1: detected capacity change from 0 to 764
[   58.570257][ T4873] Symlink component flag not implemented
[   58.590595][ T4873] Symlink component flag not implemented (129)
[   58.617264][ T4873] rock: directory entry would overflow storage
[   58.623441][ T4873] rock: sig=0x4f50, size=4, remaining=3
[   58.629094][ T4873] iso9660: Corrupted directory entry in block 6 of inode 1792
[   58.635267][ T4875] batadv_slave_1: entered promiscuous mode
[   58.648483][ T4874] batadv_slave_1: left promiscuous mode
[   58.691109][ T4885] loop1: detected capacity change from 0 to 1024
[   58.702647][ T4885] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   58.724521][ T4885] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   58.740330][ T4885] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e118, mo2=0000]
[   58.742998][ T4889] loop2: detected capacity change from 0 to 128
[   58.748818][ T4885] System zones: 0-1, 3-12
[   58.762103][ T4893] bpf_get_probe_write_proto: 11 callbacks suppressed
[   58.762117][ T4893] syz.4.486[4893] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.768035][ T4889] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.769062][ T4893] syz.4.486[4893] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.790570][ T4893] syz.4.486[4893] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.802591][ T4885] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #11: comm syz.1.481: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   58.833211][ T4885] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.481: couldn't read orphan inode 11 (err -117)
[   58.840646][ T4887] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   58.880415][ T4885] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.481: Invalid block bitmap block 0 in block_group 0
[   58.894819][ T4885] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.481: Failed to acquire dquot type 0
[   59.009179][ T4903] loop2: detected capacity change from 0 to 764
[   59.023804][ T4908] loop0: detected capacity change from 0 to 764
[   59.037490][ T4903] rock: directory entry would overflow storage
[   59.043660][ T4903] rock: sig=0x4f50, size=4, remaining=3
[   59.049251][ T4903] iso9660: Corrupted directory entry in block 6 of inode 1792
[   59.068566][ T4908] rock: directory entry would overflow storage
[   59.074875][ T4908] rock: sig=0x4f50, size=4, remaining=3
[   59.080417][ T4908] iso9660: Corrupted directory entry in block 6 of inode 1792
[   59.112811][ T4910] loop1: detected capacity change from 0 to 164
[   59.125123][ T4914] FAULT_INJECTION: forcing a failure.
[   59.125123][ T4914] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.138209][ T4914] CPU: 0 UID: 0 PID: 4914 Comm: syz.2.496 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   59.148828][ T4914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.158889][ T4914] Call Trace:
[   59.162153][ T4914]  <TASK>
[   59.165148][ T4914]  dump_stack_lvl+0xf2/0x150
[   59.169740][ T4914]  dump_stack+0x15/0x1a
[   59.173955][ T4914]  should_fail_ex+0x223/0x230
[   59.178628][ T4914]  should_fail+0xb/0x10
[   59.182798][ T4914]  should_fail_usercopy+0x1a/0x20
[   59.187873][ T4914]  _copy_from_user+0x1e/0xb0
[   59.192457][ T4914]  do_sock_getsockopt+0xd3/0x260
[   59.197401][ T4914]  __x64_sys_getsockopt+0x18c/0x200
[   59.202609][ T4914]  x64_sys_call+0x1288/0x2dc0
[   59.207298][ T4914]  do_syscall_64+0xc9/0x1c0
[   59.211844][ T4914]  ? clear_bhb_loop+0x55/0xb0
[   59.216512][ T4914]  ? clear_bhb_loop+0x55/0xb0
[   59.221181][ T4914]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.227179][ T4914] RIP: 0033:0x7fd96e345d29
[   59.231583][ T4914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.251212][ T4914] RSP: 002b:00007fd96c9b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   59.259628][ T4914] RAX: ffffffffffffffda RBX: 00007fd96e535fa0 RCX: 00007fd96e345d29
[   59.267587][ T4914] RDX: 0000000000000084 RSI: 0000000000000084 RDI: 0000000000000003
[   59.275580][ T4914] RBP: 00007fd96c9b7090 R08: 0000000020000500 R09: 0000000000000000
[   59.283583][ T4914] R10: 0000000020000440 R11: 0000000000000246 R12: 0000000000000001
[   59.291597][ T4914] R13: 0000000000000000 R14: 00007fd96e535fa0 R15: 00007ffc4532d458
[   59.299559][ T4914]  </TASK>
[   59.325327][ T4910] Unable to read rock-ridge attributes
[   59.332226][ T4910] Unable to read rock-ridge attributes
[   59.346121][ T4910] iso9660: Corrupted directory entry in block 4 of inode 1792
[   59.394165][ T4920] program syz.1.499 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   59.403806][ T4920] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   59.414886][ T4922] loop2: detected capacity change from 0 to 1024
[   59.425869][ T4922] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   59.427802][ T4920] loop1: detected capacity change from 0 to 764
[   59.441517][ T4922] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   59.455575][ T4920] Symlink component flag not implemented
[   59.461459][ T4920] Symlink component flag not implemented (129)
[   59.461582][ T4924] lo speed is unknown, defaulting to 1000
[   59.476237][ T4920] rock: directory entry would overflow storage
[   59.482387][ T4920] rock: sig=0x4f50, size=4, remaining=3
[   59.487962][ T4920] iso9660: Corrupted directory entry in block 6 of inode 1792
[   59.495461][ T4922] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e118, mo2=0000]
[   59.503611][ T4922] System zones: 0-1, 3-12
[   59.514123][ T4922] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #11: comm syz.2.500: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[   59.533953][ T4922] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.500: couldn't read orphan inode 11 (err -117)
[   59.579753][ T4922] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.500: Invalid block bitmap block 0 in block_group 0
[   59.599831][ T4922] __quota_error: 216 callbacks suppressed
[   59.599846][ T4922] Quota error (device loop2): write_blk: dquota write failed
[   59.613003][ T4922] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   59.625087][ T4922] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.500: Failed to acquire dquot type 0
[   59.632391][ T4924] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.501'.
[   59.660847][ T4933] lo speed is unknown, defaulting to 1000
[   59.716339][   T29] audit: type=1326 audit(1737070747.243:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.2.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   59.717178][ T4939] FAULT_INJECTION: forcing a failure.
[   59.717178][ T4939] name failslab, interval 1, probability 0, space 0, times 0
[   59.743927][   T29] audit: type=1326 audit(1737070747.243:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.2.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   59.752303][ T4939] CPU: 0 UID: 0 PID: 4939 Comm: syz.2.505 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   59.775567][   T29] audit: type=1326 audit(1737070747.243:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.2.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   59.786065][ T4939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.786079][ T4939] Call Trace:
[   59.786086][ T4939]  <TASK>
[   59.786094][ T4939]  dump_stack_lvl+0xf2/0x150
[   59.809564][   T29] audit: type=1326 audit(1737070747.243:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.2.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   59.819396][ T4939]  dump_stack+0x15/0x1a
[   59.819426][ T4939]  should_fail_ex+0x223/0x230
[   59.819470][ T4939]  should_failslab+0x8f/0xb0
[   59.819495][ T4939]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   59.819519][ T4939]  ? sidtab_sid2str_get+0xb8/0x140
[   59.822852][   T29] audit: type=1326 audit(1737070747.243:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.2.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   59.825766][ T4939]  kmemdup_noprof+0x2a/0x60
[   59.830347][   T29] audit: type=1326 audit(1737070747.243:2874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.2.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   59.854324][ T4939]  sidtab_sid2str_get+0xb8/0x140
[   59.854357][ T4939]  security_sid_to_context_core+0x1eb/0x2f0
[   59.858583][   T29] audit: type=1326 audit(1737070747.243:2875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.2.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   59.863226][ T4939]  security_sid_to_context+0x27/0x30
[   59.867822][   T29] audit: type=1326 audit(1737070747.243:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4938 comm="syz.2.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd96e345d29 code=0x7ffc0000
[   59.874090][ T4939]  selinux_lsmprop_to_secctx+0x2c/0x40
[   59.998092][ T4939]  security_lsmprop_to_secctx+0x4a/0x90
[   60.003709][ T4939]  audit_log_task_context+0x93/0x1c0
[   60.008994][ T4939]  audit_log_task+0xf9/0x1c0
[   60.013620][ T4939]  audit_seccomp+0x68/0x130
[   60.018122][ T4939]  __seccomp_filter+0x6fa/0x1180
[   60.023102][ T4939]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   60.028731][ T4939]  ? vfs_write+0x596/0x920
[   60.033147][ T4939]  __secure_computing+0x9f/0x1c0
[   60.038291][ T4939]  syscall_trace_enter+0xd1/0x1f0
[   60.043326][ T4939]  ? fpregs_assert_state_consistent+0x83/0xa0
[   60.049394][ T4939]  do_syscall_64+0xaa/0x1c0
[   60.053932][ T4939]  ? clear_bhb_loop+0x55/0xb0
[   60.058602][ T4939]  ? clear_bhb_loop+0x55/0xb0
[   60.063301][ T4939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.069202][ T4939] RIP: 0033:0x7fd96e345d29
[   60.073645][ T4939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.093282][ T4939] RSP: 002b:00007fd96c9b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   60.101696][ T4939] RAX: ffffffffffffffda RBX: 00007fd96e535fa0 RCX: 00007fd96e345d29
[   60.109667][ T4939] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[   60.117689][ T4939] RBP: 00007fd96c9b7090 R08: 0000000000000000 R09: 0000000000000000
[   60.125660][ T4939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.133636][ T4939] R13: 0000000000000000 R14: 00007fd96e535fa0 R15: 00007ffc4532d458
[   60.141608][ T4939]  </TASK>
[   60.190586][ T4943] loop3: detected capacity change from 0 to 2048
[   60.199685][ T4948] loop2: detected capacity change from 0 to 512
[   60.202022][ T4947] loop4: detected capacity change from 0 to 164
[   60.211609][ T4948] EXT4-fs: inline encryption not supported
[   60.220896][ T4947] Unable to read rock-ridge attributes
[   60.230129][ T4947] Unable to read rock-ridge attributes
[   60.237363][ T4947] iso9660: Corrupted directory entry in block 4 of inode 1792
[   60.238487][ T4943]  loop3: p1 < > p4
[   60.249965][ T4948] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   60.258546][ T4943] loop3: p4 size 8388608 extends beyond EOD, 
[   60.261467][ T4948] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it
[   60.261486][ T4948] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.505: Corrupt directory, running e2fsck is recommended
[   60.271564][ T4948] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[   60.277762][ T4943] truncated
[   60.302362][ T4948] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.505: corrupted in-inode xattr: invalid ea_ino
[   60.316614][ T4954] loop4: detected capacity change from 0 to 128
[   60.323220][ T4948] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.505: couldn't read orphan inode 15 (err -117)
[   60.350996][ T4939] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   60.362669][ T4939] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it
[   60.373003][ T4939] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.505: Corrupt directory, running e2fsck is recommended
[   60.387597][ T4939] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 3: comm syz.2.505: path /97/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[   60.392607][ T4950] loop1: detected capacity change from 0 to 1024
[   60.424678][ T4950] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   60.434727][ T4948] netlink: 16 bytes leftover after parsing attributes in process `syz.2.505'.
[   60.435476][ T2998]  loop3: p1 < > p4
[   60.447649][ T4950] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   60.447808][ T4950] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: comm syz.1.510: inode #1: comm syz.1.510: iget: illegal inode #
[   60.448287][ T4950] EXT4-fs (loop1): no journal found
[   60.459814][ T4939] EXT4-fs error (device loop2): ext4_readdir:261: inode #2: block 8: comm syz.2.505: path /97/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=33261, rec_len=1050, size=1024 fake=0
[   60.470934][ T4950] EXT4-fs (loop1): can't get journal size
[   60.504151][ T2998] loop3: p4 size 8388608 extends beyond EOD, truncated
[   60.512276][ T4950] EXT4-fs (loop1): failed to initialize system zone (-22)
[   60.521518][ T4950] EXT4-fs (loop1): mount failed
[   60.550054][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   60.563052][ T3491] udevd[3491]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   60.601440][ T4964] loop3: detected capacity change from 0 to 128
[   60.626681][ T4972] loop2: detected capacity change from 0 to 164
[   60.648219][ T4964] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.734203][ T4972] Unable to read rock-ridge attributes
[   60.767464][ T4972] Unable to read rock-ridge attributes
[   60.788085][ T4972] iso9660: Corrupted directory entry in block 4 of inode 1792
[   60.808947][ T4991] loop1: detected capacity change from 0 to 2048
[   60.880665][ T4997] 9pnet: Could not find request transport: unixon=0000
[   60.880665][ T4997] N: Name="ImExPS/2 Generic Explorer Mouse"
[   60.880665][ T4997] P: Phys=isa0060/serio1/input0
[   60.880665][ T4997] S: Sysfs=/devices/platform/i8042/serio1/input/input4
[   60.880665][ T4997] U: Uniq=
[   60.880665][ T4997] H: Handlers=event3 
[   60.880665][ T4997] B: PROP=1
[   60.880665][ T4997] B: EV=7
[   60.880665][ T4997] B:
[   60.906857][ T5000] loop0: detected capacity change from 0 to 4096
[   60.929749][ T4997] netlink: 'syz.2.525': attribute type 1 has an invalid length.
[   60.937457][ T4997] netlink: 220 bytes leftover after parsing attributes in process `syz.2.525'.
[   60.983381][ T5006] netlink: 'syz.1.529': attribute type 29 has an invalid length.
[   61.000769][ T5006] loop1: detected capacity change from 0 to 2048
[   61.027176][ T5012] program syz.3.533 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   61.036474][ T5012] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   61.057905][ T5012] loop3: detected capacity change from 0 to 764
[   61.071090][ T5016] loop0: detected capacity change from 0 to 4096
[   61.080276][ T5012] Symlink component flag not implemented
[   61.086362][ T5012] Symlink component flag not implemented (129)
[   61.093216][ T5012] rock: directory entry would overflow storage
[   61.099482][ T5012] rock: sig=0x4f50, size=4, remaining=3
[   61.105064][ T5012] iso9660: Corrupted directory entry in block 6 of inode 1792
[   61.156787][ T5026] loop9: detected capacity change from 0 to 7
[   61.236340][ T5037] loop0: detected capacity change from 0 to 2048
[   61.274397][ T5037]  loop0: p1 < > p4
[   61.279467][ T5037] loop0: p4 size 8388608 extends beyond EOD, truncated
[   61.306550][ T2998]  loop0: p1 < > p4
[   61.310750][ T2998] loop0: p4 size 8388608 extends beyond EOD, truncated
[   61.337616][ T5048] loop2: detected capacity change from 0 to 512
[   61.348380][ T5050] loop0: detected capacity change from 0 to 164
[   61.356594][ T5050] Unable to read rock-ridge attributes
[   61.360962][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   61.363273][ T3282] udevd[3282]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   61.382621][ T5050] Unable to read rock-ridge attributes
[   61.382732][ T5048] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   61.391390][ T5050] iso9660: Corrupted directory entry in block 4 of inode 1792
[   61.402286][ T5048] EXT4-fs (loop2): orphan cleanup on readonly fs
[   61.413532][ T5048] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   61.428446][ T5048] EXT4-fs (loop2): Cannot turn on quotas: error -117
[   61.435837][ T5048] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.547: bg 0: block 40: padding at end of block bitmap is not set
[   61.450496][ T5048] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   61.460654][ T5048] EXT4-fs (loop2): 1 truncate cleaned up
[   61.471184][ T5057] FAULT_INJECTION: forcing a failure.
[   61.471184][ T5057] name failslab, interval 1, probability 0, space 0, times 0
[   61.483831][ T5057] CPU: 0 UID: 0 PID: 5057 Comm: syz.0.549 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   61.494423][ T5057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.504468][ T5057] Call Trace:
[   61.507786][ T5057]  <TASK>
[   61.510765][ T5057]  dump_stack_lvl+0xf2/0x150
[   61.515362][ T5057]  dump_stack+0x15/0x1a
[   61.519515][ T5057]  should_fail_ex+0x223/0x230
[   61.524201][ T5057]  ? audit_log_d_path+0x96/0x250
[   61.529131][ T5057]  should_failslab+0x8f/0xb0
[   61.533981][ T5057]  __kmalloc_cache_noprof+0x4e/0x320
[   61.539304][ T5057]  audit_log_d_path+0x96/0x250
[   61.544060][ T5057]  ? __rcu_read_unlock+0x4e/0x70
[   61.549099][ T5057]  audit_log_d_path_exe+0x42/0x70
[   61.554145][ T5057]  audit_log_task+0x192/0x1c0
[   61.558813][ T5057]  audit_seccomp+0x68/0x130
[   61.563309][ T5057]  __seccomp_filter+0x6fa/0x1180
[   61.568356][ T5057]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   61.574052][ T5057]  ? vfs_write+0x596/0x920
[   61.578467][ T5057]  ? putname+0xcf/0xf0
[   61.582528][ T5057]  __secure_computing+0x9f/0x1c0
[   61.587467][ T5057]  syscall_trace_enter+0xd1/0x1f0
[   61.592493][ T5057]  ? fpregs_assert_state_consistent+0x83/0xa0
[   61.598646][ T5057]  do_syscall_64+0xaa/0x1c0
[   61.603148][ T5057]  ? clear_bhb_loop+0x55/0xb0
[   61.607824][ T5057]  ? clear_bhb_loop+0x55/0xb0
[   61.612497][ T5057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.618384][ T5057] RIP: 0033:0x7f20bc6f5d29
[   61.622799][ T5057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.642412][ T5057] RSP: 002b:00007f20bad67038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   61.650852][ T5057] RAX: ffffffffffffffda RBX: 00007f20bc8e5fa0 RCX: 00007f20bc6f5d29
[   61.658831][ T5057] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 000000000000000a
[   61.666795][ T5057] RBP: 00007f20bad67090 R08: 0000000000000000 R09: 0000000000000000
[   61.674834][ T5057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.682798][ T5057] R13: 0000000000000000 R14: 00007f20bc8e5fa0 R15: 00007ffd845b2608
[   61.690807][ T5057]  </TASK>
[   61.722499][ T5064] netlink: 'syz.0.551': attribute type 29 has an invalid length.
[   61.741678][ T5064] loop0: detected capacity change from 0 to 2048
[   61.876381][ T5090] loop2: detected capacity change from 0 to 128
[   61.886851][ T5090] ext4 filesystem being mounted at /106/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.917656][ T5095] batadv_slave_1: entered promiscuous mode
[   61.931051][ T5094] batadv_slave_1: left promiscuous mode
[   61.946256][ T5099] loop1: detected capacity change from 0 to 2048
[   61.984286][ T5099]  loop1: p1 < > p4
[   61.988743][ T5099] loop1: p4 size 8388608 extends beyond EOD, truncated
[   62.022162][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   62.023193][ T3491] udevd[3491]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   62.089414][ T5105] loop2: detected capacity change from 0 to 1024
[   62.096257][ T5105] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   62.106038][ T5105] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   62.116391][ T5105] EXT4-fs error (device loop2): ext4_get_journal_inode:5809: comm syz.2.559: inode #1: comm syz.2.559: iget: illegal inode #
[   62.129768][ T5105] EXT4-fs (loop2): no journal found
[   62.135021][ T5105] EXT4-fs (loop2): can't get journal size
[   62.140950][ T5113] FAULT_INJECTION: forcing a failure.
[   62.140950][ T5113] name failslab, interval 1, probability 0, space 0, times 0
[   62.151023][ T5105] EXT4-fs (loop2): failed to initialize system zone (-22)
[   62.153585][ T5113] CPU: 1 UID: 0 PID: 5113 Comm: syz.1.561 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   62.160687][ T5105] EXT4-fs (loop2): mount failed
[   62.171178][ T5113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   62.171192][ T5113] Call Trace:
[   62.171199][ T5113]  <TASK>
[   62.171206][ T5113]  dump_stack_lvl+0xf2/0x150
[   62.196835][ T5113]  dump_stack+0x15/0x1a
[   62.200990][ T5113]  should_fail_ex+0x223/0x230
[   62.205664][ T5113]  should_failslab+0x8f/0xb0
[   62.210350][ T5113]  kmem_cache_alloc_node_noprof+0x59/0x320
[   62.216505][ T5113]  ? __alloc_skb+0x10b/0x310
[   62.221085][ T5113]  __alloc_skb+0x10b/0x310
[   62.225565][ T5113]  rtmsg_ifinfo_build_skb+0x63/0x1b0
[   62.230944][ T5113]  rtmsg_ifinfo+0x6b/0x100
[   62.235352][ T5113]  __dev_notify_flags+0x75/0x1a0
[   62.240421][ T5113]  dev_change_flags+0xab/0xd0
[   62.245096][ T5113]  dev_ifsioc+0x67f/0xa10
[   62.249417][ T5113]  dev_ioctl+0x7fa/0xab0
[   62.253656][ T5113]  sock_do_ioctl+0x11c/0x260
[   62.258314][ T5113]  sock_ioctl+0x40f/0x600
[   62.262639][ T5113]  ? __pfx_sock_ioctl+0x10/0x10
[   62.267483][ T5113]  __se_sys_ioctl+0xc9/0x140
[   62.272152][ T5113]  __x64_sys_ioctl+0x43/0x50
[   62.276759][ T5113]  x64_sys_call+0x1690/0x2dc0
[   62.281426][ T5113]  do_syscall_64+0xc9/0x1c0
[   62.286019][ T5113]  ? clear_bhb_loop+0x55/0xb0
[   62.290687][ T5113]  ? clear_bhb_loop+0x55/0xb0
[   62.295427][ T5113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.301382][ T5113] RIP: 0033:0x7f74ab715d29
[   62.305860][ T5113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.325459][ T5113] RSP: 002b:00007f74a9d66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   62.333862][ T5113] RAX: ffffffffffffffda RBX: 00007f74ab906080 RCX: 00007f74ab715d29
[   62.341908][ T5113] RDX: 0000000020000280 RSI: 0000000000008914 RDI: 0000000000000008
[   62.349869][ T5113] RBP: 00007f74a9d66090 R08: 0000000000000000 R09: 0000000000000000
[   62.357829][ T5113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.365792][ T5113] R13: 0000000000000000 R14: 00007f74ab906080 R15: 00007fff37610ec8
[   62.373813][ T5113]  </TASK>
[   62.433667][ T5122] loop2: detected capacity change from 0 to 764
[   62.445648][ T5122] rock: directory entry would overflow storage
[   62.451827][ T5122] rock: sig=0x4f50, size=4, remaining=3
[   62.454230][ T5124] loop3: detected capacity change from 0 to 128
[   62.457389][ T5122] iso9660: Corrupted directory entry in block 6 of inode 1792
[   62.505289][ T5128] batadv_slave_1: entered promiscuous mode
[   62.513778][ T5127] batadv_slave_1: left promiscuous mode
[   62.535621][ T5131] vcan0: entered allmulticast mode
[   62.544222][ T5130] loop2: detected capacity change from 0 to 128
[   62.552413][ T5130] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.582662][ T5135] loop2: detected capacity change from 0 to 164
[   62.590474][ T5135] Unable to read rock-ridge attributes
[   62.597629][ T5135] Unable to read rock-ridge attributes
[   62.603392][ T5135] iso9660: Corrupted directory entry in block 4 of inode 1792
[   62.630085][ T5137] loop2: detected capacity change from 0 to 512
[   62.648289][ T5137] EXT4-fs (loop2): failed to initialize system zone (-117)
[   62.655724][ T5137] EXT4-fs (loop2): mount failed
[   62.679144][ T5140] syz.2.572[5140] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.679183][ T5140] syz.2.572[5140] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.690689][ T5140] syz.2.572[5140] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.821710][ T3317] kworker/u8:6: attempt to access beyond end of device
[   62.821710][ T3317] loop3: rw=1, sector=145, nr_sectors = 896 limit=128
[   62.861029][ T5147] program syz.3.575 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   62.869511][ T5145] lo speed is unknown, defaulting to 1000
[   62.870752][ T5147] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   62.890444][ T5147] loop3: detected capacity change from 0 to 764
[   62.897950][ T5147] Symlink component flag not implemented
[   62.903661][ T5147] Symlink component flag not implemented (129)
[   62.914886][ T5147] rock: directory entry would overflow storage
[   62.921127][ T5147] rock: sig=0x4f50, size=4, remaining=3
[   62.926716][ T5147] iso9660: Corrupted directory entry in block 6 of inode 1792
[   62.976814][ T5150] lo speed is unknown, defaulting to 1000
[   62.991249][ T5145] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.574'.
[   63.081316][ T5162] syz.3.582[5162] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.081417][ T5162] syz.3.582[5162] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.092898][ T5162] syz.3.582[5162] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.176334][ T5166] loop1: detected capacity change from 0 to 764
[   63.196619][ T5166] rock: directory entry would overflow storage
[   63.202805][ T5166] rock: sig=0x4f50, size=4, remaining=3
[   63.208464][ T5166] iso9660: Corrupted directory entry in block 6 of inode 1792
[   63.240505][ T5168] loop1: detected capacity change from 0 to 2048
[   63.274351][ T5168]  loop1: p1 < > p4
[   63.278808][ T5168] loop1: p4 size 8388608 extends beyond EOD, truncated
[   63.296999][ T2998]  loop1: p1 < > p4
[   63.301336][ T2998] loop1: p4 size 8388608 extends beyond EOD, truncated
[   63.320902][ T3491] udevd[3491]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   63.321180][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   63.331581][ T5170] 9pnet: Could not find request transport: unixon=0000
[   63.331581][ T5170] N: Name="ImExPS/2 Generic Explorer Mouse"
[   63.331581][ T5170] P: Phys=isa0060/serio1/input0
[   63.331581][ T5170] S: Sysfs=/devices/platform/i8042/serio1/input/input4
[   63.331581][ T5170] U: Uniq=
[   63.331581][ T5170] H: Handlers=event3 
[   63.331581][ T5170] B: PROP=1
[   63.331581][ T5170] B: EV=7
[   63.331581][ T5170] B:
[   63.383385][ T5170] netlink: 'syz.1.585': attribute type 1 has an invalid length.
[   63.391061][ T5170] netlink: 220 bytes leftover after parsing attributes in process `syz.1.585'.
[   63.402903][ T5170] siw: device registration error -23
[   63.425210][ T5172] loop1: detected capacity change from 0 to 164
[   63.432268][ T5172] Unable to read rock-ridge attributes
[   63.440126][ T5172] Unable to read rock-ridge attributes
[   63.445868][ T5172] iso9660: Corrupted directory entry in block 4 of inode 1792
[   63.492026][ T5176] lo speed is unknown, defaulting to 1000
[   63.571018][ T5187] program syz.1.593 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   63.580893][ T5187] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   63.590839][ T5189] syz.2.594[5189] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.594424][ T5187] loop1: detected capacity change from 0 to 764
[   63.613520][ T5187] Symlink component flag not implemented
[   63.619278][ T5187] Symlink component flag not implemented (129)
[   63.626688][ T5187] rock: directory entry would overflow storage
[   63.632862][ T5187] rock: sig=0x4f50, size=4, remaining=3
[   63.638442][ T5187] iso9660: Corrupted directory entry in block 6 of inode 1792
[   63.699209][ T5195] lo speed is unknown, defaulting to 1000
[   63.742313][ T5198] loop4: detected capacity change from 0 to 4096
[   63.763482][ T5198] syz.4.598: attempt to access beyond end of device
[   63.763482][ T5198] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   63.815971][ T5195] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.597'.
[   63.888887][ T5211] loop3: detected capacity change from 0 to 2048
[   63.911043][ T5213] loop1: detected capacity change from 0 to 164
[   63.914901][ T5211]  loop3: p1 < > p4
[   63.924378][ T5213] Unable to read rock-ridge attributes
[   63.931588][ T5213] Unable to read rock-ridge attributes
[   63.936447][ T5211] loop3: p4 size 8388608 extends beyond EOD, truncated
[   63.946620][ T5215] loop4: detected capacity change from 0 to 512
[   63.956577][ T5213] iso9660: Corrupted directory entry in block 4 of inode 1792
[   63.972991][ T5215] EXT4-fs (loop4): failed to initialize system zone (-117)
[   63.982023][ T5215] EXT4-fs (loop4): mount failed
[   64.015874][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   64.021881][ T5221] netlink: 'syz.3.607': attribute type 29 has an invalid length.
[   64.035465][ T3491] udevd[3491]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   64.052570][ T5222] loop4: detected capacity change from 0 to 4096
[   64.061304][ T5221] loop3: detected capacity change from 0 to 2048
[   64.086195][ T3524] udevd[3524]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   64.092660][ T3491] udevd[3491]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   64.126531][ T5227] lo speed is unknown, defaulting to 1000
[   64.146507][ T5230] bpf_get_probe_write_proto: 5 callbacks suppressed
[   64.146520][ T5230] syz.4.610[5230] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.153303][ T5230] syz.4.610[5230] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.165340][ T5230] syz.4.610[5230] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.234904][ T5227] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.609'.
[   64.307999][ T5235] loop1: detected capacity change from 0 to 4096
[   64.462982][ T5244] lo speed is unknown, defaulting to 1000
[   64.528682][ T5248] 9pnet: Could not find request transport: unixon=0000
[   64.528682][ T5248] N: Name="ImExPS/2 Generic Explorer Mouse"
[   64.528682][ T5248] P: Phys=isa0060/serio1/input0
[   64.528682][ T5248] S: Sysfs=/devices/platform/i8042/serio1/input/input4
[   64.528682][ T5248] U: Uniq=
[   64.528682][ T5248] H: Handlers=event3 
[   64.528682][ T5248] B: PROP=1
[   64.528682][ T5248] B: EV=7
[   64.528682][ T5248] B:
[   64.571465][ T5248] netlink: 'syz.0.616': attribute type 1 has an invalid length.
[   64.579220][ T5248] netlink: 220 bytes leftover after parsing attributes in process `syz.0.616'.
[   64.588327][ T5244] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.614'.
[   64.590807][ T5248] siw: device registration error -23
[   64.625130][ T5246] loop1: detected capacity change from 0 to 1024
[   64.632089][ T5246] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   64.661575][ T5246] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   64.672358][ T5246] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: comm syz.1.615: inode #1: comm syz.1.615: iget: illegal inode #
[   64.691596][ T5246] EXT4-fs (loop1): no journal found
[   64.696838][ T5246] EXT4-fs (loop1): can't get journal size
[   64.703200][ T5257] 9pnet: Could not find request transport: unixon=0000
[   64.703200][ T5257] N: Name="ImExPS/2 Generic Explorer Mouse"
[   64.703200][ T5257] P: Phys=isa0060/serio1/input0
[   64.703200][ T5257] S: Sysfs=/devices/platform/i8042/serio1/input/input4
[   64.703200][ T5257] U: Uniq=
[   64.703200][ T5257] H: Handlers=event3 
[   64.703200][ T5257] B: PROP=1
[   64.703200][ T5257] B: EV=7
[   64.703200][ T5257] B:
[   64.742157][ T5246] EXT4-fs (loop1): failed to initialize system zone (-22)
[   64.742219][ T5246] EXT4-fs (loop1): mount failed
[   64.761936][ T5257] netlink: 'syz.2.619': attribute type 1 has an invalid length.
[   64.769628][ T5257] netlink: 220 bytes leftover after parsing attributes in process `syz.2.619'.
[   64.802264][ T5260] loop1: detected capacity change from 0 to 764
[   64.819186][ T5260] rock: directory entry would overflow storage
[   64.825384][ T5260] rock: sig=0x4f50, size=4, remaining=3
[   64.830934][ T5260] iso9660: Corrupted directory entry in block 6 of inode 1792
[   64.831338][ T5264] syz.0.622[5264] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.839269][ T5264] syz.0.622[5264] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.853757][ T5264] syz.0.622[5264] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.893642][ T5268] syz.2.624: attempt to access beyond end of device
[   64.893642][ T5268] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   64.919582][ T5271] loop4: detected capacity change from 0 to 764
[   64.931435][   T29] kauditd_printk_skb: 644 callbacks suppressed
[   64.931448][   T29] audit: type=1326 audit(1737070752.453:3519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   64.964348][ T5275] FAULT_INJECTION: forcing a failure.
[   64.964348][ T5275] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.977447][ T5275] CPU: 0 UID: 0 PID: 5275 Comm: syz.2.627 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   64.988029][ T5275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   64.988042][ T5275] Call Trace:
[   64.988049][ T5275]  <TASK>
[   64.988056][ T5275]  dump_stack_lvl+0xf2/0x150
[   65.008914][ T5275]  dump_stack+0x15/0x1a
[   65.013115][ T5275]  should_fail_ex+0x223/0x230
[   65.013144][ T5275]  should_fail+0xb/0x10
[   65.021926][ T5275]  should_fail_usercopy+0x1a/0x20
[   65.021959][ T5275]  _copy_from_iter+0xd5/0xd00
[   65.022047][ T5275]  ? __rcu_read_unlock+0x4e/0x70
[   65.031719][ T5275]  ? should_fail_ex+0xd7/0x230
[   65.041395][ T5275]  ? skb_set_owner_w+0x164/0x1b0
[   65.046391][ T5275]  ? __virt_addr_valid+0x1ed/0x250
[   65.046424][ T5275]  ? __check_object_size+0x364/0x520
[   65.046446][ T5275]  skb_copy_datagram_from_iter+0xb3/0x460
[   65.046469][ T5275]  ? skb_put+0xba/0x100
[   65.056827][ T5275]  packet_sendmsg+0x2785/0x3670
[   65.056863][ T5275]  ? avc_has_perm+0xd4/0x160
[   65.076201][ T5275]  ? selinux_socket_sendmsg+0x185/0x1c0
[   65.081766][ T5275]  ? __pfx_packet_sendmsg+0x10/0x10
[   65.087049][ T5275]  __sock_sendmsg+0x140/0x180
[   65.091740][ T5275]  ____sys_sendmsg+0x312/0x410
[   65.096511][ T5275]  __sys_sendmsg+0x19d/0x230
[   65.101114][ T5275]  __x64_sys_sendmsg+0x46/0x50
[   65.105875][ T5275]  x64_sys_call+0x2734/0x2dc0
[   65.110619][ T5275]  do_syscall_64+0xc9/0x1c0
[   65.115134][ T5275]  ? clear_bhb_loop+0x55/0xb0
[   65.119808][ T5275]  ? clear_bhb_loop+0x55/0xb0
[   65.124534][ T5275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.130485][ T5275] RIP: 0033:0x7fd96e345d29
[   65.134896][ T5275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.154662][ T5275] RSP: 002b:00007fd96c9b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.163111][ T5275] RAX: ffffffffffffffda RBX: 00007fd96e535fa0 RCX: 00007fd96e345d29
[   65.171073][ T5275] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003
[   65.179032][ T5275] RBP: 00007fd96c9b7090 R08: 0000000000000000 R09: 0000000000000000
[   65.186994][ T5275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.194959][ T5275] R13: 0000000000000000 R14: 00007fd96e535fa0 R15: 00007ffc4532d458
[   65.202985][ T5275]  </TASK>
[   65.208818][ T5271] rock: directory entry would overflow storage
[   65.215040][ T5271] rock: sig=0x4f50, size=4, remaining=3
[   65.220633][ T5271] iso9660: Corrupted directory entry in block 6 of inode 1792
[   65.305907][ T5286] 9pnet: Could not find request transport: unixon=0000
[   65.305907][ T5286] N: Name="ImExPS/2 Generic Explorer Mouse"
[   65.305907][ T5286] P: Phys=isa0060/serio1/input0
[   65.305907][ T5286] S: Sysfs=/devices/platform/i8042/serio1/input/input4
[   65.305907][ T5286] U: Uniq=
[   65.305907][ T5286] H: Handlers=event3 
[   65.305907][ T5286] B: PROP=1
[   65.305907][ T5286] B: EV=7
[   65.305907][ T5286] B:
[   65.345501][ T5289] loop1: detected capacity change from 0 to 764
[   65.353642][ T5286] netlink: 'syz.4.632': attribute type 1 has an invalid length.
[   65.361388][ T5286] netlink: 220 bytes leftover after parsing attributes in process `syz.4.632'.
[   65.370888][ T5289] rock: directory entry would overflow storage
[   65.373043][ T5286] siw: device registration error -23
[   65.377125][ T5289] rock: sig=0x4f50, size=4, remaining=3
[   65.388295][ T5289] iso9660: Corrupted directory entry in block 6 of inode 1792
[   65.402039][ T5281] loop2: detected capacity change from 0 to 1024
[   65.413606][ T5281] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   65.425168][ T5281] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   65.441778][ T5281] EXT4-fs error (device loop2): ext4_get_journal_inode:5809: comm syz.2.630: inode #1: comm syz.2.630: iget: illegal inode #
[   65.452809][ T5294] loop1: detected capacity change from 0 to 128
[   65.459194][ T5281] EXT4-fs (loop2): no journal found
[   65.466253][ T5281] EXT4-fs (loop2): can't get journal size
[   65.472966][ T5294] EXT4-fs mount: 80 callbacks suppressed
[   65.472996][ T5294] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   65.473349][ T5281] EXT4-fs (loop2): failed to initialize system zone (-22)
[   65.480294][ T5294] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.490684][ T5281] EXT4-fs (loop2): mount failed
[   65.505542][ T4682] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   65.532104][ T3300] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   65.566013][ T5304] loop1: detected capacity change from 0 to 512
[   65.583945][ T5304] EXT4-fs (loop1): failed to initialize system zone (-117)
[   65.596646][ T5304] EXT4-fs (loop1): mount failed
[   65.649373][ T5315] 9pnet: Could not find request transport: unixon=0000
[   65.649373][ T5315] N: Name="ImExPS/2 Generic Explorer Mouse"
[   65.649373][ T5315] P: Phys=isa0060/serio1/input0
[   65.649373][ T5315] S: Sysfs=/devices/platform/i8042/serio1/input/input4
[   65.649373][ T5315] U: Uniq=
[   65.649373][ T5315] H: Handlers=event3 
[   65.649373][ T5315] B: PROP=1
[   65.649373][ T5315] B: EV=7
[   65.649373][ T5315] B:
[   65.663556][   T29] audit: type=1326 audit(1737070753.173:3520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   65.712927][   T29] audit: type=1326 audit(1737070753.213:3521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   65.736339][   T29] audit: type=1326 audit(1737070753.213:3522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   65.746627][ T5315] netlink: 'syz.4.644': attribute type 1 has an invalid length.
[   65.759830][   T29] audit: type=1326 audit(1737070753.213:3523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   65.767351][ T5315] netlink: 220 bytes leftover after parsing attributes in process `syz.4.644'.
[   65.790629][   T29] audit: type=1326 audit(1737070753.213:3524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   65.809015][ T5315] siw: device registration error -23
[   65.822894][   T29] audit: type=1326 audit(1737070753.213:3525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   65.851553][   T29] audit: type=1326 audit(1737070753.213:3526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   65.874839][   T29] audit: type=1326 audit(1737070753.213:3527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   65.898276][   T29] audit: type=1326 audit(1737070753.213:3528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5263 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7fc00000
[   65.927484][ T5325] loop0: detected capacity change from 0 to 164
[   65.942362][ T5327] syz.4.648[5327] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.942497][ T5327] syz.4.648[5327] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.942731][ T5325] Unable to read rock-ridge attributes
[   65.954118][ T5327] syz.4.648[5327] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.973645][ T5325] Unable to read rock-ridge attributes
[   65.992330][ T5325] iso9660: Corrupted directory entry in block 4 of inode 1792
[   66.048611][ T5334] lo speed is unknown, defaulting to 1000
[   66.126593][ T5337] loop0: detected capacity change from 0 to 1024
[   66.133512][ T5337] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   66.143543][ T5337] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   66.149379][ T5334] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.651'.
[   66.155030][ T5337] EXT4-fs error (device loop0): ext4_get_journal_inode:5809: comm syz.0.649: inode #1: comm syz.0.649: iget: illegal inode #
[   66.176265][ T5337] EXT4-fs (loop0): no journal found
[   66.181512][ T5337] EXT4-fs (loop0): can't get journal size
[   66.187847][ T5337] EXT4-fs (loop0): failed to initialize system zone (-22)
[   66.195206][ T5337] EXT4-fs (loop0): mount failed
[   66.267297][ T5345] pim6reg1: entered promiscuous mode
[   66.272673][ T5345] pim6reg1: entered allmulticast mode
[   66.372242][ T5357] loop0: detected capacity change from 0 to 164
[   66.383148][ T5357] Unable to read rock-ridge attributes
[   66.398597][ T5357] Unable to read rock-ridge attributes
[   66.410394][ T5357] iso9660: Corrupted directory entry in block 4 of inode 1792
[   66.435628][ T5363] lo speed is unknown, defaulting to 1000
[   66.508294][ T5371] loop0: detected capacity change from 0 to 512
[   66.518287][ T5371] EXT4-fs (loop0): failed to initialize system zone (-117)
[   66.527610][ T5371] EXT4-fs (loop0): mount failed
[   66.574178][ T5363] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.663'.
[   66.583266][ T5377] lo speed is unknown, defaulting to 1000
[   66.686776][ T5377] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.668'.
[   66.795220][ T5392] loop4: detected capacity change from 0 to 128
[   66.814363][ T5392] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   66.831906][ T5392] ext4 filesystem being mounted at /115/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.838198][ T5382] lo speed is unknown, defaulting to 1000
[   66.872139][ T3296] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   66.895672][ T5401] loop4: detected capacity change from 0 to 764
[   66.906102][ T5401] rock: directory entry would overflow storage
[   66.912299][ T5401] rock: sig=0x4f50, size=4, remaining=3
[   66.917880][ T5401] iso9660: Corrupted directory entry in block 6 of inode 1792
[   66.969201][ T5406] lo speed is unknown, defaulting to 1000
[   67.025882][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.165870][ T5428] loop3: detected capacity change from 0 to 512
[   67.193324][ T5428] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   67.206079][ T5430] loop0: detected capacity change from 0 to 164
[   67.219162][ T5428] EXT4-fs (loop3): orphan cleanup on readonly fs
[   67.229556][ T5428] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[   67.233005][ T5430] Unable to read rock-ridge attributes
[   67.249825][ T5428] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #11: comm syz.3.687: corrupted inode contents
[   67.276010][ T5428] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #11: comm syz.3.687: mark_inode_dirty error
[   67.297532][ T5430] Unable to read rock-ridge attributes
[   67.309451][ T5428] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.687: invalid indirect mapped block 1 (level 1)
[   67.336998][ T5430] iso9660: Corrupted directory entry in block 4 of inode 1792
[   67.360598][ T5428] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #11: comm syz.3.687: corrupted inode contents
[   67.389380][ T5428] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   67.412939][ T5428] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #11: comm syz.3.687: corrupted inode contents
[   67.431569][ T5428] EXT4-fs error (device loop3): ext4_truncate:4240: inode #11: comm syz.3.687: mark_inode_dirty error
[   67.443004][ T5428] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   67.453589][ T5428] EXT4-fs (loop3): 1 truncate cleaned up
[   67.461380][ T5428] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   67.483197][ T5438] loop0: detected capacity change from 0 to 512
[   67.493680][ T5438] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   67.505650][ T5438] EXT4-fs (loop0): orphan cleanup on readonly fs
[   67.514949][ T5438] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[   67.543812][ T5428] batman_adv: batadv0: Adding interface: ip6gretap1
[   67.550538][ T5428] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.606539][ T5438] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #11: comm syz.0.690: corrupted inode contents
[   67.620358][ T5428] batman_adv: batadv0: Interface activated: ip6gretap1
[   67.627845][ T5438] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #11: comm syz.0.690: mark_inode_dirty error
[   67.640319][ T5438] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.690: invalid indirect mapped block 1 (level 1)
[   67.655017][ T5438] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #11: comm syz.0.690: corrupted inode contents
[   67.667056][ T5438] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   67.675834][ T5438] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #11: comm syz.0.690: corrupted inode contents
[   67.687931][ T5438] EXT4-fs error (device loop0): ext4_truncate:4240: inode #11: comm syz.0.690: mark_inode_dirty error
[   67.699348][ T5438] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   67.699483][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.708976][ T5438] EXT4-fs (loop0): 1 truncate cleaned up
[   67.723088][ T5438] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   67.739764][ T5443] loop1: detected capacity change from 0 to 1024
[   67.750833][ T5443] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   67.755293][ T5438] FAULT_INJECTION: forcing a failure.
[   67.755293][ T5438] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.770904][ T5443] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   67.773416][ T5438] CPU: 1 UID: 0 PID: 5438 Comm: syz.0.690 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   67.784474][ T5443] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: comm syz.1.692: inode #1: comm syz.1.692: iget: illegal inode #
[   67.793988][ T5438] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   67.807076][ T5443] EXT4-fs (loop1): no journal found
[   67.816945][ T5438] Call Trace:
[   67.822151][ T5443] EXT4-fs (loop1): can't get journal size
[   67.825475][ T5438]  <TASK>
[   67.825484][ T5438]  dump_stack_lvl+0xf2/0x150
[   67.825518][ T5438]  dump_stack+0x15/0x1a
[   67.842954][ T5438]  should_fail_ex+0x223/0x230
[   67.847672][ T5438]  should_fail+0xb/0x10
[   67.851839][ T5438]  should_fail_usercopy+0x1a/0x20
[   67.856927][ T5438]  _copy_from_user+0x1e/0xb0
[   67.861561][ T5438]  copy_msghdr_from_user+0x54/0x2a0
[   67.866795][ T5438]  ? __fget_files+0x17c/0x1c0
[   67.871494][ T5438]  __sys_sendmsg+0x13e/0x230
[   67.876155][ T5438]  __x64_sys_sendmsg+0x46/0x50
[   67.880936][ T5438]  x64_sys_call+0x2734/0x2dc0
[   67.885638][ T5438]  do_syscall_64+0xc9/0x1c0
[   67.890150][ T5438]  ? clear_bhb_loop+0x55/0xb0
[   67.894850][ T5438]  ? clear_bhb_loop+0x55/0xb0
[   67.899518][ T5438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.905403][ T5438] RIP: 0033:0x7f20bc6f5d29
[   67.909846][ T5438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.929446][ T5438] RSP: 002b:00007f20bad67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.937892][ T5438] RAX: ffffffffffffffda RBX: 00007f20bc8e5fa0 RCX: 00007f20bc6f5d29
[   67.945878][ T5438] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 000000000000000c
[   67.953897][ T5438] RBP: 00007f20bad67090 R08: 0000000000000000 R09: 0000000000000000
[   67.961859][ T5438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.969896][ T5438] R13: 0000000000000000 R14: 00007f20bc8e5fa0 R15: 00007ffd845b2608
[   67.977862][ T5438]  </TASK>
[   67.993938][ T5443] EXT4-fs (loop1): failed to initialize system zone (-22)
[   67.994499][ T5454] loop3: detected capacity change from 0 to 512
[   68.001127][ T5443] EXT4-fs (loop1): mount failed
[   68.032001][ T5454] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   68.050546][ T5454] EXT4-fs (loop3): orphan cleanup on readonly fs
[   68.064216][ T5454] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[   68.078687][ T5454] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #11: comm syz.3.695: corrupted inode contents
[   68.091056][ T5454] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #11: comm syz.3.695: mark_inode_dirty error
[   68.111576][ T5454] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.695: invalid indirect mapped block 1 (level 1)
[   68.115547][ T5457] FAULT_INJECTION: forcing a failure.
[   68.115547][ T5457] name failslab, interval 1, probability 0, space 0, times 0
[   68.137313][ T5457] CPU: 0 UID: 0 PID: 5457 Comm: syz.4.697 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   68.138700][ T5459] loop1: detected capacity change from 0 to 512
[   68.147954][ T5457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   68.147967][ T5457] Call Trace:
[   68.147973][ T5457]  <TASK>
[   68.147980][ T5457]  dump_stack_lvl+0xf2/0x150
[   68.155789][ T5454] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #11: comm syz.3.695: corrupted inode contents
[   68.164256][ T5457]  dump_stack+0x15/0x1a
[   68.164288][ T5457]  should_fail_ex+0x223/0x230
[   68.170904][ T5454] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   68.175120][ T5457]  should_failslab+0x8f/0xb0
[   68.192335][ T5459] EXT4-fs (loop1): failed to initialize system zone (-117)
[   68.195647][ T5457]  __kmalloc_node_noprof+0xad/0x410
[   68.195674][ T5457]  ? __kvmalloc_node_noprof+0x72/0x170
[   68.209164][ T5459] EXT4-fs (loop1): mount failed
[   68.215907][ T5457]  __kvmalloc_node_noprof+0x72/0x170
[   68.216000][ T5457]  alloc_netdev_mqs+0x74b/0x9c0
[   68.221931][ T5454] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #11: comm syz.3.695: corrupted inode contents
[   68.226604][ T5457]  slip_open+0x2cf/0x920
[   68.226632][ T5457]  ? up_write+0x30/0xf0
[   68.261747][ T5457]  ? up_write+0x30/0xf0
[   68.265996][ T5457]  tty_ldisc_open+0x65/0xb0
[   68.270533][ T5457]  tty_set_ldisc+0x205/0x3b0
[   68.275125][ T5457]  tiocsetd+0x52/0x60
[   68.279112][ T5457]  tty_ioctl+0xa94/0xbe0
[   68.283353][ T5457]  ? __pfx_tty_ioctl+0x10/0x10
[   68.288186][ T5457]  __se_sys_ioctl+0xc9/0x140
[   68.292777][ T5457]  __x64_sys_ioctl+0x43/0x50
[   68.297487][ T5457]  x64_sys_call+0x1690/0x2dc0
[   68.302304][ T5457]  do_syscall_64+0xc9/0x1c0
[   68.306803][ T5457]  ? clear_bhb_loop+0x55/0xb0
[   68.311514][ T5457]  ? clear_bhb_loop+0x55/0xb0
[   68.316186][ T5457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.322072][ T5457] RIP: 0033:0x7fa843725d29
[   68.326484][ T5457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.346089][ T5457] RSP: 002b:00007fa841d97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   68.354507][ T5457] RAX: ffffffffffffffda RBX: 00007fa843915fa0 RCX: 00007fa843725d29
[   68.362532][ T5457] RDX: 00000000200002c0 RSI: 0000000000005423 RDI: 0000000000000003
[   68.370496][ T5457] RBP: 00007fa841d97090 R08: 0000000000000000 R09: 0000000000000000
[   68.378458][ T5457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.386460][ T5457] R13: 0000000000000000 R14: 00007fa843915fa0 R15: 00007ffead465c28
[   68.394448][ T5457]  </TASK>
[   68.405986][ T3295] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.420466][ T5454] EXT4-fs error (device loop3): ext4_truncate:4240: inode #11: comm syz.3.695: mark_inode_dirty error
[   68.430811][ T5463] program syz.4.699 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.433546][ T5454] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   68.450666][ T5454] EXT4-fs (loop3): 1 truncate cleaned up
[   68.452542][ T5463] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   68.456707][ T5454] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   68.492941][ T5465] lo speed is unknown, defaulting to 1000
[   68.498908][ T5463] loop4: detected capacity change from 0 to 764
[   68.508345][ T5463] Symlink component flag not implemented
[   68.514315][ T5463] Symlink component flag not implemented (129)
[   68.562446][ T5463] rock: directory entry would overflow storage
[   68.568663][ T5463] rock: sig=0x4f50, size=4, remaining=3
[   68.574285][ T5463] iso9660: Corrupted directory entry in block 6 of inode 1792
[   68.643192][ T5475] loop2: detected capacity change from 0 to 128
[   68.688067][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.705726][ T5480] batadv_slave_1: entered promiscuous mode
[   68.714287][ T5482] syz.1.708: attempt to access beyond end of device
[   68.714287][ T5482] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   68.729276][ T5479] batadv_slave_1: left promiscuous mode
[   68.794626][ T5492] loop0: detected capacity change from 0 to 512
[   68.845077][ T5496] lo speed is unknown, defaulting to 1000
[   68.850579][ T5492] EXT4-fs (loop0): failed to initialize system zone (-117)
[   68.866246][ T5492] EXT4-fs (loop0): mount failed
[   68.875951][ T5503] xt_CT: You must specify a L4 protocol and not use inversions on it
[   68.994077][ T5514] batadv_slave_1: entered promiscuous mode
[   69.008090][ T5513] batadv_slave_1: left promiscuous mode
[   69.025238][ T5517] lo speed is unknown, defaulting to 1000
[   69.041212][ T5496] __nla_validate_parse: 4 callbacks suppressed
[   69.041224][ T5496] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.713'.
[   69.132618][ T5525] FAULT_INJECTION: forcing a failure.
[   69.132618][ T5525] name failslab, interval 1, probability 0, space 0, times 0
[   69.145270][ T5525] CPU: 0 UID: 0 PID: 5525 Comm: syz.3.724 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   69.155863][ T5525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   69.163009][ T5517] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.722'.
[   69.165957][ T5525] Call Trace:
[   69.165965][ T5525]  <TASK>
[   69.165972][ T5525]  dump_stack_lvl+0xf2/0x150
[   69.166056][ T5525]  dump_stack+0x15/0x1a
[   69.190179][ T5525]  should_fail_ex+0x223/0x230
[   69.194885][ T5525]  should_failslab+0x8f/0xb0
[   69.199474][ T5525]  __kmalloc_noprof+0xab/0x3f0
[   69.204299][ T5525]  ? security_prepare_creds+0x53/0x120
[   69.209757][ T5525]  security_prepare_creds+0x53/0x120
[   69.215038][ T5525]  prepare_creds+0x346/0x480
[   69.219620][ T5525]  join_session_keyring+0x19/0x2a0
[   69.224768][ T5525]  lookup_user_key+0x3ef/0xdf0
[   69.229571][ T5525]  ? should_fail_ex+0xd7/0x230
[   69.234381][ T5525]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[   69.240536][ T5525]  __se_sys_add_key+0x24b/0x320
[   69.245422][ T5525]  ? fput+0x1c4/0x200
[   69.249427][ T5525]  __x64_sys_add_key+0x67/0x80
[   69.254194][ T5525]  x64_sys_call+0x2964/0x2dc0
[   69.258952][ T5525]  do_syscall_64+0xc9/0x1c0
[   69.263458][ T5525]  ? clear_bhb_loop+0x55/0xb0
[   69.268152][ T5525]  ? clear_bhb_loop+0x55/0xb0
[   69.272898][ T5525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.278786][ T5525] RIP: 0033:0x7fc3e9815d29
[   69.283236][ T5525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.302846][ T5525] RSP: 002b:00007fc3e7e87038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[   69.311317][ T5525] RAX: ffffffffffffffda RBX: 00007fc3e9a05fa0 RCX: 00007fc3e9815d29
[   69.319281][ T5525] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000020000040
[   69.327241][ T5525] RBP: 00007fc3e7e87090 R08: fffffffffffffffd R09: 0000000000000000
[   69.335223][ T5525] R10: 000000000000001c R11: 0000000000000246 R12: 0000000000000001
[   69.343182][ T5525] R13: 0000000000000000 R14: 00007fc3e9a05fa0 R15: 00007fff31917be8
[   69.351147][ T5525]  </TASK>
[   69.357629][ T5525] syz.3.724[5525] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   69.357731][ T5525] syz.3.724[5525] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   69.387383][ T5525] syz.3.724[5525] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   69.481584][ T3956] kworker/u8:26: attempt to access beyond end of device
[   69.481584][ T3956] loop2: rw=1, sector=145, nr_sectors = 896 limit=128
[   69.710494][ T5570] 9pnet: Could not find request transport: unixon=0000
[   69.710494][ T5570] N: Name="ImExPS/2 Generic Explorer Mouse"
[   69.710494][ T5570] P: Phys=isa0060/serio1/input0
[   69.710494][ T5570] S: Sysfs=/devices/platform/i8042/serio1/input/input4
[   69.710494][ T5570] U: Uniq=
[   69.710494][ T5570] H: Handlers=event3 
[   69.710494][ T5570] B: PROP=1
[   69.710494][ T5570] B: EV=7
[   69.710494][ T5570] B:
[   69.713683][ T5567] lo speed is unknown, defaulting to 1000
[   69.761388][ T5572] loop2: detected capacity change from 0 to 128
[   69.761603][ T5570] netlink: 'syz.4.741': attribute type 1 has an invalid length.
[   69.775386][ T5570] netlink: 220 bytes leftover after parsing attributes in process `syz.4.741'.
[   69.798422][ T5562] loop0: detected capacity change from 0 to 1024
[   69.815047][ T5562] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   69.815361][ T5570] siw: device registration error -23
[   69.834360][ T5562] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   69.845735][ T5567] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.740'.
[   69.855298][ T5562] EXT4-fs error (device loop0): ext4_get_journal_inode:5809: comm syz.0.737: inode #1: comm syz.0.737: iget: illegal inode #
[   69.869588][ T5562] EXT4-fs (loop0): no journal found
[   69.870191][ T5577] program syz.4.743 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   69.874854][ T5562] EXT4-fs (loop0): can't get journal size
[   69.875507][ T5562] EXT4-fs (loop0): failed to initialize system zone (-22)
[   69.897140][ T5577] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   69.897302][ T5562] EXT4-fs (loop0): mount failed
[   69.918770][ T5577] loop4: detected capacity change from 0 to 764
[   69.930232][ T5577] Symlink component flag not implemented
[   69.939048][ T5577] Symlink component flag not implemented (129)
[   69.950010][ T5577] rock: directory entry would overflow storage
[   69.956221][ T5577] rock: sig=0x4f50, size=4, remaining=3
[   69.961784][ T5577] iso9660: Corrupted directory entry in block 6 of inode 1792
[   70.041639][   T29] kauditd_printk_skb: 88 callbacks suppressed
[   70.041652][   T29] audit: type=1326 audit(1737070757.563:3617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5585 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7ffc0000
[   70.077224][ T5588] loop4: detected capacity change from 0 to 128
[   70.106430][   T29] audit: type=1326 audit(1737070757.603:3618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5585 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7ffc0000
[   70.125348][ T5591] program syz.1.748 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   70.129811][   T29] audit: type=1326 audit(1737070757.603:3619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5585 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f20bc6f5d29 code=0x7ffc0000
[   70.147262][ T5591] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   70.162325][   T29] audit: type=1326 audit(1737070757.603:3620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5585 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7ffc0000
[   70.162352][   T29] audit: type=1326 audit(1737070757.603:3621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5585 comm="syz.0.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f20bc6f5d29 code=0x7ffc0000
[   70.164814][ T5588] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   70.230196][ T5588] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.245092][ T5591] loop1: detected capacity change from 0 to 764
[   70.262155][ T5591] Symlink component flag not implemented
[   70.268392][ T5591] Symlink component flag not implemented (129)
[   70.269758][ T3296] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   70.284637][ T5591] rock: directory entry would overflow storage
[   70.290808][ T5591] rock: sig=0x4f50, size=4, remaining=3
[   70.296428][ T5591] iso9660: Corrupted directory entry in block 6 of inode 1792
[   70.309562][   T29] audit: type=1400 audit(1737070757.823:3622): avc:  denied  { read } for  pid=5597 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=415 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   70.334964][   T29] audit: type=1400 audit(1737070757.823:3623): avc:  denied  { open } for  pid=5597 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=415 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   70.359982][   T29] audit: type=1400 audit(1737070757.823:3624): avc:  denied  { getattr } for  pid=5597 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=415 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   70.433930][   T29] audit: type=1400 audit(1737070757.953:3625): avc:  denied  { write } for  pid=5596 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=414 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   70.456962][   T29] audit: type=1400 audit(1737070757.953:3626): avc:  denied  { add_name } for  pid=5596 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   70.476271][ T5614] loop4: detected capacity change from 0 to 764
[   70.507658][ T5603] FAULT_INJECTION: forcing a failure.
[   70.507658][ T5603] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.520761][ T5603] CPU: 1 UID: 0 PID: 5603 Comm: syz.0.751 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   70.531342][ T5603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.531356][ T5603] Call Trace:
[   70.531363][ T5603]  <TASK>
[   70.531371][ T5603]  dump_stack_lvl+0xf2/0x150
[   70.531403][ T5603]  dump_stack+0x15/0x1a
[   70.531427][ T5603]  should_fail_ex+0x223/0x230
[   70.547658][ T5603]  should_fail+0xb/0x10
[   70.556356][ T5603]  should_fail_usercopy+0x1a/0x20
[   70.556385][ T5603]  _copy_from_iter+0xd5/0xd00
[   70.556428][ T5603]  ? kmalloc_reserve+0x16e/0x190
[   70.556449][ T5603]  ? __build_skb_around+0x196/0x1f0
[   70.556488][ T5603]  ? __alloc_skb+0x21f/0x310
[   70.556504][ T5603]  ? __virt_addr_valid+0x1ed/0x250
[   70.556548][ T5603]  ? __check_object_size+0x364/0x520
[   70.565340][ T5603]  netlink_sendmsg+0x460/0x6e0
[   70.565373][ T5603]  ? __pfx_netlink_sendmsg+0x10/0x10
[   70.575021][ T5603]  __sock_sendmsg+0x140/0x180
[   70.575054][ T5603]  ____sys_sendmsg+0x312/0x410
[   70.575079][ T5603]  __sys_sendmsg+0x19d/0x230
[   70.575162][ T5603]  __x64_sys_sendmsg+0x46/0x50
[   70.585327][ T5603]  x64_sys_call+0x2734/0x2dc0
[   70.585352][ T5603]  do_syscall_64+0xc9/0x1c0
[   70.585371][ T5603]  ? clear_bhb_loop+0x55/0xb0
[   70.585389][ T5603]  ? clear_bhb_loop+0x55/0xb0
[   70.595052][ T5603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.595076][ T5603] RIP: 0033:0x7f20bc6f5d29
[   70.595092][ T5603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.605089][ T5603] RSP: 002b:00007f20bad67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   70.605113][ T5603] RAX: ffffffffffffffda RBX: 00007f20bc8e5fa0 RCX: 00007f20bc6f5d29
[   70.610444][ T5614] ==================================================================
[   70.615040][ T5603] RDX: 0000000000000000 RSI: 00000000200004c0 RDI: 0000000000000006
[   70.619794][ T5614] BUG: KCSAN: data-race in console_flush_all / console_flush_all
[   70.619829][ T5614] 
[   70.619833][ T5614] write to 0xffffffff8681a0d8 of 8 bytes by task 5603 on cpu 1:
[   70.619848][ T5614]  console_flush_all+0x395/0x770
[   70.624402][ T5603] RBP: 00007f20bad67090 R08: 0000000000000000 R09: 0000000000000000
[   70.629136][ T5614]  console_unlock+0xab/0x330
[   70.633797][ T5603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.638271][ T5614]  vprintk_emit+0x3f4/0x680
[   70.642923][ T5603] R13: 0000000000000000 R14: 00007f20bc8e5fa0 R15: 00007ffd845b2608
[   70.647572][ T5614]  vprintk_default+0x26/0x30
[   70.653477][ T5603]  </TASK>
[   70.657877][ T5614]  vprintk+0x75/0x80
[   70.776782][ T5614]  _printk+0x7a/0xa0
[   70.780675][ T5614]  __show_regs+0x86/0x450
[   70.785007][ T5614]  show_trace_log_lvl+0x348/0x400
[   70.790023][ T5614]  dump_stack_lvl+0xf2/0x150
[   70.794613][ T5614]  dump_stack+0x15/0x1a
[   70.798769][ T5614]  should_fail_ex+0x223/0x230
[   70.803439][ T5614]  should_fail+0xb/0x10
[   70.807585][ T5614]  should_fail_usercopy+0x1a/0x20
[   70.812605][ T5614]  _copy_from_iter+0xd5/0xd00
[   70.817275][ T5614]  netlink_sendmsg+0x460/0x6e0
[   70.822036][ T5614]  __sock_sendmsg+0x140/0x180
[   70.826711][ T5614]  ____sys_sendmsg+0x312/0x410
[   70.831469][ T5614]  __sys_sendmsg+0x19d/0x230
[   70.836049][ T5614]  __x64_sys_sendmsg+0x46/0x50
[   70.840809][ T5614]  x64_sys_call+0x2734/0x2dc0
[   70.845480][ T5614]  do_syscall_64+0xc9/0x1c0
[   70.849979][ T5614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.855865][ T5614] 
[   70.858174][ T5614] read to 0xffffffff8681a0d8 of 8 bytes by task 5614 on cpu 0:
[   70.865706][ T5614]  console_flush_all+0x57e/0x770
[   70.870648][ T5614]  console_unlock+0xab/0x330
[   70.875236][ T5614]  vprintk_emit+0x3f4/0x680
[   70.879734][ T5614]  vprintk_default+0x26/0x30
[   70.884319][ T5614]  vprintk+0x75/0x80
[   70.888203][ T5614]  _printk+0x7a/0xa0
[   70.892087][ T5614]  __isofs_iget+0xed4/0xf80
[   70.896588][ T5614]  isofs_get_blocks+0x18c/0x4a0
[   70.901432][ T5614]  isofs_bread+0x5b/0x100
[   70.905754][ T5614]  isofs_lookup+0x189/0x8c0
[   70.910252][ T5614]  path_openat+0xd40/0x1fa0
[   70.914749][ T5614]  do_filp_open+0x107/0x230
[   70.919246][ T5614]  do_sys_openat2+0xab/0x120
[   70.923827][ T5614]  __x64_sys_openat+0xf3/0x120
[   70.928585][ T5614]  x64_sys_call+0x2b30/0x2dc0
[   70.933255][ T5614]  do_syscall_64+0xc9/0x1c0
[   70.937750][ T5614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.943634][ T5614] 
[   70.945942][ T5614] value changed: 0x00000000000013a9 -> 0x00000000000013aa
[   70.953039][ T5614] 
[   70.955349][ T5614] Reported by Kernel Concurrency Sanitizer on:
[   70.961480][ T5614] CPU: 0 UID: 0 PID: 5614 Comm: syz.4.753 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0
[   70.972057][ T5614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.982098][ T5614] ==================================================================
[   71.015474][ T5614] rock: directory entry would overflow storage
[   71.021667][ T5614] rock: sig=0x4f50, size=4, remaining=3
[   71.027268][ T5614] iso9660: Corrupted directory entry in block 6 of inode 1792
[   71.046098][ T3956] kworker/u8:26: attempt to access beyond end of device
[   71.046098][ T3956] loop2: rw=1, sector=145, nr_sectors = 896 limit=128