][T10515]  out_of_memory+0x9ca/0xc00
[ 1429.738817][T10515]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1429.744899][T10515]  mem_cgroup_out_of_memory+0x139/0x190
[ 1429.750450][T10515]  try_charge_memcg+0x75c/0xd30
[ 1429.755478][T10515]  obj_cgroup_charge_pages+0xab/0x130
[ 1429.760917][T10515]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1429.766557][T10515]  __alloc_pages+0x1bb/0x340
[ 1429.771161][T10515]  alloc_pages+0x3e1/0x4e0
[ 1429.775606][T10515]  __vmalloc_node_range+0x6d2/0xea0
[ 1429.780831][T10515]  kvmalloc_node+0x121/0x160
[ 1429.785554][T10515]  ? xt_alloc_table_info+0x3d/0x80
[ 1429.790704][T10515]  xt_alloc_table_info+0x3d/0x80
[ 1429.795675][T10515]  do_arpt_set_ctl+0x634/0x13b0
[ 1429.800553][T10515]  ? futex_unqueue+0xba/0xe0
[ 1429.805213][T10515]  ? futex_wait+0x3c3/0x410
[ 1429.809750][T10515]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1429.814900][T10515]  ? lock_sock_nested+0x10e/0x130
[ 1429.819923][T10515]  ? tcp_release_cb+0xfe/0x340
[ 1429.824765][T10515]  nf_setsockopt+0x18d/0x1b0
[ 1429.829590][T10515]  ip_setsockopt+0xe6/0x100
[ 1429.834107][T10515]  tcp_setsockopt+0x90/0xa0
[ 1429.838619][T10515]  sock_common_setsockopt+0x61/0x70
[ 1429.843850][T10515]  ? sock_common_recvmsg+0xe0/0xe0
[ 1429.849053][T10515]  __sys_setsockopt+0x1d7/0x240
[ 1429.854074][T10515]  __x64_sys_setsockopt+0x66/0x80
[ 1429.859141][T10515]  do_syscall_64+0x41/0xc0
[ 1429.863921][T10515]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1429.869650][T10515]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1429.875610][T10515] RIP: 0033:0x7f2c4ab0cae9
[ 1429.880029][T10515] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1429.899703][T10515] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1429.908126][T10515] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1429.916109][T10515] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1429.924081][T10515] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1429.932064][T10515] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1429.940072][T10515] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1429.948048][T10515]  </TASK>
[ 1429.951388][T10515] memory: usage 307200kB, limit 307200kB, failcnt 253265
[ 1429.958483][T10515] memory+swap: usage 308296kB, limit 9007199254740988kB, failcnt 0
[ 1429.966487][T10515] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1429.973908][T10515] Memory cgroup stats for /syz2:
[ 1429.974082][T10515] cache 4096
[ 1429.982399][T10515] rss 8192
[ 1429.985513][T10515] shmem 0
[ 1429.988458][T10515] mapped_file 0
[ 1429.991905][T10515] dirty 4096
[ 1429.995207][T10515] writeback 0
[ 1429.998520][T10515] workingset_refault_anon 53598
[ 1430.003399][T10515] workingset_refault_file 19
[ 1430.008043][T10515] swap 1122304
[ 1430.011419][T10515] pgpgin 197338
[ 1430.014960][T10515] pgpgout 197333
[ 1430.018566][T10515] pgfault 275397
[ 1430.022183][T10515] pgmajfault 20275
[ 1430.025963][T10515] inactive_anon 0
[ 1430.029663][T10515] active_anon 0
[ 1430.033114][T10515] inactive_file 0
[ 1430.036816][T10515] active_file 4096
[ 1430.040557][T10515] unevictable 0
[ 1430.044042][T10515] hierarchical_memory_limit 314572800
[ 1430.049524][T10515] hierarchical_memsw_limit 9223372036854771712
[ 1430.055767][T10515] total_cache 4096
[ 1430.059530][T10515] total_rss 8192
[ 1430.063199][T10515] total_shmem 0
[ 1430.066788][T10515] total_mapped_file 0
[ 1430.070871][T10515] total_dirty 4096
[ 1430.074609][T10515] total_writeback 0
[ 1430.078482][T10515] total_workingset_refault_anon 53598
[ 1430.083876][T10515] total_workingset_refault_file 19
[ 1430.089071][T10515] total_swap 1122304
[ 1430.092970][T10515] total_pgpgin 197338
[ 1430.097011][T10515] total_pgpgout 197333
[ 1430.101225][T10515] total_pgfault 275397
[ 1430.105341][T10515] total_pgmajfault 20275
[ 1430.109714][T10515] total_inactive_anon 0
[ 1430.113917][T10515] total_active_anon 0
[ 1430.117940][T10515] total_inactive_file 0
[ 1430.122133][T10515] total_active_file 4096
[ 1430.126431][T10515] total_unevictable 0
[ 1430.130461][T10515] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10513,uid=0
[ 1430.145837][T10515] Memory cgroup out of memory: Killed process 10513 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:33 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:33 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xd003000000000000}, 0x0)

00:54:33 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x22000000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:33 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:33 executing program 0:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000007d00), 0x400000000000185, 0x20028850)
bind$unix(r1, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:33 executing program 3:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdnn=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',fscontext=unconfined_u,\x00'])
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0) (async)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000002480), 0x1, 0x0)
mkdirat(r2, &(0x7f00000024c0)='./file0\x00', 0x45) (async)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) (async)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (async)
recvmsg(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/240, 0xf0}, {&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000001480)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/207, 0xcf}, {&(0x7f0000000000)=""/18, 0x12}], 0x5, &(0x7f0000000380)=""/20, 0x14}, 0x10000)

00:54:33 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3VFrW9cdAPD/la3MSZzZ2faQBZKFJcMJWyQ7XhKzhySDsbfARvaeGVs2xrJlLDmJTRgO+wCDMbbAnva0l0I/QKHkI5RCoH0vbWkpbdI+9KHtLfdKThwjxQ61rSD/fnB0z7nSvf9zJOvqnnuOpQAOrCQibkREX0RciIih1vpCK8V6M52JiKdP7k9lKYk0vfV5km+blTfvK3O0tdlAc9FWfXVtfrJarSy3yuXGwlK5vrp2cW5hcrYyW1kcHx+7MnF14vLE6K60M2vXtT98/O9//P+P197+zd0Pbn96/m9ZfQdb929ux25qPifF7Ll4pj8ilvciWBf0tdpT7HZFAADYkez89CcR8cv8/H8o+vKzuZxTOgAAAOgR6fXB+CaJSAEAAICedT2fA5sUSq35voNRKJRKzTm8P4sjhWqt3vj1TG1lcbo5V3Y4ioWZuWpltDWndjiKSVYey/PPy5e2lMcj4nhE/GvocF4uTdWq092++AEAAAAHxNFN/f+sP/7VULP/DwAAAPSY4W5XAAAAANhz+v8AAADQ+/T/AQAAoKf96ebNLKUbv389fWd1Zb525+J0pT5fWliZKk3VlpdKs7XabP6dfQvb7a9aqy39NhZX7pUblXqjXF9du71QW1ls3J574SewAQAAgH10/BeP3k8iYv13h/OUOZTd9HXYwFwB6BmFV3nwR3tXD2D/dfqYB3pff7crAHRNsdsVALou2eb+jpN33tn9ugAAAHtj5Oftx//7XRuAnvdK4/9ATzH+DweX8X84uIrOAODA2/vx/zTddl8AAMCeGsxTUii1xgIHo1AolSKO5f/qX0xm5qqV0Yj4cUS8N1T8UVYey7dMtu0zAAAAAAAAAAAAAAAAAAAAAAAAAABNaZpECgAAAPS0iMInSev3v0aGzg1uvT5wKPl6KF9GxN3/3vrPvclGY3ksW//Fs/WNh631l7pxBQMAAADYaqOfvtGPBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDd9PTJ/amNtJ9xP/t9RAy3i98fA/lyIIoRceTLJPo3bZdERN8uxF9/EBEn2sVPsmrFcKsWW+MXIuLw/sQ/laZp2/hHdyE+HGSPsuPPjXbvv0KcyZft3//9rfRDdT7+FZ4d//o6HP+O7TDGycdvljvGfxBxsr/98WcjftIh/tl2O2zzpPz1L2trneKn/4sYafv5k7wQq9xYWCrXV9cuzi1MzlZmK4vj42NXJq5OXJ4YLc/MVSut27Yx/nnqre+2rPo2bcrbHx3iD2/T/nNZptipZZuCPb735KfNbHHLLvL458+2f/1PvCR+9jfxq9bnQHb/yEZ+vZnf7PQb757uVLcs/nSH9m/3+p/fvum5C3/++4c7fCgAsA/qq2vzk9VqZXnPMw/TNN2vWDKvYWbg9aiGzM4y3T4yAQAAu+35SX+3awIAAAAAAAAAAAAAAAAAAAAH1358ndjWmOvdaSoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEt9HwAA///TZuHN")

00:54:33 executing program 0:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
bind$unix(r1, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:33 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1430.475483][T10540] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1430.486534][T10542] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
00:54:33 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:33 executing program 0:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:33 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:33 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:33 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xd203000000000000}, 0x0)

[ 1430.690402][T10565] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1431.245901][T10548] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1431.259422][T10548] CPU: 0 PID: 10548 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1431.269914][T10548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1431.280054][T10548] Call Trace:
[ 1431.283328][T10548]  <TASK>
[ 1431.286314][T10548]  dump_stack_lvl+0xda/0x130
[ 1431.290958][T10548]  dump_stack+0x15/0x20
[ 1431.295107][T10548]  dump_header+0x95/0x3c0
[ 1431.299456][T10548]  oom_kill_process+0xe3/0x3e0
[ 1431.304283][T10548]  out_of_memory+0x9ca/0xc00
[ 1431.308910][T10548]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1431.315040][T10548]  mem_cgroup_out_of_memory+0x139/0x190
[ 1431.320609][T10548]  try_charge_memcg+0x75c/0xd30
[ 1431.325463][T10548]  obj_cgroup_charge_pages+0xab/0x130
[ 1431.330845][T10548]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1431.336419][T10548]  __alloc_pages+0x1bb/0x340
[ 1431.341015][T10548]  alloc_pages+0x3e1/0x4e0
[ 1431.345470][T10548]  __vmalloc_node_range+0x6d2/0xea0
[ 1431.350680][T10548]  kvmalloc_node+0x121/0x160
[ 1431.355340][T10548]  ? xt_alloc_table_info+0x3d/0x80
[ 1431.360488][T10548]  xt_alloc_table_info+0x3d/0x80
[ 1431.365439][T10548]  do_arpt_set_ctl+0x634/0x13b0
[ 1431.370375][T10548]  ? futex_unqueue+0xba/0xe0
[ 1431.375032][T10548]  ? futex_wait+0x3c3/0x410
[ 1431.379576][T10548]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1431.384701][T10548]  ? lock_sock_nested+0x10e/0x130
[ 1431.389738][T10548]  ? tcp_release_cb+0xfe/0x340
[ 1431.394530][T10548]  nf_setsockopt+0x18d/0x1b0
[ 1431.399135][T10548]  ip_setsockopt+0xe6/0x100
[ 1431.403678][T10548]  tcp_setsockopt+0x90/0xa0
[ 1431.408265][T10548]  sock_common_setsockopt+0x61/0x70
[ 1431.413552][T10548]  ? sock_common_recvmsg+0xe0/0xe0
[ 1431.418663][T10548]  __sys_setsockopt+0x1d7/0x240
[ 1431.423598][T10548]  __x64_sys_setsockopt+0x66/0x80
[ 1431.428624][T10548]  do_syscall_64+0x41/0xc0
[ 1431.433040][T10548]  ? irqentry_exit+0x12/0x40
[ 1431.437635][T10548]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1431.443608][T10548] RIP: 0033:0x7f2c4ab0cae9
[ 1431.448098][T10548] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1431.467807][T10548] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1431.476214][T10548] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1431.484201][T10548] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1431.492257][T10548] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1431.500220][T10548] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1431.508283][T10548] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1431.516257][T10548]  </TASK>
[ 1431.519418][T10548] memory: usage 307200kB, limit 307200kB, failcnt 253690
[ 1431.526502][T10548] memory+swap: usage 308232kB, limit 9007199254740988kB, failcnt 0
[ 1431.534414][T10548] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 1431.541721][T10548] Memory cgroup stats for /syz2:
[ 1431.542001][T10548] cache 4096
[ 1431.550139][T10548] rss 0
[ 1431.552891][T10548] shmem 0
[ 1431.555847][T10548] mapped_file 0
[ 1431.559319][T10548] dirty 4096
[ 1431.562516][T10548] writeback 0
[ 1431.565901][T10548] workingset_refault_anon 53688
[ 1431.570750][T10548] workingset_refault_file 19
[ 1431.575377][T10548] swap 1056768
[ 1431.578752][T10548] pgpgin 197458
[ 1431.582238][T10548] pgpgout 197456
[ 1431.585813][T10548] pgfault 275637
[ 1431.589358][T10548] pgmajfault 20300
[ 1431.593065][T10548] inactive_anon 4096
[ 1431.596974][T10548] active_anon 0
[ 1431.600515][T10548] inactive_file 0
[ 1431.604227][T10548] active_file 4096
[ 1431.607976][T10548] unevictable 0
[ 1431.611445][T10548] hierarchical_memory_limit 314572800
[ 1431.616852][T10548] hierarchical_memsw_limit 9223372036854771712
[ 1431.623009][T10548] total_cache 4096
[ 1431.626847][T10548] total_rss 0
[ 1431.630133][T10548] total_shmem 0
[ 1431.633575][T10548] total_mapped_file 0
[ 1431.637700][T10548] total_dirty 4096
[ 1431.641454][T10548] total_writeback 0
[ 1431.645503][T10548] total_workingset_refault_anon 53688
[ 1431.650877][T10548] total_workingset_refault_file 19
[ 1431.656013][T10548] total_swap 1056768
[ 1431.659902][T10548] total_pgpgin 197458
[ 1431.663869][T10548] total_pgpgout 197456
[ 1431.668069][T10548] total_pgfault 275637
[ 1431.672147][T10548] total_pgmajfault 20300
[ 1431.676515][T10548] total_inactive_anon 4096
[ 1431.680931][T10548] total_active_anon 0
[ 1431.685021][T10548] total_inactive_file 0
[ 1431.689204][T10548] total_active_file 4096
[ 1431.693435][T10548] total_unevictable 0
[ 1431.697447][T10548] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10547,uid=0
[ 1431.712809][T10548] Memory cgroup out of memory: Killed process 10547 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:34 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3VFrW9cdAPD/la3MSZzZ2faQBZKFJcMJWyQ7XhKzhySDsbfARvaeGVs2xrJlLDmJTRgO+wCDMbbAnva0l0I/QKHkI5RCoH0vbWkpbdI+9KHtLfdKThwjxQ61rSD/fnB0z7nSvf9zJOvqnnuOpQAOrCQibkREX0RciIih1vpCK8V6M52JiKdP7k9lKYk0vfV5km+blTfvK3O0tdlAc9FWfXVtfrJarSy3yuXGwlK5vrp2cW5hcrYyW1kcHx+7MnF14vLE6K60M2vXtT98/O9//P+P197+zd0Pbn96/m9ZfQdb929ux25qPifF7Ll4pj8ilvciWBf0tdpT7HZFAADYkez89CcR8cv8/H8o+vKzuZxTOgAAAOgR6fXB+CaJSAEAAICedT2fA5sUSq35voNRKJRKzTm8P4sjhWqt3vj1TG1lcbo5V3Y4ioWZuWpltDWndjiKSVYey/PPy5e2lMcj4nhE/GvocF4uTdWq092++AEAAAAHxNFN/f8oRHw11Oz/AwAAAD1muNsVAAAAAPac/j8AAAD0Pv1/AAAA6Gl/unkzS+nG719P31ldma/duThdqc+XFlamSlO15aXSbK02m39n38J2+6vWaku/jcWVe+VGpd4o11fXbi/UVhYbt+de+AlsAAAAYB8d/8Wj95OIWP/d4TxlDmU3fR02MFcAekbhVR780d7VA9h/nT7mgd7X3+0KAF1T7HYFgK5Ltrm/4+Sdd3a/LgAAwN4Y+Xn78f9+1wag573S+D/QU4z/w8Fl/B8OrqIzADjw9n78P0233RcAALCnBvOUFEqtscDBKBRKpYhj+b/6F5OZuWplNCJ+HBHvDRV/lJXH8i2TbfsMAAAAAAAAAAAAAAAAAAAAAAAAAEBTmiaRAgAAAD0tovBJ0vr9r5Ghc4Nbrw8cSr4eypcRcfe/t/5zb7LRWB7L1n/xbH3jYWv9pW5cwQAAAAC22uinb/TjAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGA3PX1yf2oj7Wfcz34fEcPt4vfHQL4ciGJEHPkyif5N2yUR0bcL8dcfRMSJdvGTrFox3KrF1viFiDi8P/FPpWnaNv7RXYgPB9mj7Phzo937rxBn8mX7939/K/1QnY9/hWfHv74Ox79jO4xx8vGb5Y7xH0Sc7G9//NmIn3SIf7bdDts8KX/9y9pap/jp/yJG2n7+JC/EKjcWlsr11bWLcwuTs5XZyuL4+NiViasTlydGyzNz1Urrtm2Mf55667stq75Nm/L2R4f4w9u0/1yWKXZq2aZgj+89+WkzW9yyizz++bPtX/8TL4mf/U38qvU5kN0/spFfb+Y3O/3Gu6c71S2LP92h/du9/ue3b3ruwp///uEOHwoA7IP66tr8ZLVaWd7zzMM0TfcrlsxrmBl4Paohs7NMt49MAADAbnt+0t/tmgAAAAAAAAAAAAAAAAAAAMDBtR9fJ7Y15np3mgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8FLfBwAA//9Ce+Fr")

00:54:34 executing program 0:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:34 executing program 3:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdnn=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',fscontext=unconfined_u,\x00']) (async)
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000002480), 0x1, 0x0)
mkdirat(r2, &(0x7f00000024c0)='./file0\x00', 0x45) (async, rerun: 32)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (rerun: 32)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) (async)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (async, rerun: 32)
recvmsg(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/240, 0xf0}, {&(0x7f0000000480)=""/4096, 0x1000}, {&(0x7f0000001480)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/207, 0xcf}, {&(0x7f0000000000)=""/18, 0x12}], 0x5, &(0x7f0000000380)=""/20, 0x14}, 0x10000) (rerun: 32)

00:54:34 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x0, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:34 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xd300000000000000}, 0x0)

00:54:34 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x29000000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:34 executing program 0:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:34 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1431.976829][T10575] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1431.986887][T10574] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
00:54:34 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:34 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x0, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:34 executing program 3:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="7468616e733d66642c726664d36f3d", @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',fscontext=unconfined_u,\x00'])
newfstatat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', &(0x7f00000000c0), 0x100)

00:54:34 executing program 0:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:34 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:35 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:35 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x0, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1432.087122][T10594] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
00:54:35 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:35 executing program 0:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000380)=@abs={0x1}, 0x6e)

[ 1432.796377][T10579] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1432.807757][T10579] CPU: 1 PID: 10579 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1432.818205][T10579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1432.828317][T10579] Call Trace:
[ 1432.831612][T10579]  <TASK>
[ 1432.834552][T10579]  dump_stack_lvl+0xda/0x130
[ 1432.839146][T10579]  dump_stack+0x15/0x20
[ 1432.843299][T10579]  dump_header+0x95/0x3c0
[ 1432.847697][T10579]  oom_kill_process+0xe3/0x3e0
[ 1432.852469][T10579]  out_of_memory+0x9ca/0xc00
[ 1432.857066][T10579]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1432.863136][T10579]  mem_cgroup_out_of_memory+0x139/0x190
[ 1432.868736][T10579]  try_charge_memcg+0x75c/0xd30
[ 1432.873592][T10579]  ? __alloc_pages+0x193/0x340
[ 1432.878378][T10579]  charge_memcg+0x51/0x200
[ 1432.882807][T10579]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1432.888874][T10579]  __read_swap_cache_async+0x339/0x590
[ 1432.894335][T10579]  swap_cluster_readahead+0x29d/0x4e0
[ 1432.899805][T10579]  swapin_readahead+0x8d/0x710
[ 1432.904582][T10579]  ? __filemap_get_folio+0x42b/0x500
[ 1432.909919][T10579]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1432.915476][T10579]  ? swap_cache_get_folio+0x6e/0x200
[ 1432.920833][T10579]  do_swap_page+0x306/0x1780
[ 1432.925448][T10579]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1432.930799][T10579]  ? __rcu_read_lock+0x35/0x50
[ 1432.935562][T10579]  handle_mm_fault+0xa2e/0x2cc0
[ 1432.940415][T10579]  exc_page_fault+0x3ff/0x6c0
[ 1432.945130][T10579]  asm_exc_page_fault+0x26/0x30
[ 1432.950074][T10579] RIP: 0033:0x7f2c4ab37ea3
[ 1432.954513][T10579] Code: 00 00 00 00 00 66 90 31 c0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d 4e 40 0d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f
[ 1432.974136][T10579] RSP: 002b:00007ffcead55ac8 EFLAGS: 00010293
[ 1432.980295][T10579] RAX: 00000000fffffffa RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1432.988272][T10579] RDX: 00007ffcead55ae0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1432.996254][T10579] RBP: 00007f2c4ac2d980 R08: 0000000000000010 R09: 00007ffceada50b0
[ 1433.004287][T10579] R10: 0000000000000000 R11: 0000000000041eac R12: 000000000015dcef
[ 1433.012284][T10579] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000015d9ae
[ 1433.020353][T10579]  </TASK>
[ 1433.023436][T10579] memory: usage 307200kB, limit 307200kB, failcnt 254249
[ 1433.030548][T10579] memory+swap: usage 308160kB, limit 9007199254740988kB, failcnt 0
[ 1433.038487][T10579] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1433.045871][T10579] Memory cgroup stats for /syz2:
[ 1433.046058][T10579] cache 4096
[ 1433.054205][T10579] rss 8192
[ 1433.057250][T10579] shmem 0
[ 1433.060245][T10579] mapped_file 0
[ 1433.063764][T10579] dirty 4096
[ 1433.066993][T10579] writeback 4096
[ 1433.070615][T10579] workingset_refault_anon 53754
[ 1433.075561][T10579] workingset_refault_file 19
[ 1433.080162][T10579] swap 983040
[ 1433.083438][T10579] pgpgin 197554
[ 1433.086942][T10579] pgpgout 197549
[ 1433.090492][T10579] pgfault 275828
[ 1433.094024][T10579] pgmajfault 20320
[ 1433.097842][T10579] inactive_anon 4096
[ 1433.101793][T10579] active_anon 0
[ 1433.105284][T10579] inactive_file 4096
[ 1433.109320][T10579] active_file 0
[ 1433.112768][T10579] unevictable 0
[ 1433.116251][T10579] hierarchical_memory_limit 314572800
[ 1433.121677][T10579] hierarchical_memsw_limit 9223372036854771712
[ 1433.127866][T10579] total_cache 4096
[ 1433.131763][T10579] total_rss 8192
[ 1433.135410][T10579] total_shmem 0
[ 1433.138876][T10579] total_mapped_file 0
[ 1433.142844][T10579] total_dirty 4096
[ 1433.146582][T10579] total_writeback 4096
[ 1433.150675][T10579] total_workingset_refault_anon 53754
[ 1433.156115][T10579] total_workingset_refault_file 19
[ 1433.161349][T10579] total_swap 983040
[ 1433.165174][T10579] total_pgpgin 197554
[ 1433.169178][T10579] total_pgpgout 197549
[ 1433.173236][T10579] total_pgfault 275828
[ 1433.177336][T10579] total_pgmajfault 20320
[ 1433.181581][T10579] total_inactive_anon 4096
[ 1433.186031][T10579] total_active_anon 0
[ 1433.190044][T10579] total_inactive_file 4096
[ 1433.194446][T10579] total_active_file 0
[ 1433.198463][T10579] total_unevictable 0
[ 1433.202447][T10579] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10579,uid=0
[ 1433.217920][T10579] Memory cgroup out of memory: Killed process 10579 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:36 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:36 executing program 3:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="7468616e733d66642c726664d36f3d", @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',fscontext=unconfined_u,\x00'])
newfstatat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', &(0x7f00000000c0), 0x100)

00:54:36 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:36 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xde03000000000000}, 0x0)

00:54:36 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x31000000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:36 executing program 0:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:36 executing program 3:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="7468616e733d66642c726664d36f3d", @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',fscontext=unconfined_u,\x00']) (async, rerun: 64)
newfstatat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', &(0x7f00000000c0), 0x100) (rerun: 64)

00:54:36 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:36 executing program 0:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000380)=@abs={0x1}, 0x6e)

[ 1433.538503][T10620] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1433.543321][T10614] loop5: detected capacity change from 0 to 512
00:54:36 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1}, 0x6e)

[ 1433.596844][T10614] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1433.605181][T10614] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1433.617476][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
00:54:36 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:36 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1}, 0x6e)

[ 1433.646943][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.674798][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
00:54:36 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:36 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xe501000000000000}, 0x0)

00:54:36 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:36 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1433.702248][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.741609][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.749112][T10641] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1433.780774][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.823247][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.833848][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.844219][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.853333][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.862544][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.871693][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.881160][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.890270][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.899506][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.909322][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.919863][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.933656][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.942883][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.951854][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.960984][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.970263][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.981947][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1433.991934][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.001023][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.009933][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.019757][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.028590][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.037624][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.046470][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.055602][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.064433][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.073434][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.082331][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.091414][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.100320][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.109451][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.118388][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.128322][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.137167][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.146239][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.155109][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.163956][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.173248][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.182147][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.191185][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.200193][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.209294][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.218149][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.227293][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.236728][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.246010][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.254864][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.263740][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.272796][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.281735][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.290694][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.299597][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.308687][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.317559][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.326585][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.335421][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.344371][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.354155][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.363412][T10625] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1434.437397][T10622] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1434.448862][T10622] CPU: 1 PID: 10622 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1434.459272][T10622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1434.469382][T10622] Call Trace:
[ 1434.472676][T10622]  <TASK>
[ 1434.475614][T10622]  dump_stack_lvl+0xda/0x130
[ 1434.480294][T10622]  dump_stack+0x15/0x20
[ 1434.484537][T10622]  dump_header+0x95/0x3c0
[ 1434.488951][T10622]  oom_kill_process+0xe3/0x3e0
[ 1434.493732][T10622]  out_of_memory+0x9ca/0xc00
[ 1434.498421][T10622]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1434.504499][T10622]  mem_cgroup_out_of_memory+0x139/0x190
[ 1434.510055][T10622]  try_charge_memcg+0x75c/0xd30
[ 1434.514931][T10622]  ? __alloc_pages+0x193/0x340
[ 1434.519717][T10622]  charge_memcg+0x51/0x200
[ 1434.524213][T10622]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1434.530227][T10622]  __read_swap_cache_async+0x339/0x590
[ 1434.535691][T10622]  swap_cluster_readahead+0x29d/0x4e0
[ 1434.541070][T10622]  swapin_readahead+0x8d/0x710
[ 1434.545842][T10622]  ? __filemap_get_folio+0x42b/0x500
[ 1434.551188][T10622]  ? swap_cache_get_folio+0x6e/0x200
[ 1434.556552][T10622]  do_swap_page+0x306/0x1780
[ 1434.561140][T10622]  ? asm_exc_page_fault+0x26/0x30
[ 1434.566192][T10622]  ? __rcu_read_lock+0x35/0x50
[ 1434.570967][T10622]  handle_mm_fault+0xa2e/0x2cc0
[ 1434.575865][T10622]  exc_page_fault+0x3ff/0x6c0
[ 1434.580549][T10622]  asm_exc_page_fault+0x26/0x30
[ 1434.585426][T10622] RIP: 0033:0x7f2c4aab7228
[ 1434.589851][T10622] Code: 00 00 48 8b 0d c9 e4 c9 00 4c 63 05 b2 e4 c9 00 48 8b 05 b3 e4 c9 00 49 01 c8 48 39 c8 72 13 4c 39 c0 73 0e 48 8d 50 04 89 38 <48> 89 15 99 e4 c9 00 c3 52 48 8d 35 03 ff 09 00 48 89 c2 48 8d 3d
[ 1434.609475][T10622] RSP: 002b:00007ffcead55a68 EFLAGS: 00010287
[ 1434.615536][T10622] RAX: 0000001b2c922000 RBX: 00007f2c4ac2c018 RCX: 0000001b2c920000
[ 1434.623504][T10622] RDX: 0000001b2c922004 RSI: 0000000080000000 RDI: 0000000081460188
[ 1434.631472][T10622] RBP: 0000000081460188 R08: 0000001b2cd20000 R09: 0000000000000189
[ 1434.639450][T10622] R10: 000000008146018c R11: 0000000000041fee R12: 00000000000070f8
[ 1434.647422][T10622] R13: 0000000000000001 R14: 00007f2c4ac20000 R15: ffffffff81460623
[ 1434.655439][T10622]  ? folio_batch_move_lru+0x273/0x2f0
[ 1434.660932][T10622]  </TASK>
[ 1434.664121][T10622] memory: usage 307200kB, limit 307200kB, failcnt 254849
[ 1434.671207][T10622] memory+swap: usage 308244kB, limit 9007199254740988kB, failcnt 0
[ 1434.679148][T10622] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 1434.686454][T10622] Memory cgroup stats for /syz2:
[ 1434.686635][T10622] cache 8192
[ 1434.694779][T10622] rss 12288
[ 1434.697958][T10622] shmem 4096
[ 1434.701171][T10622] mapped_file 4096
[ 1434.704999][T10622] dirty 4096
[ 1434.708194][T10622] writeback 12288
[ 1434.711815][T10622] workingset_refault_anon 53833
[ 1434.716760][T10622] workingset_refault_file 19
[ 1434.721354][T10622] swap 1069056
[ 1434.724753][T10622] pgpgin 197663
[ 1434.728228][T10622] pgpgout 197657
[ 1434.731782][T10622] pgfault 276001
[ 1434.735393][T10622] pgmajfault 20354
[ 1434.739118][T10622] inactive_anon 0
[ 1434.742743][T10622] active_anon 0
[ 1434.746228][T10622] inactive_file 0
[ 1434.749862][T10622] active_file 4096
[ 1434.753573][T10622] unevictable 0
[ 1434.757057][T10622] hierarchical_memory_limit 314572800
[ 1434.762478][T10622] hierarchical_memsw_limit 9223372036854771712
[ 1434.768722][T10622] total_cache 8192
[ 1434.772443][T10622] total_rss 12288
[ 1434.776104][T10622] total_shmem 4096
[ 1434.779894][T10622] total_mapped_file 4096
[ 1434.784216][T10622] total_dirty 4096
[ 1434.788018][T10622] total_writeback 12288
[ 1434.792171][T10622] total_workingset_refault_anon 53833
[ 1434.797569][T10622] total_workingset_refault_file 19
[ 1434.802680][T10622] total_swap 1069056
[ 1434.806609][T10622] total_pgpgin 197663
[ 1434.810608][T10622] total_pgpgout 197657
[ 1434.814754][T10622] total_pgfault 276001
[ 1434.818865][T10622] total_pgmajfault 20354
[ 1434.823098][T10622] total_inactive_anon 0
[ 1434.827289][T10622] total_active_anon 0
[ 1434.831278][T10622] total_inactive_file 0
[ 1434.835532][T10622] total_active_file 4096
[ 1434.839776][T10622] total_unevictable 0
[ 1434.843746][T10622] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10622,uid=0
[ 1434.859141][T10622] Memory cgroup out of memory: Killed process 10622 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:37 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:37 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:37 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xeaffffff00000000}, 0x0)

00:54:37 executing program 3:
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x1a, &(0x7f0000000780)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r6, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
r7 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000006400310f00"/20, @ANYRES32=r6, @ANYBLOB="00000000f2df735d08502e8aecc201ffff0000000000000001666c6f"], 0x34}}, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x320080, 0x0)

00:54:37 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x3e000000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:37 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3U9rG+kZAPBnZCt1Eqd22h7SQNLQpDihjWTHTWJ6SFIovQVa0ntqbNkYy5ax5CQ2oTj0AxRKaQM99dRLoR+gUPIRSiHQ3kt32WXZTXYPe9jdWWYkJ46QYoe1raz8+8Gred+RZp7nlazR/HktBXBoJRFxKyIGIuJSRIy05hdaJTab5VxEPH/2cCYrSaTpnQ+TfNmsvX1dmeOtxYaak47q6xuL09VqZbXVLjeWVsr19Y3LC0vT85X5yvLk5MS1qetTV6fG96SfWb9u/OzdP/7urz+/8c8f3f/f3fcv/ibLd7h1//Z+7KXmc1LMnosXBiNidT+C9cBAqz/FXicCAMCuZPun34qI7+f7/yMxkO/N5ezSAQAAQJ9Ibw7HZ0lECgAAAPStm/kY2KRQao33HY5CoVRqjuH9ThwrVGv1xg/namvLs82xsqNRLMwtVCvjrTG1o1FMsvZEXn/ZvtLWnoyIkxHxh5Gjebs0U6vO9vrkBwAAABwSx9uO/z8ZaR7/AwAAAAAAAABfM6O9TgAAAADYd47/AQAAoK/94vbtrKRbv389e299bbF27/Jspb5YWlqbKc3UVldK87XafP6dfUs7ra9aq638OJbXHpQblXqjXF/fuLtUW1tu3F145SewAQAAgAN08ntP/ptExOZPjuYlcyS7GeiygLEC0DcKb/Lgd/YvD+DgdfuYB/rfYK8TAHqm2OsEgJ5Ldri/6+Cdf+19LgAAwP4Y+27n6/+Dzg1A33uj6/9AX3H9Hw4v1//h8CraA4BDb/+v/6fpjusCAAD21XBekkKpdS1wOAqFUiniRP6v/sVkbqFaGY+Ib0bEf0aK38jaE/mSyY7HDAAAAAAAAAAAAAAAAAAAAAAAAABAU5omkQIAAAB9LaLwXtL6/a+xkQvD7ecHjiSfjuTTiLj/5zt/ejDdaKxOZPM/ejG/8bg1/0ovzmAAAAAA7baO07eO4wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgLz1/9nBmqxxk3A9+GhGjneIPxlA+HYpiRBz7OInBbcslETGwB/E3H0XEqU7xkyytGG1l0R6/EBFHDyb+mTRNO8Y/vgfx4TB7km1/bnV6/xXiXD7t/P4fbJWvqvv2r/Bi+zfQZft3YpcxTj/9e7lr/EcRpwc7b3+24idd4p/vtMIOT8qvf7Wx0S1++peIsY6fP8krscqNpZVyfX3j8sLS9HxlvrI8OTlxber61NWp8fLcQrXSuu0Y4/dn/vFF26zP06a8/9El/ugO/b+QVYrderYt2NMHz77drBbbVpHHv3i+8+t/6jXxs7+JH7Q+B7L7x7bqm836dmf/9u+z3XLL4s926f9Or//Fnbueu/TL3/5/lw8FAA5AfX1jcbparazue+VxmqYHFUvlLawMvR1pqOyu0ustEwAAsNde7vT3OhMAAAAAAAAAAAAAAAAAAAA4vA7i68TaY272pqsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAK/1ZQAAAP//P1jhWw==")

00:54:38 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:38 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1435.096892][T10657] loop5: detected capacity change from 0 to 512
[ 1435.098173][T10656] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:54:38 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@abs={0x1}, 0x6e)

00:54:38 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:38 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, 0x0, 0x0)

[ 1435.143115][T10657] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1435.151458][T10657] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:38 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:38 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1435.238029][T10671] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1435.314615][T10684] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1435.855612][T10661] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1435.866956][T10661] CPU: 1 PID: 10661 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1435.877520][T10661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1435.887634][T10661] Call Trace:
[ 1435.890914][T10661]  <TASK>
[ 1435.893956][T10661]  dump_stack_lvl+0xda/0x130
[ 1435.898615][T10661]  dump_stack+0x15/0x20
[ 1435.902831][T10661]  dump_header+0x95/0x3c0
[ 1435.907217][T10661]  oom_kill_process+0xe3/0x3e0
[ 1435.911982][T10661]  out_of_memory+0x9ca/0xc00
[ 1435.916626][T10661]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1435.922699][T10661]  mem_cgroup_out_of_memory+0x139/0x190
[ 1435.928253][T10661]  try_charge_memcg+0x75c/0xd30
[ 1435.933187][T10661]  ? __alloc_pages+0x193/0x340
[ 1435.938036][T10661]  charge_memcg+0x51/0x200
[ 1435.942512][T10661]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1435.948536][T10661]  __read_swap_cache_async+0x339/0x590
[ 1435.954020][T10661]  swap_cluster_readahead+0x29d/0x4e0
[ 1435.959400][T10661]  swapin_readahead+0x8d/0x710
[ 1435.964227][T10661]  ? __filemap_get_folio+0x42b/0x500
[ 1435.969546][T10661]  ? swap_cache_get_folio+0x6e/0x200
[ 1435.974851][T10661]  do_swap_page+0x306/0x1780
[ 1435.979472][T10661]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1435.984835][T10661]  ? __rcu_read_lock+0x35/0x50
[ 1435.989624][T10661]  handle_mm_fault+0xa2e/0x2cc0
[ 1435.994484][T10661]  exc_page_fault+0x3ff/0x6c0
[ 1435.999168][T10661]  asm_exc_page_fault+0x26/0x30
[ 1436.004032][T10661] RIP: 0033:0x7f2c4aac6acd
[ 1436.008450][T10661] Code: 31 d2 48 f7 f1 4c 01 f8 49 39 c4 4c 0f 42 e0 83 3d cf 6e 16 00 00 0f 8e 12 ff ff ff e8 1c 08 ff ff 49 39 c4 0f 82 60 01 00 00 <69> 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00
[ 1436.028145][T10661] RSP: 002b:00007ffcead55b10 EFLAGS: 00010212
[ 1436.034254][T10661] RAX: 000000000015e88d RBX: 00007f2c4ac2d980 RCX: 000000000015e578
[ 1436.042284][T10661] RDX: 0000000000000315 RSI: 00007ffcead55af0 RDI: 7fffffffffffffff
[ 1436.050337][T10661] RBP: 00007f2c4ac2d980 R08: 0000000000000010 R09: 00007ffceada50b0
[ 1436.058360][T10661] R10: 00007ffceada5080 R11: 0000000000042106 R12: 000000000015e92a
[ 1436.066361][T10661] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000015e5e9
[ 1436.074361][T10661]  </TASK>
[ 1436.077474][T10661] memory: usage 307200kB, limit 307200kB, failcnt 255009
[ 1436.084497][T10661] memory+swap: usage 308212kB, limit 9007199254740988kB, failcnt 0
[ 1436.092426][T10661] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1436.099845][T10661] Memory cgroup stats for /syz2:
[ 1436.100010][T10661] cache 4096
[ 1436.108206][T10661] rss 8192
[ 1436.111282][T10661] shmem 0
[ 1436.114241][T10661] mapped_file 0
[ 1436.117758][T10661] dirty 4096
[ 1436.121050][T10661] writeback 4096
[ 1436.124641][T10661] workingset_refault_anon 53890
[ 1436.129600][T10661] workingset_refault_file 19
[ 1436.134262][T10661] swap 1036288
[ 1436.137677][T10661] pgpgin 197750
[ 1436.141176][T10661] pgpgout 197747
[ 1436.144752][T10661] pgfault 276152
[ 1436.148301][T10661] pgmajfault 20374
[ 1436.152012][T10661] inactive_anon 4096
[ 1436.155953][T10661] active_anon 0
[ 1436.159409][T10661] inactive_file 4096
[ 1436.163432][T10661] active_file 0
[ 1436.167020][T10661] unevictable 0
[ 1436.170528][T10661] hierarchical_memory_limit 314572800
[ 1436.175943][T10661] hierarchical_memsw_limit 9223372036854771712
[ 1436.182123][T10661] total_cache 4096
[ 1436.185892][T10661] total_rss 8192
[ 1436.189439][T10661] total_shmem 0
[ 1436.192888][T10661] total_mapped_file 0
[ 1436.196912][T10661] total_dirty 4096
[ 1436.200651][T10661] total_writeback 4096
[ 1436.204820][T10661] total_workingset_refault_anon 53890
[ 1436.210193][T10661] total_workingset_refault_file 19
[ 1436.215329][T10661] total_swap 1036288
[ 1436.219266][T10661] total_pgpgin 197750
[ 1436.223247][T10661] total_pgpgout 197747
[ 1436.227363][T10661] total_pgfault 276152
[ 1436.231440][T10661] total_pgmajfault 20374
[ 1436.235774][T10661] total_inactive_anon 4096
[ 1436.240242][T10661] total_active_anon 0
[ 1436.244279][T10661] total_inactive_file 4096
[ 1436.248765][T10661] total_active_file 0
[ 1436.252794][T10661] total_unevictable 0
[ 1436.256815][T10661] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10661,uid=0
[ 1436.272161][T10661] Memory cgroup out of memory: Killed process 10661 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:39 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xed03000000000000}, 0x0)

00:54:39 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, 0x0, 0x0)

00:54:39 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:39 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x3f000000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:39 executing program 3:
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x1a, &(0x7f0000000780)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r6, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
r7 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000006400310f00"/20, @ANYRES32=r6, @ANYBLOB="00000000f2df735d08502e8aecc201ffff0000000000000001666c6f"], 0x34}}, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x320080, 0x0)

00:54:39 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, 0x0, 0x0)

00:54:39 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1436.518545][T10693] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1436.552122][T10698] loop5: detected capacity change from 0 to 512
00:54:39 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000380)=@abs, 0x6e)

00:54:39 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1436.564304][T10698] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1436.574619][T10698] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:39 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000380)=@abs, 0x6e)

00:54:39 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:39 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xef02000000000000}, 0x0)

00:54:39 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3d9rW20dAPDvSZvZbp3t1Is52Bxu0g1d0q5uK15sE8S7gTLvZ2nTUpo2pUm3tQzp8A8QRHTglVfeCP4BguxPEGGg96KiiG564cX7vuflnKRbF5K1422akX4+8OQ8z0nO+X6fpDk5P54mARxbSUTcjYihiLgaEeOt+YVWiZ1muRgRr14+mc9KEml6/99JvmzW3ruuzKnWYiPNSUf1re2VuWq1stFqlxur6+X61va15dW5pcpSZW1mZvrm7K3ZG7NTh9LPrF+3v/P3n//k19+9/ftvPPrLg39e+VGW71jr/r39OEzN56SYPRevDUfERi+C9cFQqz/FficCAMCBZPunX4iIr+b7/+MxlO/N5ezSAQAAwIBI74zFR0lECgAAAAysO/kY2KRQao33HYtCoVRqjuH9UpwsVGv1xtcXa5trC82xshNRLCwuVytTrTG1E1FMsvZ0Xn/Tvt7WnomIMxHxs/HRvF2ar1UX+n3yAwAAAI6JU23H//8bbx7/AwAAAINltN8JAAAAAL030e8EAAAAgJ5z/A8AAAAD7Xv37mUl3f3964WHW5srtYfXFir1ldLq5nxpvraxXlqq1Zby7+xb3W991Vpt/Zuxtvm43KjUG+X61vaD1drmWuPB8ls/gQ0AAAAcoTNfef7nJCJ2vjWal8yJ7GaoywLGCsDAKLzPg//WuzyAo9ftYx4YfMP9TgDom2K/EwD6Ltnn/q6Dd/5w+LkAAAC9Mfnlztf/h50bgIH3Xtf/gYHi+j8cX67/w/FVtAcAx17vr/+n6b7rAgAAemosL0mh1LoWOBaFQqkUcTr/V/9isrhcrUxFxOcj4k/jxc9l7el8yWTfYwYAAAAAAAAAAAAAAAAAAAAAAAAAoClNk0gBAACAgRZR+EfS+v2vyfHLY+3nB04k/x/PpxHx6Jf3f/F4rtHYmM7m/+f1/Maz1vzr/TiDAQAAALTbPU7fPY4HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgMP06uWT+d1ylHH/9e2ImOgUfzhG8ulIFCPi5H+TGN6zXBIRQ4cQf+dpRJztFD/J0oqJVhbt8QsRMXo08c+nadox/qlDiA/H2fNs+3O30/uvEBfzaef3/3CrfFbdt3+F19u/oS7bv9MHjHHuxW/LXeM/jTg33Hn7sxs/6RL/UqcVdnhSfviD7e1u8dNfRUx2/PxJ3opVbqyul+tb29eWV+eWKkuVtZmZ6Zuzt2ZvzE6VF5erldZtxxg/Pf+7T9pmfZw25f2PLvEn9un/5axS7NazPcFePH75xWa12LaKPP6VS51f/7PviJ/9TXyt9TmQ3T+5W99p1ve68Js/XuiWWxZ/oUv/93v9r+zf9dzV7//4rwd8KABwBOpb2ytz1Wplo+eVZ2maHlUslQ+wMvJhpKFysEq/t0wAAMBhe7PT3+9MAAAAAAAAAAAAAAAAAAAA4Pg6iq8Ta4+505+uAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC806cBAAD//3Ej4WQ=")

00:54:39 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000380)=@abs, 0x6e)

00:54:39 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1436.691217][T10705] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1436.722961][T10721] loop5: detected capacity change from 0 to 512
[ 1436.751722][T10721] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1436.760047][T10721] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1436.780581][T10695] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1436.790404][T10725] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1437.316158][T10703] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1437.329745][T10703] CPU: 0 PID: 10703 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1437.340193][T10703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1437.350297][T10703] Call Trace:
[ 1437.353652][T10703]  <TASK>
[ 1437.356752][T10703]  dump_stack_lvl+0xda/0x130
[ 1437.361402][T10703]  dump_stack+0x15/0x20
[ 1437.365606][T10703]  dump_header+0x95/0x3c0
[ 1437.369952][T10703]  oom_kill_process+0xe3/0x3e0
[ 1437.374727][T10703]  out_of_memory+0x9ca/0xc00
[ 1437.379333][T10703]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1437.385531][T10703]  mem_cgroup_out_of_memory+0x139/0x190
[ 1437.391137][T10703]  try_charge_memcg+0x75c/0xd30
[ 1437.395994][T10703]  obj_cgroup_charge_pages+0xab/0x130
[ 1437.402077][T10703]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1437.407649][T10703]  __alloc_pages+0x1bb/0x340
[ 1437.412313][T10703]  alloc_pages+0x3e1/0x4e0
[ 1437.416780][T10703]  __vmalloc_node_range+0x6d2/0xea0
[ 1437.421995][T10703]  kvmalloc_node+0x121/0x160
[ 1437.426694][T10703]  ? xt_alloc_table_info+0x3d/0x80
[ 1437.431867][T10703]  xt_alloc_table_info+0x3d/0x80
[ 1437.436808][T10703]  do_arpt_set_ctl+0x634/0x13b0
[ 1437.441731][T10703]  ? futex_unqueue+0xba/0xe0
[ 1437.446361][T10703]  ? futex_wait+0x3c3/0x410
[ 1437.450866][T10703]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1437.455981][T10703]  ? lock_sock_nested+0x10e/0x130
[ 1437.461110][T10703]  ? tcp_release_cb+0xfe/0x340
[ 1437.466018][T10703]  nf_setsockopt+0x18d/0x1b0
[ 1437.470625][T10703]  ip_setsockopt+0xe6/0x100
[ 1437.475250][T10703]  tcp_setsockopt+0x90/0xa0
[ 1437.479814][T10703]  sock_common_setsockopt+0x61/0x70
[ 1437.485011][T10703]  ? sock_common_recvmsg+0xe0/0xe0
[ 1437.490271][T10703]  __sys_setsockopt+0x1d7/0x240
[ 1437.495150][T10703]  __x64_sys_setsockopt+0x66/0x80
[ 1437.500178][T10703]  do_syscall_64+0x41/0xc0
[ 1437.504631][T10703]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1437.510358][T10703]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1437.516291][T10703] RIP: 0033:0x7f2c4ab0cae9
[ 1437.520704][T10703] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1437.540331][T10703] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1437.548748][T10703] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1437.556778][T10703] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1437.564791][T10703] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1437.572851][T10703] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1437.580875][T10703] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1437.588859][T10703]  </TASK>
[ 1437.592044][T10703] memory: usage 307200kB, limit 307200kB, failcnt 255461
[ 1437.599104][T10703] memory+swap: usage 308296kB, limit 9007199254740988kB, failcnt 0
[ 1437.607056][T10703] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1437.614405][T10703] Memory cgroup stats for /syz2:
[ 1437.614544][T10703] cache 4096
[ 1437.622727][T10703] rss 0
[ 1437.625528][T10703] shmem 0
[ 1437.628486][T10703] mapped_file 0
[ 1437.631938][T10703] dirty 4096
[ 1437.635165][T10703] writeback 0
[ 1437.638455][T10703] workingset_refault_anon 53951
[ 1437.643294][T10703] workingset_refault_file 19
[ 1437.647912][T10703] swap 1122304
[ 1437.651402][T10703] pgpgin 197841
[ 1437.654935][T10703] pgpgout 197838
[ 1437.658489][T10703] pgfault 276363
[ 1437.662026][T10703] pgmajfault 20388
[ 1437.665851][T10703] inactive_anon 8192
[ 1437.669770][T10703] active_anon 0
[ 1437.673222][T10703] inactive_file 0
[ 1437.676907][T10703] active_file 4096
[ 1437.680649][T10703] unevictable 0
[ 1437.684099][T10703] hierarchical_memory_limit 314572800
[ 1437.689613][T10703] hierarchical_memsw_limit 9223372036854771712
[ 1437.695843][T10703] total_cache 4096
[ 1437.699561][T10703] total_rss 0
[ 1437.702879][T10703] total_shmem 0
[ 1437.706362][T10703] total_mapped_file 0
[ 1437.710431][T10703] total_dirty 4096
[ 1437.714136][T10703] total_writeback 0
[ 1437.718038][T10703] total_workingset_refault_anon 53951
[ 1437.723452][T10703] total_workingset_refault_file 19
[ 1437.728676][T10703] total_swap 1122304
[ 1437.732576][T10703] total_pgpgin 197841
[ 1437.736639][T10703] total_pgpgout 197838
[ 1437.740737][T10703] total_pgfault 276363
[ 1437.744829][T10703] total_pgmajfault 20388
[ 1437.749071][T10703] total_inactive_anon 8192
[ 1437.753474][T10703] total_active_anon 0
[ 1437.757479][T10703] total_inactive_file 0
[ 1437.761687][T10703] total_active_file 4096
[ 1437.766017][T10703] total_unevictable 0
[ 1437.770008][T10703] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10696,uid=0
[ 1437.785353][T10703] Memory cgroup out of memory: Killed process 10696 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:40 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:40 executing program 0:
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x1a, &(0x7f0000000780)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r6, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
r7 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000006400310f00"/20, @ANYRES32=r6, @ANYBLOB="00000000f2df735d08502e8aecc201ffff0000000000000001666c6f"], 0x34}}, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x320080, 0x0)

00:54:40 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x40000000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:40 executing program 3:
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x1a, &(0x7f0000000780)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r6, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
r7 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000006400310f00"/20, @ANYRES32=r6, @ANYBLOB="00000000f2df735d08502e8aecc201ffff0000000000000001666c6f"], 0x34}}, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x320080, 0x0)

00:54:40 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:40 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xf0ffffff00000000}, 0x0)

[ 1438.022165][T10738] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1438.023499][T10735] loop5: detected capacity change from 0 to 512
[ 1438.061929][T10735] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
00:54:40 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0), 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1438.070194][T10735] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:41 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:41 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xf301000000000000}, 0x0)

00:54:41 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0), 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:41 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1438.140632][T10745] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
00:54:41 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0), 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1438.184449][T10753] loop5: detected capacity change from 0 to 512
[ 1438.208001][T10756] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1438.217843][T10753] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1438.226130][T10753] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:41 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{0x0}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:41 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{0x0}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:41 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1438.331141][T10746] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1438.359204][T10745] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1438.368615][T10758] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1438.414597][T10772] loop5: detected capacity change from 0 to 512
[ 1438.424596][T10772] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1438.432927][T10772] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1438.867100][T10740] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1438.878482][T10740] CPU: 1 PID: 10740 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1438.889349][T10740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1438.899407][T10740] Call Trace:
[ 1438.902693][T10740]  <TASK>
[ 1438.905621][T10740]  dump_stack_lvl+0xda/0x130
[ 1438.910302][T10740]  dump_stack+0x15/0x20
[ 1438.914462][T10740]  dump_header+0x95/0x3c0
[ 1438.918811][T10740]  oom_kill_process+0xe3/0x3e0
[ 1438.923583][T10740]  out_of_memory+0x9ca/0xc00
[ 1438.928180][T10740]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1438.934256][T10740]  mem_cgroup_out_of_memory+0x139/0x190
[ 1438.939810][T10740]  try_charge_memcg+0x75c/0xd30
[ 1438.944783][T10740]  ? __alloc_pages+0x193/0x340
[ 1438.949606][T10740]  charge_memcg+0x51/0x200
[ 1438.954039][T10740]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1438.960020][T10740]  __read_swap_cache_async+0x339/0x590
[ 1438.965480][T10740]  swap_cluster_readahead+0x29d/0x4e0
[ 1438.970914][T10740]  swapin_readahead+0x8d/0x710
[ 1438.975692][T10740]  ? __filemap_get_folio+0x42b/0x500
[ 1438.981003][T10740]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1438.986591][T10740]  ? swap_cache_get_folio+0x6e/0x200
[ 1438.991938][T10740]  do_swap_page+0x306/0x1780
[ 1438.996544][T10740]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1439.001922][T10740]  ? __rcu_read_lock+0x35/0x50
[ 1439.006854][T10740]  handle_mm_fault+0xa2e/0x2cc0
[ 1439.011815][T10740]  exc_page_fault+0x3ff/0x6c0
[ 1439.016504][T10740]  asm_exc_page_fault+0x26/0x30
[ 1439.021410][T10740] RIP: 0033:0x7f2c4aac6af4
[ 1439.025832][T10740] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1439.045490][T10740] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1439.051560][T10740] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1439.059574][T10740] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1439.067580][T10740] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1439.075558][T10740] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000015f49e
[ 1439.083531][T10740] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000015f15d
[ 1439.091518][T10740]  </TASK>
[ 1439.094762][T10740] memory: usage 307200kB, limit 307200kB, failcnt 255715
[ 1439.101805][T10740] memory+swap: usage 308212kB, limit 9007199254740988kB, failcnt 0
[ 1439.109778][T10740] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 1439.117117][T10740] Memory cgroup stats for /syz2:
[ 1439.117368][T10740] cache 4096
[ 1439.125567][T10740] rss 8192
[ 1439.128698][T10740] shmem 0
[ 1439.131630][T10740] mapped_file 0
[ 1439.135132][T10740] dirty 4096
[ 1439.138326][T10740] writeback 8192
[ 1439.141874][T10740] workingset_refault_anon 53993
[ 1439.146760][T10740] workingset_refault_file 19
[ 1439.151350][T10740] swap 1036288
[ 1439.154748][T10740] pgpgin 197913
[ 1439.158210][T10740] pgpgout 197909
[ 1439.161842][T10740] pgfault 276512
[ 1439.165445][T10740] pgmajfault 20409
[ 1439.169164][T10740] inactive_anon 0
[ 1439.172785][T10740] active_anon 0
[ 1439.176291][T10740] inactive_file 0
[ 1439.179925][T10740] active_file 4096
[ 1439.183704][T10740] unevictable 0
[ 1439.187200][T10740] hierarchical_memory_limit 314572800
[ 1439.192670][T10740] hierarchical_memsw_limit 9223372036854771712
[ 1439.198879][T10740] total_cache 4096
[ 1439.202605][T10740] total_rss 8192
[ 1439.206209][T10740] total_shmem 0
[ 1439.209675][T10740] total_mapped_file 0
[ 1439.213657][T10740] total_dirty 4096
[ 1439.217485][T10740] total_writeback 8192
[ 1439.221547][T10740] total_workingset_refault_anon 53993
[ 1439.226955][T10740] total_workingset_refault_file 19
[ 1439.232121][T10740] total_swap 1036288
[ 1439.236097][T10740] total_pgpgin 197913
[ 1439.240082][T10740] total_pgpgout 197909
[ 1439.244267][T10740] total_pgfault 276512
[ 1439.248371][T10740] total_pgmajfault 20409
[ 1439.252626][T10740] total_inactive_anon 0
[ 1439.256809][T10740] total_active_anon 0
[ 1439.260795][T10740] total_inactive_file 0
[ 1439.264978][T10740] total_active_file 4096
[ 1439.269218][T10740] total_unevictable 0
[ 1439.273186][T10740] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10740,uid=0
[ 1439.288570][T10740] Memory cgroup out of memory: Killed process 10740 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:42 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'user_u'}}]}})

00:54:42 executing program 3:
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x1a, &(0x7f0000000780)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r6, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
r7 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000006400310f00"/20, @ANYRES32=r6, @ANYBLOB="00000000f2df735d08502e8aecc201ffff0000000000000001666c6f"], 0x34}}, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x320080, 0x0)

00:54:42 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{0x0}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

00:54:42 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:42 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xf47c8c9200000000}, 0x0)

00:54:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x8b000000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

[ 1439.583800][T10779] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[ 1439.583857][T10781] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1439.595127][T10783] loop5: detected capacity change from 0 to 512
[ 1439.621506][T10783] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
00:54:42 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'user_u'}}]}})

00:54:42 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=@ng={0x4, 0x14, "5d1444af94483e33d30b9492"}, 0xe, 0x2)

[ 1439.629765][T10783] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:42 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2)

00:54:42 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1439.673914][T10793] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[ 1439.683784][T10788] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:54:42 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'user_u'}}]}})

00:54:42 executing program 3:
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000140))
ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000180)={0x5, 0x0, 0x7, 0x0, 0x0, "e178281c809e28d6529698a62d5e871a1fd942"})
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x0)
memfd_create(0x0, 0x1)
r4 = socket$packet(0x11, 0x0, 0x300)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newsa={0x184, 0x10, 0x713, 0x0, 0x0, {{@in=@remote, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in6=@remote, 0x0, 0x32}, @in=@multicast1, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth={0x48, 0x1, {{'crct10dif-generic\x00'}}}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x184}}, 0x0)
sendfile(r4, 0xffffffffffffffff, &(0x7f00000002c0)=0x1000, 0x8)
ioctl$LOOP_CONFIGURE(r3, 0x4c0a, &(0x7f0000000040)={r3, 0x1, {0x0, 0x0, 0x0, 0x4, 0x5, 0x0, 0x2, 0x12, 0x1c, "c807a3d9f84ccac0b94ae7398fc88486bc02e33152ffe7b5016f43495daa2c4d43f06f4cc593bc82a2758a386ad40249895acfdc0cf53c1af2f00ef1e4e35e39", "2e08419eba53e4ac8919200c7dc110a10c6258e2cda300e60f919833fddd6cdfb3bbc3543b00675897ff6b7962b54737b1e128fb398b762f33a081dd815af334", "6726ead2162e55f99806c7907cd33db06d8c04794082fefbd1523badb019496e", [0xa, 0xffffffff00000000]}})
ioctl$LOOP_SET_BLOCK_SIZE(r3, 0x4c09, 0x8)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f0000000200)={0x0, {}, 0x0, {}, 0xfffffffe, 0x0, 0x0, 0xd, "4b8b3ea46929dfed0b2f34380d308f95a023d009852471dd5a94a9fe9549918ae7fd1f0ece5b861375b108403362cfe0f4fccffb1b6a2115354d4df15d017a37", "2363f18d9acc6c25af21ca2af6d2e80e4caadd6d126cfb80c92dc817d44dcdec"})
ioctl$LOOP_CLR_FD(0xffffffffffffffff, 0x4c01)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r9)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r10, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r10, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@delchain={0x34, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xfff2, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x0)

[ 1439.746992][T10796] loop5: detected capacity change from 0 to 512
00:54:42 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2)

[ 1439.800738][T10796] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1439.809080][T10796] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:42 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xf500000000000000}, 0x0)

00:54:42 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

00:54:42 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)

00:54:42 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1439.843144][T10804] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[ 1439.856425][T10802] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1439.921230][T10809] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1440.421116][T10784] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1440.432468][T10784] CPU: 0 PID: 10784 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1440.442916][T10784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1440.452996][T10784] Call Trace:
[ 1440.456343][T10784]  <TASK>
[ 1440.459281][T10784]  dump_stack_lvl+0xda/0x130
[ 1440.464020][T10784]  dump_stack+0x15/0x20
[ 1440.468177][T10784]  dump_header+0x95/0x3c0
[ 1440.472550][T10784]  oom_kill_process+0xe3/0x3e0
[ 1440.477338][T10784]  out_of_memory+0x9ca/0xc00
[ 1440.481929][T10784]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1440.488148][T10784]  mem_cgroup_out_of_memory+0x139/0x190
[ 1440.493756][T10784]  try_charge_memcg+0x75c/0xd30
[ 1440.498608][T10784]  ? __alloc_pages+0x193/0x340
[ 1440.503428][T10784]  charge_memcg+0x51/0x200
[ 1440.507903][T10784]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1440.513886][T10784]  __read_swap_cache_async+0x339/0x590
[ 1440.519399][T10784]  swap_cluster_readahead+0x29d/0x4e0
[ 1440.524801][T10784]  swapin_readahead+0x8d/0x710
[ 1440.529600][T10784]  ? __filemap_get_folio+0x42b/0x500
[ 1440.534986][T10784]  ? swap_cache_get_folio+0x6e/0x200
[ 1440.540294][T10784]  do_swap_page+0x306/0x1780
[ 1440.544945][T10784]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1440.550239][T10784]  ? __rcu_read_lock+0x35/0x50
[ 1440.555040][T10784]  handle_mm_fault+0xa2e/0x2cc0
[ 1440.560053][T10784]  exc_page_fault+0x3ff/0x6c0
[ 1440.564825][T10784]  asm_exc_page_fault+0x26/0x30
[ 1440.569696][T10784] RIP: 0033:0x7f2c4aac6af4
[ 1440.574107][T10784] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1440.593780][T10784] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1440.599850][T10784] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1440.607902][T10784] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1440.615880][T10784] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1440.624010][T10784] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000015faa8
[ 1440.632078][T10784] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000015f767
[ 1440.640069][T10784]  </TASK>
[ 1440.643196][T10784] memory: usage 307200kB, limit 307200kB, failcnt 256274
[ 1440.650288][T10784] memory+swap: usage 308144kB, limit 9007199254740988kB, failcnt 0
[ 1440.658220][T10784] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 1440.665527][T10784] Memory cgroup stats for /syz2:
[ 1440.665786][T10784] cache 4096
[ 1440.674073][T10784] rss 8192
[ 1440.677131][T10784] shmem 0
[ 1440.680111][T10784] mapped_file 0
[ 1440.683581][T10784] dirty 4096
[ 1440.686832][T10784] writeback 16384
[ 1440.690477][T10784] workingset_refault_anon 54068
[ 1440.695421][T10784] workingset_refault_file 19
[ 1440.700080][T10784] swap 966656
[ 1440.703372][T10784] pgpgin 198018
[ 1440.706886][T10784] pgpgout 198012
[ 1440.710465][T10784] pgfault 276696
[ 1440.714088][T10784] pgmajfault 20430
[ 1440.717866][T10784] inactive_anon 4096
[ 1440.721768][T10784] active_anon 0
[ 1440.725271][T10784] inactive_file 4096
[ 1440.729251][T10784] active_file 0
[ 1440.732708][T10784] unevictable 0
[ 1440.736196][T10784] hierarchical_memory_limit 314572800
[ 1440.741577][T10784] hierarchical_memsw_limit 9223372036854771712
[ 1440.747817][T10784] total_cache 4096
[ 1440.751543][T10784] total_rss 8192
[ 1440.755130][T10784] total_shmem 0
[ 1440.758686][T10784] total_mapped_file 0
[ 1440.762732][T10784] total_dirty 4096
[ 1440.766499][T10784] total_writeback 16384
[ 1440.770670][T10784] total_workingset_refault_anon 54068
[ 1440.776076][T10784] total_workingset_refault_file 19
[ 1440.781212][T10784] total_swap 966656
[ 1440.785050][T10784] total_pgpgin 198018
[ 1440.789083][T10784] total_pgpgout 198012
[ 1440.793146][T10784] total_pgfault 276696
[ 1440.797329][T10784] total_pgmajfault 20430
[ 1440.801602][T10784] total_inactive_anon 4096
[ 1440.806109][T10784] total_active_anon 0
[ 1440.810153][T10784] total_inactive_file 4096
[ 1440.814589][T10784] total_active_file 0
[ 1440.818615][T10784] total_unevictable 0
[ 1440.822607][T10784] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10784,uid=0
[ 1440.838015][T10784] Memory cgroup out of memory: Killed process 10784 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:43 executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x35ef, &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)=""/4102, 0x1006}], 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_ima(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

00:54:43 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:43 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:43 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = socket(0x21, 0x6, 0x7fff)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000200), &(0x7f0000000100)=0xfffffffffffffd51)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'unconfined_u'}}]}})

00:54:43 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xf502000000000000}, 0x0)

00:54:43 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x8d000000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:44 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:44 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:44 executing program 1:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1441.137631][T10832] loop5: detected capacity change from 0 to 512
[ 1441.149274][T10834] loop1: detected capacity change from 0 to 512
[ 1441.176651][T10832] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
00:54:44 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:44 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1441.184998][T10832] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1441.191643][T10834] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[ 1441.199874][T10834] EXT4-fs (loop1): inodes count not valid: 1 vs 32
00:54:44 executing program 0:
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:44 executing program 0:
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:44 executing program 0:
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:44 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:44 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = socket(0x21, 0x6, 0x7fff)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000200), &(0x7f0000000100)=0xfffffffffffffd51)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'unconfined_u'}}]}})

00:54:44 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xf901000000000000}, 0x0)

00:54:45 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:45 executing program 1:
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="480000009e0c81d400000400000000000000dfff", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r6, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@delchain={0x34, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xfff2, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x0)
r7 = socket(0x10, 0x3, 0x0)
bind$netlink(r7, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
write(r7, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
connect$netlink(r7, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000b4bffc), 0x4)
write(r7, &(0x7f0000000000)='\"', 0x1)
recvmmsg(r7, &(0x7f0000000780), 0x3ffffffffffff81, 0x2, 0x0)
recvmmsg(r7, &(0x7f0000007340)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
ptrace$setopts(0x4200, r8, 0x0, 0x80000)
fcntl$lock(r7, 0x26, &(0x7f0000000000)={0x1, 0x4, 0x20, 0x1, r8})
r9 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r7, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYBLOB="0625dc27a5b7af457ddf1ad53cb83fdba3b9790d7abc042a02175973571e1dbace563a90050ab252a63d8759d6c16af872fcbd9ee998c5c02991e56cb3b5b264e6baf93f97163d72c2885fc3f186fb3f3dc4690d2a18e36ee9b7ae6669d06f", @ANYRES16=r9, @ANYBLOB="005020d40127bd7000fe0500"/26], 0x28}, 0x1, 0x0, 0x0, 0x30058080}, 0x44000)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f00000000c0), 0xc, &(0x7f0000000100)={&(0x7f00000005c0)={0x60, r9, 0x8, 0x70bd29, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0x44, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x18}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0xd}}]}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x404c0f0}, 0x4000064)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x60, r9, 0x800, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x28}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x4}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x4}]}, 0x60}, 0x1, 0x0, 0x0, 0x200040c5}, 0x20000000)
getsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f0000000240)={@initdev, <r10=>0x0}, &(0x7f00000002c0)=0x14)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000440)={0x90, r9, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x8000}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x4}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x3c, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x80}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x9}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x10}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x8}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x8}, @MPTCP_PM_ATTR_ADDR={0x20, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r10}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @empty}]}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x6c}]}, 0x90}}, 0x20044045)

00:54:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xba050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:45 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:45 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xfc00000000000000}, 0x0)

00:54:45 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = socket(0x21, 0x6, 0x7fff)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000200), &(0x7f0000000100)=0xfffffffffffffd51)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'unconfined_u'}}]}})

00:54:45 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:45 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:45 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1442.211878][T10871] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3230 sclass=netlink_route_socket pid=10871 comm=syz-executor.1
[ 1442.272104][T10877] loop5: detected capacity change from 0 to 512
[ 1442.283999][T10877] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1442.292228][T10877] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:45 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:45 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xfcffffff00000000}, 0x0)

00:54:45 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:45 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)=@v3, 0x18, 0x0)
lgetxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)=@known='trusted.overlay.origin\x00', &(0x7f0000000140)=""/159, 0x9f)

00:54:45 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1442.936204][T10868] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1442.947635][T10868] CPU: 1 PID: 10868 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1442.958059][T10868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1442.968121][T10868] Call Trace:
[ 1442.971409][T10868]  <TASK>
[ 1442.974343][T10868]  dump_stack_lvl+0xda/0x130
[ 1442.978977][T10868]  dump_stack+0x15/0x20
[ 1442.983208][T10868]  dump_header+0x95/0x3c0
[ 1442.987563][T10868]  oom_kill_process+0xe3/0x3e0
[ 1442.992602][T10868]  out_of_memory+0x9ca/0xc00
[ 1442.997216][T10868]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1443.003382][T10868]  mem_cgroup_out_of_memory+0x139/0x190
[ 1443.008938][T10868]  try_charge_memcg+0x75c/0xd30
[ 1443.013799][T10868]  ? __alloc_pages+0x193/0x340
[ 1443.018608][T10868]  charge_memcg+0x51/0x200
[ 1443.023034][T10868]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1443.029040][T10868]  __read_swap_cache_async+0x339/0x590
[ 1443.034616][T10868]  swap_cluster_readahead+0x29d/0x4e0
[ 1443.040086][T10868]  swapin_readahead+0x8d/0x710
[ 1443.044858][T10868]  ? __filemap_get_folio+0x42b/0x500
[ 1443.050163][T10868]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1443.055819][T10868]  ? swap_cache_get_folio+0x6e/0x200
[ 1443.061136][T10868]  do_swap_page+0x306/0x1780
[ 1443.065789][T10868]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1443.071172][T10868]  ? __rcu_read_lock+0x35/0x50
[ 1443.076034][T10868]  handle_mm_fault+0xa2e/0x2cc0
[ 1443.080983][T10868]  exc_page_fault+0x3ff/0x6c0
[ 1443.085762][T10868]  asm_exc_page_fault+0x26/0x30
[ 1443.090658][T10868] RIP: 0033:0x7f2c4aac6af4
[ 1443.095082][T10868] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1443.114825][T10868] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1443.120909][T10868] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1443.129002][T10868] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1443.137058][T10868] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1443.145111][T10868] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000001604ba
[ 1443.153141][T10868] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000160179
[ 1443.161154][T10868]  </TASK>
[ 1443.164285][T10868] memory: usage 307200kB, limit 307200kB, failcnt 256431
[ 1443.171406][T10868] memory+swap: usage 308132kB, limit 9007199254740988kB, failcnt 0
[ 1443.179451][T10868] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1443.186801][T10868] Memory cgroup stats for /syz2:
[ 1443.187128][T10868] cache 4096
[ 1443.195292][T10868] rss 16384
[ 1443.198406][T10868] shmem 0
[ 1443.201341][T10868] mapped_file 0
[ 1443.204845][T10868] dirty 0
[ 1443.207813][T10868] writeback 16384
[ 1443.211441][T10868] workingset_refault_anon 54163
[ 1443.216407][T10868] workingset_refault_file 19
[ 1443.221001][T10868] swap 954368
[ 1443.224321][T10868] pgpgin 198167
[ 1443.227833][T10868] pgpgout 198162
[ 1443.231463][T10868] pgfault 276979
[ 1443.235091][T10868] pgmajfault 20466
[ 1443.238817][T10868] inactive_anon 0
[ 1443.242570][T10868] active_anon 0
[ 1443.246157][T10868] inactive_file 4096
[ 1443.250071][T10868] active_file 0
[ 1443.253544][T10868] unevictable 0
[ 1443.257121][T10868] hierarchical_memory_limit 314572800
[ 1443.262504][T10868] hierarchical_memsw_limit 9223372036854771712
[ 1443.268766][T10868] total_cache 4096
[ 1443.272537][T10868] total_rss 16384
[ 1443.276214][T10868] total_shmem 0
[ 1443.279758][T10868] total_mapped_file 0
[ 1443.283839][T10868] total_dirty 0
[ 1443.287351][T10868] total_writeback 16384
[ 1443.291514][T10868] total_workingset_refault_anon 54163
[ 1443.297002][T10868] total_workingset_refault_file 19
[ 1443.302123][T10868] total_swap 954368
[ 1443.305962][T10868] total_pgpgin 198167
[ 1443.309983][T10868] total_pgpgout 198162
[ 1443.314044][T10868] total_pgfault 276979
[ 1443.318183][T10868] total_pgmajfault 20466
[ 1443.322455][T10868] total_inactive_anon 0
[ 1443.326655][T10868] total_active_anon 0
[ 1443.330668][T10868] total_inactive_file 4096
[ 1443.335162][T10868] total_active_file 0
[ 1443.339176][T10868] total_unevictable 0
[ 1443.343153][T10868] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10868,uid=0
[ 1443.358465][T10868] Memory cgroup out of memory: Killed process 10868 (syz-executor.2) total-vm:46560kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:46 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:46 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0xb, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@fscontext={'fscontext', 0x3d, 'unconfined_u'}}]}})

00:54:46 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xbb050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:46 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xfd03000000000000}, 0x0)

00:54:46 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:46 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = socket(0x21, 0x6, 0x7fff)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000200), &(0x7f0000000100)=0xfffffffffffffd51)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)

00:54:46 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1443.666524][T10897] __nla_validate_parse: 4 callbacks suppressed
[ 1443.666539][T10897] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1443.675552][T10898] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
00:54:46 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:46 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')
setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)=@v3, 0x18, 0x0)

00:54:46 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:46 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:46 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:46 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xfeffffff00000000}, 0x0)

[ 1443.918698][T10920] loop5: detected capacity change from 0 to 512
[ 1443.947305][T10921] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1443.957728][T10920] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1443.965992][T10920] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1444.486251][T10903] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1444.497692][T10903] CPU: 1 PID: 10903 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1444.508198][T10903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1444.518395][T10903] Call Trace:
[ 1444.521678][T10903]  <TASK>
[ 1444.524774][T10903]  dump_stack_lvl+0xda/0x130
[ 1444.529432][T10903]  dump_stack+0x15/0x20
[ 1444.533672][T10903]  dump_header+0x95/0x3c0
[ 1444.538013][T10903]  oom_kill_process+0xe3/0x3e0
[ 1444.542942][T10903]  out_of_memory+0x9ca/0xc00
[ 1444.547585][T10903]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1444.553759][T10903]  mem_cgroup_out_of_memory+0x139/0x190
[ 1444.559334][T10903]  try_charge_memcg+0x75c/0xd30
[ 1444.564249][T10903]  ? __alloc_pages+0x193/0x340
[ 1444.569047][T10903]  charge_memcg+0x51/0x200
[ 1444.573466][T10903]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1444.579522][T10903]  __read_swap_cache_async+0x339/0x590
[ 1444.585000][T10903]  swap_cluster_readahead+0x29d/0x4e0
[ 1444.590458][T10903]  swapin_readahead+0x8d/0x710
[ 1444.595365][T10903]  ? __filemap_get_folio+0x42b/0x500
[ 1444.600721][T10903]  ? swap_cache_get_folio+0x6e/0x200
[ 1444.606044][T10903]  do_swap_page+0x306/0x1780
[ 1444.610734][T10903]  ? __rcu_read_lock+0x35/0x50
[ 1444.615517][T10903]  handle_mm_fault+0xa2e/0x2cc0
[ 1444.620424][T10903]  ? mt_find+0x1d9/0x310
[ 1444.624739][T10903]  exc_page_fault+0x2f7/0x6c0
[ 1444.629455][T10903]  asm_exc_page_fault+0x26/0x30
[ 1444.634468][T10903] RIP: 0010:__get_user_8+0x11/0x20
[ 1444.639590][T10903] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 1444.659250][T10903] RSP: 0018:ffffc90000cb7e38 EFLAGS: 00050202
[ 1444.665326][T10903] RAX: 0000555556d54da8 RBX: ffffc90000cb7e40 RCX: ffffffff81438f03
[ 1444.673312][T10903] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888100c35b18
[ 1444.681314][T10903] RBP: ffffc90000cb7ef8 R08: 0001888100c35b1f R09: 0000000000000000
[ 1444.689297][T10903] R10: 0001ffffffffffff R11: 0001888100c357d8 R12: ffff888100c35140
[ 1444.697300][T10903] R13: ffff888100c35b18 R14: ffffc90000cb7f58 R15: ffffc90000cb7fd8
[ 1444.705751][T10903]  ? __rseq_handle_notify_resume+0xb3/0xbf0
[ 1444.711849][T10903]  __rseq_handle_notify_resume+0xc7/0xbf0
[ 1444.717608][T10903]  ? mem_cgroup_handle_over_high+0x2c/0x1b0
[ 1444.723624][T10903]  exit_to_user_mode_loop+0xcc/0xe0
[ 1444.728847][T10903]  exit_to_user_mode_prepare+0x6c/0xb0
[ 1444.734379][T10903]  irqentry_exit_to_user_mode+0x9/0x20
[ 1444.739943][T10903]  irqentry_exit+0x12/0x40
[ 1444.744479][T10903]  asm_exc_page_fault+0x26/0x30
[ 1444.749427][T10903] RIP: 0033:0x7f2c4aac6af4
[ 1444.753949][T10903] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1444.773571][T10903] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1444.779643][T10903] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1444.787618][T10903] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1444.795648][T10903] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1444.803634][T10903] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000160ab9
[ 1444.811628][T10903] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000160778
[ 1444.819643][T10903]  </TASK>
[ 1444.822842][T10903] memory: usage 307200kB, limit 307200kB, failcnt 256958
[ 1444.829942][T10903] memory+swap: usage 308232kB, limit 9007199254740988kB, failcnt 0
[ 1444.837904][T10903] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1444.845237][T10903] Memory cgroup stats for /syz2:
[ 1444.845340][T10903] cache 4096
[ 1444.853505][T10903] rss 8192
[ 1444.856583][T10903] shmem 0
[ 1444.859540][T10903] mapped_file 0
[ 1444.862995][T10903] dirty 0
[ 1444.865978][T10903] writeback 8192
[ 1444.869569][T10903] workingset_refault_anon 54215
[ 1444.874501][T10903] workingset_refault_file 19
[ 1444.879145][T10903] swap 1056768
[ 1444.882567][T10903] pgpgin 198249
[ 1444.886168][T10903] pgpgout 198246
[ 1444.889826][T10903] pgfault 277151
[ 1444.893502][T10903] pgmajfault 20486
[ 1444.897287][T10903] inactive_anon 0
[ 1444.900931][T10903] active_anon 0
[ 1444.904389][T10903] inactive_file 0
[ 1444.908146][T10903] active_file 4096
[ 1444.911900][T10903] unevictable 0
[ 1444.915466][T10903] hierarchical_memory_limit 314572800
[ 1444.920880][T10903] hierarchical_memsw_limit 9223372036854771712
[ 1444.927109][T10903] total_cache 4096
[ 1444.930839][T10903] total_rss 8192
[ 1444.934378][T10903] total_shmem 0
[ 1444.937890][T10903] total_mapped_file 0
[ 1444.941948][T10903] total_dirty 0
[ 1444.945457][T10903] total_writeback 8192
[ 1444.949577][T10903] total_workingset_refault_anon 54215
[ 1444.954984][T10903] total_workingset_refault_file 19
[ 1444.960112][T10903] total_swap 1056768
[ 1444.963999][T10903] total_pgpgin 198249
[ 1444.968085][T10903] total_pgpgout 198246
[ 1444.972169][T10903] total_pgfault 277151
[ 1444.976295][T10903] total_pgmajfault 20486
[ 1444.980572][T10903] total_inactive_anon 0
[ 1444.984768][T10903] total_active_anon 0
[ 1444.988755][T10903] total_inactive_file 0
[ 1444.992954][T10903] total_active_file 4096
[ 1444.997426][T10903] total_unevictable 0
[ 1445.001433][T10903] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10903,uid=0
[ 1445.016789][T10903] Memory cgroup out of memory: Killed process 10903 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:48 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xbc050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:48 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = socket(0x21, 0x6, 0x7fff)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000200), &(0x7f0000000100)=0xfffffffffffffd51)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:54:48 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')
setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)=@v3, 0x18, 0x0)

00:54:48 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:48 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xffffff7f00000000}, 0x0)

00:54:48 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3VFrHFsdAPD/bLI1bVOTqg+10FpsJS3a3aSxbfChrSC+FZT6XkOyCSGbbMhu2iYUSfEDCCJa8MknXwQ/gCD9CCIU9F1UFPG29z7ch3vvXGZ206bLbpNyk2zZ/f3gZM6Z3Zn/ObvZ2TNzzu4GMLCSiLgTEUMRcSUixlrrC60U2810ISJevng8l6Uk0vTe/5N826y8e1+Zk63NRpqLjuqbW8uz1WplvVUuN1bWyvXNratLK7OLlcXK6vT01I2ZmzPXZyYPpJ1Zu2794N+//sXvf3jrz995+I/7/738s6y+o63bd7fjIDUfk2L2WLwyHBHrhxGsB4Za7Sn2uiIAAOxL1j/9SkR8M+//j8VQ3pvL6dIBAABAn0hvj8YnSUQKAAAA9K3b+RzYpFBqzfcdjUKhVGrO4f1anChUa/XGtxdqG6vzzbmy41EsLCxVK5OtObXjUUyy8lSef12+1laejojTEfGrseN5uTRXq873+uIHAAAADIiTbef/H401z/8BAACAPjPe6woAAAAAh80X/QEAAMAAMP4PAAAAfe1Hd+9mKd35/ev5B5sby7UHV+cr9eXSysZcaa62vlZarNUW8+/sW9lrf9Vabe27sbrxqNyo1Bvl+ubW/ZXaxmrj/tIbP4ENAAAAHKHT33j29yQitr93PE+ZY9mfoS4bmCsAfaPwLnf+1+HVAzh63d7mgf433OsKAD3js/9AssftXSfv/OXg6wIAAByOia93Hv8fdm0A+t47jf8DfcX4Pwwu4/8wuIp6ADDwDn/8P0333BcAAHCoRvOUFEqtscDRKBRKpYhT+Uf9i8nCUrUyGRFfjoi/jRW/lJWn8i2TPc8ZAAAAAAAAAAAAAAAAAAAAAAAAAICmNE0iBQAAAPpaROE/Sev3vybGLo22Xx84lnw8li8j4uFv7/3m0WyjsT6Vrf/g1frG09b6a724ggEAAAC02zlP3zmPBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICD9PLF47mddJRx//f9iBjvFH84RvLlSBQj4sSHSQzv2i6JiKEDiL/9JCLOdIqfZNWK8VYt2uMXIuL40cQ/l6Zpx/gnDyA+DLJn2fHnTqfXXyEu5MvOr//hVvqiuh//Cq+Of0Ndjn+n9hnj7PM/lrvGfxJxdrjz8WcnftIl/sVOO+zwoPz0J1tb3eKnv4uY6Pj+k7wRq9xYWSvXN7euLq3MLlYWK6vT01M3Zm7OXJ+ZLC8sVSutvx1j/PLcnz5rW/Vp2pS3P7rEH9+j/ZeyTLFby3YFe/7oxVeb2WLbLvL4ly92fv7PvCV+9j/xrdb7QHb7xE5+u5nf7fwf/nq+W92y+PNd2r/X839576bnrvz45//c510BgCNQ39xanq1WK+uHnnmapulRxZJ5DzMj70c1ZPaX6fWRCQAAOGivO/29rgkAAAAAAAAAAAAAAAAAAAAMrqP4OrH2mNu9aSoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFt9HgAA//9gYeFg")

00:54:48 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:48 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')
setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)=@v3, 0x18, 0x0)

[ 1445.325246][T10931] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1445.331088][T10929] loop5: detected capacity change from 0 to 512
[ 1445.361391][T10929] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1445.369696][T10929] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:48 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:48 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

00:54:48 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:48 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1446.131065][T10934] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1446.142454][T10934] CPU: 1 PID: 10934 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1446.152891][T10934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1446.162989][T10934] Call Trace:
[ 1446.166269][T10934]  <TASK>
[ 1446.169198][T10934]  dump_stack_lvl+0xda/0x130
[ 1446.173799][T10934]  dump_stack+0x15/0x20
[ 1446.178068][T10934]  dump_header+0x95/0x3c0
[ 1446.182458][T10934]  oom_kill_process+0xe3/0x3e0
[ 1446.187317][T10934]  out_of_memory+0x9ca/0xc00
[ 1446.191915][T10934]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1446.198040][T10934]  mem_cgroup_out_of_memory+0x139/0x190
[ 1446.203670][T10934]  try_charge_memcg+0x75c/0xd30
[ 1446.208532][T10934]  ? __alloc_pages+0x193/0x340
[ 1446.213378][T10934]  charge_memcg+0x51/0x200
[ 1446.217829][T10934]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1446.223813][T10934]  __read_swap_cache_async+0x339/0x590
[ 1446.229275][T10934]  swap_cluster_readahead+0x29d/0x4e0
[ 1446.234724][T10934]  swapin_readahead+0x8d/0x710
[ 1446.239510][T10934]  ? __filemap_get_folio+0x42b/0x500
[ 1446.244843][T10934]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1446.250443][T10934]  ? swap_cache_get_folio+0x6e/0x200
[ 1446.255730][T10934]  do_swap_page+0x306/0x1780
[ 1446.260330][T10934]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1446.265662][T10934]  ? __rcu_read_lock+0x35/0x50
[ 1446.270434][T10934]  handle_mm_fault+0xa2e/0x2cc0
[ 1446.275380][T10934]  exc_page_fault+0x3ff/0x6c0
[ 1446.280092][T10934]  asm_exc_page_fault+0x26/0x30
[ 1446.284975][T10934] RIP: 0033:0x7f2c4ab37ea3
[ 1446.289449][T10934] Code: 00 00 00 00 00 66 90 31 c0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d 4e 40 0d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f
[ 1446.309077][T10934] RSP: 002b:00007ffcead55ac8 EFLAGS: 00010293
[ 1446.315242][T10934] RAX: 00000000fffffffa RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1446.323267][T10934] RDX: 00007ffcead55ae0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1446.331242][T10934] RBP: 00007f2c4ac2d980 R08: 0000000000000010 R09: 00007ffceada50b0
[ 1446.339227][T10934] R10: 0000000000000000 R11: 000000000004288a R12: 0000000000161129
[ 1446.347198][T10934] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000160de8
[ 1446.355190][T10934]  </TASK>
[ 1446.358375][T10934] memory: usage 307200kB, limit 307200kB, failcnt 257600
[ 1446.365513][T10934] memory+swap: usage 308184kB, limit 9007199254740988kB, failcnt 0
[ 1446.373460][T10934] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1446.380811][T10934] Memory cgroup stats for /syz2:
[ 1446.381019][T10934] cache 4096
[ 1446.389223][T10934] rss 0
[ 1446.392059][T10934] shmem 0
[ 1446.395031][T10934] mapped_file 0
[ 1446.398535][T10934] dirty 0
[ 1446.401482][T10934] writeback 8192
[ 1446.405072][T10934] workingset_refault_anon 54287
[ 1446.410002][T10934] workingset_refault_file 19
[ 1446.414611][T10934] swap 1007616
[ 1446.418059][T10934] pgpgin 198351
[ 1446.421518][T10934] pgpgout 198348
[ 1446.425088][T10934] pgfault 277400
[ 1446.428634][T10934] pgmajfault 20504
[ 1446.432471][T10934] inactive_anon 8192
[ 1446.436386][T10934] active_anon 0
[ 1446.439845][T10934] inactive_file 4096
[ 1446.443737][T10934] active_file 0
[ 1446.447380][T10934] unevictable 0
[ 1446.450848][T10934] hierarchical_memory_limit 314572800
[ 1446.456313][T10934] hierarchical_memsw_limit 9223372036854771712
[ 1446.462495][T10934] total_cache 4096
[ 1446.466238][T10934] total_rss 0
[ 1446.469526][T10934] total_shmem 0
[ 1446.472972][T10934] total_mapped_file 0
[ 1446.476999][T10934] total_dirty 0
[ 1446.480492][T10934] total_writeback 8192
[ 1446.484575][T10934] total_workingset_refault_anon 54287
[ 1446.490067][T10934] total_workingset_refault_file 19
[ 1446.495255][T10934] total_swap 1007616
[ 1446.499146][T10934] total_pgpgin 198351
[ 1446.503116][T10934] total_pgpgout 198348
[ 1446.507226][T10934] total_pgfault 277400
[ 1446.511323][T10934] total_pgmajfault 20504
[ 1446.515758][T10934] total_inactive_anon 8192
[ 1446.520173][T10934] total_active_anon 0
[ 1446.524181][T10934] total_inactive_file 4096
[ 1446.528650][T10934] total_active_file 0
[ 1446.532643][T10934] total_unevictable 0
[ 1446.536834][T10934] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10934,uid=0
[ 1446.552149][T10934] Memory cgroup out of memory: Killed process 10934 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xbd050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:49 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:49 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
socket(0x21, 0x6, 0x7fff)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:54:49 executing program 1:
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

00:54:49 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0xffffffff00000000}, 0x0)

00:54:49 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:49 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:49 executing program 1:
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

[ 1446.802466][T10954] loop5: detected capacity change from 0 to 512
[ 1446.814345][T10960] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1446.839129][T10954] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1446.847390][T10954] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:49 executing program 1:
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

00:54:49 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:49 executing program 1:
mkdir(0x0, 0x0)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

00:54:49 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)

[ 1447.081521][T10976] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1447.287079][   T27] audit: type=1400 audit(1696380890.181:330): avc:  denied  { egress } for  pid=15 comm="ksoftirqd/0" saddr=fe80::1c daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[ 1447.310640][   T27] audit: type=1400 audit(1696380890.181:331): avc:  denied  { sendto } for  pid=15 comm="ksoftirqd/0" saddr=fe80::1c daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[ 1447.632326][T10965] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1447.645910][T10965] CPU: 0 PID: 10965 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1447.656327][T10965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1447.666395][T10965] Call Trace:
[ 1447.669696][T10965]  <TASK>
[ 1447.672631][T10965]  dump_stack_lvl+0xda/0x130
[ 1447.677294][T10965]  dump_stack+0x15/0x20
[ 1447.681448][T10965]  dump_header+0x95/0x3c0
[ 1447.685876][T10965]  oom_kill_process+0xe3/0x3e0
[ 1447.690645][T10965]  out_of_memory+0x9ca/0xc00
[ 1447.695312][T10965]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1447.701437][T10965]  mem_cgroup_out_of_memory+0x139/0x190
[ 1447.706997][T10965]  try_charge_memcg+0x75c/0xd30
[ 1447.711888][T10965]  obj_cgroup_charge_pages+0xab/0x130
[ 1447.717278][T10965]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1447.722932][T10965]  __alloc_pages+0x1bb/0x340
[ 1447.727541][T10965]  alloc_pages+0x3e1/0x4e0
[ 1447.732029][T10965]  __vmalloc_node_range+0x6d2/0xea0
[ 1447.737245][T10965]  kvmalloc_node+0x121/0x160
[ 1447.741847][T10965]  ? xt_alloc_table_info+0x3d/0x80
[ 1447.746985][T10965]  xt_alloc_table_info+0x3d/0x80
[ 1447.752078][T10965]  do_arpt_set_ctl+0x634/0x13b0
[ 1447.756941][T10965]  ? futex_unqueue+0xba/0xe0
[ 1447.761568][T10965]  ? futex_wait+0x3c3/0x410
[ 1447.766144][T10965]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1447.771345][T10965]  ? lock_sock_nested+0x10e/0x130
[ 1447.776368][T10965]  ? tcp_release_cb+0xfe/0x340
[ 1447.781144][T10965]  nf_setsockopt+0x18d/0x1b0
[ 1447.785755][T10965]  ip_setsockopt+0xe6/0x100
[ 1447.790271][T10965]  tcp_setsockopt+0x90/0xa0
[ 1447.794784][T10965]  sock_common_setsockopt+0x61/0x70
[ 1447.799990][T10965]  ? sock_common_recvmsg+0xe0/0xe0
[ 1447.805163][T10965]  __sys_setsockopt+0x1d7/0x240
[ 1447.810041][T10965]  __x64_sys_setsockopt+0x66/0x80
[ 1447.815075][T10965]  do_syscall_64+0x41/0xc0
[ 1447.819573][T10965]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1447.825300][T10965]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1447.831271][T10965] RIP: 0033:0x7f2c4ab0cae9
[ 1447.835684][T10965] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1447.855332][T10965] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1447.863760][T10965] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1447.871862][T10965] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1447.879911][T10965] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1447.887897][T10965] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1447.895912][T10965] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1447.903914][T10965]  </TASK>
[ 1447.907009][T10965] memory: usage 307200kB, limit 307200kB, failcnt 257998
[ 1447.914104][T10965] memory+swap: usage 308236kB, limit 9007199254740988kB, failcnt 0
[ 1447.922036][T10965] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1447.929370][T10965] Memory cgroup stats for /syz2:
[ 1447.929553][T10965] cache 4096
[ 1447.937702][T10965] rss 8192
[ 1447.940818][T10965] shmem 0
[ 1447.943832][T10965] mapped_file 0
[ 1447.947344][T10965] dirty 4096
[ 1447.950673][T10965] writeback 0
[ 1447.953950][T10965] workingset_refault_anon 54377
[ 1447.958823][T10965] workingset_refault_file 19
[ 1447.963463][T10965] swap 1060864
[ 1447.966863][T10965] pgpgin 198471
[ 1447.970335][T10965] pgpgout 198468
[ 1447.973882][T10965] pgfault 277632
[ 1447.977471][T10965] pgmajfault 20529
[ 1447.981201][T10965] inactive_anon 8192
[ 1447.985137][T10965] active_anon 0
[ 1447.988599][T10965] inactive_file 0
[ 1447.992262][T10965] active_file 4096
[ 1447.996040][T10965] unevictable 0
[ 1447.999499][T10965] hierarchical_memory_limit 314572800
[ 1448.004900][T10965] hierarchical_memsw_limit 9223372036854771712
[ 1448.011068][T10965] total_cache 4096
[ 1448.014804][T10965] total_rss 8192
[ 1448.018363][T10965] total_shmem 0
[ 1448.021838][T10965] total_mapped_file 0
[ 1448.025843][T10965] total_dirty 4096
[ 1448.029646][T10965] total_writeback 0
[ 1448.033452][T10965] total_workingset_refault_anon 54377
[ 1448.038846][T10965] total_workingset_refault_file 19
[ 1448.043960][T10965] total_swap 1060864
[ 1448.047958][T10965] total_pgpgin 198471
[ 1448.051946][T10965] total_pgpgout 198468
[ 1448.056047][T10965] total_pgfault 277632
[ 1448.060118][T10965] total_pgmajfault 20529
[ 1448.064351][T10965] total_inactive_anon 8192
[ 1448.068857][T10965] total_active_anon 0
[ 1448.072844][T10965] total_inactive_file 0
[ 1448.077020][T10965] total_active_file 4096
[ 1448.081285][T10965] total_unevictable 0
[ 1448.085426][T10965] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=10962,uid=0
[ 1448.100897][T10965] Memory cgroup out of memory: Killed process 10962 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:51 executing program 1:
mkdir(0x0, 0x0)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

00:54:51 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:51 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xbe050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:51 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x2}, 0x0)

00:54:51 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:54:51 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:51 executing program 1:
mkdir(0x0, 0x0)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

[ 1448.345652][T10982] loop5: detected capacity change from 0 to 512
[ 1448.356904][T10982] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1448.365157][T10982] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:51 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:51 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

[ 1448.398292][T10988] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:54:51 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKgvS+7yy7LbrJ72MPuzjIjOXGEFDusbQX594OneW+kmf97kjV6M+9ZCuDQSiLiVkQMRMSliBhprS+0Umw207mIeP7s4UyWkkjTOx8n+bZZefu+Msdbmw01Fx3V1zcWp6vVymqrXG4srZTr6xuXF5am5yvzleXJyYlrU9enrk6N70k7s3bd+MX7f/7D3395498/uf/O3Q8v/i6r73Dr/u3t2EvN56SYPRcvDEbE6n4E64GBVnuKva4IAAC7kvVPvxMRP8z7/yMxkPfmcrp0AAAA0CfSm8PxRRKRAgAAAH3rZj4HNimUWvN9h6NQKJWac3i/F8cK1Vq98eO52trybHOu7GgUC3ML1cp4a07taBSTrDyR51+Wr7SVJyPiZET8aeRoXi7N1Kqzvb74AQAAAIfE8bbz/89Gmuf/AAAAQJ8Z7XUFAAAAgP3W9Uu6AQAAgP5h/B8AAAD62q9u385SuvX717P31tcWa/cuz1bqi6WltZnSTG11pTRfq83n39m3tNP+qrXayk9jee1BuVGpN8r19Y27S7W15cbdhVd+AhsAAAA4QCd/8OT/SURs/uxonjJHspuBLhuYKwB9o/AmD35v/+oBHLxuH/NA/xvsdQWAnin2ugJAzyU73N918s5/9r4uAADA/hj7fufx/0HXBqDvvdH4P9BXjP/D4WX8Hw6voh4AHHr7P/6fpjvuCwAA2FfDeUoKpdZY4HAUCqVSxIn8X/2LydxCtTIeEd+OiP+NFL+VlSfyLZMdzxkAAAAAAAAAAAAAAAAAAAAAAAAAgKY0TSIFAAAA+lpE4YOk9ftfYyMXhtuvDxxJPh/JlxFx/693/vJgutFYncjWf/JifeNxa/2VXlzBAAAAANptnadvnccDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwF56/uzhzFY6yLgf/TwiRjvFH4yhfDkUxYg49mkSg9u2SyJiYA/ibz6KiFOd4idZtWK0VYv2+IWIOHow8c+kadox/vE9iA+H2ZPs+HOr0/uvEOfyZef3/2ArfVPdj3+FF8e/gS7HvxO7jHH66T/LXeM/ijg92Pn4sxU/6RL/fKcddnhSfvubjY1u8dO/RYx1/PxJXolVbiytlOvrG5cXlqbnK/OV5cnJiWtT16euTo2X5xaqldZtxxh/PPOvr9pWfZk25e2PLvFHd2j/hSxT7NaybcGePnj23Wa22LaLPP7F851f/1OviZ/9Tfyo9TmQ3T+2ld9s5rc7+4//nu1Wtyz+bJf27/T6X9y56blLv/79u7t8KABwAOrrG4vT1Wpldd8zj9M0PahYMm9hZujtqIbM7jK9PjIBAAB77WWnv9c1AQAAAAAAAAAAAAAAAAAAgMPrIL5OrD3mZm+aCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwWl8HAAD//1iX4ds=")

00:54:51 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:51 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

[ 1448.575427][T11003] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
00:54:51 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1448.715743][T11007] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
00:54:52 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:52 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

00:54:52 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x3}, 0x0)

00:54:52 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:52 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:54:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xbf050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:52 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000140)='gadgetfs\x00', 0x800, &(0x7f0000000180)='\x00')

[ 1449.359172][T11015] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 1449.371440][T11013] loop5: detected capacity change from 0 to 512
[ 1449.371453][T11018] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:54:52 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:52 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x800, &(0x7f0000000180)='\x00')

00:54:52 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x800, &(0x7f0000000180)='\x00')

00:54:52 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x800, &(0x7f0000000180)='\x00')

00:54:52 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x0)

[ 1449.558969][T11013] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1449.567205][T11013] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:52 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1449.619141][T11032] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1449.701672][T11037] loop5: detected capacity change from 0 to 512
[ 1449.710907][T11037] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1449.719321][T11037] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1450.181058][T11023] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1450.194572][T11023] CPU: 1 PID: 11023 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1450.205118][T11023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1450.215171][T11023] Call Trace:
[ 1450.218463][T11023]  <TASK>
[ 1450.221392][T11023]  dump_stack_lvl+0xda/0x130
[ 1450.226028][T11023]  dump_stack+0x15/0x20
[ 1450.230229][T11023]  dump_header+0x95/0x3c0
[ 1450.234584][T11023]  oom_kill_process+0xe3/0x3e0
[ 1450.239397][T11023]  out_of_memory+0x9ca/0xc00
[ 1450.244067][T11023]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1450.250161][T11023]  mem_cgroup_out_of_memory+0x139/0x190
[ 1450.255746][T11023]  try_charge_memcg+0x75c/0xd30
[ 1450.260608][T11023]  obj_cgroup_charge_pages+0xab/0x130
[ 1450.266033][T11023]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1450.271669][T11023]  __alloc_pages+0x1bb/0x340
[ 1450.276375][T11023]  alloc_pages+0x3e1/0x4e0
[ 1450.280806][T11023]  __vmalloc_node_range+0x6d2/0xea0
[ 1450.286202][T11023]  kvmalloc_node+0x121/0x160
[ 1450.290839][T11023]  ? xt_alloc_table_info+0x3d/0x80
[ 1450.295971][T11023]  xt_alloc_table_info+0x3d/0x80
[ 1450.300978][T11023]  do_arpt_set_ctl+0x634/0x13b0
[ 1450.305882][T11023]  ? futex_unqueue+0xba/0xe0
[ 1450.310489][T11023]  ? futex_wait+0x3c3/0x410
[ 1450.315031][T11023]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1450.320154][T11023]  ? lock_sock_nested+0x10e/0x130
[ 1450.325217][T11023]  ? tcp_release_cb+0xfe/0x340
[ 1450.330018][T11023]  nf_setsockopt+0x18d/0x1b0
[ 1450.334681][T11023]  ip_setsockopt+0xe6/0x100
[ 1450.339210][T11023]  tcp_setsockopt+0x90/0xa0
[ 1450.343720][T11023]  sock_common_setsockopt+0x61/0x70
[ 1450.349007][T11023]  ? sock_common_recvmsg+0xe0/0xe0
[ 1450.354128][T11023]  __sys_setsockopt+0x1d7/0x240
[ 1450.358997][T11023]  __x64_sys_setsockopt+0x66/0x80
[ 1450.364098][T11023]  do_syscall_64+0x41/0xc0
[ 1450.368547][T11023]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1450.374293][T11023]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1450.380199][T11023] RIP: 0033:0x7f2c4ab0cae9
[ 1450.384643][T11023] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1450.404256][T11023] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1450.412681][T11023] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1450.420699][T11023] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1450.428695][T11023] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1450.436694][T11023] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1450.444665][T11023] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1450.452740][T11023]  </TASK>
[ 1450.455991][T11023] memory: usage 307200kB, limit 307200kB, failcnt 258344
[ 1450.463063][T11023] memory+swap: usage 308152kB, limit 9007199254740988kB, failcnt 0
[ 1450.471068][T11023] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 1450.478471][T11023] Memory cgroup stats for /syz2:
[ 1450.478610][T11023] cache 4096
[ 1450.486851][T11023] rss 8192
[ 1450.489899][T11023] shmem 0
[ 1450.492925][T11023] mapped_file 0
[ 1450.496449][T11023] dirty 4096
[ 1450.499713][T11023] writeback 0
[ 1450.503044][T11023] workingset_refault_anon 54506
[ 1450.507980][T11023] workingset_refault_file 19
[ 1450.512628][T11023] swap 974848
[ 1450.515988][T11023] pgpgin 198660
[ 1450.519573][T11023] pgpgout 198656
[ 1450.523167][T11023] pgfault 277946
[ 1450.526762][T11023] pgmajfault 20573
[ 1450.530528][T11023] inactive_anon 0
[ 1450.534153][T11023] active_anon 0
[ 1450.537708][T11023] inactive_file 4096
[ 1450.541610][T11023] active_file 0
[ 1450.545112][T11023] unevictable 0
[ 1450.548609][T11023] hierarchical_memory_limit 314572800
[ 1450.553971][T11023] hierarchical_memsw_limit 9223372036854771712
[ 1450.560169][T11023] total_cache 4096
[ 1450.563901][T11023] total_rss 8192
[ 1450.567489][T11023] total_shmem 0
[ 1450.570954][T11023] total_mapped_file 0
[ 1450.574978][T11023] total_dirty 4096
[ 1450.578701][T11023] total_writeback 0
[ 1450.582497][T11023] total_workingset_refault_anon 54506
[ 1450.588061][T11023] total_workingset_refault_file 19
[ 1450.593175][T11023] total_swap 974848
[ 1450.597063][T11023] total_pgpgin 198660
[ 1450.601050][T11023] total_pgpgout 198656
[ 1450.605166][T11023] total_pgfault 277946
[ 1450.609272][T11023] total_pgmajfault 20573
[ 1450.613506][T11023] total_inactive_anon 0
[ 1450.617695][T11023] total_active_anon 0
[ 1450.621685][T11023] total_inactive_file 4096
[ 1450.626211][T11023] total_active_file 0
[ 1450.630203][T11023] total_unevictable 0
[ 1450.634185][T11023] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11022,uid=0
[ 1450.649534][T11023] Memory cgroup out of memory: Killed process 11022 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:53 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:54:53 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc0050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:53 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, &(0x7f0000000180)='\x00')

00:54:53 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x5}, 0x0)

00:54:53 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3dFrW18dAPDvTZvZbZ3t1Ic52Bxu0g1d0q5uKz5sE8S3gTLfZ2nTUpo2pUm3tQzp8A8QRHTgk0++CP4BguxPEGGg76KiiG764IN65d6kWxeStePXNCP5fOD0nnOTe7/nJM3NufecJAEMrSQi7kXESERci4iJ1vpCK8VuM12KiNevni5kKYk0ffD3JN82K+/fV+Z0a7Ox5qKj+vbO6ny1WtlslcuNtY1yfXvn+sra/HJlubI+Oztza+723M256SNpZ9auO9/4849/8PNv3vn1Vx7/4eFfr34vq+946/b97ThKzcekmD0Wb4xGxGYvgvXBSKs9xX5XBACAQ8n6p5+JiC/m/f+JGMl7czldOgAAABgQ6d3x+E8SkQIAAAAD624+BzYplFrzfcejUCiVmnN4PxenCtVavfHlpdrW+mJzruxkFAtLK9XKdGtO7WQUk6w8k+fflm+0lWcj4mxE/GjiZF4uLdSqi/2++AEAAABD4nTb+f+/Jprn/wAAAMCAmex3BQAAAICeG+13BQAAAICeM/4PAAAAA+1b9+9nKd37/evFR9tbq7VH1xcr9dXS2tZCaaG2uVFartWW8+/sWztof9VabeOrsb71pNyo1Bvl+vbOw7Xa1nrj4co7P4ENAAAAHKOzX3jx+yQidr92Mk+ZE9mfkS4bmCsAA6PwIXf+U+/qARy/bm/zwODz0V8YXsV+VwDou+SA27tO3vnN0dcFAADojanPdx7/H3VtAAbeB43/AwPF+D8ML+P/MLyKegAw9Ho//p+mB+4LAADoqfE8JYVSayxwPAqFUiniTP5R/2KytFKtTEfEpyPidxPFT2XlmXzL5MBzBgAAAAAAAAAAAAAAAAAAAAAAAACgKU2TSAEAAICBFlH4S9L6/a+piSvj7dcHTiT/nsiXEfH4pw9+8mS+0dicydb/4836xvPW+hv9uIIBAAAAtNs7T987jwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAo/T61dOFvXSccf/29YiY7BR/NMby5VgUI+LUP5MY3bddEhEjRxB/91lEnOsUP8mqFZOtWrTHL0TEyeOJfyFN047xTx9BfBhmL7Ljz71Or79CXMqXnV//o630SXU//hXeHP9Guhz/zhwyxvmXvyx3jf8s4vxo5+PPXvykS/zLnXbY4UH57nd2drrFT38WMdXx/Sd5J1a5sbZRrm/vXF9Zm1+uLFfWZ2dnbs3dnrs5N11eWqlWWn87xvjhhV/9r23Vf9OmvP3RJf7kAe2/kmWK3Vq2L9jLJ68+28wW23aRx796ufPzf+498bP/iS+13gey26f28rvN/H4Xf/Hbi93qlsVf7NL+g57/qwc3PXft29//4yHvCgAcg/r2zup8tVrZ7HnmeZqmxxVL5iPMjH0c1ZA5XKbfRyYAAOCove3097smAAAAAAAAAAAAAAAAAAAAMLyO4+vE2mPu9qepAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADv9f8AAAD//8Al4V8=")

00:54:53 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:53 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0)

00:54:53 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:53 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:53 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200000009000100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1450.895220][T11047] loop5: detected capacity change from 0 to 512
[ 1450.931938][T11052] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:54:53 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:53 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:54 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
dup(r0)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

[ 1451.056048][T11062] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 1451.068049][T11047] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1451.076327][T11047] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1451.713475][T11056] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1451.724861][T11056] CPU: 1 PID: 11056 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1451.735306][T11056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1451.745366][T11056] Call Trace:
[ 1451.748650][T11056]  <TASK>
[ 1451.751579][T11056]  dump_stack_lvl+0xda/0x130
[ 1451.756264][T11056]  dump_stack+0x15/0x20
[ 1451.760468][T11056]  dump_header+0x95/0x3c0
[ 1451.764843][T11056]  oom_kill_process+0xe3/0x3e0
[ 1451.769627][T11056]  out_of_memory+0x9ca/0xc00
[ 1451.774240][T11056]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1451.780360][T11056]  mem_cgroup_out_of_memory+0x139/0x190
[ 1451.785955][T11056]  try_charge_memcg+0x75c/0xd30
[ 1451.790901][T11056]  ? __alloc_pages+0x193/0x340
[ 1451.795789][T11056]  charge_memcg+0x51/0x200
[ 1451.800237][T11056]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1451.806226][T11056]  __read_swap_cache_async+0x339/0x590
[ 1451.811757][T11056]  swap_cluster_readahead+0x29d/0x4e0
[ 1451.817138][T11056]  swapin_readahead+0x8d/0x710
[ 1451.821901][T11056]  ? __filemap_get_folio+0x42b/0x500
[ 1451.827210][T11056]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1451.832861][T11056]  ? swap_cache_get_folio+0x6e/0x200
[ 1451.838147][T11056]  do_swap_page+0x306/0x1780
[ 1451.842811][T11056]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1451.848131][T11056]  ? __rcu_read_lock+0x35/0x50
[ 1451.853035][T11056]  handle_mm_fault+0xa2e/0x2cc0
[ 1451.857972][T11056]  exc_page_fault+0x3ff/0x6c0
[ 1451.862687][T11056]  asm_exc_page_fault+0x26/0x30
[ 1451.867652][T11056] RIP: 0033:0x7f2c4aac6af4
[ 1451.872064][T11056] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1451.891744][T11056] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1451.897905][T11056] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1451.905888][T11056] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1451.913880][T11056] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1451.921847][T11056] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000162756
[ 1451.929890][T11056] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000162415
[ 1451.937896][T11056]  </TASK>
[ 1451.941072][T11056] memory: usage 307200kB, limit 307200kB, failcnt 258518
[ 1451.948147][T11056] memory+swap: usage 308192kB, limit 9007199254740988kB, failcnt 0
[ 1451.956122][T11056] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1451.963410][T11056] Memory cgroup stats for /syz2:
[ 1451.963571][T11056] cache 4096
[ 1451.971843][T11056] rss 16384
[ 1451.974992][T11056] shmem 0
[ 1451.978003][T11056] mapped_file 0
[ 1451.981484][T11056] dirty 0
[ 1451.984473][T11056] writeback 16384
[ 1451.988178][T11056] workingset_refault_anon 54567
[ 1451.993144][T11056] workingset_refault_file 19
[ 1451.997782][T11056] swap 1015808
[ 1452.001176][T11056] pgpgin 198745
[ 1452.004633][T11056] pgpgout 198740
[ 1452.008262][T11056] pgfault 278182
[ 1452.011865][T11056] pgmajfault 20587
[ 1452.015663][T11056] inactive_anon 0
[ 1452.019351][T11056] active_anon 0
[ 1452.022827][T11056] inactive_file 0
[ 1452.026524][T11056] active_file 4096
[ 1452.030287][T11056] unevictable 0
[ 1452.033776][T11056] hierarchical_memory_limit 314572800
[ 1452.039235][T11056] hierarchical_memsw_limit 9223372036854771712
[ 1452.045437][T11056] total_cache 4096
[ 1452.049315][T11056] total_rss 16384
[ 1452.052994][T11056] total_shmem 0
[ 1452.056503][T11056] total_mapped_file 0
[ 1452.060487][T11056] total_dirty 0
[ 1452.063938][T11056] total_writeback 16384
[ 1452.068198][T11056] total_workingset_refault_anon 54567
[ 1452.073651][T11056] total_workingset_refault_file 19
[ 1452.078824][T11056] total_swap 1015808
[ 1452.082764][T11056] total_pgpgin 198745
[ 1452.086794][T11056] total_pgpgout 198740
[ 1452.090865][T11056] total_pgfault 278182
[ 1452.094963][T11056] total_pgmajfault 20587
[ 1452.099205][T11056] total_inactive_anon 0
[ 1452.103349][T11056] total_active_anon 0
[ 1452.107413][T11056] total_inactive_file 0
[ 1452.111574][T11056] total_active_file 4096
[ 1452.115846][T11056] total_unevictable 0
[ 1452.119829][T11056] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11056,uid=0
[ 1452.135147][T11056] Memory cgroup out of memory: Killed process 11056 (syz-executor.2) total-vm:46560kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:55 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x8, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:55 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x6}, 0x0)

00:54:55 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKgvZe2tCy7ye5hD7s7y4zkxCuk2GEtK8i/HzzNm5Fm/v8nWaOZec9SAEdWEhF3ImIoIq5ExFhreaFVYrtZLkTEyxeP57KSRJreez/J183md28rc7K12khz0lF9c2t5tlqtrLfmy42VtXJ9c+vq0srsYmWxsjo9PXVj5ubM9ZnJA2ln1q5bP/rvb3/1xx/f+uv3Hv7r/v8v/yLLd7R1/+52HKTmc1LMnotXhiNivRfB+mCo1Z5ivxMBAGBfsuPTr0XEt/Pj/7EYyo/mcg7pAAAAYECkt0fjkyQiBQAAAAbW7XwMbFIotcb7jkahUCo1x/B+I04UqrV647sLtY3V+eZY2fEoFhaWqpXJ1pja8Sgm2fxUXn89f61tfjoiTkfEb8aO5/OluVp1vt8XPwAAAOCIONl2/v/RWPP8HwAAABgw4/1OAAAAAOi5kX4nAAAAAPSc/n8AAAAYaD+5ezcr6c7vX88/2NxYrj24Ol+pL5dWNuZKc7X1tdJirbaYf2ffyl7bq9Zqa9+P1Y1H5Ual3ijXN7fur9Q2Vhv3l4wyAAAAgH45/a1n/0wiYvsHx/OSOZbdDHVZwVgBGBiFt3nwf3qXB3D4un3MA4NvuN8JAH1T7HcCQN8le9zfdfDO3w4+FwAAoDcmvtm5/3/YtQEYeG/V/w8MFP3/cHTp/4ejq+gIAI683vf/p+me2wIAAHpqNC9JodTqCxyNQqFUijiV/6t/MVlYqlYmI+KrEfGPseJXsvmpfM1kz3MGAAAAAAAAAAAAAAAAAAAAAAAAAKApTZNIAQAAgIEWUfhf0vr9r4mxS6Pt1weOJR+P5dOIePj7e797NNtorE9lyz94tbzxtLX8Wj+uYAAAAADtds7Td87jAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAgvXzxeG6nHGbc934YEeOd4g/HSD4diWJEnPgwieFd6yURMXQA8befRMSZTvGTLK0Yb2XRHr8QEccPJ/65NE07xj95APHhKHuW7X/udHr/FeJCPu38/h9ulS+r+/6v8Gr/N9Rl/3dqnzHOPv9zuWv8JxFnhzvvf3biJ13iX+y0wQ5Pys9/trXVLX76h4iJjp8/yRdilRsra+X65tbVpZXZxcpiZXV6eurGzM2Z6zOT5YWlaqV12zHGr8/95bO2RZ+mTXn7o0v88T3afymrFLu1bFew549efL1ZLbZtIo9/+WLn1//MG+JnfxPfaX0OZPdP7NS3m/Xdzv/p7+e75ZbFn+/S/r1e/8t7Nz135ae//Pc+HwoAHIL65tbybLVaWe955WmapocVS+UdrIy8G2mo7K/S7z0TAABw0F4f9Pc7EwAAAAAAAAAAAAAAAAAAADi6DuPrxNpjbvenqQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/R5AAAA//9A8uFj")

00:54:55 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:55 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc1050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:55 executing program 3:
memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:54:55 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1452.374222][T11069] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:54:55 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1452.476169][T11074] loop5: detected capacity change from 0 to 512
00:54:55 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x7}, 0x0)

00:54:55 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:55 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

[ 1452.556698][T11074] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1452.565084][T11074] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1452.580400][T11087] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:54:55 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:56 executing program 1:
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFBR(r7, 0x8940, &(0x7f0000000340)=@generic={0x0, 0xc, 0xffffffff00000001})
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r6, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
r8 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r9 = dup(r8)
write$cgroup_pid(r9, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r8, 0x0)
sendfile(r8, r9, &(0x7f0000000100), 0x6c03)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r9, 0x89f1, &(0x7f0000000240)={'syztnl0\x00', &(0x7f0000000180)={'ip6_vti0\x00', r6, 0x2f, 0x8, 0x0, 0x100, 0x6a, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x1, 0x700, 0x4, 0x1}})
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000006400310f00"/20, @ANYRES32=r6, @ANYBLOB="7404371394007200"], 0x34}}, 0x0)

[ 1453.438137][T11097] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
00:54:56 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc2050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:56 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x8}, 0x0)

00:54:56 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/46, 0x2e)

00:54:56 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:56 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:56 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 1)

00:54:56 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:56 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/46, 0x2e)

00:54:56 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:56 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 2)

00:54:56 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:56 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/46, 0x2e)

[ 1453.614028][T11106] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1453.686912][T11119] FAULT_INJECTION: forcing a failure.
[ 1453.686912][T11119] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1453.700074][T11119] CPU: 1 PID: 11119 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1453.710523][T11119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1453.720614][T11119] Call Trace:
[ 1453.723990][T11119]  <TASK>
[ 1453.727037][T11119]  dump_stack_lvl+0xda/0x130
[ 1453.731753][T11119]  dump_stack+0x15/0x20
[ 1453.735940][T11119]  should_fail_ex+0x21f/0x230
[ 1453.740741][T11119]  should_fail+0xb/0x10
[ 1453.745012][T11119]  should_fail_usercopy+0x1a/0x20
[ 1453.750069][T11119]  _copy_from_user+0x1e/0xd0
[ 1453.754691][T11119]  memdup_user+0x64/0xc0
[ 1453.758976][T11119]  strndup_user+0x68/0xa0
[ 1453.763420][T11119]  __se_sys_mount+0x4e/0x2d0
[ 1453.768087][T11119]  ? fput+0x112/0x140
[ 1453.772170][T11119]  ? ksys_write+0x178/0x1a0
[ 1453.776731][T11119]  __x64_sys_mount+0x67/0x80
[ 1453.781354][T11119]  do_syscall_64+0x41/0xc0
[ 1453.785890][T11119]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1453.791957][T11119] RIP: 0033:0x7fa7b4bb2ae9
[ 1453.796389][T11119] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1453.816086][T11119] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1453.824560][T11119] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1453.832566][T11119] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1453.840556][T11119] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1453.848557][T11119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1453.856596][T11119] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1453.864625][T11119]  </TASK>
[ 1454.486884][T11110] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1454.498232][T11110] CPU: 0 PID: 11110 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1454.508711][T11110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1454.518766][T11110] Call Trace:
[ 1454.522085][T11110]  <TASK>
[ 1454.525013][T11110]  dump_stack_lvl+0xda/0x130
[ 1454.529707][T11110]  dump_stack+0x15/0x20
[ 1454.533859][T11110]  dump_header+0x95/0x3c0
[ 1454.538267][T11110]  oom_kill_process+0xe3/0x3e0
[ 1454.543033][T11110]  out_of_memory+0x9ca/0xc00
[ 1454.547665][T11110]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1454.553808][T11110]  mem_cgroup_out_of_memory+0x139/0x190
[ 1454.559379][T11110]  try_charge_memcg+0x75c/0xd30
[ 1454.564241][T11110]  ? __alloc_pages+0x193/0x340
[ 1454.569080][T11110]  charge_memcg+0x51/0x200
[ 1454.573555][T11110]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1454.579539][T11110]  __read_swap_cache_async+0x339/0x590
[ 1454.585107][T11110]  swap_cluster_readahead+0x29d/0x4e0
[ 1454.590489][T11110]  swapin_readahead+0x8d/0x710
[ 1454.595274][T11110]  ? __filemap_get_folio+0x42b/0x500
[ 1454.600587][T11110]  ? swap_cache_get_folio+0x6e/0x200
[ 1454.605903][T11110]  do_swap_page+0x306/0x1780
[ 1454.610593][T11110]  ? asm_exc_page_fault+0x26/0x30
[ 1454.615718][T11110]  ? __rcu_read_lock+0x35/0x50
[ 1454.620486][T11110]  handle_mm_fault+0xa2e/0x2cc0
[ 1454.625390][T11110]  exc_page_fault+0x3ff/0x6c0
[ 1454.630139][T11110]  asm_exc_page_fault+0x26/0x30
[ 1454.635041][T11110] RIP: 0033:0x7f2c4ab37ec4
[ 1454.639654][T11110] Code: ff ff ff 49 89 ca 0f 44 f8 80 3d 4e 40 0d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 <48> 89 54 24 10 89 74 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff
[ 1454.659266][T11110] RSP: 002b:00007ffcead55aa0 EFLAGS: 00010206
[ 1454.665399][T11110] RAX: 00000000fffffffa RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1454.673370][T11110] RDX: 00007ffcead55ae0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1454.681406][T11110] RBP: 00007f2c4ac2d980 R08: 0000000000000010 R09: 00007ffceada50b0
[ 1454.689430][T11110] R10: 0000000000000000 R11: 0000000000042eb0 R12: 0000000000163170
[ 1454.697399][T11110] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000162e2f
[ 1454.705379][T11110]  </TASK>
[ 1454.708550][T11110] memory: usage 307200kB, limit 307200kB, failcnt 258985
[ 1454.715608][T11110] memory+swap: usage 308200kB, limit 9007199254740988kB, failcnt 0
[ 1454.723494][T11110] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1454.730902][T11110] Memory cgroup stats for /syz2:
[ 1454.731104][T11110] cache 4096
[ 1454.739263][T11110] rss 4096
[ 1454.742342][T11110] shmem 0
[ 1454.745310][T11110] mapped_file 0
[ 1454.748768][T11110] dirty 0
[ 1454.751698][T11110] writeback 12288
[ 1454.755440][T11110] workingset_refault_anon 54683
[ 1454.760310][T11110] workingset_refault_file 19
[ 1454.765001][T11110] swap 1019904
[ 1454.768378][T11110] pgpgin 198921
[ 1454.771825][T11110] pgpgout 198917
[ 1454.775394][T11110] pgfault 278562
[ 1454.778938][T11110] pgmajfault 20629
[ 1454.782705][T11110] inactive_anon 4096
[ 1454.786713][T11110] active_anon 0
[ 1454.790202][T11110] inactive_file 4096
[ 1454.794097][T11110] active_file 0
[ 1454.797581][T11110] unevictable 0
[ 1454.801048][T11110] hierarchical_memory_limit 314572800
[ 1454.806467][T11110] hierarchical_memsw_limit 9223372036854771712
[ 1454.812644][T11110] total_cache 4096
[ 1454.816389][T11110] total_rss 4096
[ 1454.819935][T11110] total_shmem 0
[ 1454.823386][T11110] total_mapped_file 0
[ 1454.827389][T11110] total_dirty 0
[ 1454.830852][T11110] total_writeback 12288
[ 1454.835069][T11110] total_workingset_refault_anon 54683
[ 1454.840436][T11110] total_workingset_refault_file 19
[ 1454.845684][T11110] total_swap 1019904
[ 1454.849569][T11110] total_pgpgin 198921
[ 1454.853539][T11110] total_pgpgout 198917
[ 1454.857627][T11110] total_pgfault 278562
[ 1454.861716][T11110] total_pgmajfault 20629
[ 1454.865986][T11110] total_inactive_anon 4096
[ 1454.870400][T11110] total_active_anon 0
[ 1454.874410][T11110] total_inactive_file 4096
[ 1454.878914][T11110] total_active_file 0
[ 1454.882930][T11110] total_unevictable 0
[ 1454.887026][T11110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11110,uid=0
[ 1454.902336][T11110] Memory cgroup out of memory: Killed process 11110 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:54:58 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:54:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc3050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:58 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x9}, 0x0)

00:54:58 executing program 3:
syslog(0x3, 0x0, 0x0)

00:54:58 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 3)

00:54:58 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:54:58 executing program 3:
syslog(0x3, 0x0, 0x0)

[ 1455.255461][T11127] loop5: detected capacity change from 0 to 512
[ 1455.271079][T11127] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1455.279350][T11127] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1455.284003][T11135] FAULT_INJECTION: forcing a failure.
[ 1455.284003][T11135] name failslab, interval 1, probability 0, space 0, times 0
[ 1455.298657][T11135] CPU: 1 PID: 11135 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1455.309163][T11135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1455.319259][T11135] Call Trace:
[ 1455.322620][T11135]  <TASK>
[ 1455.325587][T11135]  dump_stack_lvl+0xda/0x130
[ 1455.330220][T11135]  dump_stack+0x15/0x20
[ 1455.334417][T11135]  should_fail_ex+0x21f/0x230
[ 1455.339141][T11135]  __should_failslab+0x92/0xa0
[ 1455.343964][T11135]  should_failslab+0x9/0x20
[ 1455.348574][T11135]  slab_pre_alloc_hook+0x38/0x180
[ 1455.353686][T11135]  kmem_cache_alloc+0x52/0x220
[ 1455.358511][T11135]  ? getname_flags+0x85/0x360
[ 1455.363296][T11135]  ? should_fail_ex+0xd1/0x230
[ 1455.368108][T11135]  getname_flags+0x85/0x360
[ 1455.372650][T11135]  user_path_at_empty+0x2c/0x110
[ 1455.377691][T11135]  __se_sys_mount+0x24b/0x2d0
[ 1455.382584][T11135]  ? fput+0x112/0x140
[ 1455.386600][T11135]  __x64_sys_mount+0x67/0x80
[ 1455.391242][T11135]  do_syscall_64+0x41/0xc0
[ 1455.395709][T11135]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1455.401652][T11135] RIP: 0033:0x7fa7b4bb2ae9
00:54:58 executing program 3:
syslog(0x3, 0x0, 0x0)

[ 1455.406088][T11135] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1455.425782][T11135] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1455.434221][T11135] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1455.442238][T11135] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
00:54:58 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 4)

00:54:58 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (fail_nth: 1)

[ 1455.450408][T11135] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1455.456512][T11134] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1455.458431][T11135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1455.458450][T11135] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1455.483757][T11135]  </TASK>
[ 1455.511562][T11143] FAULT_INJECTION: forcing a failure.
[ 1455.511562][T11143] name failslab, interval 1, probability 0, space 0, times 0
[ 1455.524288][T11143] CPU: 1 PID: 11143 Comm: syz-executor.3 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1455.534735][T11143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1455.544809][T11143] Call Trace:
[ 1455.548160][T11143]  <TASK>
[ 1455.551222][T11143]  dump_stack_lvl+0xda/0x130
[ 1455.555837][T11143]  dump_stack+0x15/0x20
[ 1455.560016][T11143]  should_fail_ex+0x21f/0x230
[ 1455.564729][T11143]  ? syslog_print_all+0x80/0x5a0
[ 1455.569771][T11143]  __should_failslab+0x92/0xa0
[ 1455.571308][T11145] FAULT_INJECTION: forcing a failure.
[ 1455.571308][T11145] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1455.574548][T11143]  should_failslab+0x9/0x20
[ 1455.592108][T11143]  slab_pre_alloc_hook+0x38/0x180
[ 1455.597685][T11143]  ? syslog_print_all+0x80/0x5a0
[ 1455.602652][T11143]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1455.608061][T11143]  ? syslog_print_all+0x80/0x5a0
[ 1455.613073][T11143]  kmalloc_trace+0x2a/0xa0
[ 1455.617537][T11143]  syslog_print_all+0x80/0x5a0
[ 1455.622388][T11143]  ? kstrtoull+0x110/0x140
[ 1455.626823][T11143]  ? __rcu_read_unlock+0x4d/0x70
[ 1455.631792][T11143]  ? selinux_syslog+0xe3/0xf0
[ 1455.636498][T11143]  do_syslog+0x44f/0x860
[ 1455.640761][T11143]  ? __fget_files+0x1c4/0x200
[ 1455.645474][T11143]  ? ksys_write+0x178/0x1a0
[ 1455.649987][T11143]  __x64_sys_syslog+0x43/0x50
[ 1455.654726][T11143]  do_syscall_64+0x41/0xc0
[ 1455.659291][T11143]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1455.665205][T11143] RIP: 0033:0x7f57f42f9ae9
[ 1455.669701][T11143] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1455.689347][T11143] RSP: 002b:00007f57f367c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000067
[ 1455.697774][T11143] RAX: ffffffffffffffda RBX: 00007f57f4418f80 RCX: 00007f57f42f9ae9
[ 1455.705756][T11143] RDX: 000000000000002e RSI: 0000000020000000 RDI: 0000000000000003
[ 1455.713873][T11143] RBP: 00007f57f367c120 R08: 0000000000000000 R09: 0000000000000000
[ 1455.721922][T11143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1455.729957][T11143] R13: 000000000000000b R14: 00007f57f4418f80 R15: 00007ffd322c2e58
[ 1455.737939][T11143]  </TASK>
[ 1455.740965][T11145] CPU: 0 PID: 11145 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1455.751459][T11145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1455.761594][T11145] Call Trace:
[ 1455.764893][T11145]  <TASK>
[ 1455.767856][T11145]  dump_stack_lvl+0xda/0x130
[ 1455.772485][T11145]  dump_stack+0x15/0x20
[ 1455.776729][T11145]  should_fail_ex+0x21f/0x230
[ 1455.781501][T11145]  should_fail+0xb/0x10
[ 1455.785685][T11145]  should_fail_usercopy+0x1a/0x20
[ 1455.790732][T11145]  strncpy_from_user+0x25/0x270
[ 1455.795648][T11145]  ? getname_flags+0x85/0x360
[ 1455.800406][T11145]  getname_flags+0xb3/0x360
[ 1455.804934][T11145]  user_path_at_empty+0x2c/0x110
[ 1455.809962][T11145]  __se_sys_mount+0x24b/0x2d0
[ 1455.814676][T11145]  ? fput+0x112/0x140
[ 1455.818747][T11145]  __x64_sys_mount+0x67/0x80
[ 1455.823375][T11145]  do_syscall_64+0x41/0xc0
[ 1455.827987][T11145]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1455.833940][T11145] RIP: 0033:0x7fa7b4bb2ae9
[ 1455.838377][T11145] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
00:54:58 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

00:54:58 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (fail_nth: 2)

[ 1455.858012][T11145] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1455.866452][T11145] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1455.874516][T11145] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1455.882502][T11145] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1455.890554][T11145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1455.898542][T11145] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1455.906541][T11145]  </TASK>
00:54:58 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1455.973565][T11150] FAULT_INJECTION: forcing a failure.
[ 1455.973565][T11150] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1455.986759][T11150] CPU: 0 PID: 11150 Comm: syz-executor.3 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1455.997291][T11150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1456.007459][T11150] Call Trace:
[ 1456.010763][T11150]  <TASK>
[ 1456.013717][T11150]  dump_stack_lvl+0xda/0x130
[ 1456.018420][T11150]  dump_stack+0x15/0x20
[ 1456.022592][T11150]  should_fail_ex+0x21f/0x230
[ 1456.028654][T11150]  should_fail+0xb/0x10
[ 1456.032824][T11150]  should_fail_usercopy+0x1a/0x20
[ 1456.037936][T11150]  _copy_to_user+0x1e/0x90
[ 1456.042369][T11150]  simple_read_from_buffer+0xa0/0x110
[ 1456.047834][T11150]  proc_fail_nth_read+0xfc/0x140
[ 1456.052791][T11150]  ? proc_fault_inject_write+0x210/0x210
[ 1456.058484][T11150]  vfs_read+0x19f/0x5c0
[ 1456.062652][T11150]  ? __fget_files+0x1c4/0x200
[ 1456.067387][T11150]  ? mutex_lock+0xd/0x30
[ 1456.071634][T11150]  ksys_read+0xeb/0x1a0
[ 1456.075847][T11150]  __x64_sys_read+0x42/0x50
[ 1456.080408][T11150]  do_syscall_64+0x41/0xc0
[ 1456.084880][T11150]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1456.090791][T11150] RIP: 0033:0x7f57f42f878c
[ 1456.095210][T11150] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[ 1456.114913][T11150] RSP: 002b:00007f57f367c0c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1456.123360][T11150] RAX: ffffffffffffffda RBX: 00007f57f4418f80 RCX: 00007f57f42f878c
[ 1456.131399][T11150] RDX: 000000000000000f RSI: 00007f57f367c130 RDI: 0000000000000003
[ 1456.139389][T11150] RBP: 00007f57f367c120 R08: 0000000000000000 R09: 0000000000000000
[ 1456.147370][T11150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1456.155373][T11150] R13: 000000000000000b R14: 00007f57f4418f80 R15: 00007ffd322c2e58
[ 1456.163446][T11150]  </TASK>
00:54:59 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xa}, 0x0)

00:54:59 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 5)

00:54:59 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

00:54:59 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3U9rXGsZAPDnTDI1bVOTqotaaC22khbtTNLYNrhoK4i7glL3NSSTEDLJhMykbUKRFD+AIKIFV67cCH4AQfoRRCjoXlQU8bb3Lu7i3nsu58ykTYeZJuVOMmXy+8Gb875n5pzneWcy5//MCeDISiLiTkQMRcSViBhrjS+0Smw3y4WIePni8VxWkkjTe/9P8mmz9u55ZU62JhtpDjqqb24tz1arlfVWu9xYWSvXN7euLq3MLlYWK6vT01M3Zm7OXJ+Z7Ek/s37d+sG/f/2L3//w1p+/8/Af9/97+WdZvqOtx3f3o5ear0kxey1eGY6I9YMI1gdDrf4U+50IAAD7km2ffiUivplv/4/FUL41l7NJBwAAAAMivT0anyQRKQAAADCwbufXwCaFUut639EoFEql5jW8X4sThWqt3vj2Qm1jdb55rex4FAsLS9XKZOua2vEoJll7Kq+/bl9ra09HxOmI+NXY8bxdmqtV5/t98AMAAACOiJNt+/8fjTX3/wEAAIABM97vBAAAAIADZ/8fAAAABt+x3txjCwAAAHg//eju3aykO/e/nn+wubFce3B1vlJfLq1szJXmautrpcVabTH/zb6VveZXrdXWvhurG4/KjUq9Ua5vbt1fqW2sNu4vvXELbAAAAOAQnf7Gs78nEbH9veN5yRzL/gx1mcB3BWBgFN7lyf86uDyAw9dtNQ8MvuF+JwD0TbHfCQB9l+zxeNeLd/7S+1wAAICDMfH1zuf/hx0bgIH3Tuf/gYHi/D8cXc7/w9FVtAUAR97Bn/9P0z3nBQAAHKjRvCSFUutc4GgUCqVSxKn8q/7FZGGpWpmMiC9HxN/Gil/K2lP5lMme+wwAAAAAAAAAAAAAAAAAAAAAAAAAQFOaJpECAAAAAy2i8J+kdf+vibFLo+3HB44lH4/lw4h4+Nt7v3k022isT2XjP3g1vvG0Nf5aP45gAAAAAO129tN39uMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoJdevng8t1MOM+7/vh8R453iD8dIPhyJYkSc+DCJ4V3TJREx1IP4208i4kyn+EmWVoy3smiPX4iI44cT/1yaph3jn+xBfDjKnmXLnzudPn+FuJAPO3/+h1vli+q+/Cu8Wv4NdVn+ndpnjLPP/1juGv9JxNnhzsufnfhJl/gXO82ww4vy059sbXWLn/4uYqLj+id5I1a5sbJWrm9uXV1amV2sLFZWp6enbszcnLk+M1leWKpWWn87xvjluT991jbq07Qp7390iT++R/8vZZVit57tCvb80YuvNqvFtlnk8S9f7Pz+n3lL/Ox/4lut9UD2+MROfbtZ3+38H/56vltuWfz5Lv3f6/2/vHfXc1d+/PN/7vOpAMAhqG9uLc9Wq5X1A688TdP0sGKpvIeVkfcjDZX9Vfq9ZAIAAHrt9UZ/vzMBAAAAAAAAAAAAAAAAAACAo+swfk6sPeZ2f7oKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBWnwcAAP//qXjhkQ==")

00:54:59 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

[ 1456.359714][T11157] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:54:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc4050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:54:59 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

00:54:59 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1456.460195][T11163] FAULT_INJECTION: forcing a failure.
[ 1456.460195][T11163] name failslab, interval 1, probability 0, space 0, times 0
[ 1456.472892][T11163] CPU: 0 PID: 11163 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1456.483332][T11163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1456.493474][T11163] Call Trace:
[ 1456.496781][T11163]  <TASK>
[ 1456.499722][T11163]  dump_stack_lvl+0xda/0x130
[ 1456.504390][T11163]  dump_stack+0x15/0x20
[ 1456.508615][T11163]  should_fail_ex+0x21f/0x230
[ 1456.513473][T11163]  ? alloc_fs_context+0x44/0x4e0
[ 1456.518536][T11163]  __should_failslab+0x92/0xa0
[ 1456.523345][T11163]  should_failslab+0x9/0x20
[ 1456.527944][T11163]  slab_pre_alloc_hook+0x38/0x180
[ 1456.533035][T11163]  ? alloc_fs_context+0x44/0x4e0
[ 1456.538096][T11163]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1456.543587][T11163]  ? alloc_fs_context+0x44/0x4e0
[ 1456.548571][T11163]  kmalloc_trace+0x2a/0xa0
[ 1456.553073][T11163]  alloc_fs_context+0x44/0x4e0
[ 1456.558004][T11163]  ? try_module_get+0xaa/0x1a0
[ 1456.562807][T11163]  fs_context_for_mount+0x21/0x30
[ 1456.567875][T11163]  do_new_mount+0xf4/0x660
[ 1456.572431][T11163]  path_mount+0x496/0xb30
[ 1456.576784][T11163]  __se_sys_mount+0x27f/0x2d0
[ 1456.581498][T11163]  ? fput+0x112/0x140
[ 1456.585509][T11163]  __x64_sys_mount+0x67/0x80
[ 1456.587567][T11170] loop5: detected capacity change from 0 to 512
[ 1456.590122][T11163]  do_syscall_64+0x41/0xc0
[ 1456.600802][T11163]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
00:54:59 executing program 3:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:54:59 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc5050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

[ 1456.606806][T11163] RIP: 0033:0x7fa7b4bb2ae9
[ 1456.611256][T11163] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1456.630983][T11163] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1456.639413][T11163] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1456.647429][T11163] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
00:54:59 executing program 3:
syslog(0x4, &(0x7f0000000000)=""/46, 0x2e)

00:54:59 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

[ 1456.655473][T11163] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1456.663485][T11163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1456.671473][T11163] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1456.679471][T11163]  </TASK>
[ 1456.694257][T11170] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1456.702506][T11170] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:54:59 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xc}, 0x0)

00:54:59 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

00:54:59 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 6)

[ 1456.799733][T11183] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1456.871540][T11185] FAULT_INJECTION: forcing a failure.
[ 1456.871540][T11185] name failslab, interval 1, probability 0, space 0, times 0
[ 1456.884246][T11185] CPU: 0 PID: 11185 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1456.894725][T11185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1456.904805][T11185] Call Trace:
[ 1456.908106][T11185]  <TASK>
[ 1456.911056][T11185]  dump_stack_lvl+0xda/0x130
[ 1456.915672][T11185]  dump_stack+0x15/0x20
[ 1456.919855][T11185]  should_fail_ex+0x21f/0x230
[ 1456.924585][T11185]  ? alloc_super+0x3a/0x500
[ 1456.929176][T11185]  __should_failslab+0x92/0xa0
[ 1456.933964][T11185]  should_failslab+0x9/0x20
[ 1456.938529][T11185]  slab_pre_alloc_hook+0x38/0x180
[ 1456.943614][T11185]  ? alloc_super+0x3a/0x500
[ 1456.948239][T11185]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1456.953654][T11185]  ? __rcu_read_unlock+0x4d/0x70
[ 1456.958651][T11185]  ? alloc_super+0x3a/0x500
[ 1456.963209][T11185]  kmalloc_trace+0x2a/0xa0
[ 1456.967655][T11185]  ? gadgetfs_get_tree+0x20/0x20
[ 1456.972628][T11185]  alloc_super+0x3a/0x500
[ 1456.977003][T11185]  ? get_tree_single+0xe0/0xe0
[ 1456.981823][T11185]  ? gadgetfs_get_tree+0x20/0x20
[ 1456.986838][T11185]  sget_fc+0x1b9/0x4c0
[ 1456.990936][T11185]  ? kill_litter_super+0x50/0x50
[ 1456.995911][T11185]  ? gadgetfs_get_tree+0x20/0x20
[ 1457.000877][T11185]  get_tree_single+0x2d/0xe0
[ 1457.005490][T11185]  gadgetfs_get_tree+0x1c/0x20
[ 1457.010297][T11185]  vfs_get_tree+0x51/0x1b0
[ 1457.014779][T11185]  do_new_mount+0x203/0x660
[ 1457.019358][T11185]  path_mount+0x496/0xb30
[ 1457.023794][T11185]  __se_sys_mount+0x27f/0x2d0
[ 1457.028490][T11185]  ? fput+0x112/0x140
[ 1457.032572][T11185]  __x64_sys_mount+0x67/0x80
[ 1457.037201][T11185]  do_syscall_64+0x41/0xc0
[ 1457.041644][T11185]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1457.047632][T11185] RIP: 0033:0x7fa7b4bb2ae9
[ 1457.052049][T11185] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1457.071671][T11185] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1457.080179][T11185] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1457.088156][T11185] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1457.096136][T11185] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1457.104133][T11185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1457.112239][T11185] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
00:55:00 executing program 3:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:00 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1457.120218][T11185]  </TASK>
00:55:00 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

00:55:00 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:00 executing program 3:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:00 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xf}, 0x0)

[ 1457.198659][T11195] loop5: detected capacity change from 0 to 512
[ 1457.232578][T11198] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1457.274977][T11195] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1457.283243][T11195] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:00 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 7)

00:55:00 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

00:55:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc6050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:00 executing program 3:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:00 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:00 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x0)

[ 1457.744263][T11201] loop5: detected capacity change from 0 to 512
[ 1457.748561][T11202] FAULT_INJECTION: forcing a failure.
[ 1457.748561][T11202] name failslab, interval 1, probability 0, space 0, times 0
[ 1457.763269][T11202] CPU: 0 PID: 11202 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1457.766831][T11205] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1457.773767][T11202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1457.773785][T11202] Call Trace:
[ 1457.773795][T11202]  <TASK>
[ 1457.799393][T11202]  dump_stack_lvl+0xda/0x130
[ 1457.804011][T11202]  dump_stack+0x15/0x20
[ 1457.808198][T11202]  should_fail_ex+0x21f/0x230
[ 1457.812907][T11202]  ? security_sb_alloc+0x3e/0xe0
[ 1457.817885][T11202]  __should_failslab+0x92/0xa0
[ 1457.822745][T11202]  should_failslab+0x9/0x20
[ 1457.827279][T11202]  slab_pre_alloc_hook+0x38/0x180
[ 1457.832360][T11202]  ? security_sb_alloc+0x3e/0xe0
[ 1457.837442][T11202]  ? security_sb_alloc+0x3e/0xe0
[ 1457.842410][T11202]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1457.847896][T11202]  ? perf_trace_kmalloc+0xe3/0x110
[ 1457.853055][T11202]  ? security_sb_alloc+0x3e/0xe0
[ 1457.858089][T11202]  __kmalloc+0x95/0x1a0
[ 1457.862307][T11202]  security_sb_alloc+0x3e/0xe0
[ 1457.867192][T11202]  alloc_super+0x104/0x500
[ 1457.871641][T11202]  ? get_tree_single+0xe0/0xe0
[ 1457.876483][T11202]  ? gadgetfs_get_tree+0x20/0x20
[ 1457.881446][T11202]  sget_fc+0x1b9/0x4c0
[ 1457.885641][T11202]  ? kill_litter_super+0x50/0x50
[ 1457.890620][T11202]  ? gadgetfs_get_tree+0x20/0x20
[ 1457.895657][T11202]  get_tree_single+0x2d/0xe0
[ 1457.900295][T11202]  gadgetfs_get_tree+0x1c/0x20
[ 1457.905084][T11202]  vfs_get_tree+0x51/0x1b0
[ 1457.909614][T11202]  do_new_mount+0x203/0x660
[ 1457.914146][T11202]  path_mount+0x496/0xb30
[ 1457.918497][T11202]  __se_sys_mount+0x27f/0x2d0
[ 1457.923199][T11202]  ? fput+0x112/0x140
[ 1457.927234][T11202]  __x64_sys_mount+0x67/0x80
[ 1457.931847][T11202]  do_syscall_64+0x41/0xc0
[ 1457.936334][T11202]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1457.942276][T11202] RIP: 0033:0x7fa7b4bb2ae9
[ 1457.946699][T11202] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1457.966488][T11202] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1457.975059][T11202] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1457.983039][T11202] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
00:55:00 executing program 3:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:00 executing program 3:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:00 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 8)

00:55:00 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

[ 1457.991017][T11202] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1457.999035][T11202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1458.007024][T11202] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1458.015055][T11202]  </TASK>
[ 1458.025278][T11201] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1458.033606][T11201] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:00 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x11}, 0x0)

00:55:00 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

00:55:01 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:01 executing program 3:
syslog(0xa, &(0x7f0000000000)=""/46, 0x2e)

[ 1458.104433][T11221] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1458.123576][T11223] FAULT_INJECTION: forcing a failure.
[ 1458.123576][T11223] name failslab, interval 1, probability 0, space 0, times 0
[ 1458.136285][T11223] CPU: 0 PID: 11223 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1458.146721][T11223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1458.156831][T11223] Call Trace:
[ 1458.160124][T11223]  <TASK>
[ 1458.163071][T11223]  dump_stack_lvl+0xda/0x130
[ 1458.167690][T11223]  dump_stack+0x15/0x20
[ 1458.171881][T11223]  should_fail_ex+0x21f/0x230
[ 1458.176652][T11223]  ? __list_lru_init+0x6e/0x2e0
[ 1458.181607][T11223]  __should_failslab+0x92/0xa0
[ 1458.186467][T11223]  should_failslab+0x9/0x20
[ 1458.191001][T11223]  slab_pre_alloc_hook+0x38/0x180
[ 1458.196054][T11223]  ? __list_lru_init+0x6e/0x2e0
[ 1458.200992][T11223]  ? __list_lru_init+0x6e/0x2e0
[ 1458.205888][T11223]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1458.211308][T11223]  ? __list_lru_init+0x6e/0x2e0
[ 1458.216339][T11223]  __kmalloc+0x95/0x1a0
[ 1458.220544][T11223]  __list_lru_init+0x6e/0x2e0
[ 1458.225248][T11223]  alloc_super+0x464/0x500
[ 1458.229744][T11223]  ? get_tree_single+0xe0/0xe0
[ 1458.234566][T11223]  ? gadgetfs_get_tree+0x20/0x20
[ 1458.239600][T11223]  sget_fc+0x1b9/0x4c0
[ 1458.243746][T11223]  ? kill_litter_super+0x50/0x50
[ 1458.248725][T11223]  ? gadgetfs_get_tree+0x20/0x20
[ 1458.253727][T11223]  get_tree_single+0x2d/0xe0
[ 1458.258375][T11223]  gadgetfs_get_tree+0x1c/0x20
[ 1458.263173][T11223]  vfs_get_tree+0x51/0x1b0
[ 1458.267713][T11223]  do_new_mount+0x203/0x660
[ 1458.272360][T11223]  path_mount+0x496/0xb30
[ 1458.276793][T11223]  __se_sys_mount+0x27f/0x2d0
[ 1458.279260][T11225] loop5: detected capacity change from 0 to 512
[ 1458.281507][T11223]  ? fput+0x112/0x140
[ 1458.291761][T11223]  __x64_sys_mount+0x67/0x80
[ 1458.296430][T11223]  do_syscall_64+0x41/0xc0
[ 1458.300876][T11223]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1458.306811][T11223] RIP: 0033:0x7fa7b4bb2ae9
[ 1458.311271][T11223] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1458.330892][T11223] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1458.339356][T11223] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1458.347336][T11223] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1458.355343][T11223] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1458.363373][T11223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1458.371376][T11223] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1458.379481][T11223]  </TASK>
[ 1458.392837][T11225] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1458.401096][T11225] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:01 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [], {0x14}}, 0x28}}, 0x0)

00:55:01 executing program 3:
syslog(0xb, &(0x7f0000000000)=""/46, 0x2e)

00:55:01 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc7050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:01 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 9)

00:55:01 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x17}, 0x0)

00:55:01 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:01 executing program 3:
syslog(0xc, &(0x7f0000000000)=""/46, 0x2e)

[ 1458.824905][T11237] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1458.838223][T11238] FAULT_INJECTION: forcing a failure.
[ 1458.838223][T11238] name failslab, interval 1, probability 0, space 0, times 0
[ 1458.850872][T11238] CPU: 0 PID: 11238 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1458.861321][T11238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1458.871452][T11238] Call Trace:
[ 1458.874796][T11238]  <TASK>
[ 1458.877830][T11238]  dump_stack_lvl+0xda/0x130
[ 1458.882450][T11238]  dump_stack+0x15/0x20
[ 1458.886635][T11238]  should_fail_ex+0x21f/0x230
[ 1458.891398][T11238]  ? __list_lru_init+0x6e/0x2e0
[ 1458.896288][T11238]  __should_failslab+0x92/0xa0
[ 1458.901172][T11238]  should_failslab+0x9/0x20
[ 1458.905729][T11238]  slab_pre_alloc_hook+0x38/0x180
[ 1458.910779][T11238]  ? __list_lru_init+0x6e/0x2e0
[ 1458.915677][T11238]  ? __list_lru_init+0x6e/0x2e0
[ 1458.920568][T11238]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1458.925965][T11238]  ? __list_lru_init+0x6e/0x2e0
[ 1458.927670][T11244] loop5: detected capacity change from 0 to 512
[ 1458.930883][T11238]  __kmalloc+0x95/0x1a0
[ 1458.930909][T11238]  __list_lru_init+0x6e/0x2e0
[ 1458.938772][T11244] ext2: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿ'
[ 1458.941339][T11238]  alloc_super+0x493/0x500
[ 1458.955968][T11238]  ? get_tree_single+0xe0/0xe0
[ 1458.960831][T11238]  ? gadgetfs_get_tree+0x20/0x20
[ 1458.965817][T11238]  sget_fc+0x1b9/0x4c0
[ 1458.969953][T11238]  ? kill_litter_super+0x50/0x50
00:55:01 executing program 3:
syslog(0xd, &(0x7f0000000000)=""/46, 0x2e)

[ 1458.974952][T11238]  ? gadgetfs_get_tree+0x20/0x20
[ 1458.980019][T11238]  get_tree_single+0x2d/0xe0
[ 1458.984707][T11238]  gadgetfs_get_tree+0x1c/0x20
[ 1458.989528][T11238]  vfs_get_tree+0x51/0x1b0
[ 1458.994005][T11238]  do_new_mount+0x203/0x660
[ 1458.998569][T11238]  path_mount+0x496/0xb30
[ 1459.002948][T11238]  __se_sys_mount+0x27f/0x2d0
[ 1459.007729][T11238]  ? fput+0x112/0x140
[ 1459.011822][T11238]  __x64_sys_mount+0x67/0x80
[ 1459.016543][T11238]  do_syscall_64+0x41/0xc0
[ 1459.020979][T11238]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1459.026934][T11238] RIP: 0033:0x7fa7b4bb2ae9
[ 1459.031505][T11238] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1459.051150][T11238] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1459.059781][T11238] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1459.067838][T11238] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
00:55:02 executing program 3:
syslog(0xe, &(0x7f0000000000)=""/46, 0x2e)

00:55:02 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [], {0x14}}, 0x28}}, 0x0)

00:55:02 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 10)

00:55:02 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x52}, 0x0)

00:55:02 executing program 3:
syslog(0x10, &(0x7f0000000000)=""/46, 0x2e)

00:55:02 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [], {0x14}}, 0x28}}, 0x0)

[ 1459.075854][T11238] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1459.083860][T11238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1459.091890][T11238] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1459.099953][T11238]  </TASK>
[ 1459.188728][T11260] FAULT_INJECTION: forcing a failure.
[ 1459.188728][T11260] name failslab, interval 1, probability 0, space 0, times 0
[ 1459.190018][T11261] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1459.201430][T11260] CPU: 0 PID: 11260 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1459.221215][T11260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1459.231297][T11260] Call Trace:
[ 1459.234593][T11260]  <TASK>
[ 1459.237535][T11260]  dump_stack_lvl+0xda/0x130
[ 1459.242149][T11260]  dump_stack+0x15/0x20
[ 1459.246329][T11260]  should_fail_ex+0x21f/0x230
[ 1459.251034][T11260]  ? usb_get_gadget_udc_name+0x8b/0xb0
[ 1459.256532][T11260]  __should_failslab+0x92/0xa0
[ 1459.261360][T11260]  should_failslab+0x9/0x20
[ 1459.265903][T11260]  slab_pre_alloc_hook+0x38/0x180
[ 1459.270950][T11260]  ? usb_get_gadget_udc_name+0x8b/0xb0
[ 1459.276439][T11260]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1459.281905][T11260]  ? usb_get_gadget_udc_name+0x8b/0xb0
[ 1459.287391][T11260]  __kmalloc_node_track_caller+0x96/0x1a0
[ 1459.293231][T11260]  ? gadgetfs_get_tree+0x20/0x20
[ 1459.298263][T11260]  kstrdup+0x3a/0x70
[ 1459.302239][T11260]  usb_get_gadget_udc_name+0x8b/0xb0
[ 1459.307555][T11260]  gadgetfs_fill_super+0x4c/0x400
[ 1459.312631][T11260]  ? gadgetfs_get_tree+0x20/0x20
[ 1459.317591][T11260]  get_tree_single+0x7c/0xe0
[ 1459.322253][T11260]  gadgetfs_get_tree+0x1c/0x20
[ 1459.327053][T11260]  vfs_get_tree+0x51/0x1b0
[ 1459.331563][T11260]  do_new_mount+0x203/0x660
[ 1459.336082][T11260]  path_mount+0x496/0xb30
[ 1459.340515][T11260]  __se_sys_mount+0x27f/0x2d0
[ 1459.345208][T11260]  ? fput+0x112/0x140
[ 1459.349203][T11260]  __x64_sys_mount+0x67/0x80
[ 1459.353807][T11260]  do_syscall_64+0x41/0xc0
[ 1459.358244][T11260]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1459.364158][T11260] RIP: 0033:0x7fa7b4bb2ae9
[ 1459.368617][T11260] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1459.388253][T11260] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1459.396674][T11260] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1459.404724][T11260] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1459.412701][T11260] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1459.420679][T11260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1459.428715][T11260] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1459.436709][T11260]  </TASK>
00:55:02 executing program 3:
syslog(0x11, &(0x7f0000000000)=""/46, 0x2e)

00:55:02 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:02 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc8050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:02 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:02 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 11)

00:55:02 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x60}, 0x0)

00:55:02 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:02 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:02 executing program 3:
syslog(0x12, &(0x7f0000000000)=""/46, 0x2e)

[ 1459.986348][T11268] FAULT_INJECTION: forcing a failure.
[ 1459.986348][T11268] name failslab, interval 1, probability 0, space 0, times 0
[ 1459.999028][T11268] CPU: 1 PID: 11268 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1460.009577][T11268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1460.019655][T11268] Call Trace:
[ 1460.022952][T11268]  <TASK>
[ 1460.024418][T11274] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:02 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x25)

[ 1460.025882][T11268]  dump_stack_lvl+0xda/0x130
[ 1460.025914][T11268]  dump_stack+0x15/0x20
[ 1460.025938][T11268]  should_fail_ex+0x21f/0x230
[ 1460.025982][T11268]  __should_failslab+0x92/0xa0
[ 1460.053467][T11268]  should_failslab+0x9/0x20
[ 1460.057996][T11268]  slab_pre_alloc_hook+0x38/0x180
[ 1460.063045][T11268]  kmem_cache_alloc_lru+0x4e/0x220
[ 1460.068185][T11268]  ? alloc_inode+0x64/0x150
[ 1460.072781][T11268]  ? usb_get_gadget_udc_name+0x8b/0xb0
[ 1460.078313][T11268]  alloc_inode+0x64/0x150
[ 1460.082767][T11268]  ? gadgetfs_get_tree+0x20/0x20
[ 1460.087729][T11268]  new_inode+0x1d/0x120
[ 1460.091960][T11268]  ? gadgetfs_get_tree+0x20/0x20
[ 1460.096961][T11268]  gadgetfs_fill_super+0xcc/0x400
[ 1460.102066][T11268]  ? gadgetfs_get_tree+0x20/0x20
[ 1460.107023][T11268]  get_tree_single+0x7c/0xe0
[ 1460.111745][T11268]  gadgetfs_get_tree+0x1c/0x20
[ 1460.116542][T11268]  vfs_get_tree+0x51/0x1b0
[ 1460.121075][T11268]  do_new_mount+0x203/0x660
[ 1460.125673][T11268]  path_mount+0x496/0xb30
[ 1460.130028][T11268]  __se_sys_mount+0x27f/0x2d0
00:55:03 executing program 3:
syslog(0x3, &(0x7f0000000080)=""/57, 0x39)
syslog(0x2, &(0x7f0000000040)=""/54, 0x36)
syslog(0x3, &(0x7f00000000c0)=""/166, 0xa6)

[ 1460.134733][T11268]  ? fput+0x112/0x140
[ 1460.138756][T11268]  __x64_sys_mount+0x67/0x80
[ 1460.143473][T11268]  do_syscall_64+0x41/0xc0
[ 1460.148014][T11268]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1460.153962][T11268] RIP: 0033:0x7fa7b4bb2ae9
[ 1460.155539][T11280] loop5: detected capacity change from 0 to 512
[ 1460.158391][T11268] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1460.158419][T11268] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246
[ 1460.168785][T11280] ext2: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿ'
[ 1460.184386][T11268]  ORIG_RAX: 00000000000000a5
[ 1460.184399][T11268] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1460.184433][T11268] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1460.184450][T11268] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1460.224637][T11268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
00:55:03 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:03 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x69}, 0x0)

00:55:03 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 12)

[ 1460.232645][T11268] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1460.240689][T11268]  </TASK>
[ 1460.313910][T11290] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1460.320126][T11293] FAULT_INJECTION: forcing a failure.
[ 1460.320126][T11293] name failslab, interval 1, probability 0, space 0, times 0
[ 1460.336025][T11293] CPU: 0 PID: 11293 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1460.346480][T11293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1460.356559][T11293] Call Trace:
[ 1460.359850][T11293]  <TASK>
[ 1460.362801][T11293]  dump_stack_lvl+0xda/0x130
[ 1460.367411][T11293]  dump_stack+0x15/0x20
[ 1460.371587][T11293]  should_fail_ex+0x21f/0x230
[ 1460.376361][T11293]  ? memcg_list_lru_alloc+0x135/0x750
[ 1460.381790][T11293]  __should_failslab+0x92/0xa0
[ 1460.386610][T11293]  should_failslab+0x9/0x20
[ 1460.391155][T11293]  slab_pre_alloc_hook+0x38/0x180
[ 1460.396332][T11293]  ? memcg_list_lru_alloc+0x135/0x750
[ 1460.401760][T11293]  ? memcg_list_lru_alloc+0x135/0x750
[ 1460.407196][T11293]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1460.412603][T11293]  ? __rcu_read_unlock+0x4d/0x70
[ 1460.417642][T11293]  ? memcg_list_lru_alloc+0x135/0x750
[ 1460.423114][T11293]  __kmalloc+0x95/0x1a0
[ 1460.427289][T11293]  memcg_list_lru_alloc+0x135/0x750
[ 1460.432511][T11293]  ? trace_call_bpf+0x199/0x1e0
[ 1460.437421][T11293]  slab_pre_alloc_hook+0xd8/0x180
[ 1460.442481][T11293]  kmem_cache_alloc_lru+0x4e/0x220
[ 1460.447641][T11293]  ? alloc_inode+0x64/0x150
[ 1460.452280][T11293]  ? usb_get_gadget_udc_name+0x8b/0xb0
[ 1460.457874][T11293]  alloc_inode+0x64/0x150
[ 1460.462386][T11293]  ? gadgetfs_get_tree+0x20/0x20
[ 1460.467359][T11293]  new_inode+0x1d/0x120
[ 1460.471557][T11293]  ? gadgetfs_get_tree+0x20/0x20
[ 1460.476521][T11293]  gadgetfs_fill_super+0xcc/0x400
[ 1460.481572][T11293]  ? gadgetfs_get_tree+0x20/0x20
[ 1460.486555][T11293]  get_tree_single+0x7c/0xe0
[ 1460.491222][T11293]  gadgetfs_get_tree+0x1c/0x20
[ 1460.496008][T11293]  vfs_get_tree+0x51/0x1b0
[ 1460.500573][T11293]  do_new_mount+0x203/0x660
[ 1460.505118][T11293]  path_mount+0x496/0xb30
[ 1460.509550][T11293]  __se_sys_mount+0x27f/0x2d0
[ 1460.514349][T11293]  ? fput+0x112/0x140
[ 1460.518389][T11293]  __x64_sys_mount+0x67/0x80
[ 1460.523079][T11293]  do_syscall_64+0x41/0xc0
[ 1460.527600][T11293]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1460.533593][T11293] RIP: 0033:0x7fa7b4bb2ae9
[ 1460.538055][T11293] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1460.557791][T11293] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1460.566225][T11293] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1460.574196][T11293] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1460.582201][T11293] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1460.590168][T11293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1460.598164][T11293] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1460.606218][T11293]  </TASK>
[ 1461.143217][T11285] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1461.154654][T11285] CPU: 1 PID: 11285 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1461.165181][T11285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1461.175230][T11285] Call Trace:
[ 1461.178520][T11285]  <TASK>
[ 1461.181522][T11285]  dump_stack_lvl+0xda/0x130
[ 1461.186124][T11285]  dump_stack+0x15/0x20
[ 1461.190299][T11285]  dump_header+0x95/0x3c0
[ 1461.194630][T11285]  oom_kill_process+0xe3/0x3e0
[ 1461.199427][T11285]  out_of_memory+0x9ca/0xc00
[ 1461.204104][T11285]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1461.210206][T11285]  mem_cgroup_out_of_memory+0x139/0x190
[ 1461.215841][T11285]  try_charge_memcg+0x75c/0xd30
[ 1461.220748][T11285]  ? __alloc_pages+0x193/0x340
[ 1461.225556][T11285]  charge_memcg+0x51/0x200
[ 1461.229969][T11285]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1461.235960][T11285]  __read_swap_cache_async+0x339/0x590
[ 1461.241419][T11285]  swap_cluster_readahead+0x29d/0x4e0
[ 1461.246868][T11285]  swapin_readahead+0x8d/0x710
[ 1461.251625][T11285]  ? __filemap_get_folio+0x42b/0x500
[ 1461.256929][T11285]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1461.262548][T11285]  ? swap_cache_get_folio+0x6e/0x200
[ 1461.267841][T11285]  do_swap_page+0x306/0x1780
[ 1461.272535][T11285]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1461.277859][T11285]  ? __rcu_read_lock+0x35/0x50
[ 1461.282626][T11285]  handle_mm_fault+0xa2e/0x2cc0
[ 1461.287482][T11285]  exc_page_fault+0x3ff/0x6c0
[ 1461.292225][T11285]  asm_exc_page_fault+0x26/0x30
[ 1461.297162][T11285] RIP: 0033:0x7f2c4aac87ac
[ 1461.301573][T11285] Code: 83 c4 01 44 3b 63 04 0f 83 c9 00 00 00 48 8b 34 24 44 89 e1 48 8b 53 28 4c 89 f8 48 03 14 ce 89 d5 49 89 d7 81 e5 00 f0 ff ff <80> 3d 05 f9 15 00 00 75 3f be 00 00 00 80 48 8d 3c 32 48 81 ff ff
[ 1461.321210][T11285] RSP: 002b:00007ffcead55a70 EFLAGS: 00010286
[ 1461.327281][T11285] RAX: ffffffff83af1a44 RBX: 00007f2c4ac2c018 RCX: 0000000000000001
[ 1461.335310][T11285] RDX: ffffffff83af1815 RSI: 00007f2c4a490008 RDI: 0000000083af132e
[ 1461.343341][T11285] RBP: 0000000083af1000 R08: 0000001b2cd20000 R09: 000000000000132e
[ 1461.351306][T11285] R10: 0000000083af1332 R11: 000000000004334e R12: 0000000000000001
[ 1461.359359][T11285] R13: 0000000000000001 R14: 00007f2c4ac20000 R15: ffffffff83af1815
[ 1461.367415][T11285]  ? __sys_setsockopt+0x25/0x240
[ 1461.372389][T11285]  ? __x64_sys_setsockopt+0x14/0x80
[ 1461.377642][T11285]  ? __sys_setsockopt+0x25/0x240
[ 1461.382583][T11285]  </TASK>
[ 1461.385884][T11285] memory: usage 307200kB, limit 307200kB, failcnt 259886
[ 1461.392918][T11285] memory+swap: usage 308180kB, limit 9007199254740988kB, failcnt 0
[ 1461.400864][T11285] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[ 1461.408201][T11285] Memory cgroup stats for /syz2:
[ 1461.408432][T11285] cache 8192
[ 1461.416619][T11285] rss 24576
[ 1461.419765][T11285] shmem 4096
[ 1461.423145][T11285] mapped_file 4096
[ 1461.426938][T11285] dirty 4096
[ 1461.430137][T11285] writeback 0
[ 1461.433499][T11285] workingset_refault_anon 54960
[ 1461.438399][T11285] workingset_refault_file 19
[ 1461.443052][T11285] swap 1003520
[ 1461.446487][T11285] pgpgin 199373
[ 1461.449952][T11285] pgpgout 199364
[ 1461.453490][T11285] pgfault 279420
[ 1461.457171][T11285] pgmajfault 20726
[ 1461.461035][T11285] inactive_anon 0
[ 1461.464737][T11285] active_anon 0
[ 1461.468299][T11285] inactive_file 4096
[ 1461.472223][T11285] active_file 0
[ 1461.475736][T11285] unevictable 0
[ 1461.479204][T11285] hierarchical_memory_limit 314572800
[ 1461.484603][T11285] hierarchical_memsw_limit 9223372036854771712
[ 1461.491522][T11285] total_cache 8192
[ 1461.495310][T11285] total_rss 24576
[ 1461.499001][T11285] total_shmem 4096
[ 1461.502711][T11285] total_mapped_file 4096
[ 1461.507004][T11285] total_dirty 4096
[ 1461.510826][T11285] total_writeback 0
[ 1461.514739][T11285] total_workingset_refault_anon 54960
[ 1461.520190][T11285] total_workingset_refault_file 19
[ 1461.525352][T11285] total_swap 1003520
[ 1461.529249][T11285] total_pgpgin 199373
[ 1461.533228][T11285] total_pgpgout 199364
[ 1461.537353][T11285] total_pgfault 279420
[ 1461.541432][T11285] total_pgmajfault 20726
[ 1461.545749][T11285] total_inactive_anon 0
[ 1461.549914][T11285] total_active_anon 0
[ 1461.553994][T11285] total_inactive_file 4096
[ 1461.558492][T11285] total_active_file 0
[ 1461.562505][T11285] total_unevictable 0
[ 1461.566523][T11285] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11285,uid=0
[ 1461.581825][T11285] Memory cgroup out of memory: Killed process 11285 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:04 executing program 3:
syslog(0x3, &(0x7f0000000080)=""/57, 0x39) (async)
syslog(0x2, &(0x7f0000000040)=""/54, 0x36) (async, rerun: 32)
syslog(0x3, &(0x7f00000000c0)=""/166, 0xa6) (rerun: 32)

00:55:04 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xc9050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:04 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:04 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 13)

00:55:04 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:04 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x76}, 0x0)

[ 1461.824202][T11302] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1461.836559][T11303] loop5: detected capacity change from 0 to 512
[ 1461.870044][T11306] FAULT_INJECTION: forcing a failure.
[ 1461.870044][T11306] name failslab, interval 1, probability 0, space 0, times 0
[ 1461.882724][T11306] CPU: 0 PID: 11306 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1461.893254][T11306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1461.903353][T11306] Call Trace:
[ 1461.906674][T11306]  <TASK>
[ 1461.909644][T11306]  dump_stack_lvl+0xda/0x130
[ 1461.914347][T11306]  dump_stack+0x15/0x20
00:55:04 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1461.918562][T11306]  should_fail_ex+0x21f/0x230
[ 1461.923295][T11306]  ? memcg_list_lru_alloc+0x1e1/0x750
[ 1461.928742][T11306]  __should_failslab+0x92/0xa0
[ 1461.933527][T11306]  should_failslab+0x9/0x20
[ 1461.938044][T11306]  slab_pre_alloc_hook+0x38/0x180
[ 1461.943171][T11306]  ? memcg_list_lru_alloc+0x1e1/0x750
[ 1461.948583][T11306]  ? memcg_list_lru_alloc+0x1e1/0x750
[ 1461.954056][T11306]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1461.959439][T11306]  ? __rcu_read_unlock+0x4d/0x70
[ 1461.964386][T11306]  ? memcg_list_lru_alloc+0x1e1/0x750
[ 1461.969844][T11306]  __kmalloc+0x95/0x1a0
[ 1461.974064][T11306]  memcg_list_lru_alloc+0x1e1/0x750
[ 1461.979284][T11306]  slab_pre_alloc_hook+0xd8/0x180
[ 1461.984340][T11306]  kmem_cache_alloc_lru+0x4e/0x220
[ 1461.989602][T11306]  ? alloc_inode+0x64/0x150
[ 1461.994159][T11306]  ? usb_get_gadget_udc_name+0x8b/0xb0
[ 1461.999706][T11306]  alloc_inode+0x64/0x150
[ 1462.004091][T11306]  ? gadgetfs_get_tree+0x20/0x20
[ 1462.009038][T11306]  new_inode+0x1d/0x120
[ 1462.013319][T11306]  ? gadgetfs_get_tree+0x20/0x20
[ 1462.018269][T11306]  gadgetfs_fill_super+0xcc/0x400
[ 1462.023311][T11306]  ? gadgetfs_get_tree+0x20/0x20
[ 1462.028261][T11306]  get_tree_single+0x7c/0xe0
[ 1462.032928][T11306]  gadgetfs_get_tree+0x1c/0x20
[ 1462.037769][T11306]  vfs_get_tree+0x51/0x1b0
[ 1462.042288][T11306]  do_new_mount+0x203/0x660
[ 1462.046809][T11306]  path_mount+0x496/0xb30
[ 1462.051161][T11306]  __se_sys_mount+0x27f/0x2d0
[ 1462.055908][T11306]  ? fput+0x112/0x140
[ 1462.059965][T11306]  __x64_sys_mount+0x67/0x80
[ 1462.064569][T11306]  do_syscall_64+0x41/0xc0
[ 1462.068994][T11306]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1462.074929][T11306] RIP: 0033:0x7fa7b4bb2ae9
[ 1462.079348][T11306] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1462.098965][T11306] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1462.107386][T11306] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1462.115470][T11306] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1462.123446][T11306] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1462.131425][T11306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1462.139401][T11306] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1462.147429][T11306]  </TASK>
[ 1462.154930][T11303] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1462.163160][T11303] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:05 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:05 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x90}}, 0x0)

00:55:05 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 14)

00:55:05 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x96}, 0x0)

00:55:05 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3V9rW28dAPDvSZvZbZ3t1Is52Bxu0g1d0q5uK15sE8S7gTLvZ2nTUpo2pUm3tQzp8AUIIjrwyitvBF+AIHsJIgz0XlQU0U0vvFCPnJN060KydvyaZiSfDzw9z3OSc77fJ2lOzp8nSQBDK4mIexExEhHXImKiNb/QKrHbLJci4vWrpwtZSSJNH/w9yZfN2vvXlTndWmysOemovr2zOl+tVjZb7XJjbaNc3965vrI2v1xZrqzPzs7cmrs9d3Nu+kj6mfXrzjf+/OMf/Pybd379lcd/ePjXq9/L8h1v3b6/H0ep+ZgUs8fijdGI2OxFsD4YafWn2O9EAAA4lGz/9DMR8cV8/38iRvK9uZxdOgAAABgQ6d3x+E8SkQIAAAAD624+BjYplFrjfcejUCiVmmN4PxenCtVavfHlpdrW+mJzrOxkFAtLK9XKdGtM7WQUk6w9k9fftm+0tWcj4mxE/GjiZN4uLdSqi/0++QEAAABD4nTb8f+/JprH/wAAAMCAmex3AgAAAEDPOf4HAACAwTfa7wQAAACAXvrW/ftZSfd+/3rx0fbWau3R9cVKfbW0trVQWqhtbpSWa7Xl/Dv71g5aX7VW2/hqrG89KTcq9Ua5vr3zcK22td54uPLOT2ADAAAAx+jsF178PomI3a+dzEvmRPZnpMsCPisAA6PwIXf+U+/yAI5ft7d5YPAZ+gvDq9jvBIC+Sw64vevgnd8cfS4AAEBvTH2+8/X/UecGYOB90PV/YKC4/g/Dy/V/GF5FewAw9Hp//T9ND1wXAADQU+N5SQql1rXA8SgUSqWIM/lH/YvJ0kq1Mh0Rn46I300UP5W1Z/IlkwOPGQAAAAAAAAAAAAAAAAAAAAAAAACApjRNIgUAAAAGWkThL0nr97+mJq6Mt58fOJH8eyKfRsTjnz74yZP5RmNzJpv/jzfzG89b82/04wwGAAAA0G7vOH3vOB4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAjtLrV08X9spxxv3b1yNislP80RjLp2NRjIhT/0xidN9ySUSMHEH83WcRca5T/CRLKyZbWbTHL0TEyeOJfyFN047xTx9BfBhmL7Ltz71Or79CXMqnnV//o63ySXXf/hXebP9Gumz/zhwyxvmXvyx3jf8s4vxo5+3PXvykS/zLnVbY4UH57nd2drrFT38WMdXx/Sd5J1a5sbZRrm/vXF9Zm1+uLFfWZ2dnbs3dnrs5N11eWqlWWn87xvjhhV/9r23Wf9OmvP/RJf7kAf2/klWK3Xq2L9jLJ68+26wW21aRx796ufPzf+498bP/iS+13gey26f26rvN+n4Xf/Hbi91yy+Ivdun/Qc//1YO7nrv27e//8ZB3BQCOQX17Z3W+Wq1s9rzyPE3T44ql8hFWxj6ONFQOV+n3lgkAADhqb3f6+50JAAAAAAAAAAAAAAAAAAAADK/j+Dqx9pi7/ekqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB7/T8AAP//gDThXw==")

[ 1462.290906][T11322] loop5: detected capacity change from 0 to 512
[ 1462.305879][T11324] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1462.323769][T11322] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1462.332038][T11322] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:05 executing program 3:
syslog(0x3, &(0x7f0000000080)=""/57, 0x39) (async)
syslog(0x2, &(0x7f0000000040)=""/54, 0x36) (async)
syslog(0x3, &(0x7f00000000c0)=""/166, 0xa6)

00:55:05 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 15)

00:55:05 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x90}}, 0x0)

00:55:05 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xbc}, 0x0)

00:55:05 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3U9rG+kZAPBnZCt1Eqd22h7SQNLQpDihjWTHTWJ6SFIovQVa0ntqbNkYy5ax5CQ2oTj0AxRKaQM99dRLoR+gUPIRSiHQ3ktbWpbdZPewh92dZUZy4hVS7LCWFeTfD17P+4408zyvZI3mzyspgCMriYg7ETEUEVciYqw1v9Aqsd0sFyLi5YvHc1lJIk3vvZ/ky2bt3evKnGwtNtKcdFTf3FqerVYr6612ubGyVq5vbl1dWpldrCxWVqenp27M3Jy5PjN5IP3M+nXrR//97a/++ONbf/3ew3/d///lX2T5jrZu392Pg9R8TIrZY/HKcESs9yJYHwy1+lPsdyIAAOxLtn/6tYj4dr7/PxZD+d5czi4dAAAADIj09mh8kkSkAAAAwMC6nY+BTQql1njf0SgUSqXmGN5vxIlCtVZvfHehtrE63xwrOx7FwsJStTLZGlM7HsUka0/l9dfta23t6Yg4HRG/GTuet0tztep8v09+AAAAwBFxsu34/6Ox5vE/AAAAMGDG+50AAAAA0HOO/wEAAGDwjfQ7AQAAAKCXfnL3blbSnd+/nn+wubFce3B1vlJfLq1szJXmautrpcVabTH/zr6VvdZXrdXWvh+rG4/KjUq9Ua5vbt1fqW2sNu4vOcsAAAAA/XL6W8/+mUTE9g+O5yVzLPsz1GUBnxWAgVF4mzv/p3d5AIev29s8MPiG+50A0DfFficA9F2yx+1dB+/87eBzAQAAemPim52v/w87NwAD762u/wMDxfV/OLpc/4ejq2gPAI683l//T9M91wUAAPTUaF6SQql1LXA0CoVSKeJU/lH/YrKwVK1MRsRXI+IfY8WvZO2pfMlkz2MGAAAAAAAAAAAAAAAAAAAAAAAAAKApTZNIAQAAgIEWUfhf0vr9r4mxS6Pt5weOJR+P5dOIePj7e797NNtorE9l8z94Nb/xtDX/Wj/OYAAAAADtdo7Td47jAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAgvXzxeG6nHGbc934YEeOd4g/HSD4diWJEnPgwieFdyyURMXQA8befRMSZTvGTLK0Yb2XRHr8QEccPJ/65NE07xj95APHhKHuWbX/udHr9FeJCPu38+h9ulS+r+/av8Gr7N9Rl+3dqnzHOPv9zuWv8JxFnhztvf3biJ13iX+y0wg4Pys9/trXVLX76h4iJju8/yRdilRsra+X65tbVpZXZxcpiZXV6eurGzM2Z6zOT5YWlaqX1t2OMX5/7y2dtsz5Nm/L+R5f443v0/1JWKXbr2a5gzx+9+HqzWmxbRR7/8sXOz/+ZN8TP/ie+03ofyG6f2KlvN+u7nf/T3893yy2LP9+l/3s9/5f37nruyk9/+e993hUAOAT1za3l2Wq1st7zytM0TQ8rlso7WBl5N9JQ2V+l31smAADgoL3e6e93JgAAAAAAAAAAAAAAAAAAAHB0HcbXibXH3O5PVwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3ujzAAAA///A8uFj")

00:55:05 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xca050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:05 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x90}}, 0x0)

[ 1462.768330][T11334] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1462.823918][T11336] FAULT_INJECTION: forcing a failure.
[ 1462.823918][T11336] name failslab, interval 1, probability 0, space 0, times 0
[ 1462.836647][T11336] CPU: 1 PID: 11336 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1462.847152][T11336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1462.857314][T11336] Call Trace:
[ 1462.859613][T11337] loop5: detected capacity change from 0 to 512
[ 1462.860660][T11336]  <TASK>
[ 1462.860670][T11336]  dump_stack_lvl+0xda/0x130
[ 1462.874544][T11336]  dump_stack+0x15/0x20
[ 1462.878817][T11336]  should_fail_ex+0x21f/0x230
[ 1462.883511][T11336]  __should_failslab+0x92/0xa0
[ 1462.888325][T11336]  should_failslab+0x9/0x20
[ 1462.892881][T11336]  slab_pre_alloc_hook+0x38/0x180
[ 1462.897922][T11336]  kmem_cache_alloc+0x52/0x220
[ 1462.902715][T11336]  ? security_inode_alloc+0x32/0xd0
[ 1462.908003][T11336]  security_inode_alloc+0x32/0xd0
[ 1462.913056][T11336]  inode_init_always+0x3ff/0x440
[ 1462.918014][T11336]  alloc_inode+0x77/0x150
[ 1462.922417][T11336]  ? gadgetfs_get_tree+0x20/0x20
[ 1462.927364][T11336]  new_inode+0x1d/0x120
[ 1462.931631][T11336]  ? gadgetfs_get_tree+0x20/0x20
[ 1462.936579][T11336]  gadgetfs_fill_super+0xcc/0x400
[ 1462.941689][T11336]  ? gadgetfs_get_tree+0x20/0x20
[ 1462.946666][T11336]  get_tree_single+0x7c/0xe0
[ 1462.951402][T11336]  gadgetfs_get_tree+0x1c/0x20
[ 1462.956245][T11336]  vfs_get_tree+0x51/0x1b0
[ 1462.960717][T11336]  do_new_mount+0x203/0x660
[ 1462.965238][T11336]  path_mount+0x496/0xb30
[ 1462.969644][T11336]  __se_sys_mount+0x27f/0x2d0
[ 1462.974367][T11336]  ? fput+0x112/0x140
[ 1462.978361][T11336]  __x64_sys_mount+0x67/0x80
[ 1462.983055][T11336]  do_syscall_64+0x41/0xc0
[ 1462.987529][T11336]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1462.993480][T11336] RIP: 0033:0x7fa7b4bb2ae9
[ 1462.997946][T11336] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1463.017565][T11336] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1463.026080][T11336] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1463.034054][T11336] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1463.042028][T11336] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1463.050018][T11336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1463.058050][T11336] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1463.066032][T11336]  </TASK>
00:55:05 executing program 3:
syslog(0x0, &(0x7f0000000040)=""/59, 0x3b)

00:55:05 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 16)

00:55:06 executing program 3:
syslog(0x0, &(0x7f0000000040)=""/59, 0x3b)

[ 1463.074831][T11337] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1463.083074][T11337] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1463.106200][T11345] FAULT_INJECTION: forcing a failure.
[ 1463.106200][T11345] name failslab, interval 1, probability 0, space 0, times 0
[ 1463.118938][T11345] CPU: 0 PID: 11345 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1463.129417][T11345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1463.139534][T11345] Call Trace:
[ 1463.142908][T11345]  <TASK>
[ 1463.145871][T11345]  dump_stack_lvl+0xda/0x130
[ 1463.150501][T11345]  dump_stack+0x15/0x20
[ 1463.154826][T11345]  should_fail_ex+0x21f/0x230
[ 1463.159551][T11345]  __should_failslab+0x92/0xa0
[ 1463.164368][T11345]  should_failslab+0x9/0x20
[ 1463.168904][T11345]  slab_pre_alloc_hook+0x38/0x180
[ 1463.173961][T11345]  kmem_cache_alloc_lru+0x4e/0x220
[ 1463.179135][T11345]  ? __d_alloc+0x3d/0x380
[ 1463.185413][T11345]  __d_alloc+0x3d/0x380
[ 1463.189607][T11345]  ? inode_set_ctime_current+0x16c/0x1d0
[ 1463.195304][T11345]  d_make_root+0x2a/0xb0
[ 1463.199590][T11345]  gadgetfs_fill_super+0x1e0/0x400
[ 1463.204744][T11345]  ? gadgetfs_get_tree+0x20/0x20
[ 1463.209836][T11345]  get_tree_single+0x7c/0xe0
[ 1463.214465][T11345]  gadgetfs_get_tree+0x1c/0x20
[ 1463.219292][T11345]  vfs_get_tree+0x51/0x1b0
[ 1463.223750][T11345]  do_new_mount+0x203/0x660
[ 1463.228386][T11345]  path_mount+0x496/0xb30
[ 1463.232811][T11345]  __se_sys_mount+0x27f/0x2d0
[ 1463.237601][T11345]  ? fput+0x112/0x140
[ 1463.241711][T11345]  __x64_sys_mount+0x67/0x80
[ 1463.246419][T11345]  do_syscall_64+0x41/0xc0
[ 1463.250925][T11345]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1463.256907][T11345] RIP: 0033:0x7fa7b4bb2ae9
00:55:06 executing program 3:
syslog(0x0, &(0x7f0000000040)=""/59, 0x3b)
syslog(0x0, &(0x7f0000000040)=""/59, 0x3b) (async)

[ 1463.261471][T11345] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1463.281192][T11345] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1463.289638][T11345] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1463.297723][T11345] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1463.305710][T11345] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1463.313703][T11345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
00:55:06 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 17)

00:55:06 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x400}}, './file0\x00'})
getsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000240)={0x8, 0x4, 0x8, 0x101})
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x337df000)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)
sendmsg$nl_route(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x54, 0x68, 0x4, 0x70bd25, 0x25dfdbfc, {0xa, 0x0, 0x2}, [@NHA_GROUP={0x14, 0x2, [{0x1, 0x81}, {0x1, 0x8}]}, @NHA_GROUP={0xc, 0x2, [{0x0, 0x2a}]}, @NHA_ID={0x8, 0x1, 0x2}, @NHA_ENCAP={0x14, 0x8, 0x0, 0x1, @MPLS_IPTUNNEL_DST={0x10, 0x1, [{0x61}, {0x2, 0x0, 0x1}, {0x3f}]}}]}, 0x54}}, 0x1)

[ 1463.321687][T11345] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1463.329679][T11345]  </TASK>
00:55:06 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xc6}, 0x0)

00:55:06 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}}, 0x0)

00:55:06 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:06 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}}, 0x0)

[ 1463.419100][T11358] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1463.458823][T11361] FAULT_INJECTION: forcing a failure.
[ 1463.458823][T11361] name failslab, interval 1, probability 0, space 0, times 0
[ 1463.471537][T11361] CPU: 0 PID: 11361 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1463.482017][T11361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1463.492095][T11361] Call Trace:
[ 1463.495394][T11361]  <TASK>
[ 1463.498341][T11361]  dump_stack_lvl+0xda/0x130
[ 1463.503099][T11361]  dump_stack+0x15/0x20
[ 1463.507330][T11361]  should_fail_ex+0x21f/0x230
[ 1463.512070][T11361]  ? memcg_list_lru_alloc+0x135/0x750
[ 1463.517495][T11361]  __should_failslab+0x92/0xa0
[ 1463.522372][T11361]  should_failslab+0x9/0x20
[ 1463.526947][T11361]  slab_pre_alloc_hook+0x38/0x180
[ 1463.531989][T11361]  ? memcg_list_lru_alloc+0x135/0x750
[ 1463.537416][T11361]  ? memcg_list_lru_alloc+0x135/0x750
[ 1463.542844][T11361]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1463.548245][T11361]  ? __rcu_read_unlock+0x4d/0x70
[ 1463.553210][T11361]  ? memcg_list_lru_alloc+0x135/0x750
[ 1463.558625][T11361]  __kmalloc+0x95/0x1a0
[ 1463.562807][T11361]  memcg_list_lru_alloc+0x135/0x750
[ 1463.568132][T11361]  slab_pre_alloc_hook+0xd8/0x180
[ 1463.573196][T11361]  kmem_cache_alloc_lru+0x4e/0x220
[ 1463.578383][T11361]  ? __d_alloc+0x3d/0x380
[ 1463.582783][T11361]  __d_alloc+0x3d/0x380
[ 1463.587044][T11361]  ? inode_set_ctime_current+0x16c/0x1d0
[ 1463.592798][T11361]  d_make_root+0x2a/0xb0
[ 1463.597089][T11361]  gadgetfs_fill_super+0x1e0/0x400
[ 1463.602242][T11361]  ? gadgetfs_get_tree+0x20/0x20
[ 1463.607213][T11361]  get_tree_single+0x7c/0xe0
[ 1463.611886][T11361]  gadgetfs_get_tree+0x1c/0x20
[ 1463.616729][T11361]  vfs_get_tree+0x51/0x1b0
[ 1463.621192][T11361]  do_new_mount+0x203/0x660
[ 1463.625811][T11361]  path_mount+0x496/0xb30
[ 1463.630172][T11361]  __se_sys_mount+0x27f/0x2d0
[ 1463.634885][T11361]  ? fput+0x112/0x140
[ 1463.638928][T11361]  __x64_sys_mount+0x67/0x80
[ 1463.643615][T11361]  do_syscall_64+0x41/0xc0
[ 1463.648058][T11361]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1463.654090][T11361] RIP: 0033:0x7fa7b4bb2ae9
[ 1463.658524][T11361] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1463.678242][T11361] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1463.686804][T11361] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1463.694802][T11361] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1463.702812][T11361] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1463.710801][T11361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1463.718816][T11361] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1463.726830][T11361]  </TASK>
00:55:07 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:07 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}}, 0x0)

00:55:07 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x400}}, './file0\x00'})
getsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000240)={0x8, 0x4, 0x8, 0x101})
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x337df000)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)
sendmsg$nl_route(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x54, 0x68, 0x4, 0x70bd25, 0x25dfdbfc, {0xa, 0x0, 0x2}, [@NHA_GROUP={0x14, 0x2, [{0x1, 0x81}, {0x1, 0x8}]}, @NHA_GROUP={0xc, 0x2, [{0x0, 0x2a}]}, @NHA_ID={0x8, 0x1, 0x2}, @NHA_ENCAP={0x14, 0x8, 0x0, 0x1, @MPLS_IPTUNNEL_DST={0x10, 0x1, [{0x61}, {0x2, 0x0, 0x1}, {0x3f}]}}]}, 0x54}}, 0x1)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x400}}, './file0\x00'}) (async)
getsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000080), &(0x7f00000000c0)=0x4) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0) (async)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000240)={0x8, 0x4, 0x8, 0x101}) (async)
dup(r1) (async)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x337df000) (async)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03) (async)
sendmsg$nl_route(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x54, 0x68, 0x4, 0x70bd25, 0x25dfdbfc, {0xa, 0x0, 0x2}, [@NHA_GROUP={0x14, 0x2, [{0x1, 0x81}, {0x1, 0x8}]}, @NHA_GROUP={0xc, 0x2, [{0x0, 0x2a}]}, @NHA_ID={0x8, 0x1, 0x2}, @NHA_ENCAP={0x14, 0x8, 0x0, 0x1, @MPLS_IPTUNNEL_DST={0x10, 0x1, [{0x61}, {0x2, 0x0, 0x1}, {0x3f}]}}]}, 0x54}}, 0x1) (async)

00:55:07 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 18)

00:55:07 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xd3}, 0x0)

00:55:07 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xcb050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:07 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)

[ 1464.145715][T11370] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1464.189003][T11379] FAULT_INJECTION: forcing a failure.
[ 1464.189003][T11379] name failslab, interval 1, probability 0, space 0, times 0
[ 1464.201739][T11379] CPU: 0 PID: 11379 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1464.212186][T11379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1464.218236][T11382] loop5: detected capacity change from 0 to 512
[ 1464.222253][T11379] Call Trace:
[ 1464.222264][T11379]  <TASK>
[ 1464.222273][T11379]  dump_stack_lvl+0xda/0x130
[ 1464.222299][T11379]  dump_stack+0x15/0x20
[ 1464.222318][T11379]  should_fail_ex+0x21f/0x230
[ 1464.248316][T11379]  ? memcg_list_lru_alloc+0x1e1/0x750
[ 1464.253797][T11379]  __should_failslab+0x92/0xa0
[ 1464.258589][T11379]  should_failslab+0x9/0x20
[ 1464.263108][T11379]  slab_pre_alloc_hook+0x38/0x180
[ 1464.268235][T11379]  ? memcg_list_lru_alloc+0x1e1/0x750
[ 1464.273631][T11379]  ? memcg_list_lru_alloc+0x1e1/0x750
[ 1464.279119][T11379]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1464.284516][T11379]  ? __rcu_read_unlock+0x4d/0x70
[ 1464.289523][T11379]  ? memcg_list_lru_alloc+0x1e1/0x750
[ 1464.294963][T11379]  __kmalloc+0x95/0x1a0
[ 1464.299128][T11379]  memcg_list_lru_alloc+0x1e1/0x750
[ 1464.304408][T11379]  slab_pre_alloc_hook+0xd8/0x180
[ 1464.309452][T11379]  kmem_cache_alloc_lru+0x4e/0x220
[ 1464.314646][T11379]  ? __d_alloc+0x3d/0x380
[ 1464.319006][T11379]  __d_alloc+0x3d/0x380
[ 1464.323217][T11379]  ? inode_set_ctime_current+0x16c/0x1d0
[ 1464.328877][T11379]  d_make_root+0x2a/0xb0
[ 1464.333275][T11379]  gadgetfs_fill_super+0x1e0/0x400
[ 1464.338399][T11379]  ? gadgetfs_get_tree+0x20/0x20
[ 1464.343396][T11379]  get_tree_single+0x7c/0xe0
[ 1464.348034][T11379]  gadgetfs_get_tree+0x1c/0x20
[ 1464.352828][T11379]  vfs_get_tree+0x51/0x1b0
[ 1464.357304][T11379]  do_new_mount+0x203/0x660
[ 1464.361829][T11379]  path_mount+0x496/0xb30
[ 1464.366177][T11379]  __se_sys_mount+0x27f/0x2d0
[ 1464.370920][T11379]  ? fput+0x112/0x140
[ 1464.374917][T11379]  __x64_sys_mount+0x67/0x80
[ 1464.379600][T11379]  do_syscall_64+0x41/0xc0
[ 1464.384027][T11379]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1464.389939][T11379] RIP: 0033:0x7fa7b4bb2ae9
[ 1464.394360][T11379] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1464.413989][T11379] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1464.422537][T11379] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1464.430520][T11379] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
00:55:07 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1464.438505][T11379] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1464.446569][T11379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1464.454559][T11379] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1464.462560][T11379]  </TASK>
00:55:07 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)

00:55:07 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 19)

00:55:07 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)

00:55:07 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x400}}, './file0\x00'})
getsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000240)={0x8, 0x4, 0x8, 0x101}) (async)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x337df000) (async)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)
sendmsg$nl_route(r2, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x54, 0x68, 0x4, 0x70bd25, 0x25dfdbfc, {0xa, 0x0, 0x2}, [@NHA_GROUP={0x14, 0x2, [{0x1, 0x81}, {0x1, 0x8}]}, @NHA_GROUP={0xc, 0x2, [{0x0, 0x2a}]}, @NHA_ID={0x8, 0x1, 0x2}, @NHA_ENCAP={0x14, 0x8, 0x0, 0x1, @MPLS_IPTUNNEL_DST={0x10, 0x1, [{0x61}, {0x2, 0x0, 0x1}, {0x3f}]}}]}, 0x54}}, 0x1)

00:55:07 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xf5}, 0x0)

00:55:07 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0)

00:55:07 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)

[ 1464.545055][T11382] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1464.553296][T11382] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:07 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 20)

[ 1464.599776][T11402] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1464.635371][T11405] FAULT_INJECTION: forcing a failure.
[ 1464.635371][T11405] name failslab, interval 1, probability 0, space 0, times 0
[ 1464.648099][T11405] CPU: 1 PID: 11405 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1464.658541][T11405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1464.668708][T11405] Call Trace:
[ 1464.672032][T11405]  <TASK>
[ 1464.675072][T11405]  dump_stack_lvl+0xda/0x130
[ 1464.679694][T11405]  dump_stack+0x15/0x20
[ 1464.683907][T11405]  should_fail_ex+0x21f/0x230
[ 1464.688609][T11405]  ? gadgetfs_fill_super+0x21b/0x400
[ 1464.693912][T11405]  __should_failslab+0x92/0xa0
[ 1464.698716][T11405]  should_failslab+0x9/0x20
[ 1464.703302][T11405]  slab_pre_alloc_hook+0x38/0x180
[ 1464.708452][T11405]  ? gadgetfs_fill_super+0x21b/0x400
[ 1464.713785][T11405]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1464.719341][T11405]  ? _raw_spin_unlock+0x26/0x40
[ 1464.724299][T11405]  ? gadgetfs_fill_super+0x21b/0x400
[ 1464.729727][T11405]  kmalloc_trace+0x2a/0xa0
[ 1464.734200][T11405]  gadgetfs_fill_super+0x21b/0x400
[ 1464.739377][T11405]  ? gadgetfs_get_tree+0x20/0x20
[ 1464.744373][T11405]  get_tree_single+0x7c/0xe0
00:55:07 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1464.749028][T11405]  gadgetfs_get_tree+0x1c/0x20
[ 1464.753815][T11405]  vfs_get_tree+0x51/0x1b0
[ 1464.758259][T11405]  do_new_mount+0x203/0x660
[ 1464.762845][T11405]  path_mount+0x496/0xb30
[ 1464.767236][T11405]  __se_sys_mount+0x27f/0x2d0
[ 1464.772030][T11405]  ? fput+0x112/0x140
[ 1464.776040][T11405]  __x64_sys_mount+0x67/0x80
[ 1464.780705][T11405]  do_syscall_64+0x41/0xc0
[ 1464.785205][T11405]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1464.791121][T11405] RIP: 0033:0x7fa7b4bb2ae9
[ 1464.795581][T11405] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1464.815255][T11405] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1464.823707][T11405] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1464.831714][T11405] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1464.839715][T11405] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1464.847701][T11405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1464.855685][T11405] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1464.863670][T11405]  </TASK>
00:55:08 executing program 3:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r0=>0x0)
r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$TIOCL_SELLOADLUT(r1, 0x541c, &(0x7f0000000000)={0x5, 0x0, 0x5, 0x7, 0x1})
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCGLCKTRMIOS(r2, 0x5456, &(0x7f00000000c0)={0x9, 0x8ddd, 0x7f, 0x5, 0x16, "134d4a838090739ae898b2bf25f8bfbab79fd0"})
dup(r2)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000180))
fcntl$setown(0xffffffffffffffff, 0x8, r0)
r3 = syz_open_pts(r1, 0x2)
ioctl$KDSKBMODE(r3, 0x4b45, &(0x7f00000003c0)=0x3)
r4 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r5 = dup(r4)
write$cgroup_pid(r5, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r4, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000300)={'ip6tnl0\x00', &(0x7f0000000280)={'syztnl0\x00', <r6=>0x0, 0x0, 0x5d, 0x59, 0x7fff, 0x1, @remote, @remote, 0x8, 0x10, 0x0, 0x1}})
ioctl$sock_SIOCDELRT(r2, 0x890c, &(0x7f0000000340)={0x0, @xdp={0x2c, 0x0, r6, 0x31}, @ax25={0x3, @bcast, 0x8}, @tipc=@nameseq={0x1e, 0x1, 0x3, {0x1, 0x0, 0x2}}, 0x7, 0x0, 0x0, 0x0, 0x6, 0x0, 0x3, 0x5, 0x81})
sendfile(r4, r5, &(0x7f0000000100), 0x6c03)
openat$cgroup_ro(r5, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
syslog(0x3, &(0x7f0000000040)=""/57, 0x39)
r7 = dup3(r3, r5, 0x0)
ioctl$PIO_SCRNMAP(r7, 0x4b41, &(0x7f0000000400)="67d08a1b4644a2ea05abe72022ba2a3800013cdb83fc1a7b354770f9b4eeb05eb719568c533b0a6f3f9ff7d7acca38a5f0ec73ec1c3c8b5f3a47895748e91786de32516a70059cae44cadc2d487a3ee1ecae5af5cbff8eef94cce3ff5ee5315516d2d550369f62c41d823df1fc4ecbe93ef4cdde132124483b46abd4f42e8f67033c8b79eb7e44a85eb022d148cf60756945e5996384b3168e051d0503434fdbcc71d332c04dc1179c845c48d787f972193d7d79e10bb4400b3d1d6f97fefa81")

00:55:08 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)

00:55:08 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:08 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 21)

00:55:08 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xfc}, 0x0)

00:55:08 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xcc050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

[ 1465.130167][T11417] FAULT_INJECTION: forcing a failure.
[ 1465.130167][T11417] name failslab, interval 1, probability 0, space 0, times 0
[ 1465.142917][T11417] CPU: 0 PID: 11417 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1465.153342][T11417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1465.163487][T11417] Call Trace:
[ 1465.166783][T11417]  <TASK>
[ 1465.169719][T11417]  dump_stack_lvl+0xda/0x130
[ 1465.174365][T11417]  dump_stack+0x15/0x20
[ 1465.178571][T11417]  should_fail_ex+0x21f/0x230
[ 1465.183354][T11417]  __should_failslab+0x92/0xa0
[ 1465.188152][T11417]  should_failslab+0x9/0x20
[ 1465.192725][T11417]  slab_pre_alloc_hook+0x38/0x180
[ 1465.197781][T11417]  kmem_cache_alloc_lru+0x4e/0x220
[ 1465.202931][T11417]  ? __d_alloc+0x3d/0x380
[ 1465.207284][T11417]  __d_alloc+0x3d/0x380
[ 1465.211535][T11417]  ? hashlen_string+0xb8/0x110
[ 1465.216367][T11417]  d_alloc_name+0x62/0x150
[ 1465.220826][T11417]  gadgetfs_create_file+0x34/0x1b0
[ 1465.225966][T11417]  ? gadgetfs_fill_super+0x21b/0x400
[ 1465.231279][T11417]  ? kmalloc_trace+0x80/0xa0
[ 1465.235976][T11417]  gadgetfs_fill_super+0x2d6/0x400
[ 1465.241208][T11417]  ? gadgetfs_get_tree+0x20/0x20
[ 1465.246247][T11417]  get_tree_single+0x7c/0xe0
[ 1465.250927][T11417]  gadgetfs_get_tree+0x1c/0x20
[ 1465.255803][T11417]  vfs_get_tree+0x51/0x1b0
[ 1465.260347][T11417]  do_new_mount+0x203/0x660
[ 1465.261991][T11418] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1465.264886][T11417]  path_mount+0x496/0xb30
[ 1465.264925][T11417]  __se_sys_mount+0x27f/0x2d0
[ 1465.283262][T11417]  ? fput+0x112/0x140
[ 1465.287316][T11417]  __x64_sys_mount+0x67/0x80
[ 1465.292009][T11417]  do_syscall_64+0x41/0xc0
[ 1465.296456][T11417]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1465.302424][T11417] RIP: 0033:0x7fa7b4bb2ae9
[ 1465.306864][T11417] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
00:55:08 executing program 3:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r0=>0x0) (async)
r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$TIOCL_SELLOADLUT(r1, 0x541c, &(0x7f0000000000)={0x5, 0x0, 0x5, 0x7, 0x1})
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCGLCKTRMIOS(r2, 0x5456, &(0x7f00000000c0)={0x9, 0x8ddd, 0x7f, 0x5, 0x16, "134d4a838090739ae898b2bf25f8bfbab79fd0"})
dup(r2) (async)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000180)) (async)
fcntl$setown(0xffffffffffffffff, 0x8, r0) (async)
r3 = syz_open_pts(r1, 0x2)
ioctl$KDSKBMODE(r3, 0x4b45, &(0x7f00000003c0)=0x3)
r4 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r5 = dup(r4)
write$cgroup_pid(r5, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r4, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000300)={'ip6tnl0\x00', &(0x7f0000000280)={'syztnl0\x00', <r6=>0x0, 0x0, 0x5d, 0x59, 0x7fff, 0x1, @remote, @remote, 0x8, 0x10, 0x0, 0x1}})
ioctl$sock_SIOCDELRT(r2, 0x890c, &(0x7f0000000340)={0x0, @xdp={0x2c, 0x0, r6, 0x31}, @ax25={0x3, @bcast, 0x8}, @tipc=@nameseq={0x1e, 0x1, 0x3, {0x1, 0x0, 0x2}}, 0x7, 0x0, 0x0, 0x0, 0x6, 0x0, 0x3, 0x5, 0x81}) (async)
sendfile(r4, r5, &(0x7f0000000100), 0x6c03) (async)
openat$cgroup_ro(r5, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) (async)
syslog(0x3, &(0x7f0000000040)=""/57, 0x39) (async)
r7 = dup3(r3, r5, 0x0)
ioctl$PIO_SCRNMAP(r7, 0x4b41, &(0x7f0000000400)="67d08a1b4644a2ea05abe72022ba2a3800013cdb83fc1a7b354770f9b4eeb05eb719568c533b0a6f3f9ff7d7acca38a5f0ec73ec1c3c8b5f3a47895748e91786de32516a70059cae44cadc2d487a3ee1ecae5af5cbff8eef94cce3ff5ee5315516d2d550369f62c41d823df1fc4ecbe93ef4cdde132124483b46abd4f42e8f67033c8b79eb7e44a85eb022d148cf60756945e5996384b3168e051d0503434fdbcc71d332c04dc1179c845c48d787f972193d7d79e10bb4400b3d1d6f97fefa81")

00:55:08 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:08 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x58}}, 0x0)

00:55:08 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x58}}, 0x0)

[ 1465.326577][T11417] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1465.335042][T11417] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1465.343073][T11417] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1465.351095][T11417] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1465.359085][T11417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1465.367091][T11417] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1465.375092][T11417]  </TASK>
00:55:08 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x58}}, 0x0)

00:55:08 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:08 executing program 3:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r0=>0x0) (async)
r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$TIOCL_SELLOADLUT(r1, 0x541c, &(0x7f0000000000)={0x5, 0x0, 0x5, 0x7, 0x1}) (async)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCGLCKTRMIOS(r2, 0x5456, &(0x7f00000000c0)={0x9, 0x8ddd, 0x7f, 0x5, 0x16, "134d4a838090739ae898b2bf25f8bfbab79fd0"}) (async)
dup(r2) (async)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000180)) (async)
fcntl$setown(0xffffffffffffffff, 0x8, r0) (async)
r3 = syz_open_pts(r1, 0x2)
ioctl$KDSKBMODE(r3, 0x4b45, &(0x7f00000003c0)=0x3)
r4 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r5 = dup(r4)
write$cgroup_pid(r5, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r4, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000300)={'ip6tnl0\x00', &(0x7f0000000280)={'syztnl0\x00', <r6=>0x0, 0x0, 0x5d, 0x59, 0x7fff, 0x1, @remote, @remote, 0x8, 0x10, 0x0, 0x1}})
ioctl$sock_SIOCDELRT(r2, 0x890c, &(0x7f0000000340)={0x0, @xdp={0x2c, 0x0, r6, 0x31}, @ax25={0x3, @bcast, 0x8}, @tipc=@nameseq={0x1e, 0x1, 0x3, {0x1, 0x0, 0x2}}, 0x7, 0x0, 0x0, 0x0, 0x6, 0x0, 0x3, 0x5, 0x81}) (async)
sendfile(r4, r5, &(0x7f0000000100), 0x6c03)
openat$cgroup_ro(r5, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) (async)
syslog(0x3, &(0x7f0000000040)=""/57, 0x39)
r7 = dup3(r3, r5, 0x0)
ioctl$PIO_SCRNMAP(r7, 0x4b41, &(0x7f0000000400)="67d08a1b4644a2ea05abe72022ba2a3800013cdb83fc1a7b354770f9b4eeb05eb719568c533b0a6f3f9ff7d7acca38a5f0ec73ec1c3c8b5f3a47895748e91786de32516a70059cae44cadc2d487a3ee1ecae5af5cbff8eef94cce3ff5ee5315516d2d550369f62c41d823df1fc4ecbe93ef4cdde132124483b46abd4f42e8f67033c8b79eb7e44a85eb022d148cf60756945e5996384b3168e051d0503434fdbcc71d332c04dc1179c845c48d787f972193d7d79e10bb4400b3d1d6f97fefa81")

00:55:08 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 22)

00:55:08 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x102}, 0x0)

[ 1465.476955][T11444] FAULT_INJECTION: forcing a failure.
[ 1465.476955][T11444] name failslab, interval 1, probability 0, space 0, times 0
[ 1465.489690][T11444] CPU: 0 PID: 11444 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1465.500135][T11444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1465.510226][T11444] Call Trace:
[ 1465.513512][T11444]  <TASK>
[ 1465.516460][T11444]  dump_stack_lvl+0xda/0x130
[ 1465.521139][T11444]  dump_stack+0x15/0x20
00:55:08 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1465.525307][T11444]  should_fail_ex+0x21f/0x230
[ 1465.530019][T11444]  __should_failslab+0x92/0xa0
[ 1465.534813][T11444]  should_failslab+0x9/0x20
[ 1465.539422][T11444]  slab_pre_alloc_hook+0x38/0x180
[ 1465.544604][T11444]  kmem_cache_alloc_lru+0x4e/0x220
[ 1465.549742][T11444]  ? alloc_inode+0x64/0x150
[ 1465.554333][T11444]  ? __d_alloc+0x2f8/0x380
[ 1465.558802][T11444]  alloc_inode+0x64/0x150
[ 1465.563160][T11444]  new_inode+0x1d/0x120
[ 1465.567442][T11444]  gadgetfs_create_file+0x5a/0x1b0
[ 1465.572745][T11444]  ? gadgetfs_fill_super+0x21b/0x400
[ 1465.578059][T11444]  ? kmalloc_trace+0x80/0xa0
[ 1465.582660][T11444]  gadgetfs_fill_super+0x2d6/0x400
[ 1465.587795][T11444]  ? gadgetfs_get_tree+0x20/0x20
[ 1465.592754][T11444]  get_tree_single+0x7c/0xe0
[ 1465.597368][T11444]  gadgetfs_get_tree+0x1c/0x20
[ 1465.602150][T11444]  vfs_get_tree+0x51/0x1b0
[ 1465.606630][T11444]  do_new_mount+0x203/0x660
[ 1465.611162][T11444]  path_mount+0x496/0xb30
[ 1465.615578][T11444]  __se_sys_mount+0x27f/0x2d0
[ 1465.620364][T11444]  ? fput+0x112/0x140
[ 1465.624365][T11444]  __x64_sys_mount+0x67/0x80
[ 1465.629071][T11444]  do_syscall_64+0x41/0xc0
[ 1465.633565][T11444]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1465.639479][T11444] RIP: 0033:0x7fa7b4bb2ae9
[ 1465.643925][T11444] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1465.663553][T11444] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1465.671977][T11444] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1465.679958][T11444] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1465.687994][T11444] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1465.695984][T11444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1465.704049][T11444] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1465.712048][T11444]  </TASK>
00:55:08 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKguZd22WXZTXYPe9jdWWYkJ46QYoe1rSD/fvA07400839Pskbz5j1LARxaSUTcioiBiLgUESOt9YVWis1mOhcRL54/nMlSEml656Mk3zYrb99X5nhrs6HmoqP6+sbidLVaWW2Vy42llXJ9fePywtL0fGW+sjw5OXFt6vrU1anxPWln1q4bP3vvj7/7689v/PNH9/9794OLv8nqO9y6f3s79lLzOSlmz8VLgxGxuh/BemCg1Z5irysCAMCuZOen34qI7+fn/yMxkJ/N5ZzSAQAAQJ9Ibw7H50lECgAAAPStm/kc2KRQas33HY5CoVRqzuH9ThwrVGv1xg/namvLs825sqNRLMwtVCvjrTm1o1FMsvJEnn9VvtJWnoyIkxHxh5Gjebk0U6vO9vriBwAAABwSx9v6/5+ONPv/AAAAQJ8Z7XUFAAAAgH2n/w8AAAD9T/8fAAAA+tovbt/OUrr1+9ez99bXFmv3Ls9W6oulpbWZ0kxtdaU0X6vN59/Zt7TT/qq12sqPY3ntQblRqTfK9fWNu0u1teXG3YXXfgIbAAAAOEAnv/fkWTEiNn9yNE+ZI9nNQJcNzBWAvlF4mwf/f//qARy8bh/zQP8b7HUFgJ4p9roCQM8lO9zfdfLOv/a+LgAAwP4Y++6TZ0mH8f9B1wag773V+D/QV4z/w+Fl/B8Or6IzADj09n/8P0133BcAALCvhvOUFEqtscDhKBRKpYgT+b/6F5O5hWplPCK+GRH/GSl+IytP5FsmO/YZAAAAAAAAAAAAAAAAAAAAAAAAAICmNE0iBQAAAPpaROH9pPX7X2MjF4bbrw8cST4byZcRcf/Pd/70YLrRWJ3I1n/8cn3jcWv9lV5cwQAAAADabfXTt/rxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALCXXjx/OLOVDjLuhz+NiNFO8QdjKF8ORTEijn2SxOC27ZKIGNiD+JuPIuJUp/hJVq0YbdWiPX4hIo4eTPwzaZp2jH98D+LDYfYkO/7c6vT+K8S5fNn5/T/YSl9X9+Nf4eXxb6DL8e/ELmOcfvr3ctf4jyJOD3Y+/mzFT7rEP99phx2elF//amOjW/z0LxFjHT9/ktdilRtLK+X6+sblhaXp+cp8ZXlycuLa1PWpq1Pj5bmFaqV12zHG78/848u2VV+kTXn7o0v80R3afyHLFLu1bFuwpw+ef7uZLbbtIo9/8Xzn1//UG+JnfxM/aH0OZPePbeU3m/ntzv7t32e71S2LP9ul/Tu9/hd3bnru0i9/+79dPhQAOAD19Y3F6Wq1srrvmcdpmh5ULJl3MDP0blRDZneZXh+ZAACAvfbqpL/XNQEAAAAAAAAAAAAAAAAAAIDD6yC+Tqw95mZvmgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8EZfBQAA//8DP+Fv")

[ 1465.720961][T11450] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:09 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 23)

00:55:09 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0)

00:55:09 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:09 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0xa, &(0x7f0000000040), 0x0)
syslog(0x4, 0x0, 0x0)

00:55:09 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x112}, 0x0)

00:55:09 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0)

[ 1466.207746][T11465] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1466.217610][T11464] FAULT_INJECTION: forcing a failure.
[ 1466.217610][T11464] name failslab, interval 1, probability 0, space 0, times 0
[ 1466.230257][T11464] CPU: 1 PID: 11464 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1466.240694][T11464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1466.250758][T11464] Call Trace:
[ 1466.254127][T11464]  <TASK>
[ 1466.257107][T11464]  dump_stack_lvl+0xda/0x130
[ 1466.261787][T11464]  dump_stack+0x15/0x20
[ 1466.265998][T11464]  should_fail_ex+0x21f/0x230
[ 1466.270707][T11464]  __should_failslab+0x92/0xa0
[ 1466.275637][T11464]  should_failslab+0x9/0x20
[ 1466.280225][T11464]  slab_pre_alloc_hook+0x38/0x180
[ 1466.285273][T11464]  kmem_cache_alloc+0x52/0x220
[ 1466.290139][T11464]  ? security_inode_alloc+0x32/0xd0
[ 1466.295386][T11464]  security_inode_alloc+0x32/0xd0
[ 1466.300495][T11464]  inode_init_always+0x3ff/0x440
[ 1466.305461][T11464]  alloc_inode+0x77/0x150
[ 1466.309854][T11464]  new_inode+0x1d/0x120
[ 1466.314050][T11464]  gadgetfs_create_file+0x5a/0x1b0
[ 1466.319213][T11464]  ? gadgetfs_fill_super+0x21b/0x400
[ 1466.324577][T11464]  ? kmalloc_trace+0x80/0xa0
[ 1466.329324][T11464]  gadgetfs_fill_super+0x2d6/0x400
[ 1466.334528][T11464]  ? gadgetfs_get_tree+0x20/0x20
[ 1466.339503][T11464]  get_tree_single+0x7c/0xe0
[ 1466.344133][T11464]  gadgetfs_get_tree+0x1c/0x20
[ 1466.348939][T11464]  vfs_get_tree+0x51/0x1b0
[ 1466.353397][T11464]  do_new_mount+0x203/0x660
00:55:09 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xcd050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:09 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:09 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0xa, &(0x7f0000000040), 0x0) (async, rerun: 32)
syslog(0x4, 0x0, 0x0) (rerun: 32)

00:55:09 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0xa, &(0x7f0000000040), 0x0)
syslog(0x4, 0x0, 0x0)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0xa, &(0x7f0000000040), 0x0) (async)
syslog(0x4, 0x0, 0x0) (async)

[ 1466.358008][T11464]  path_mount+0x496/0xb30
[ 1466.362376][T11464]  __se_sys_mount+0x27f/0x2d0
[ 1466.367090][T11464]  ? fput+0x112/0x140
[ 1466.371105][T11464]  __x64_sys_mount+0x67/0x80
[ 1466.375883][T11464]  do_syscall_64+0x41/0xc0
[ 1466.380326][T11464]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1466.386303][T11464] RIP: 0033:0x7fa7b4bb2ae9
00:55:09 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1466.390797][T11464] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1466.410523][T11464] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1466.419039][T11464] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1466.427043][T11464] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1466.435044][T11464] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1466.443041][T11464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1466.451104][T11464] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1466.459102][T11464]  </TASK>
00:55:09 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKguZd22WXZTXYPe9jdWWYkJ46QYoe1rSD/fvA07400839Pskbz5j1LARxaSUTcioiBiLgUESOt9YVWis1mOhcRL54/nMlSEml656Mk3zYrb99X5nhrs6HmoqP6+sbidLVaWW2Vy42llXJ9fePywtL0fGW+sjw5OXFt6vrU1anxPWln1q4bP3vvj7/7689v/PNH9/9794OLv8nqO9y6f3s79lLzOSlmz8VLgxGxuh/BemCg1Z5irysCAMCuZOen34qI7+fn/yMxkJ/N5ZzSAQAAQJ9Ibw7H50lECgAAAPStm/kc2KRQas33HY5CoVRqzuH9ThwrVGv1xg/namvLs825sqNRLMwtVCvjrTm1o1FMsvJEnn9VvtJWnoyIkxHxh5Gjebk0U6vO9vriBwAAABwSx9v6/5+ONPv/AAAAQJ8Z7XUFAAAAgH2n/w8AAAD9T/8fAAAA+tovbt/OUrr1+9ez99bXFmv3Ls9W6oulpbWZ0kxtdaU0X6vN59/Zt7TT/qq12sqPY3ntQblRqTfK9fWNu0u1teXG3YXXfgIbAAAAOEAnv/fk2bGI2PzJ0TxljmQ3A102MFcA+kbhbR78//2rB3Dwun3MA/1vsNcVAHqm2OsKAD2X7HB/18k7/9r7ugAAAPtj7LtPniUdxv8HXRuAvvdW4/9AXzH+D4eX8X84vIrOAODQ2//x/zTdcV8AAMC+Gs5TUii1xgKHo1AolSJO5P/qX0zmFqqV8Yj4ZkT8Z6T4jaw8kW+Z7NhnAAAAAAAAAAAAAAAAAAAAAAAAAACa0jSJFAAAAOhrEYX3k9bvf42NXBhuvz5wJPlsJF9GxP0/3/nTg+lGY3UiW//xy/WNx631V3pxBQMAAABot9VP3+rHAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBeevH84cxWOsi4H/40IkY7xR+MoXw5FMWIOPZJEoPbtksiYmAP4m8+iohTneInWbVitFWL9viFiDh6MPHPpGnaMf7xPYgPh9mT7Phzq9P7rxDn8mXn9/9gK31d3Y9/hZfHv4Eux78Tu4xx+unfy13jP4o4Pdj5+LMVP+kS/3ynHXZ4Un79q42NbvHTv0SMdfz8SV6LVW4srZTr6xuXF5am5yvzleXJyYlrU9enrk6Nl+cWqpXWbccYvz/zjy/bVn2RNuXtjy7xR3do/4UsU+zWsm3Bnj54/u1mtti2izz+xfOdX/9Tb4if/U38oPU5kN0/tpXfbOa3O/u3f5/tVrcs/myX9u/0+l/cuem5S7/87f92+VAA4ADU1zcWp6vVyuq+Zx6naXpQsWTewczQu1ENmd1len1kAgAA9tqrk/5e1wQAAAAAAAAAAAAAAAAAAAAOr4P4OrH2mJu9aSoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwBt9FQAA//80KuF0")

00:55:09 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 24)

00:55:09 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0)

00:55:09 executing program 3:
ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80086601, &(0x7f0000000040))
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:09 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x12a}, 0x0)

00:55:09 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3VFrW20dAPD/SZvZbZ3p1Is52Bxu0g1d0q5uK15sE8S7gTLvZ2nTUpo2pUm3tQzp8AMIIjrwyitvBD+AIPsIIgzcvagooptevBfv+56Xc5JuXUjWjrdtRvr7wZPzPCc55/88SXNynvM8TQI4spKIuBMRQxFxJSJK7fWFdoqtVroQEa9ePp7NUhJpeu8/Sb5tVt65r8zJ9mYjrUVXjY3NpZlarbrWLleay6uVxsbm1cXlmYXqQnVlamryxvTN6evTE/vSzqxdt773j1/+7Lffv/XHbz386/1/Xf5JVt/R9v0727GfWs9JMXsuXhuOiLWDCNYHQ+32FPtdEQAA9iQ7P/1SRHw9P/8vxVB+NpdzSgcAAAADIr09Gh8nESkAAAAwsG7nc2CTQrk933c0CoVyuTWH9ytxolCrN5rfnK+vr8y15sqORbEwv1irTrTn1I5FMcnKk3n+TflaR3kqIk5HxC9Kx/NyebZem+v3xQ8AAAA4Ik529P//X2r1/wEAAIABM9bvCgAAAAAHTv8fAAAABp/+PwAAAAy0H9y9m6V0+/ev5x5srC/VH1ydqzaWysvrs+XZ+tpqeaFeX8i/s295t/3V6vXVb8fK+qNKs9poVhobm/eX6+srzfuLb/0ENgAAAHCITn/t2YtSRGx953ieMseym6EeG5grAAOj8D4P/vvB1QM4fL0+5oHBN9zvCgB9U+x3BYC+S3a5v+fknT/tf10AAICDMf7VZy+SLuP/w64NwMB7r/F/YKAY/4ejy/g/HF1FZwBw5B38+H+a7rovAADgQI3mKSmU22OBo1EolMsRp/J/9S8m84u16kREfDEi/lIqfiErT+ZbJrv2GQAAAAAAAAAAAAAAAAAAAAAAAACAljRNIgUAAAAGWkThn0n797/GS5dGO68PHEs+KuXLiHj463u/ejTTbK5NZuv/+3p982l7/bV+XMEAAAAAOm3307f78QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwn169fDy7nQ4z7r+/GxFj3eIPx0i+HIliRJz4XxLDO7ZLImJoH+JvPYmIM93iJ1m1Yqxdi874hYg4fjjxz6Vp2jX+yX2ID0fZs+z4c6fb+68QF/Jl9/f/cDt9Xr2Pf4XXx7+hHse/U3uMcfb57ys94z+JODvc/fizHT/pEf9itx12eVJ+/KPNzV7x099EjHf9/EneilVpLq9WGhubVxeXZxaqC9WVqanJG9M3p69PT1TmF2vV9m3XGD8/94dPO1Z9krbk7Y8e8cd2af+lLFPs1bIdwZ4/evnlVrbYsYs8/uWL3V//M++In/1NfKP9OZDdP76d32rldzr/uz+f71W3LP5cj/bv9vpf3r3puSs//Onf9vhQAOAQNDY2l2ZqteragWeepml6WLFkPsDMyIdRDZm9Zfp9ZAIAAPbbm5P+ftcEAAAAAAAAAAAAAAAAAAAAjq7D+Dqxzphb/WkqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMA7fRYAAP//ZRXheQ==")

[ 1466.552069][T11487] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1466.565707][T11491] FAULT_INJECTION: forcing a failure.
[ 1466.565707][T11491] name failslab, interval 1, probability 0, space 0, times 0
[ 1466.578370][T11491] CPU: 1 PID: 11491 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1466.588798][T11491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1466.598873][T11491] Call Trace:
00:55:09 executing program 3:
ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80086601, &(0x7f0000000040)) (async)
ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80086601, &(0x7f0000000040))
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

[ 1466.602189][T11491]  <TASK>
[ 1466.605264][T11491]  dump_stack_lvl+0xda/0x130
[ 1466.609947][T11491]  dump_stack+0x15/0x20
[ 1466.614129][T11491]  should_fail_ex+0x21f/0x230
[ 1466.618852][T11491]  __should_failslab+0x92/0xa0
[ 1466.623717][T11491]  should_failslab+0x9/0x20
[ 1466.628353][T11491]  slab_pre_alloc_hook+0x38/0x180
[ 1466.633417][T11491]  kmem_cache_alloc+0x52/0x220
[ 1466.638342][T11491]  ? alloc_vfsmnt+0x2b/0x2d0
[ 1466.643075][T11491]  alloc_vfsmnt+0x2b/0x2d0
[ 1466.647523][T11491]  vfs_create_mount+0x49/0x240
[ 1466.652334][T11491]  do_new_mount+0x2c9/0x660
[ 1466.656895][T11491]  path_mount+0x496/0xb30
[ 1466.661281][T11491]  __se_sys_mount+0x27f/0x2d0
[ 1466.665999][T11491]  ? fput+0x112/0x140
[ 1466.670067][T11491]  __x64_sys_mount+0x67/0x80
[ 1466.674950][T11491]  do_syscall_64+0x41/0xc0
[ 1466.679397][T11491]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1466.685314][T11491] RIP: 0033:0x7fa7b4bb2ae9
[ 1466.689808][T11491] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1466.709446][T11491] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1466.717994][T11491] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1466.726070][T11491] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1466.734132][T11491] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1466.742165][T11491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1466.750176][T11491] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1466.758184][T11491]  </TASK>
[ 1467.314366][T11480] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1467.325719][T11480] CPU: 1 PID: 11480 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1467.336223][T11480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1467.346336][T11480] Call Trace:
[ 1467.349653][T11480]  <TASK>
[ 1467.352579][T11480]  dump_stack_lvl+0xda/0x130
[ 1467.357304][T11480]  dump_stack+0x15/0x20
[ 1467.361541][T11480]  dump_header+0x95/0x3c0
[ 1467.365935][T11480]  oom_kill_process+0xe3/0x3e0
[ 1467.370746][T11480]  out_of_memory+0x9ca/0xc00
[ 1467.375353][T11480]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1467.381444][T11480]  mem_cgroup_out_of_memory+0x139/0x190
[ 1467.387011][T11480]  try_charge_memcg+0x75c/0xd30
[ 1467.391892][T11480]  ? __alloc_pages+0x193/0x340
[ 1467.396669][T11480]  charge_memcg+0x51/0x200
[ 1467.401187][T11480]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1467.407176][T11480]  __read_swap_cache_async+0x339/0x590
[ 1467.412693][T11480]  swap_cluster_readahead+0x29d/0x4e0
[ 1467.418142][T11480]  swapin_readahead+0x8d/0x710
[ 1467.422997][T11480]  ? __filemap_get_folio+0x42b/0x500
[ 1467.428312][T11480]  ? _raw_spin_unlock+0x26/0x40
[ 1467.433336][T11480]  ? finish_task_switch+0xac/0x280
[ 1467.438537][T11480]  ? swap_cache_get_folio+0x6e/0x200
[ 1467.443832][T11480]  do_swap_page+0x306/0x1780
[ 1467.448428][T11480]  ? __rcu_read_lock+0x35/0x50
[ 1467.453196][T11480]  handle_mm_fault+0xa2e/0x2cc0
[ 1467.458097][T11480]  exc_page_fault+0x3ff/0x6c0
[ 1467.462808][T11480]  asm_exc_page_fault+0x26/0x30
[ 1467.467696][T11480] RIP: 0033:0x7f2c4aac6af4
[ 1467.472111][T11480] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1467.491733][T11480] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1467.497801][T11480] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1467.505788][T11480] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1467.513831][T11480] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1467.521825][T11480] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000001663b2
[ 1467.529829][T11480] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000166071
[ 1467.537827][T11480]  </TASK>
[ 1467.541040][T11480] memory: usage 307200kB, limit 307200kB, failcnt 260315
[ 1467.548100][T11480] memory+swap: usage 308140kB, limit 9007199254740988kB, failcnt 0
[ 1467.556037][T11480] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 1467.563330][T11480] Memory cgroup stats for /syz2:
[ 1467.563519][T11480] cache 4096
[ 1467.571680][T11480] rss 24576
[ 1467.574897][T11480] shmem 0
[ 1467.577914][T11480] mapped_file 0
[ 1467.581369][T11480] dirty 0
[ 1467.584353][T11480] writeback 0
[ 1467.587668][T11480] workingset_refault_anon 55197
[ 1467.592518][T11480] workingset_refault_file 19
[ 1467.597145][T11480] swap 962560
[ 1467.600532][T11480] pgpgin 199749
[ 1467.604003][T11480] pgpgout 199742
[ 1467.607584][T11480] pgfault 280214
[ 1467.611150][T11480] pgmajfault 20845
[ 1467.614902][T11480] inactive_anon 0
[ 1467.618538][T11480] active_anon 24576
[ 1467.622339][T11480] inactive_file 0
[ 1467.625995][T11480] active_file 4096
[ 1467.629719][T11480] unevictable 0
[ 1467.633165][T11480] hierarchical_memory_limit 314572800
[ 1467.638579][T11480] hierarchical_memsw_limit 9223372036854771712
[ 1467.644757][T11480] total_cache 4096
[ 1467.648473][T11480] total_rss 24576
[ 1467.652098][T11480] total_shmem 0
[ 1467.655584][T11480] total_mapped_file 0
[ 1467.659616][T11480] total_dirty 0
[ 1467.663139][T11480] total_writeback 0
[ 1467.666999][T11480] total_workingset_refault_anon 55197
[ 1467.672370][T11480] total_workingset_refault_file 19
[ 1467.677614][T11480] total_swap 962560
[ 1467.681429][T11480] total_pgpgin 199749
[ 1467.685502][T11480] total_pgpgout 199742
[ 1467.689621][T11480] total_pgfault 280214
[ 1467.693680][T11480] total_pgmajfault 20845
[ 1467.697953][T11480] total_inactive_anon 0
[ 1467.702222][T11480] total_active_anon 24576
[ 1467.706683][T11480] total_inactive_file 0
[ 1467.710864][T11480] total_active_file 4096
[ 1467.715192][T11480] total_unevictable 0
[ 1467.719218][T11480] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11480,uid=0
[ 1467.734590][T11480] Memory cgroup out of memory: Killed process 11480 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:10 executing program 3:
ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80086601, &(0x7f0000000040)) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:10 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xce050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:10 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x189}, 0x0)

00:55:10 executing program 0:
syslog(0x3, &(0x7f0000000000)=""/46, 0x25)

00:55:10 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 25)

00:55:10 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKguZd22WXZTXYPe9jdWWYkJ46QYoe1rSD/fvA07400839Pskbz5j1LARxaSUTcioiBiLgUESOt9YVWis1mOhcRL54/nMlSEml656Mk3zYrb99X5nhrs6HmoqP6+sbidLVaWW2Vy42llXJ9fePywtL0fGW+sjw5OXFt6vrU1anxPWln1q4bP3vvj7/7689v/PNH9/9794OLv8nqO9y6f3s79lLzOSlmz8VLgxGxuh/BemCg1Z5irysCAMCuZOen34qI7+fn/yMxkJ/N5ZzSAQAAQJ9Ibw7H50lECgAAAPStm/kc2KRQas33HY5CoVRqzuH9ThwrVGv1xg/namvLs825sqNRLMwtVCvjrTm1o1FMsvJEnn9VvtJWnoyIkxHxh5Gjebk0U6vO9vriBwAAABwSx9v6/5+ONPv/AAAAQJ8Z7XUFAAAAgH2n/w8AAAD9T/8fAAAA+tovbt/OUrr1+9ez99bXFmv3Ls9W6oulpbWZ0kxtdaU0X6vN59/Zt7TT/qq12sqPY3ntQblRqTfK9fWNu0u1teXG3YXXfgIbAAAAOEAnv/fk2WhEbP7kaJ4yR7KbgS4bmCsAfaPwNg/+//7VAzh43T7mgf432OsKAD1T7HUFgJ5Ldri/6+Sdf+19XQAAgP0x9t0nz5IO4/+Drg1A33ur8X+grxj/h8PL+D8cXkVnAHDo7f/4f5ruuC8AAGBfDecpKZRaY4HDUSiUShEn8n/1LyZzC9XKeER8MyL+M1L8RlaeyLdMduwzAAAAAAAAAAAAAAAAAAAAAAAAAABNaZpECgAAAPS1iML7Sev3v8ZGLgy3Xx84knw2ki8j4v6f7/zpwXSjsTqRrf/45frG49b6K724ggEAAAC02+qnb/XjAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAvvXj+cGYrHWTcD38aEaOd4g/GUL4cimJEHPskicFt2yURMbAH8TcfRcSpTvGTrFox2qpFe/xCRBw9mPhn0jTtGP/4HsSHw+xJdvy51en9V4hz+bLz+3+wlb6u7se/wsvj30CX49+JXcY4/fTv5a7xH0WcHux8/NmKn3SJf77TDjs8Kb/+1cZGt/jpXyLGOn7+JK/FKjeWVsr19Y3LC0vT85X5yvLk5MS1qetTV6fGy3ML1UrrtmOM35/5x5dtq75Im/L2R5f4ozu0/0KWKXZr2bZgTx88/3YzW2zbRR7/4vnOr/+pN8TP/iZ+0PocyO4f28pvNvPbnf3bv892q1sWf7ZL+3d6/S/u3PTcpV/+9n+7fCgAcADq6xuL09VqZXXfM4/TND2oWDLvYGbo3aiGzO4yvT4yAQAAe+3VSX+vawIAAAAAAAAAAAAAAAAAAACH10F8nVh7zM3eNBUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4I2+CgAA///VPuF6")

00:55:10 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttDmkgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKguZe2tCy7ye5hD7s7y4zkxBFS7LC2FeTfD57mvZFm/u9J1mjevGcpgEMriYjbETEQEZcjYqS1vtBKsdlM5yPi5YtHM1lKIk3vfpjk22bl7fvKHG9tNtRcdFRf31icrlYrq61yubG0Uq6vb1xZWJqer8xXlicnJ65P3Zi6NjW+J+3M2nXzx//93a//9JObf/v+g3/d+/+lX2b1HW7dv70de6n5nBSz5+KVwYhY3Y9gPTDQak+x1xUBAGBXsvPTb0TEd/Lz/5EYyM/mck7pAAAAoE+kt4bjsyQiBQAAAPrWrXwObFIoteb7DkehUCo15/CeimOFaq3e+N5cbW15tjlXdjSKhbmFamW8Nad2NIpJVp7I86/LV9vKkxFxMiJ+O3I0L5dmatXZXl/8AAAAgEPieFv//5ORZv8fAAAA6DOjva4AAAAAsO/0/wEAAKD/6f8DAABAX/vpnTtZSrd+/3r2/vraYu3+ldlKfbG0tDZTmqmtrpTma7X5/Dv7lnbaX7VWW/lBLK89LDcq9Ua5vr5xb6m2tty4t/DGT2ADAAAAB+jkt58+PxURmz88mqfMkexmoMsG5gpA3yi8y4P/s3/1AA5et495oP8N9roCQM8Ue10BoOeSHe7vOnnn73tfFwAAYH+Mfevp86TD+P+gawPQ995p/B/oK8b/4fAy/g+HV9EZABx6+z/+n6Y77gsAANhXw3lKCqXWWOBwFAqlUsSJ/F/9i8ncQrUyHhFfj4h/jhS/lpUn8i2THfsMAAAAAAAAAAAAAAAAAAAAAAAAAEBTmiaRAgAAAH0tovC/pPX7X2MjF4fbrw8cST4dyZcR8eAPd3//cLrRWJ3I1n/0an3jSWv91V5cwQAAAADabfXTt/rxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALCXXr54NLOVDjLuBz+KiNFO8QdjKF8ORTEijn2cxOC27ZKIGNiD+JuPI+J0p/hJVq0YbdWiPX4hIo4eTPyzaZp2jH98D+LDYfY0O/7c7vT+K8T5fNn5/T/YSl9V9+Nf4dXxb6DL8e/ELmOcefaXctf4jyPODHY+/mzFT7rEv9Bphx2elF/8fGOjW/z0jxFjHT9/kjdilRtLK+X6+saVhaXp+cp8ZXlycuL61I2pa1Pj5bmFaqV12zHGb87+9Yu2VZ+nTXn7o0v80R3afzHLFLu1bFuwZw9ffLOZLbbtIo9/6ULn1//0W+JnfxPfbX0OZPePbeU3m/ntzv35H+e61S2LP9ul/Tu9/pd2bnru8s9+9e9dPhQAOAD19Y3F6Wq1srrvmSdpmh5ULJn3MDP0flRDZneZXh+ZAACAvfb6pL/XNQEAAAAAAAAAAAAAAAAAAIDD6yC+Tqw95mZvmgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8FZfBgAA//+WAOF+")

00:55:10 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1467.989156][T11506] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1468.071566][T11509] FAULT_INJECTION: forcing a failure.
[ 1468.071566][T11509] name failslab, interval 1, probability 0, space 0, times 0
[ 1468.084648][T11509] CPU: 1 PID: 11509 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1468.095226][T11509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1468.105306][T11509] Call Trace:
[ 1468.108611][T11509]  <TASK>
[ 1468.111593][T11509]  dump_stack_lvl+0xda/0x130
[ 1468.116230][T11509]  dump_stack+0x15/0x20
00:55:11 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1a8}, 0x0)

00:55:11 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:11 executing program 3:
syslog(0x4, &(0x7f0000000080)=""/73, 0x49)

[ 1468.120427][T11509]  should_fail_ex+0x21f/0x230
[ 1468.125191][T11509]  ? get_mountpoint+0x175/0x2d0
[ 1468.130141][T11509]  __should_failslab+0x92/0xa0
[ 1468.134948][T11509]  should_failslab+0x9/0x20
[ 1468.139540][T11509]  slab_pre_alloc_hook+0x38/0x180
[ 1468.144657][T11509]  ? get_mountpoint+0x175/0x2d0
[ 1468.149680][T11509]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1468.155105][T11509]  ? get_mountpoint+0x175/0x2d0
[ 1468.160037][T11509]  kmalloc_trace+0x2a/0xa0
[ 1468.164567][T11509]  get_mountpoint+0x175/0x2d0
[ 1468.169298][T11509]  do_lock_mount+0x1db/0x280
[ 1468.173928][T11509]  do_new_mount+0x2f8/0x660
[ 1468.178547][T11509]  path_mount+0x496/0xb30
[ 1468.182923][T11509]  __se_sys_mount+0x27f/0x2d0
[ 1468.187635][T11509]  ? fput+0x112/0x140
[ 1468.190571][T11520] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1468.191641][T11509]  __x64_sys_mount+0x67/0x80
[ 1468.191679][T11509]  do_syscall_64+0x41/0xc0
[ 1468.191702][T11509]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1468.215939][T11509] RIP: 0033:0x7fa7b4bb2ae9
[ 1468.220429][T11509] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1468.240064][T11509] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1468.248665][T11509] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1468.256681][T11509] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[ 1468.264683][T11509] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1468.272900][T11509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1468.280914][T11509] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1468.288906][T11509]  </TASK>
00:55:11 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:11 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:11 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1ab}, 0x0)

00:55:11 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 26)

00:55:11 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1468.957632][T11532] FAULT_INJECTION: forcing a failure.
[ 1468.957632][T11532] name failslab, interval 1, probability 0, space 0, times 0
[ 1468.970471][T11532] CPU: 0 PID: 11532 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1468.980930][T11532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1468.991050][T11532] Call Trace:
[ 1468.994451][T11532]  <TASK>
[ 1468.997427][T11532]  dump_stack_lvl+0xda/0x130
[ 1469.002059][T11532]  dump_stack+0x15/0x20
[ 1469.006264][T11532]  should_fail_ex+0x21f/0x230
[ 1469.011055][T11532]  ? get_mountpoint+0x175/0x2d0
[ 1469.016016][T11532]  __should_failslab+0x92/0xa0
[ 1469.020837][T11532]  should_failslab+0x9/0x20
[ 1469.025278][T11542] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1469.025366][T11532]  slab_pre_alloc_hook+0x38/0x180
[ 1469.039692][T11532]  ? get_mountpoint+0x175/0x2d0
[ 1469.044587][T11532]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1469.050024][T11532]  ? get_mountpoint+0x175/0x2d0
[ 1469.054989][T11532]  kmalloc_trace+0x2a/0xa0
[ 1469.059457][T11532]  get_mountpoint+0x175/0x2d0
[ 1469.064173][T11532]  attach_recursive_mnt+0xc7/0xe10
[ 1469.069437][T11532]  do_new_mount+0x535/0x660
[ 1469.073981][T11532]  path_mount+0x496/0xb30
[ 1469.078448][T11532]  __se_sys_mount+0x27f/0x2d0
[ 1469.083173][T11532]  ? fput+0x112/0x140
[ 1469.087332][T11532]  __x64_sys_mount+0x67/0x80
[ 1469.091951][T11532]  do_syscall_64+0x41/0xc0
[ 1469.096441][T11532]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1469.102472][T11532] RIP: 0033:0x7fa7b4bb2ae9
[ 1469.106911][T11532] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1469.126596][T11532] RSP: 002b:00007fa7b3f350c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1469.135047][T11532] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb2ae9
[ 1469.143108][T11532] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
00:55:11 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:11 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xcf050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:11 executing program 3:
syslog(0x4, &(0x7f0000000080)=""/73, 0x49)

00:55:11 executing program 3:
syslog(0x4, &(0x7f0000000080)=""/73, 0x49)

00:55:11 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x9, &(0x7f0000000140)=""/228, 0xe4)

00:55:12 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1469.151097][T11532] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1469.159139][T11532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1469.167186][T11532] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1469.175187][T11532]  </TASK>
00:55:12 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x9, &(0x7f0000000140)=""/228, 0xe4)

00:55:12 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0) (fail_nth: 27)

00:55:12 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x9, &(0x7f0000000140)=""/228, 0xe4)

00:55:12 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1ac}, 0x0)

00:55:12 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKguZd22WXZTXYPe9jdWWYkJ46QYoe1rSD/fvA07400839Pskbz5j1LARxaSUTcioiBiLgUESOt9YVWis1mOhcRL54/nMlSEml656Mk3zYrb99X5nhrs6HmoqP6+sbidLVaWW2Vy42llXJ9fePywtL0fGW+sjw5OXFt6vrU1anxPWln1q4bP3vvj7/7689v/PNH9/9794OLv8nqO9y6f3s79lLzOSlmz8VLgxGxuh/BemCg1Z5irysCAMCuZOen34qI7+fn/yMxkJ/N5ZzSAQAAQJ9Ibw7H50lECgAAAPStm/kc2KRQas33HY5CoVRqzuH9ThwrVGv1xg/namvLs825sqNRLMwtVCvjrTm1o1FMsvJEnn9VvtJWnoyIkxHxh5Gjebk0U6vO9vriBwAAABwSx9v6/5+ONPv/AAAAQJ8Z7XUFAAAAgH2n/w8AAAD9T/8fAAAA+tovbt/OUrr1+9ez99bXFmv3Ls9W6oulpbWZ0kxtdaU0X6vN59/Zt7TT/qq12sqPY3ntQblRqTfK9fWNu0u1teXG3YXXfgIbAAAAOEAnv/fk2a2I2PzJ0TxljmQ3A102MFcA+kbhbR78//2rB3Dwun3MA/1vsNcVAHqm2OsKAD2X7HB/18k7/9r7ugAAAPtj7LtPniUdxv8HXRuAvvdW4/9AXzH+D4eX8X84vIrOAODQ2//x/zTdcV8AAMC+Gs5TUii1xgKHo1AolSJO5P/qX0zmFqqV8Yj4ZkT8Z6T4jaw8kW+Z7NhnAAAAAAAAAAAAAAAAAAAAAAAAAACa0jSJFAAAAOhrEYX3k9bvf42NXBhuvz5wJPlsJF9GxP0/3/nTg+lGY3UiW//xy/WNx631V3pxBQMAAABot9VP3+rHAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBeevH84cxWOsi4H/40IkY7xR+MoXw5FMWIOPZJEoPbtksiYmAP4m8+iohTneInWbVitFWL9viFiDh6MPHPpGnaMf7xPYgPh9mT7Phzq9P7rxDn8mXn9/9gK31d3Y9/hZfHv4Eux78Tu4xx+unfy13jP4o4Pdj5+LMVP+kS/3ynHXZ4Un79q42NbvHTv0SMdfz8SV6LVW4srZTr6xuXF5am5yvzleXJyYlrU9enrk6Nl+cWqpXWbccYvz/zjy/bVn2RNuXtjy7xR3do/4UsU+zWsm3Bnj54/u1mtti2izz+xfOdX/9Tb4if/U38oPU5kN0/tpXfbOa3O/u3f5/tVrcs/myX9u/0+l/cuem5S7/87f92+VAA4ADU1zcWp6vVyuq+Zx6naXpQsWTewczQu1ENmd1len1kAgAA9tqrk/5e1wQAAAAAAAAAAAAAAAAAAAAOr4P4OrH2mJu9aSoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwBt9FQAA///eKeGq")

00:55:12 executing program 0:
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:12 executing program 0:
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1469.281392][T11562] FAULT_INJECTION: forcing a failure.
[ 1469.281392][T11562] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1469.294594][T11562] CPU: 0 PID: 11562 Comm: syz-executor.1 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1469.305151][T11562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1469.315230][T11562] Call Trace:
[ 1469.318529][T11562]  <TASK>
[ 1469.319394][T11566] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:12 executing program 3:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r0=>0x0)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000180))
syz_open_procfs(r0, &(0x7f0000000000)='net/xfrm_stat\x00')
getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000000), &(0x7f0000000040))

[ 1469.321469][T11562]  dump_stack_lvl+0xda/0x130
[ 1469.335379][T11562]  dump_stack+0x15/0x20
[ 1469.339633][T11562]  should_fail_ex+0x21f/0x230
[ 1469.344344][T11562]  should_fail+0xb/0x10
[ 1469.348748][T11562]  should_fail_usercopy+0x1a/0x20
[ 1469.353834][T11562]  _copy_to_user+0x1e/0x90
[ 1469.358350][T11562]  simple_read_from_buffer+0xa0/0x110
[ 1469.363761][T11562]  proc_fail_nth_read+0xfc/0x140
[ 1469.368749][T11562]  ? proc_fault_inject_write+0x210/0x210
[ 1469.374468][T11562]  vfs_read+0x19f/0x5c0
[ 1469.378646][T11562]  ? __fget_files+0x1c4/0x200
[ 1469.383418][T11562]  ? mutex_lock+0xd/0x30
[ 1469.387886][T11562]  ksys_read+0xeb/0x1a0
[ 1469.392067][T11562]  __x64_sys_read+0x42/0x50
[ 1469.396609][T11562]  do_syscall_64+0x41/0xc0
[ 1469.401060][T11562]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1469.406998][T11562] RIP: 0033:0x7fa7b4bb178c
[ 1469.411482][T11562] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[ 1469.431126][T11562] RSP: 002b:00007fa7b3f350c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1469.439582][T11562] RAX: ffffffffffffffda RBX: 00007fa7b4cd1f80 RCX: 00007fa7b4bb178c
[ 1469.447584][T11562] RDX: 000000000000000f RSI: 00007fa7b3f35130 RDI: 0000000000000003
[ 1469.455667][T11562] RBP: 00007fa7b3f35120 R08: 0000000000000000 R09: 0000000000000000
[ 1469.463664][T11562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1469.471722][T11562] R13: 000000000000000b R14: 00007fa7b4cd1f80 R15: 00007ffd4037b438
[ 1469.479721][T11562]  </TASK>
00:55:12 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd0050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:12 executing program 0:
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:12 executing program 3:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r0=>0x0)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000180)) (async)
syz_open_procfs(r0, &(0x7f0000000000)='net/xfrm_stat\x00')
getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000000), &(0x7f0000000040))

00:55:12 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKS09BZoSe+psWVjLFvGkpPYhOLQD1AopQ301FMvhX6AQslHKIVAcy9t2WXZTXYPe9jdWWYkJ46QYoe1rSD/fvA07400839Pskbz5j1LARxaSUTcioiBiLgUESOt9YVWis1mOhcRL54/nMlSEml658Mk3zYrb99X5nhrs6HmoqP6+sbidLVaWW2Vy42llXJ9fePywtL0fGW+sjw5OXFt6vrU1anxPWln1q4bP/3/H377l5/d+McP7v/n7vsXf53Vd7h1//Z27KXmc1LMnouXBiNidT+C9cBAqz3FXlcEAIBdyc5PvxER383P/0diID+byzmlAwAAgD6R3hyOz5KIFAAAAOhbN/M5sEmh1JrvOxyFQqnUnMP7rThWqNbqje/P1daWZ5tzZUejWJhbqFbGW3NqR6OYZOWJPP+qfKWtPBkRJyPi9yNH83Jpplad7fXFDwAAADgkjrf1/z8Zafb/AQAAgD4z2usKAAAAAPtO/x8AAAD6n/4/AAAA9LWf376dpXTr969n762vLdbuXZ6t1BdLS2szpZna6kppvlabz7+zb2mn/VVrtZUfxvLag3KjUm+U6+sbd5dqa8uNuwuv/QQ2AAAAcIBOfufJs59ExOaPjuYpcyS7GeiygbkC0DcKb/Pg/+1fPYCD1+1jHuh/g72uANAzxV5XAOi5ZIf7u07e+efe1wUAANgfY99+8izpMP4/6NoA9L23Gv8H+orxfzi8jP/D4VV0BgCH3v6P/6fpjvsCAAD21XCekkKpNRY4HIVCqRRxIv9X/2Iyt1CtjEfE1yPi3yPFr2XliXzLZMc+AwAAAAAAAAAAAAAAAAAAAAAAAADQlKZJpAAAAEBfiyi8l7R+/2ts5MJw+/WBI8mnI/kyIu7/6c4fH0w3GqsT2fqPXq5vPG6tv9KLKxgAAABAu61++lY/HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD20ovnD2e20kHG/eDHETHaKf5gDOXLoShGxLGPkxjctl0SEQN7EH/zUUSc6hQ/yaoVo61atMcvRMTRg4l/Jk3TjvGP70F8OMyeZMefW53ef4U4ly87v/8HW+mr6n78K7w8/g10Of6d2GWM00//Vu4a/1HE6cHOx5+t+EmX+Oc77bDDk/KrX25sdIuf/jlirOPnT/JarHJjaaVcX9+4vLA0PV+ZryxPTk5cm7o+dXVqvDy3UK20bjvG+N2Zv3/RturztClvf3SJP7pD+y9kmWK3lm0L9vTB8282s8W2XeTxL57v/PqfekP87G/ie63Pgez+sa38ZjO/3dm//utst7pl8We7tH+n1//izk3PXfrFb/67y4cCAAegvr6xOF2tVlb3PfM4TdODiiXzDmaG3o1qyOwu0+sjEwAAsNdenfT3uiYAAAAAAAAAAAAAAAAAAABweB3E14m1x9zsTVMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN7oywAAAP//LsLhrQ==")

00:55:12 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1c8}, 0x0)

00:55:12 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x0, 0x0)

00:55:12 executing program 0:
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:12 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKguZd22WXZTXYPe9jdWWYkJ46QYoe1rSD/fvA07400839Pskbz5j1LARxaSUTcioiBiLgUESOt9YVWis1mOhcRL54/nMlSEml656Mk3zYrb99X5nhrs6HmoqP6+sbidLVaWW2Vy42llXJ9fePywtL0fGW+sjw5OXFt6vrU1anxPWln1q4bP3vvj7/7689v/PNH9/9794OLv8nqO9y6f3s79lLzOSlmz8VLgxGxuh/BemCg1Z5irysCAMCuZOen34qI7+fn/yMxkJ/N5ZzSAQAAQJ9Ibw7H50lECgAAAPStm/kc2KRQas33HY5CoVRqzuH9ThwrVGv1xg/namvLs825sqNRLMwtVCvjrTm1o1FMsvJEnn9VvtJWnoyIkxHxh5Gjebk0U6vO9vriBwAAABwSx9v6/5+ONPv/AAAAQJ8Z7XUFAAAAgH2n/w8AAAD9T/8fAAAA+tovbt/OUrr1+9ez99bXFmv3Ls9W6oulpbWZ0kxtdaU0X6vN59/Zt7TT/qq12sqPY3ntQblRqTfK9fWNu0u1teXG3YXXfgIbAAAAOEAnv/fk2aOI2PzJ0TxljmQ3A102MFcA+kbhbR78//2rB3Dwun3MA/1vsNcVAHqm2OsKAD2X7HB/18k7/9r7ugAAAPtj7LtPniUdxv8HXRuAvvdW4/9AXzH+D4eX8X84vIrOAODQ2//x/zTdcV8AAMC+Gs5TUii1xgKHo1AolSJO5P/qX0zmFqqV8Yj4ZkT8Z6T4jaw8kW+Z7NhnAAAAAAAAAAAAAAAAAAAAAAAAAACa0jSJFAAAAOhrEYX3k9bvf42NXBhuvz5wJPlsJF9GxP0/3/nTg+lGY3UiW//xy/WNx631V3pxBQMAAABot9VP3+rHAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBeevH84cxWOsi4H/40IkY7xR+MoXw5FMWIOPZJEoPbtksiYmAP4m8+iohTneInWbVitFWL9viFiDh6MPHPpGnaMf7xPYgPh9mT7Phzq9P7rxDn8mXn9/9gK31d3Y9/hZfHv4Eux78Tu4xx+unfy13jP4o4Pdj5+LMVP+kS/3ynHXZ4Un79q42NbvHTv0SMdfz8SV6LVW4srZTr6xuXF5am5yvzleXJyYlrU9enrk6Nl+cWqpXWbccYvz/zjy/bVn2RNuXtjy7xR3do/4UsU+zWsm3Bnj54/u1mtti2izz+xfOdX/9Tb4if/U38oPU5kN0/tpXfbOa3O/u3f5/tVrcs/myX9u/0+l/cuem5S7/87f92+VAA4ADU1zcWp6vVyuq+Zx6naXpQsWTewczQu1ENmd1len1kAgAA9tqrk/5e1wQAAAAAAAAAAAAAAAAAAAAOr4P4OrH2mJu9aSoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwBt9FQAA//9aReHr")

00:55:12 executing program 3:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r0=>0x0)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000180)) (async)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000180))
syz_open_procfs(r0, &(0x7f0000000000)='net/xfrm_stat\x00')
getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000000), &(0x7f0000000040))

00:55:12 executing program 0:
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

[ 1469.987446][T11577] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:12 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2, 0x0)

00:55:12 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1470.727398][T11581] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1470.738741][T11581] CPU: 1 PID: 11581 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1470.749154][T11581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1470.759302][T11581] Call Trace:
[ 1470.762575][T11581]  <TASK>
[ 1470.765503][T11581]  dump_stack_lvl+0xda/0x130
[ 1470.770097][T11581]  dump_stack+0x15/0x20
[ 1470.774336][T11581]  dump_header+0x95/0x3c0
[ 1470.778683][T11581]  oom_kill_process+0xe3/0x3e0
[ 1470.783454][T11581]  out_of_memory+0x9ca/0xc00
[ 1470.788212][T11581]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1470.794348][T11581]  mem_cgroup_out_of_memory+0x139/0x190
[ 1470.799994][T11581]  try_charge_memcg+0x75c/0xd30
[ 1470.804927][T11581]  ? __alloc_pages+0x193/0x340
[ 1470.809702][T11581]  charge_memcg+0x51/0x200
[ 1470.814195][T11581]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1470.820178][T11581]  __read_swap_cache_async+0x339/0x590
[ 1470.825641][T11581]  swap_cluster_readahead+0x29d/0x4e0
[ 1470.831020][T11581]  swapin_readahead+0x8d/0x710
[ 1470.835900][T11581]  ? __filemap_get_folio+0x42b/0x500
[ 1470.841247][T11581]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1470.846804][T11581]  ? swap_cache_get_folio+0x6e/0x200
[ 1470.852139][T11581]  do_swap_page+0x306/0x1780
[ 1470.856804][T11581]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1470.862105][T11581]  ? __rcu_read_lock+0x35/0x50
[ 1470.867025][T11581]  handle_mm_fault+0xa2e/0x2cc0
[ 1470.871882][T11581]  exc_page_fault+0x3ff/0x6c0
[ 1470.876607][T11581]  asm_exc_page_fault+0x26/0x30
[ 1470.881505][T11581] RIP: 0033:0x7f2c4aac6af4
[ 1470.885931][T11581] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1470.905551][T11581] RSP: 002b:00007ffcead55b10 EFLAGS: 00010283
[ 1470.911682][T11581] RAX: 0000000000000000 RBX: 00007f2c4ac2c050 RCX: 0000000000000000
[ 1470.919665][T11581] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1470.927642][T11581] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1470.935617][T11581] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016717e
[ 1470.943611][T11581] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000166e3d
[ 1470.951588][T11581]  </TASK>
[ 1470.954755][T11581] memory: usage 307200kB, limit 307200kB, failcnt 260560
[ 1470.961787][T11581] memory+swap: usage 308184kB, limit 9007199254740988kB, failcnt 0
[ 1470.969737][T11581] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1470.977055][T11581] Memory cgroup stats for /syz2:
[ 1470.977294][T11581] cache 4096
[ 1470.985511][T11581] rss 16384
[ 1470.988657][T11581] shmem 0
[ 1470.991585][T11581] mapped_file 0
[ 1470.995070][T11581] dirty 0
[ 1470.998007][T11581] writeback 16384
[ 1471.001631][T11581] workingset_refault_anon 55350
[ 1471.006529][T11581] workingset_refault_file 19
[ 1471.011129][T11581] swap 1007616
[ 1471.014493][T11581] pgpgin 199993
[ 1471.017989][T11581] pgpgout 199988
[ 1471.021541][T11581] pgfault 280725
[ 1471.025122][T11581] pgmajfault 20893
[ 1471.028866][T11581] inactive_anon 0
[ 1471.032494][T11581] active_anon 0
[ 1471.035984][T11581] inactive_file 0
[ 1471.039622][T11581] active_file 4096
[ 1471.043361][T11581] unevictable 0
[ 1471.046854][T11581] hierarchical_memory_limit 314572800
[ 1471.052228][T11581] hierarchical_memsw_limit 9223372036854771712
[ 1471.058403][T11581] total_cache 4096
[ 1471.062133][T11581] total_rss 16384
[ 1471.065852][T11581] total_shmem 0
[ 1471.069367][T11581] total_mapped_file 0
[ 1471.073349][T11581] total_dirty 0
[ 1471.076842][T11581] total_writeback 16384
[ 1471.081001][T11581] total_workingset_refault_anon 55350
[ 1471.086397][T11581] total_workingset_refault_file 19
[ 1471.091526][T11581] total_swap 1007616
[ 1471.095491][T11581] total_pgpgin 199993
[ 1471.099488][T11581] total_pgpgout 199988
[ 1471.103548][T11581] total_pgfault 280725
[ 1471.107656][T11581] total_pgmajfault 20893
[ 1471.111901][T11581] total_inactive_anon 0
[ 1471.116133][T11581] total_active_anon 0
[ 1471.120151][T11581] total_inactive_file 0
[ 1471.124296][T11581] total_active_file 4096
[ 1471.128631][T11581] total_unevictable 0
[ 1471.132611][T11581] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11581,uid=0
[ 1471.148082][T11581] Memory cgroup out of memory: Killed process 11581 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:14 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)
poll(&(0x7f0000000200)=[{r1, 0x4}, {r0, 0x9104}, {r0, 0x7200}], 0x3, 0x0)
r3 = dup(r0)
write$cgroup_pid(r3, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
fsetxattr$security_ima(r2, &(0x7f0000000240), &(0x7f0000000280)=@sha1={0x1, "dd3c0b64b4fd7ebe08ba91f25c23255aa9dfab21"}, 0x15, 0x3)
sendfile(r0, r3, &(0x7f0000000100), 0x6c03)
r4 = accept4$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14, 0x100800)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4, {0x4}}, './file0\x00'})
syslog(0x0, &(0x7f0000000000)=""/46, 0x4)

00:55:14 executing program 0:
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:14 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x4, 0x0)

00:55:14 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:14 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1e5}, 0x0)

00:55:14 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd1050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:14 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:14 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x5, 0x0)

[ 1471.390380][T11600] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:14 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

00:55:14 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x6, 0x0)

00:55:14 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:14 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:14 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0) (async)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03) (async)
poll(&(0x7f0000000200)=[{r1, 0x4}, {r0, 0x9104}, {r0, 0x7200}], 0x3, 0x0) (async)
r3 = dup(r0)
write$cgroup_pid(r3, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) (async)
fsetxattr$security_ima(r2, &(0x7f0000000240), &(0x7f0000000280)=@sha1={0x1, "dd3c0b64b4fd7ebe08ba91f25c23255aa9dfab21"}, 0x15, 0x3) (async)
sendfile(r0, r3, &(0x7f0000000100), 0x6c03) (async)
r4 = accept4$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14, 0x100800)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4, {0x4}}, './file0\x00'}) (async)
syslog(0x0, &(0x7f0000000000)=""/46, 0x4)

00:55:14 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

00:55:14 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x7, 0x0)

00:55:14 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1f3}, 0x0)

00:55:14 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1471.664129][T11631] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1472.162203][T11610] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1472.175780][T11610] CPU: 1 PID: 11610 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1472.186280][T11610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1472.196404][T11610] Call Trace:
[ 1472.199680][T11610]  <TASK>
[ 1472.202607][T11610]  dump_stack_lvl+0xda/0x130
[ 1472.207213][T11610]  dump_stack+0x15/0x20
[ 1472.211445][T11610]  dump_header+0x95/0x3c0
[ 1472.215780][T11610]  oom_kill_process+0xe3/0x3e0
[ 1472.220611][T11610]  out_of_memory+0x9ca/0xc00
[ 1472.225302][T11610]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1472.231398][T11610]  mem_cgroup_out_of_memory+0x139/0x190
[ 1472.237015][T11610]  try_charge_memcg+0x75c/0xd30
[ 1472.241941][T11610]  obj_cgroup_charge_pages+0xab/0x130
[ 1472.247330][T11610]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1472.252934][T11610]  __alloc_pages+0x1bb/0x340
[ 1472.257603][T11610]  alloc_pages+0x3e1/0x4e0
[ 1472.262138][T11610]  __vmalloc_node_range+0x6d2/0xea0
[ 1472.267370][T11610]  kvmalloc_node+0x121/0x160
[ 1472.272014][T11610]  ? xt_alloc_table_info+0x3d/0x80
[ 1472.277182][T11610]  xt_alloc_table_info+0x3d/0x80
[ 1472.282192][T11610]  do_arpt_set_ctl+0x634/0x13b0
[ 1472.287135][T11610]  ? futex_unqueue+0xba/0xe0
[ 1472.291897][T11610]  ? futex_wait+0x3c3/0x410
[ 1472.296541][T11610]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1472.301660][T11610]  ? lock_sock_nested+0x10e/0x130
[ 1472.306746][T11610]  ? tcp_release_cb+0xfe/0x340
[ 1472.311524][T11610]  nf_setsockopt+0x18d/0x1b0
[ 1472.316195][T11610]  ip_setsockopt+0xe6/0x100
[ 1472.320741][T11610]  tcp_setsockopt+0x90/0xa0
[ 1472.325262][T11610]  sock_common_setsockopt+0x61/0x70
[ 1472.330483][T11610]  ? sock_common_recvmsg+0xe0/0xe0
[ 1472.335594][T11610]  __sys_setsockopt+0x1d7/0x240
[ 1472.340523][T11610]  __x64_sys_setsockopt+0x66/0x80
[ 1472.345560][T11610]  do_syscall_64+0x41/0xc0
[ 1472.350092][T11610]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1472.355823][T11610]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1472.361769][T11610] RIP: 0033:0x7f2c4ab0cae9
[ 1472.366273][T11610] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1472.385914][T11610] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1472.394391][T11610] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1472.402368][T11610] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1472.410359][T11610] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1472.418346][T11610] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1472.426318][T11610] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1472.434308][T11610]  </TASK>
[ 1472.437524][T11610] memory: usage 307200kB, limit 307200kB, failcnt 260851
[ 1472.444621][T11610] memory+swap: usage 308268kB, limit 9007199254740988kB, failcnt 0
[ 1472.452582][T11610] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1472.459935][T11610] Memory cgroup stats for /syz2:
[ 1472.460135][T11610] cache 4096
[ 1472.468366][T11610] rss 8192
[ 1472.471451][T11610] shmem 0
[ 1472.474377][T11610] mapped_file 0
[ 1472.477930][T11610] dirty 0
[ 1472.480909][T11610] writeback 0
[ 1472.484270][T11610] workingset_refault_anon 55393
[ 1472.489186][T11610] workingset_refault_file 19
[ 1472.493780][T11610] swap 1093632
[ 1472.497200][T11610] pgpgin 200066
[ 1472.500791][T11610] pgpgout 200063
[ 1472.504372][T11610] pgfault 280880
[ 1472.508035][T11610] pgmajfault 20904
[ 1472.511775][T11610] inactive_anon 8192
[ 1472.515752][T11610] active_anon 0
[ 1472.519245][T11610] inactive_file 4096
[ 1472.523189][T11610] active_file 0
[ 1472.526701][T11610] unevictable 0
[ 1472.530266][T11610] hierarchical_memory_limit 314572800
[ 1472.535756][T11610] hierarchical_memsw_limit 9223372036854771712
[ 1472.541936][T11610] total_cache 4096
[ 1472.545776][T11610] total_rss 8192
[ 1472.549324][T11610] total_shmem 0
[ 1472.552782][T11610] total_mapped_file 0
[ 1472.556805][T11610] total_dirty 0
[ 1472.560270][T11610] total_writeback 0
[ 1472.564099][T11610] total_workingset_refault_anon 55393
[ 1472.569502][T11610] total_workingset_refault_file 19
[ 1472.574613][T11610] total_swap 1093632
[ 1472.578547][T11610] total_pgpgin 200066
[ 1472.582535][T11610] total_pgpgout 200063
[ 1472.586722][T11610] total_pgfault 280880
[ 1472.590796][T11610] total_pgmajfault 20904
[ 1472.595076][T11610] total_inactive_anon 8192
[ 1472.599548][T11610] total_active_anon 0
[ 1472.603518][T11610] total_inactive_file 4096
[ 1472.607967][T11610] total_active_file 0
[ 1472.612193][T11610] total_unevictable 0
[ 1472.616201][T11610] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11606,uid=0
[ 1472.631618][T11610] Memory cgroup out of memory: Killed process 11606 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:15 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd2050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:15 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

00:55:15 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:15 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x19, 0x0)

00:55:15 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0) (async, rerun: 64)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03) (rerun: 64)
poll(&(0x7f0000000200)=[{r1, 0x4}, {r0, 0x9104}, {r0, 0x7200}], 0x3, 0x0) (async, rerun: 32)
r3 = dup(r0) (rerun: 32)
write$cgroup_pid(r3, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
fsetxattr$security_ima(r2, &(0x7f0000000240), &(0x7f0000000280)=@sha1={0x1, "dd3c0b64b4fd7ebe08ba91f25c23255aa9dfab21"}, 0x15, 0x3)
sendfile(r0, r3, &(0x7f0000000100), 0x6c03) (async, rerun: 64)
r4 = accept4$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14, 0x100800) (rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4, {0x4}}, './file0\x00'}) (async)
syslog(0x0, &(0x7f0000000000)=""/46, 0x4)

00:55:15 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1f9}, 0x0)

00:55:15 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

00:55:15 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3c9rG9kdAPDvyFbqJE7t9AekgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoH1AopQ301FMvhf4BhZI/oRQCzb20ZZdlN9k97GF3Z5mRnDhCih3WtoL8+cDTvDfSzPc9yRq9N/MsBXBoJRFxKyIGIuJSRIy01hdaKTab6VxEvHj+cCZLSaTpnQ+TfNusvH1fmeOtzYaai47q6xuL09VqZbVVLjeWVsr19Y3LC0vT85X5yvLk5MS1qetTV6fG96SdWbtu/PT/f/jtX3524x8/vP+fu+9f/HVW3+HW/dvbsZeaz0kxey5eGoyI1f0I1gMDrfYUe10RAAB2JeuffiMivpf3/0diIO/N5XTpAAAAoE+kN4fjsyQiBQAAAPrWzXwObFIoteb7DkehUCo15/B+K44VqrV64wdztbXl2eZc2dEoFuYWqpXx1pza0SgmWXkiz78qX2krT0bEyYj4/cjRvFyaqVVne33yAwAAAA6J423j/09GmuN/AAAAoM+M9roCAAAAwL4z/gcAAID+Z/wPAAAAfe3nt29nKd36/evZe+tri7V7l2cr9cXS0tpMaaa2ulKar9Xm8+/sW9ppf9VabeVHsbz2oNyo1Bvl+vrG3aXa2nLj7sJrP4ENAAAAHKCT333y7NtnIjZ/fDRPmSPZzUCXDcwVgL5ReJsH/2//6gEcvG4f80D/G+x1BYCeKfa6AkDPJTvc33Xyzj/3vi4AAMD+GPvOk2dZ37/9+v+gcwPQ997q+j/QV1z/h8PL9X84vIp6AHDo7f/1/zTdcV8AAMC+Gs5TUii1rgUOR6FQKkWcyP/Vv5jMLVQr4xHx9Yj490jxa1l5It8y2XHMAAAAAAAAAAAAAAAAAAAAAAAAAAA0pWkSKQAAANDXIgrvJa3f/xobuTDcfn7gSPLpSL6MiPt/uvPHB9ONxupEtv6jl+sbj1vrr/TiDAYAAADQbmucvjWOBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC99OL5w5mtdJBxP/hJRIx2ij8YQ/lyKIoRcezjJAa3bZdExMAexN98FBGnOsVPsmrFaKsW7fELEXH0YOKfSdO0Y/zjexAfDrMn2fHnVqf3XyHO5cvO7//BVvqquh//Ci+PfwNdjn8ndhnj9NO/lbvGfxRxerDz8WcrftIl/vlOO+zwpPzqlxsb3eKnf44Y6/j5k7wWq9xYWinX1zcuLyxNz1fmK8uTkxPXpq5PXZ0aL88tVCut244xfnfm71+0rfo8bcrbH13ij+7Q/gtZptitZduCPX3w/JvNbLFtF3n8i+c7v/6n3hA/+5v4futzILt/bCu/2cxvd/av/zrbrW5Z/Nku7d/p9b+4c9Nzl37xm//u8qEAwAGor28sTlerldV9zzxO0/SgYsm8g5mhd6MaMrvL9PrIBAAA7LVXnf5e1wQAAAAAAAAAAAAAAAAAAAAOr4P4OrH2mJu9aSoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwBt9GQAA//+7dOGc")

00:55:15 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x51, 0x0)

00:55:15 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

[ 1472.874520][T11642] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:15 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x4, &(0x7f00000000c0)=""/72, 0x83)

00:55:15 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

[ 1473.588783][T11650] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1473.602347][T11650] CPU: 1 PID: 11650 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1473.612804][T11650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1473.622927][T11650] Call Trace:
[ 1473.626201][T11650]  <TASK>
[ 1473.629129][T11650]  dump_stack_lvl+0xda/0x130
[ 1473.633721][T11650]  dump_stack+0x15/0x20
[ 1473.637889][T11650]  dump_header+0x95/0x3c0
[ 1473.642291][T11650]  oom_kill_process+0xe3/0x3e0
[ 1473.647117][T11650]  out_of_memory+0x9ca/0xc00
[ 1473.651785][T11650]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1473.657862][T11650]  mem_cgroup_out_of_memory+0x139/0x190
[ 1473.663453][T11650]  try_charge_memcg+0x75c/0xd30
[ 1473.668376][T11650]  obj_cgroup_charge_pages+0xab/0x130
[ 1473.673820][T11650]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1473.679468][T11650]  __alloc_pages+0x1bb/0x340
[ 1473.684070][T11650]  alloc_pages+0x3e1/0x4e0
[ 1473.688501][T11650]  __vmalloc_node_range+0x6d2/0xea0
[ 1473.693737][T11650]  kvmalloc_node+0x121/0x160
[ 1473.698339][T11650]  ? xt_alloc_table_info+0x3d/0x80
[ 1473.703519][T11650]  xt_alloc_table_info+0x3d/0x80
[ 1473.708495][T11650]  do_arpt_set_ctl+0x634/0x13b0
[ 1473.713406][T11650]  ? futex_unqueue+0xba/0xe0
[ 1473.718010][T11650]  ? futex_wait+0x3c3/0x410
[ 1473.722597][T11650]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1473.727734][T11650]  ? lock_sock_nested+0x10e/0x130
[ 1473.732757][T11650]  ? tcp_release_cb+0xfe/0x340
[ 1473.737537][T11650]  nf_setsockopt+0x18d/0x1b0
[ 1473.742148][T11650]  ip_setsockopt+0xe6/0x100
[ 1473.746717][T11650]  tcp_setsockopt+0x90/0xa0
[ 1473.751245][T11650]  sock_common_setsockopt+0x61/0x70
[ 1473.756457][T11650]  ? sock_common_recvmsg+0xe0/0xe0
[ 1473.761586][T11650]  __sys_setsockopt+0x1d7/0x240
[ 1473.766463][T11650]  __x64_sys_setsockopt+0x66/0x80
[ 1473.771489][T11650]  do_syscall_64+0x41/0xc0
[ 1473.775968][T11650]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1473.781769][T11650]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1473.787672][T11650] RIP: 0033:0x7f2c4ab0cae9
[ 1473.792102][T11650] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1473.811824][T11650] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1473.820299][T11650] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1473.828295][T11650] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1473.836330][T11650] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1473.844401][T11650] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1473.852389][T11650] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1473.860379][T11650]  </TASK>
[ 1473.863597][T11650] memory: usage 307200kB, limit 307200kB, failcnt 261203
[ 1473.870733][T11650] memory+swap: usage 308236kB, limit 9007199254740988kB, failcnt 0
[ 1473.878753][T11650] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1473.886132][T11650] Memory cgroup stats for /syz2:
[ 1473.886312][T11650] cache 4096
[ 1473.894423][T11650] rss 8192
[ 1473.897589][T11650] shmem 0
[ 1473.900597][T11650] mapped_file 0
[ 1473.904067][T11650] dirty 0
[ 1473.907043][T11650] writeback 8192
[ 1473.910717][T11650] workingset_refault_anon 55444
[ 1473.915623][T11650] workingset_refault_file 19
[ 1473.920219][T11650] swap 1060864
[ 1473.923598][T11650] pgpgin 200147
[ 1473.927093][T11650] pgpgout 200144
[ 1473.930660][T11650] pgfault 281107
[ 1473.934299][T11650] pgmajfault 20927
[ 1473.938044][T11650] inactive_anon 0
[ 1473.941698][T11650] active_anon 0
[ 1473.945225][T11650] inactive_file 0
[ 1473.948893][T11650] active_file 4096
[ 1473.952609][T11650] unevictable 0
[ 1473.956095][T11650] hierarchical_memory_limit 314572800
[ 1473.961489][T11650] hierarchical_memsw_limit 9223372036854771712
[ 1473.967757][T11650] total_cache 4096
[ 1473.971495][T11650] total_rss 8192
[ 1473.975063][T11650] total_shmem 0
[ 1473.978603][T11650] total_mapped_file 0
[ 1473.982579][T11650] total_dirty 0
[ 1473.986118][T11650] total_writeback 8192
[ 1473.990192][T11650] total_workingset_refault_anon 55444
[ 1473.995592][T11650] total_workingset_refault_file 19
[ 1474.000722][T11650] total_swap 1060864
[ 1474.004605][T11650] total_pgpgin 200147
[ 1474.008626][T11650] total_pgpgout 200144
[ 1474.012689][T11650] total_pgfault 281107
[ 1474.016784][T11650] total_pgmajfault 20927
[ 1474.021021][T11650] total_inactive_anon 0
[ 1474.025207][T11650] total_active_anon 0
[ 1474.029200][T11650] total_inactive_file 0
[ 1474.033383][T11650] total_active_file 4096
[ 1474.037662][T11650] total_unevictable 0
[ 1474.041738][T11650] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11648,uid=0
[ 1474.057092][T11650] Memory cgroup out of memory: Killed process 11648 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:17 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:17 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x9f, 0x0)

00:55:17 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd3050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:17 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

00:55:17 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x201}, 0x0)

00:55:17 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async, rerun: 64)
syslog(0x4, &(0x7f00000000c0)=""/72, 0x83) (rerun: 64)

00:55:17 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

00:55:17 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2koUlDk+KENpIdN4npIUmh9BZoSe+psWVjLFvGkpPYhOLQD1AopQ301FMvhX6AQslHKIVAcy9t2WXZTXYPe9jdWWYkJ46QYoe1rSD/fvA07400839PskbvzTxLARxaSUTcioiBiLgUESOt9YVWis1mOhcRL54/nMlSEml658Mk3zYrb99X5nhrs6HmoqP6+sbidLVaWW2Vy42llXJ9fePywtL0fGW+sjw5OXFt6vrU1anxPWln1q4bP/3/H377l5/d+McP7//n7vsXf53Vd7h1//Z27KXmc1LMnouXBiNidT+C9cBAqz3FXlcEAIBdyfqn34iI7+X9/5EYyHtzOV06AAAA6BPpzeH4LIlIAQAAgL51M58DmxRKrfm+w1EolErNObzfimOFaq3e+MFcbW15tjlXdjSKhbmFamW8Nad2NIpJVp7I86/KV9rKkxFxMiJ+P3I0L5dmatXZXp/8AAAAgEPieNv4/5OR5vgfAAAA6DOjva4AAAAAsO+M/wEAAKD/Gf8DAABAX/v57dtZSrd+/3r23vraYu3e5dlKfbG0tDZTmqmtrpTma7X5/Dv7lnbaX7VWW/lRLK89KDcq9Ua5vr5xd6m2tty4u/DaT2ADAAAAB+jkd588+86ZiM0fH81T5kh2M9BlA3MFoG8U3ubB/9u/egAHr9vHPND/BntdAaBnir2uANBzyQ73d52888+9rwsAALA/xr795FnW92+//j/o3AD0vbe6/g/0Fdf/4fBy/R8Or6IeABx6+3/9P0133BcAALCvhvOUFEqta4HDUSiUShEn8n/1LyZzC9XKeER8PSL+PVL8WlaeyLdMdhwzAAAAAAAAAAAAAAAAAAAAAAAAAABNaZpECgAAAPS1iMJ7Sev3v8ZGLgy3nx84knw6ki8j4v6f7vzxwXSjsTqRrf/o5frG49b6K704gwEAAAC02xqnb43jAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAvvXj+cGYrHWTcD34SEaOd4g/GUL4cimJEHPs4icFt2yURMbAH8TcfRcSpTvGTrFox2qpFe/xCRBw9mPhn0jTtGP/4HsSHw+xJdvy51en9V4hz+bLz+3+wlb6q7se/wsvj30CX49+JXcY4/fRv5a7xH0WcHux8/NmKn3SJf77TDjs8Kb/65cZGt/jpnyPGOn7+JK/FKjeWVsr19Y3LC0vT85X5yvLk5MS1qetTV6fGy3ML1UrrtmOM3535+xdtqz5Pm/L2R5f4ozu0/0KWKXZr2bZgTx88/2YzW2zbRR7/4vnOr/+pN8TP/ia+3/ocyO4f28pvNvPbnf3rv852q1sWf7ZL+3d6/S/u3PTcpV/85r+7fCgAcADq6xuL09VqZXXfM4/TND2oWDLvYGbo3aiGzO4yvT4yAQAAe+1Vp7/XNQEAAAAAAAAAAAAAAAAAAIDD6yC+Tqw95mZvmgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8EZfBgAA///MwOGj")

00:55:17 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x4, &(0x7f00000000c0)=""/72, 0x83)

00:55:17 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

00:55:17 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xa9, 0x0)

[ 1474.291641][T11675] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:17 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x60000, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0x5})
ioctl$TCSETSF(r0, 0x5404, &(0x7f00000001c0)={0x5, 0x0, 0x7ff, 0x5, 0x17, "98013cbd39731576a1619894f0b249702ffa73"})
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>r0, @ANYBLOB="05000000050000002e2f66696c653000"])
r3 = openat$cgroup_ro(r0, &(0x7f0000000140)='io.stat\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3}, './file0\x00'})

00:55:17 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:17 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xaf, 0x0)

[ 1474.414955][   T27] audit: type=1400 audit(1696380917.301:332): avc:  denied  { read } for  pid=11692 comm="syz-executor.3" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[ 1474.438600][   T27] audit: type=1400 audit(1696380917.301:333): avc:  denied  { open } for  pid=11692 comm="syz-executor.3" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[ 1474.470503][   T27] audit: type=1400 audit(1696380917.361:334): avc:  denied  { ioctl } for  pid=11692 comm="syz-executor.3" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9373 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[ 1475.063359][T11684] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1475.074795][T11684] CPU: 1 PID: 11684 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1475.085294][T11684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1475.095350][T11684] Call Trace:
[ 1475.098650][T11684]  <TASK>
[ 1475.101605][T11684]  dump_stack_lvl+0xda/0x130
[ 1475.106208][T11684]  dump_stack+0x15/0x20
[ 1475.110361][T11684]  dump_header+0x95/0x3c0
[ 1475.114699][T11684]  oom_kill_process+0xe3/0x3e0
[ 1475.119491][T11684]  out_of_memory+0x9ca/0xc00
[ 1475.124241][T11684]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1475.130393][T11684]  mem_cgroup_out_of_memory+0x139/0x190
[ 1475.135972][T11684]  try_charge_memcg+0x75c/0xd30
[ 1475.140898][T11684]  ? __alloc_pages+0x193/0x340
[ 1475.145801][T11684]  charge_memcg+0x51/0x200
[ 1475.150268][T11684]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1475.156255][T11684]  __read_swap_cache_async+0x339/0x590
[ 1475.161716][T11684]  swap_cluster_readahead+0x29d/0x4e0
[ 1475.167095][T11684]  swapin_readahead+0x8d/0x710
[ 1475.171941][T11684]  ? __filemap_get_folio+0x42b/0x500
[ 1475.177237][T11684]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1475.182794][T11684]  ? swap_cache_get_folio+0x6e/0x200
[ 1475.188099][T11684]  do_swap_page+0x306/0x1780
[ 1475.192750][T11684]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1475.198054][T11684]  ? __rcu_read_lock+0x35/0x50
[ 1475.202840][T11684]  handle_mm_fault+0xa2e/0x2cc0
[ 1475.207694][T11684]  exc_page_fault+0x3ff/0x6c0
[ 1475.212390][T11684]  asm_exc_page_fault+0x26/0x30
[ 1475.217270][T11684] RIP: 0033:0x7f2c4aac6af4
[ 1475.221683][T11684] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1475.241290][T11684] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1475.247349][T11684] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1475.255327][T11684] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1475.263348][T11684] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1475.271338][T11684] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016827c
[ 1475.279331][T11684] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000167f3b
[ 1475.287379][T11684]  </TASK>
[ 1475.290585][T11684] memory: usage 307200kB, limit 307200kB, failcnt 261485
[ 1475.297640][T11684] memory+swap: usage 308144kB, limit 9007199254740988kB, failcnt 0
[ 1475.305557][T11684] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 1475.312978][T11684] Memory cgroup stats for /syz2:
[ 1475.313183][T11684] cache 4096
[ 1475.322385][T11684] rss 16384
[ 1475.325669][T11684] shmem 0
[ 1475.328726][T11684] mapped_file 0
[ 1475.332259][T11684] dirty 0
[ 1475.335346][T11684] writeback 8192
[ 1475.338902][T11684] workingset_refault_anon 55495
[ 1475.343763][T11684] workingset_refault_file 19
[ 1475.348456][T11684] swap 966656
[ 1475.351803][T11684] pgpgin 200228
[ 1475.355296][T11684] pgpgout 200222
[ 1475.358844][T11684] pgfault 281303
[ 1475.362408][T11684] pgmajfault 20944
[ 1475.366195][T11684] inactive_anon 4096
[ 1475.370148][T11684] active_anon 0
[ 1475.373639][T11684] inactive_file 4096
[ 1475.377601][T11684] active_file 0
[ 1475.381114][T11684] unevictable 0
[ 1475.384647][T11684] hierarchical_memory_limit 314572800
[ 1475.390071][T11684] hierarchical_memsw_limit 9223372036854771712
[ 1475.396300][T11684] total_cache 4096
[ 1475.400064][T11684] total_rss 16384
[ 1475.403775][T11684] total_shmem 0
[ 1475.407355][T11684] total_mapped_file 0
[ 1475.411376][T11684] total_dirty 0
[ 1475.414869][T11684] total_writeback 8192
[ 1475.419009][T11684] total_workingset_refault_anon 55495
[ 1475.424380][T11684] total_workingset_refault_file 19
[ 1475.429559][T11684] total_swap 966656
[ 1475.433371][T11684] total_pgpgin 200228
[ 1475.437375][T11684] total_pgpgout 200222
[ 1475.441596][T11684] total_pgfault 281303
[ 1475.445710][T11684] total_pgmajfault 20944
[ 1475.450012][T11684] total_inactive_anon 4096
[ 1475.454425][T11684] total_active_anon 0
[ 1475.458436][T11684] total_inactive_file 4096
[ 1475.462854][T11684] total_active_file 0
[ 1475.466868][T11684] total_unevictable 0
[ 1475.470845][T11684] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11684,uid=0
[ 1475.486187][T11684] Memory cgroup out of memory: Killed process 11684 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:18 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x212}, 0x0)

00:55:18 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [], {0x14}}, 0x28}}, 0x0)

00:55:18 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xd7, 0x0)

00:55:18 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd4050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:18 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:18 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x60000, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0x5})
ioctl$TCSETSF(r0, 0x5404, &(0x7f00000001c0)={0x5, 0x0, 0x7ff, 0x5, 0x17, "98013cbd39731576a1619894f0b249702ffa73"})
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="05000000050000002e2f66696c653000"]) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>r0, @ANYBLOB="05000000050000002e2f66696c653000"])
openat$cgroup_ro(r0, &(0x7f0000000140)='io.stat\x00', 0x0, 0x0) (async)
r3 = openat$cgroup_ro(r0, &(0x7f0000000140)='io.stat\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3}, './file0\x00'})

00:55:18 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xe9, 0x0)

00:55:18 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [], {0x14}}, 0x28}}, 0x0)

00:55:18 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQeigEWtJ7amzZGMuWseQkNqE49AMUSmkDPfXUS6EfoFDyEUoh0NxLW3ZZdpPdwx52d5YZyYkjpNhhbSvIvx88zXsjzfzfk6zRezPPUgCHVhIRtyJiICIuRcRIa32hlWKzmc5FxIvnD2eylESa3vkwybfNytv3lTne2myoueiovr6xOF2tVlZb5XJjaaVcX9+4vLA0PV+ZryxPTk5cm7o+dXVqfE/ambXrxk/+/4ff/uWnN/7xg/v/ufv+xV9n9R1u3b+9HXup+ZwUs+fipcGIWN2PYD0w0GpPsdcVAQBgV7L+6Tci4rt5/38kBvLeXE6XDgAAAPpEenM4PksiUgAAAKBv3cznwCaFUmu+73AUCqVScw7vt+JYoVqrN74/V1tbnm3OlR2NYmFuoVoZb82pHY1ikpUn8vyr8pW28mREnIyI348czculmVp1ttcnPwAAAOCQON42/v9kpDn+BwAAAPrMaK8rAAAAAOw7438AAADof8b/AAAA0Nd+fvt2ltKt37+evbe+tli7d3m2Ul8sLa3NlGZqqyul+VptPv/OvqWd9let1VZ+GMtrD8qNSr1Rrq9v3F2qrS037i689hPYAAAAwAE6+Z0nz352JmLzR0fzlDmS3Qx02cBcAegbhbd58P/2rx7Awev2MQ/0v8FeVwDomWKvKwD0XLLD/V0n7/xz7+sCAADsj7FvP3mW9f3br/8POjcAfe+trv8DfcX1fzi8XP+Hw6uoBwCH3v5f/0/THfcFAADsq+E8JYVS61rgcBQKpVLEifxf/YvJ3EK1Mh4RX4+If48Uv5aVJ/Itkx3HDAAAAAAAAAAAAAAAAAAAAAAAAABAU5omkQIAAAB9LaLwXtL6/a+xkQvD7ecHjiSfjuTLiLj/pzt/fDDdaKxOZOs/erm+8bi1/kovzmAAAAAA7bbG6VvjeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYSy+eP5zZSgcZ94MfR8Rop/iDMZQvh6IYEcc+TmJw23ZJRAzsQfzNRxFxqlP8JKtWjLZq0R6/EBFHDyb+mTRNO8Y/vgfx4TB7kh1/bnV6/xXiXL7s/P4fbKWvqvvxr/Dy+DfQ5fh3YpcxTj/9W7lr/EcRpwc7H3+24idd4p/vtMMOT8qvfrmx0S1++ueIsY6fP8lrscqNpZVyfX3j8sLS9HxlvrI8OTlxber61NWp8fLcQrXSuu0Y43dn/v5F26rP06a8/dEl/ugO7b+QZYrdWrYt2NMHz7/ZzBbbdpHHv3i+8+t/6g3xs7+J77U+B7L7x7bym838dmf/+q+z3eqWxZ/t0v6dXv+LOzc9d+kXv/nvLh8KAByA+vrG4nS1Wlnd98zjNE0PKpbMO5gZejeqIbO7TK+PTAAAwF571envdU0AAAAAAAAAAAAAAAAAAADg8DqIrxNrj7nZm6YCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALzRlwEAAP//9Urh0Q==")

00:55:18 executing program 3:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x60000, 0x0) (async)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x60000, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0x5})
ioctl$TCSETSF(r0, 0x5404, &(0x7f00000001c0)={0x5, 0x0, 0x7ff, 0x5, 0x17, "98013cbd39731576a1619894f0b249702ffa73"})
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>r0, @ANYBLOB="05000000050000002e2f66696c653000"])
r3 = openat$cgroup_ro(r0, &(0x7f0000000140)='io.stat\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3}, './file0\x00'})

[ 1475.753709][T11708] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:18 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x103, 0x0)

00:55:18 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:18 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x218}, 0x0)

[ 1475.930800][T11728] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1476.403984][T11710] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1476.415358][T11710] CPU: 1 PID: 11710 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1476.425792][T11710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1476.435863][T11710] Call Trace:
[ 1476.439184][T11710]  <TASK>
[ 1476.442116][T11710]  dump_stack_lvl+0xda/0x130
[ 1476.446746][T11710]  dump_stack+0x15/0x20
[ 1476.450897][T11710]  dump_header+0x95/0x3c0
[ 1476.455259][T11710]  oom_kill_process+0xe3/0x3e0
[ 1476.460047][T11710]  out_of_memory+0x9ca/0xc00
[ 1476.464672][T11710]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1476.470753][T11710]  mem_cgroup_out_of_memory+0x139/0x190
[ 1476.476314][T11710]  try_charge_memcg+0x75c/0xd30
[ 1476.481197][T11710]  ? __alloc_pages+0x193/0x340
[ 1476.486084][T11710]  charge_memcg+0x51/0x200
[ 1476.490524][T11710]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1476.496541][T11710]  __read_swap_cache_async+0x339/0x590
[ 1476.502003][T11710]  swap_cluster_readahead+0x29d/0x4e0
[ 1476.507489][T11710]  swapin_readahead+0x8d/0x710
[ 1476.512359][T11710]  ? __filemap_get_folio+0x42b/0x500
[ 1476.517769][T11710]  ? _raw_spin_unlock+0x26/0x40
[ 1476.522623][T11710]  ? finish_task_switch+0xac/0x280
[ 1476.527776][T11710]  ? swap_cache_get_folio+0x6e/0x200
[ 1476.533158][T11710]  do_swap_page+0x306/0x1780
[ 1476.537856][T11710]  ? __rcu_read_lock+0x35/0x50
[ 1476.542618][T11710]  handle_mm_fault+0xa2e/0x2cc0
[ 1476.547470][T11710]  exc_page_fault+0x3ff/0x6c0
[ 1476.552230][T11710]  asm_exc_page_fault+0x26/0x30
[ 1476.557097][T11710] RIP: 0033:0x7f2c4aac6af4
[ 1476.561539][T11710] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1476.581205][T11710] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1476.587269][T11710] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1476.595238][T11710] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1476.603329][T11710] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1476.611296][T11710] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000001687df
[ 1476.619278][T11710] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016849e
[ 1476.627265][T11710]  </TASK>
[ 1476.630491][T11710] memory: usage 307200kB, limit 307200kB, failcnt 261858
[ 1476.637542][T11710] memory+swap: usage 308188kB, limit 9007199254740988kB, failcnt 0
[ 1476.645494][T11710] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1476.652786][T11710] Memory cgroup stats for /syz2:
[ 1476.653022][T11710] cache 4096
[ 1476.661204][T11710] rss 8192
[ 1476.664214][T11710] shmem 0
[ 1476.667193][T11710] mapped_file 0
[ 1476.670654][T11710] dirty 0
[ 1476.673649][T11710] writeback 8192
[ 1476.677220][T11710] workingset_refault_anon 55554
[ 1476.682113][T11710] workingset_refault_file 19
[ 1476.686833][T11710] swap 999424
[ 1476.690225][T11710] pgpgin 200317
[ 1476.693693][T11710] pgpgout 200311
[ 1476.697257][T11710] pgfault 281510
[ 1476.700805][T11710] pgmajfault 20965
[ 1476.704599][T11710] inactive_anon 0
[ 1476.708317][T11710] active_anon 0
[ 1476.711788][T11710] inactive_file 0
[ 1476.715468][T11710] active_file 4096
[ 1476.719234][T11710] unevictable 0
[ 1476.722683][T11710] hierarchical_memory_limit 314572800
[ 1476.728147][T11710] hierarchical_memsw_limit 9223372036854771712
[ 1476.734325][T11710] total_cache 4096
[ 1476.738076][T11710] total_rss 8192
[ 1476.741625][T11710] total_shmem 0
[ 1476.745132][T11710] total_mapped_file 0
[ 1476.749154][T11710] total_dirty 0
[ 1476.752706][T11710] total_writeback 8192
[ 1476.756813][T11710] total_workingset_refault_anon 55554
[ 1476.762188][T11710] total_workingset_refault_file 19
[ 1476.767319][T11710] total_swap 999424
[ 1476.771127][T11710] total_pgpgin 200317
[ 1476.775150][T11710] total_pgpgout 200311
[ 1476.779216][T11710] total_pgfault 281510
[ 1476.783273][T11710] total_pgmajfault 20965
[ 1476.787644][T11710] total_inactive_anon 0
[ 1476.791802][T11710] total_active_anon 0
[ 1476.795882][T11710] total_inactive_file 0
[ 1476.800037][T11710] total_active_file 4096
[ 1476.804294][T11710] total_unevictable 0
[ 1476.808314][T11710] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11710,uid=0
[ 1476.823666][T11710] Memory cgroup out of memory: Killed process 11710 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:20 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [], {0x14}}, 0x28}}, 0x0)

00:55:20 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd5050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:20 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:20 executing program 3:
ioctl$SIOCX25GFACILITIES(0xffffffffffffffff, 0x89e2, &(0x7f0000000000))
syslog(0x2, &(0x7f0000001040)=""/46, 0x2e)
syslog(0x4, 0x0, 0x0)
syslog(0x4, &(0x7f0000000040)=""/4096, 0x1000)
syslog(0x9, &(0x7f0000001080)=""/191, 0xbf)

00:55:20 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x11d, 0x0)

00:55:20 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x225}, 0x0)

00:55:20 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:20 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)

00:55:20 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1a1, 0x0)

00:55:20 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x90}}, 0x0)

[ 1477.131029][T11738] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:20 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1b1, 0x0)

00:55:20 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:20 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1477.873787][T11741] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1477.885238][T11741] CPU: 1 PID: 11741 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1477.895673][T11741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1477.905798][T11741] Call Trace:
[ 1477.909086][T11741]  <TASK>
[ 1477.912012][T11741]  dump_stack_lvl+0xda/0x130
[ 1477.916603][T11741]  dump_stack+0x15/0x20
[ 1477.920758][T11741]  dump_header+0x95/0x3c0
[ 1477.925146][T11741]  oom_kill_process+0xe3/0x3e0
[ 1477.929979][T11741]  out_of_memory+0x9ca/0xc00
[ 1477.934581][T11741]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1477.940655][T11741]  mem_cgroup_out_of_memory+0x139/0x190
[ 1477.946260][T11741]  try_charge_memcg+0x75c/0xd30
[ 1477.951128][T11741]  ? __alloc_pages+0x193/0x340
[ 1477.955996][T11741]  charge_memcg+0x51/0x200
[ 1477.960420][T11741]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1477.966456][T11741]  __read_swap_cache_async+0x339/0x590
[ 1477.972041][T11741]  swap_cluster_readahead+0x29d/0x4e0
[ 1477.977419][T11741]  swapin_readahead+0x8d/0x710
[ 1477.982282][T11741]  ? __filemap_get_folio+0x42b/0x500
[ 1477.987585][T11741]  ? swap_cache_get_folio+0x6e/0x200
[ 1477.992910][T11741]  do_swap_page+0x306/0x1780
[ 1477.997504][T11741]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1478.002823][T11741]  ? __rcu_read_lock+0x35/0x50
[ 1478.007620][T11741]  handle_mm_fault+0xa2e/0x2cc0
[ 1478.012510][T11741]  exc_page_fault+0x3ff/0x6c0
[ 1478.017198][T11741]  asm_exc_page_fault+0x26/0x30
[ 1478.022083][T11741] RIP: 0033:0x7f2c4aac6af4
[ 1478.026501][T11741] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1478.046227][T11741] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1478.052310][T11741] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1478.060296][T11741] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1478.068270][T11741] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1478.076256][T11741] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000168d66
[ 1478.084280][T11741] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000168a25
[ 1478.092254][T11741]  </TASK>
[ 1478.095591][T11741] memory: usage 307200kB, limit 307200kB, failcnt 262469
[ 1478.102798][T11741] memory+swap: usage 308152kB, limit 9007199254740988kB, failcnt 0
[ 1478.110747][T11741] kmem: usage 307160kB, limit 9007199254740988kB, failcnt 0
[ 1478.118181][T11741] Memory cgroup stats for /syz2:
[ 1478.118318][T11741] cache 4096
[ 1478.126451][T11741] rss 8192
[ 1478.129476][T11741] shmem 0
[ 1478.132410][T11741] mapped_file 0
[ 1478.135926][T11741] dirty 0
[ 1478.138866][T11741] writeback 8192
[ 1478.142409][T11741] workingset_refault_anon 55595
[ 1478.147284][T11741] workingset_refault_file 19
[ 1478.151878][T11741] swap 974848
[ 1478.155221][T11741] pgpgin 200388
[ 1478.158679][T11741] pgpgout 200378
[ 1478.162219][T11741] pgfault 281680
[ 1478.165811][T11741] pgmajfault 20979
[ 1478.169533][T11741] inactive_anon 0
[ 1478.173257][T11741] active_anon 0
[ 1478.176759][T11741] inactive_file 0
[ 1478.180488][T11741] active_file 4096
[ 1478.184201][T11741] unevictable 0
[ 1478.187681][T11741] hierarchical_memory_limit 314572800
[ 1478.193101][T11741] hierarchical_memsw_limit 9223372036854771712
[ 1478.199277][T11741] total_cache 4096
[ 1478.202995][T11741] total_rss 8192
[ 1478.206608][T11741] total_shmem 0
[ 1478.210136][T11741] total_mapped_file 0
[ 1478.214122][T11741] total_dirty 0
[ 1478.217609][T11741] total_writeback 8192
[ 1478.221699][T11741] total_workingset_refault_anon 55595
[ 1478.227090][T11741] total_workingset_refault_file 19
[ 1478.232203][T11741] total_swap 974848
[ 1478.236123][T11741] total_pgpgin 200388
[ 1478.240168][T11741] total_pgpgout 200378
[ 1478.244224][T11741] total_pgfault 281680
[ 1478.248347][T11741] total_pgmajfault 20979
[ 1478.252642][T11741] total_inactive_anon 0
[ 1478.256858][T11741] total_active_anon 0
[ 1478.260842][T11741] total_inactive_file 0
[ 1478.265039][T11741] total_active_file 4096
[ 1478.269334][T11741] total_unevictable 0
[ 1478.273302][T11741] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11741,uid=0
[ 1478.288620][T11741] Memory cgroup out of memory: Killed process 11741 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:21 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1c9, 0x0)

00:55:21 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}]}], {0x14}}, 0x84}}, 0x0)

00:55:21 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:21 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x229}, 0x0)

00:55:21 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd6050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:21 executing program 3:
ioctl$SIOCX25GFACILITIES(0xffffffffffffffff, 0x89e2, &(0x7f0000000000))
syslog(0x2, &(0x7f0000001040)=""/46, 0x2e)
syslog(0x4, 0x0, 0x0) (async)
syslog(0x4, 0x0, 0x0)
syslog(0x4, &(0x7f0000000040)=""/4096, 0x1000)
syslog(0x9, &(0x7f0000001080)=""/191, 0xbf)

00:55:21 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x204, 0x0)

00:55:21 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x14}], {0x14}}, 0x3c}}, 0x0)

[ 1478.550335][T11765] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:21 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd5050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:21 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:21 executing program 3:
ioctl$SIOCX25GFACILITIES(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)) (async)
syslog(0x2, &(0x7f0000001040)=""/46, 0x2e)
syslog(0x4, 0x0, 0x0) (async)
syslog(0x4, &(0x7f0000000040)=""/4096, 0x1000) (async)
syslog(0x9, &(0x7f0000001080)=""/191, 0xbf)

00:55:21 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:21 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x219, 0x0)

00:55:21 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:21 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:21 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x23e}, 0x0)

[ 1478.841112][T11796] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:22 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd7050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:22 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x239, 0x0)

00:55:22 executing program 3:
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000080)={'syztnl1\x00', <r0=>0x0, 0x29, 0x7f, 0x4, 0x6, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, 0x3859, 0x8000, 0x0, 0x8}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)=@newlink={0x108, 0x10, 0x4, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r0, 0x4000}, [@IFLA_PROMISCUITY={0x8, 0x1e, 0x9f62}, @IFLA_PHYS_PORT_ID={0x16, 0x22, "42254929d23037ae4126f815d15c47bc844f"}, @IFLA_AF_SPEC={0xc8, 0x1a, 0x0, 0x1, [@AF_INET={0x40, 0x2, 0x0, 0x1, {0x3c, 0x1, 0x0, 0x1, [{0x8, 0x13, 0x0, 0x0, 0x100}, {0x8, 0x18, 0x0, 0x0, 0x264db834}, {0x8, 0x1c}, {0x8, 0x6, 0x0, 0x0, 0xf4a3}, {0x8, 0xa, 0x0, 0x0, 0x6}, {0x8, 0x17, 0x0, 0x0, 0x8}, {0x8, 0x16, 0x0, 0x0, 0x8}]}}, @AF_INET6={0x34, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @IFLA_INET6_TOKEN={0x14, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0xf4}]}, @AF_INET6={0x50, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast1}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast1}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x7}]}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x2000c005}, 0x0)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:22 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:22 executing program 0:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x4, &(0x7f00000000c0)=""/72, 0x83)

00:55:22 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x25d}, 0x0)

00:55:22 executing program 3:
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000080)={'syztnl1\x00', <r0=>0x0, 0x29, 0x7f, 0x4, 0x6, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, 0x3859, 0x8000, 0x0, 0x8}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)=@newlink={0x108, 0x10, 0x4, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r0, 0x4000}, [@IFLA_PROMISCUITY={0x8, 0x1e, 0x9f62}, @IFLA_PHYS_PORT_ID={0x16, 0x22, "42254929d23037ae4126f815d15c47bc844f"}, @IFLA_AF_SPEC={0xc8, 0x1a, 0x0, 0x1, [@AF_INET={0x40, 0x2, 0x0, 0x1, {0x3c, 0x1, 0x0, 0x1, [{0x8, 0x13, 0x0, 0x0, 0x100}, {0x8, 0x18, 0x0, 0x0, 0x264db834}, {0x8, 0x1c}, {0x8, 0x6, 0x0, 0x0, 0xf4a3}, {0x8, 0xa, 0x0, 0x0, 0x6}, {0x8, 0x17, 0x0, 0x0, 0x8}, {0x8, 0x16, 0x0, 0x0, 0x8}]}}, @AF_INET6={0x34, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @IFLA_INET6_TOKEN={0x14, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0xf4}]}, @AF_INET6={0x50, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast1}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast1}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x7}]}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x2000c005}, 0x0) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:22 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x241, 0x0)

00:55:22 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:22 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x25d, 0x0)

00:55:22 executing program 3:
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000080)={'syztnl1\x00', <r0=>0x0, 0x29, 0x7f, 0x4, 0x6, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, 0x3859, 0x8000, 0x0, 0x8}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)=@newlink={0x108, 0x10, 0x4, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, r0, 0x4000}, [@IFLA_PROMISCUITY={0x8, 0x1e, 0x9f62}, @IFLA_PHYS_PORT_ID={0x16, 0x22, "42254929d23037ae4126f815d15c47bc844f"}, @IFLA_AF_SPEC={0xc8, 0x1a, 0x0, 0x1, [@AF_INET={0x40, 0x2, 0x0, 0x1, {0x3c, 0x1, 0x0, 0x1, [{0x8, 0x13, 0x0, 0x0, 0x100}, {0x8, 0x18, 0x0, 0x0, 0x264db834}, {0x8, 0x1c}, {0x8, 0x6, 0x0, 0x0, 0xf4a3}, {0x8, 0xa, 0x0, 0x0, 0x6}, {0x8, 0x17, 0x0, 0x0, 0x8}, {0x8, 0x16, 0x0, 0x0, 0x8}]}}, @AF_INET6={0x34, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @IFLA_INET6_TOKEN={0x14, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0xf4}]}, @AF_INET6={0x50, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast1}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast1}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x7}]}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x2000c005}, 0x0) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:22 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1479.755588][T11815] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1479.858415][T11824] loop5: detected capacity change from 0 to 512
[ 1479.869162][T11824] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1479.877424][T11824] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1480.329656][T11808] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1480.343244][T11808] CPU: 1 PID: 11808 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1480.353752][T11808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1480.363924][T11808] Call Trace:
[ 1480.367220][T11808]  <TASK>
[ 1480.370164][T11808]  dump_stack_lvl+0xda/0x130
[ 1480.374823][T11808]  dump_stack+0x15/0x20
[ 1480.379005][T11808]  dump_header+0x95/0x3c0
[ 1480.383371][T11808]  oom_kill_process+0xe3/0x3e0
[ 1480.388155][T11808]  out_of_memory+0x9ca/0xc00
[ 1480.392804][T11808]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1480.398930][T11808]  mem_cgroup_out_of_memory+0x139/0x190
[ 1480.404508][T11808]  try_charge_memcg+0x75c/0xd30
[ 1480.409399][T11808]  obj_cgroup_charge_pages+0xab/0x130
[ 1480.414806][T11808]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1480.420699][T11808]  __alloc_pages+0x1bb/0x340
[ 1480.425357][T11808]  alloc_pages+0x3e1/0x4e0
[ 1480.429839][T11808]  __vmalloc_node_range+0x6d2/0xea0
[ 1480.435174][T11808]  kvmalloc_node+0x121/0x160
[ 1480.439790][T11808]  ? xt_alloc_table_info+0x3d/0x80
[ 1480.444934][T11808]  xt_alloc_table_info+0x3d/0x80
[ 1480.449901][T11808]  do_arpt_set_ctl+0x634/0x13b0
[ 1480.454782][T11808]  ? futex_unqueue+0xba/0xe0
[ 1480.459411][T11808]  ? futex_wait+0x3c3/0x410
[ 1480.463940][T11808]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1480.469144][T11808]  ? lock_sock_nested+0x10e/0x130
[ 1480.474205][T11808]  ? tcp_release_cb+0xfe/0x340
[ 1480.479039][T11808]  nf_setsockopt+0x18d/0x1b0
[ 1480.483658][T11808]  ip_setsockopt+0xe6/0x100
[ 1480.488246][T11808]  tcp_setsockopt+0x90/0xa0
[ 1480.492892][T11808]  sock_common_setsockopt+0x61/0x70
[ 1480.498111][T11808]  ? sock_common_recvmsg+0xe0/0xe0
[ 1480.503327][T11808]  __sys_setsockopt+0x1d7/0x240
[ 1480.508260][T11808]  __x64_sys_setsockopt+0x66/0x80
[ 1480.513293][T11808]  do_syscall_64+0x41/0xc0
[ 1480.517713][T11808]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1480.523626][T11808] RIP: 0033:0x7f2c4ab0cae9
[ 1480.528099][T11808] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1480.547721][T11808] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1480.556131][T11808] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1480.564100][T11808] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1480.572070][T11808] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1480.580059][T11808] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1480.588076][T11808] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1480.596055][T11808]  </TASK>
[ 1480.599274][T11808] memory: usage 307200kB, limit 307200kB, failcnt 262698
[ 1480.606755][T11808] memory+swap: usage 308180kB, limit 9007199254740988kB, failcnt 0
[ 1480.614708][T11808] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 1480.621999][T11808] Memory cgroup stats for /syz2:
[ 1480.622166][T11808] cache 4096
[ 1480.630387][T11808] rss 8192
[ 1480.633403][T11808] shmem 0
[ 1480.636454][T11808] mapped_file 0
[ 1480.639925][T11808] dirty 0
[ 1480.642928][T11808] writeback 8192
[ 1480.646555][T11808] workingset_refault_anon 55678
[ 1480.651467][T11808] workingset_refault_file 19
[ 1480.656127][T11808] swap 1003520
[ 1480.659596][T11808] pgpgin 200532
[ 1480.663081][T11808] pgpgout 200528
[ 1480.666749][T11808] pgfault 281960
[ 1480.670369][T11808] pgmajfault 21017
[ 1480.674154][T11808] inactive_anon 0
[ 1480.677865][T11808] active_anon 0
[ 1480.681332][T11808] inactive_file 0
[ 1480.685026][T11808] active_file 4096
[ 1480.688784][T11808] unevictable 0
[ 1480.692300][T11808] hierarchical_memory_limit 314572800
[ 1480.697716][T11808] hierarchical_memsw_limit 9223372036854771712
[ 1480.703909][T11808] total_cache 4096
[ 1480.707719][T11808] total_rss 8192
[ 1480.711394][T11808] total_shmem 0
[ 1480.714916][T11808] total_mapped_file 0
[ 1480.718942][T11808] total_dirty 0
[ 1480.722456][T11808] total_writeback 8192
[ 1480.726569][T11808] total_workingset_refault_anon 55678
[ 1480.731956][T11808] total_workingset_refault_file 19
[ 1480.737183][T11808] total_swap 1003520
[ 1480.741096][T11808] total_pgpgin 200532
[ 1480.745199][T11808] total_pgpgout 200528
[ 1480.749329][T11808] total_pgfault 281960
[ 1480.753414][T11808] total_pgmajfault 21017
[ 1480.757724][T11808] total_inactive_anon 0
[ 1480.761909][T11808] total_active_anon 0
[ 1480.765988][T11808] total_inactive_file 0
[ 1480.770194][T11808] total_active_file 4096
[ 1480.774469][T11808] total_unevictable 0
[ 1480.778504][T11808] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11807,uid=0
[ 1480.793983][T11808] Memory cgroup out of memory: Killed process 11807 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:23 executing program 3:
rseq(&(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x6, 0x7360, 0x7, 0x6}, 0x7}, 0x20, 0x1, 0x0)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0xa, 0x0, 0x0)
syslog(0x2, &(0x7f00000001c0)=""/51, 0x33)
syslog(0x3, &(0x7f0000000140)=""/88, 0x58)
rseq(&(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x1, 0xfffffffffffffffc, 0x200, 0x4}, 0x2}, 0x20, 0x1, 0x0)
syslog(0x3, &(0x7f0000000200)=""/216, 0xd8)

00:55:23 executing program 0:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:23 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x261, 0x0)

00:55:23 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x292}, 0x0)

00:55:23 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrHFEdAPD/bLI1bVOTqodaaC22khbtbtLYNnhoK4i3glLvNSSbELLJhuymbUKRFD+AIKIFT568CH4AQfoRRCjoXVQU0VYPHtSRmZ206brbpJhky+b3g9d5b3Zn/u/tdmfnzXvZCeDYSiLiXkQMRcS1iBgr1peKFNvtdCkiXr96OpelJNL0wV+TfNusvHtfmdPFZiPtRVfNza3l2Xq9tl6Uq62VtWpzc+v60srsYm2xtjo9PXVr5vbMzZnJA2ln1q47X/vjD7/306/f+eWXHv/u4Z+vfier72jx+O52HKT2a1LOXos3hiNi/TCC9cFQ0Z5yvysCAMC+ZOenn4qIz+fn/2MxlJ/N5ZzSAQAAwIBI747Gv5KIFAAAABhYd/M5sEmpUsz3HY1SqVJpz+H9TJwq1RvN1hcXGhur8+25suNRLi0s1WuTxZza8SgnWXkqz78t3+goT0fE2Yj4wdjJvFyZa9Tn+33xAwAAAI6J0x39/3+Mtfv/AAAAwIAZ73cFAAAAgEOn/w8AAACDT/8fAAAABto37t/PUrpz/+v5R5sby41H1+drzeXKysZcZa6xvlZZbDQW89/sW9lrf/VGY+3LsbrxpNqqNVvV5ubWw5XGxmrr4dI7t8AGAAAAjtDZz734bRIR2185madMVo6hHhuYKwADo/QhT/7D4dUDOHq9vuaBwTfc7woAfVPudwWAvkv2eLzn5J1fHXxdAACAwzHx2f8d/z9RXBd0bQAG2weN/wMDxfg/HF/G/+H4KjsDgGPv8Mf/03TPfQEAAIdqNE9JqVKMBY5GqVSpRJzJ/9S/nCws1WuTEfHJiPjNWPkTWXkq3zLZs88AAAAAAAAAAAAAAAAAAAAAAAAAALSlaRIpAAAAMNAiSn9Kivt/TYxdGe28PnAi+edYvoyIxz9+8KMns63W+lS2/m9v1reeF+tv9OMKBgAAANBpp5++048HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIP0+tXTuZ10lHH/8tWIGO8WfzhG8uVIlCPi1N+TGN61XRIRQwcQf/tZRJzrFj/JqhXjRS0645ci4uTRxL+QpmnX+KcPID4cZy+y48+9bp+/UlzKl90//8NF+n/1Pv6V3hz/hnoc/87sM8b5lz+v9oz/LOL8cPfjz078pEf8y9122OVF+fa3trZ6xU9/EjHR9fsneSdWtbWyVm1ubl1fWpldrC3WVqenp27N3J65OTNZXViq14p/u8b4/oVf/Kdj1b/Ttrz90SP++B7tv5Jlyr1ativYyyevPt3Oljt2kce/ern7+3/uPfGz/xNfKL4HsscndvLb7fxuF3/264u96pbFn+/R/r3e/6t7Nz137Zvf/f0+nwoAHIHm5tbybL1eWz/0zPM0TY8qlsxHmBn5OKohs79Mv49MAADAQXt70t/vmgAAAAAAAAAAAAAAAAAAAMDxdRQ/J9YZc7s/TQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeK//BgAA//8R4uFm")

00:55:23 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd8050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:24 executing program 3:
rseq(&(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x6, 0x7360, 0x7, 0x6}, 0x7}, 0x20, 0x1, 0x0)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0xa, 0x0, 0x0)
syslog(0x2, &(0x7f00000001c0)=""/51, 0x33) (async)
syslog(0x3, &(0x7f0000000140)=""/88, 0x58) (async)
rseq(&(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x1, 0xfffffffffffffffc, 0x200, 0x4}, 0x2}, 0x20, 0x1, 0x0)
syslog(0x3, &(0x7f0000000200)=""/216, 0xd8)

00:55:24 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:24 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x28b, 0x0)

[ 1481.061845][T11830] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1481.068058][T11832] loop5: detected capacity change from 0 to 512
[ 1481.079578][T11832] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1481.087798][T11832] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:24 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:24 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2a5, 0x0)

00:55:24 executing program 3:
rseq(&(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x6, 0x7360, 0x7, 0x6}, 0x7}, 0x20, 0x1, 0x0) (async)
rseq(&(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x6, 0x7360, 0x7, 0x6}, 0x7}, 0x20, 0x1, 0x0)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0xa, 0x0, 0x0)
syslog(0x2, &(0x7f00000001c0)=""/51, 0x33)
syslog(0x3, &(0x7f0000000140)=""/88, 0x58) (async)
syslog(0x3, &(0x7f0000000140)=""/88, 0x58)
rseq(&(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x1, 0xfffffffffffffffc, 0x200, 0x4}, 0x2}, 0x20, 0x1, 0x0)
syslog(0x3, &(0x7f0000000200)=""/216, 0xd8)

00:55:24 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:24 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2c9, 0x0)

[ 1481.173257][T11850] loop5: detected capacity change from 0 to 512
00:55:24 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:24 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x2ef}, 0x0)

00:55:24 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2d5, 0x0)

[ 1481.220639][T11850] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1481.228961][T11850] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1481.314610][T11867] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1481.868129][T11841] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1481.881902][T11841] CPU: 1 PID: 11841 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1481.892319][T11841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1481.902369][T11841] Call Trace:
[ 1481.905718][T11841]  <TASK>
[ 1481.908659][T11841]  dump_stack_lvl+0xda/0x130
[ 1481.913326][T11841]  dump_stack+0x15/0x20
[ 1481.917538][T11841]  dump_header+0x95/0x3c0
[ 1481.921936][T11841]  oom_kill_process+0xe3/0x3e0
[ 1481.926724][T11841]  out_of_memory+0x9ca/0xc00
[ 1481.931335][T11841]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1481.937456][T11841]  mem_cgroup_out_of_memory+0x139/0x190
[ 1481.943128][T11841]  try_charge_memcg+0x75c/0xd30
[ 1481.948052][T11841]  obj_cgroup_charge_pages+0xab/0x130
[ 1481.953444][T11841]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1481.959009][T11841]  __alloc_pages+0x1bb/0x340
[ 1481.963676][T11841]  alloc_pages+0x3e1/0x4e0
[ 1481.968104][T11841]  __vmalloc_node_range+0x6d2/0xea0
[ 1481.973373][T11841]  kvmalloc_node+0x121/0x160
[ 1481.977976][T11841]  ? xt_alloc_table_info+0x3d/0x80
[ 1481.983098][T11841]  xt_alloc_table_info+0x3d/0x80
[ 1481.988044][T11841]  do_arpt_set_ctl+0x634/0x13b0
[ 1481.992982][T11841]  ? futex_unqueue+0xba/0xe0
[ 1481.997629][T11841]  ? futex_wait+0x3c3/0x410
[ 1482.002183][T11841]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1482.007325][T11841]  ? lock_sock_nested+0x10e/0x130
[ 1482.012412][T11841]  ? tcp_release_cb+0xfe/0x340
[ 1482.017190][T11841]  nf_setsockopt+0x18d/0x1b0
[ 1482.021827][T11841]  ip_setsockopt+0xe6/0x100
[ 1482.026411][T11841]  tcp_setsockopt+0x90/0xa0
[ 1482.030962][T11841]  sock_common_setsockopt+0x61/0x70
[ 1482.036165][T11841]  ? sock_common_recvmsg+0xe0/0xe0
[ 1482.041277][T11841]  __sys_setsockopt+0x1d7/0x240
[ 1482.046221][T11841]  __x64_sys_setsockopt+0x66/0x80
[ 1482.051267][T11841]  do_syscall_64+0x41/0xc0
[ 1482.055701][T11841]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1482.061436][T11841]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1482.067338][T11841] RIP: 0033:0x7f2c4ab0cae9
[ 1482.071750][T11841] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1482.091404][T11841] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1482.099870][T11841] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1482.107856][T11841] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1482.115845][T11841] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1482.123817][T11841] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1482.131787][T11841] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1482.139763][T11841]  </TASK>
[ 1482.142965][T11841] memory: usage 307200kB, limit 307200kB, failcnt 263357
[ 1482.150057][T11841] memory+swap: usage 308232kB, limit 9007199254740988kB, failcnt 0
[ 1482.158073][T11841] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1482.165468][T11841] Memory cgroup stats for /syz2:
[ 1482.165675][T11841] cache 8192
[ 1482.173885][T11841] rss 8192
[ 1482.177035][T11841] shmem 0
[ 1482.179982][T11841] mapped_file 0
[ 1482.183480][T11841] dirty 0
[ 1482.186506][T11841] writeback 8192
[ 1482.190053][T11841] workingset_refault_anon 55790
[ 1482.194976][T11841] workingset_refault_file 20
[ 1482.199574][T11841] swap 1056768
[ 1482.202989][T11841] pgpgin 200675
[ 1482.206518][T11841] pgpgout 200670
[ 1482.210098][T11841] pgfault 282196
[ 1482.213648][T11841] pgmajfault 21047
[ 1482.217498][T11841] inactive_anon 4096
[ 1482.221440][T11841] active_anon 8192
[ 1482.225276][T11841] inactive_file 8192
[ 1482.229233][T11841] active_file 0
[ 1482.232717][T11841] unevictable 0
[ 1482.236222][T11841] hierarchical_memory_limit 314572800
[ 1482.241597][T11841] hierarchical_memsw_limit 9223372036854771712
[ 1482.247925][T11841] total_cache 8192
[ 1482.251738][T11841] total_rss 8192
[ 1482.255336][T11841] total_shmem 0
[ 1482.258823][T11841] total_mapped_file 0
[ 1482.262824][T11841] total_dirty 0
[ 1482.266334][T11841] total_writeback 8192
[ 1482.270450][T11841] total_workingset_refault_anon 55790
[ 1482.275867][T11841] total_workingset_refault_file 20
[ 1482.280980][T11841] total_swap 1056768
[ 1482.284955][T11841] total_pgpgin 200675
[ 1482.288950][T11841] total_pgpgout 200670
[ 1482.293073][T11841] total_pgfault 282196
[ 1482.297178][T11841] total_pgmajfault 21047
[ 1482.301544][T11841] total_inactive_anon 4096
[ 1482.306045][T11841] total_active_anon 8192
[ 1482.310292][T11841] total_inactive_file 8192
[ 1482.314790][T11841] total_active_file 0
[ 1482.318812][T11841] total_unevictable 0
[ 1482.322829][T11841] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11837,uid=0
[ 1482.338376][T11841] Memory cgroup out of memory: Killed process 11837 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:25 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2e5, 0x0)

00:55:25 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3dFrW18dAPDvTZvfr9s626kPc7A53KQbuqRd3VZ82CaIbwNlvs/SpqU0bUqTbmsZ0uEfIIjowCeffBH8AwTZnyDCQN9FRRHd9MEH9cq9ud26mKwdv7YZ6ecDJ/ecm9z7PSdpbu655zQJ4NhKIuJuRAxFxNWIGCvWl4oU2+10MSJevXwyl6Uk0vT+35J826y8e1+ZU8VmI+1FV83NreXZer22XpSrrZW1anNz69rSyuxibbG2Oj09dXPm1syNmckDaWfWrttf/9OPvv+zb9z+1Zcf/f7BX658N6vvaHH/7nYcpPZzUs6ei9eGI2L9MIL1wVDRnnK/KwIAwL5k56efjogv5Of/YzGUn83lnNIBAADAgEjvjMa/k4gUAAAAGFh38jmwSalSzPcdjVKpUmnP4f1snCzVG83WlxYaG6vz7bmy41EuLSzVa5PFnNrxKCdZeSrPvylf7yhPR8SZiPjh2Im8XJlr1Of7ffEDAAAAjolTHf3/f461+/8AAADAgBnvdwUAAACAQ6f/DwAAAINP/x8AAAAG2jfv3ctSuvP71/MPNzeWGw+vzdeay5WVjbnKXGN9rbLYaCzm39m3stf+6o3G2ldideNxtVVrtqrNza0HK42N1daDpbd+AhsAAAA4Qmc+//x3SURsf/VEnjIfZzdDPTYwVwAGRul9HvzHw6sHcPR6fcwDg2+43xUA+qbc7woAfZfscX/PyTu/Pvi6AAAAh2Pic/8//v9RcV3QtQEYbO81/g8MFOP/cHwZ/4fjq+wMAI69wx//T9M99wUAAByq0TwlpUoxFjgapVKlEnE6/1f/crKwVK9NRsSnIuK3Y+WPs/JUvmWyZ58BAAAAAAAAAAAAAAAAAAAAAAAAAGhL0yRSAAAAYKBFlP6cFL//NTF2ebTz+sBHyb/G8mVEPPrJ/R8/nm211qey9X9/vb71rFh/vR9XMAAAAIBOO/30nX48AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABykVy+fzO2ko4z7169FxHi3+MMxki9HohwRJ/+RxPCu7ZKIGDqA+NtPI+Jst/hJVq0YL2rRGb8UESeOJv75NE27xj91APHhOHueHX/udnv/leJivuz+/h8u0ifV+/hXen38G+px/Du9zxjnXvyi2jP+04hzw92PPzvxkx7xL3XbYZcn5Tvf3trqFT/9acRE18+f5K1Y1dbKWrW5uXVtaWV2sbZYW52enro5c2vmxsxkdWGpXituu8b4wflf/rdj1X/Strz90SP++B7tv5xlyr1ativYi8cvP9POljt2kce/cqn763/2HfGzv4kvFp8D2f0TO/ntdn63Cz//zYVedcviz/do/16v/5W9m567+q3v/WGfDwUAjkBzc2t5tl6vrR965lmapkcVS+YDzIx8GNWQ2V+m30cmAADgoL056e93TQAAAAAAAAAAAAAAAAAAAOD4OoqvE+uMud2fpgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvNP/AgAA//+yluFs")

00:55:25 executing program 0:
syslog(0x0, &(0x7f0000000000)=""/46, 0x2e)

00:55:25 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xd9050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:25 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x2f5}, 0x0)

00:55:25 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/38, 0x26)
syslog(0x3, &(0x7f0000000040)=""/16, 0x10)

00:55:25 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/38, 0x26)
syslog(0x3, &(0x7f0000000040)=""/16, 0x10)
syslog(0x0, &(0x7f0000000000)=""/38, 0x26) (async)
syslog(0x3, &(0x7f0000000040)=""/16, 0x10) (async)

00:55:25 executing program 0:
syslog(0x0, &(0x7f0000000000)=""/46, 0x2e)

00:55:25 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2e9, 0x0)

[ 1482.577043][T11872] loop5: detected capacity change from 0 to 512
[ 1482.591570][T11872] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1482.599815][T11872] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:25 executing program 0:
syslog(0x0, &(0x7f0000000000)=""/46, 0x2e)

00:55:25 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1482.620216][T11881] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:25 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/38, 0x26)
syslog(0x3, &(0x7f0000000040)=""/16, 0x10)

00:55:25 executing program 0:
syslog(0x2, 0x0, 0x0)

00:55:25 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2f1, 0x0)

00:55:25 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2fd, 0x0)

[ 1482.712000][T11894] loop5: detected capacity change from 0 to 512
[ 1482.750107][T11894] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1482.758362][T11894] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1483.366309][T11879] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1483.379988][T11879] CPU: 0 PID: 11879 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1483.390449][T11879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1483.400512][T11879] Call Trace:
[ 1483.403803][T11879]  <TASK>
[ 1483.406812][T11879]  dump_stack_lvl+0xda/0x130
[ 1483.411514][T11879]  dump_stack+0x15/0x20
[ 1483.415704][T11879]  dump_header+0x95/0x3c0
[ 1483.420046][T11879]  oom_kill_process+0xe3/0x3e0
[ 1483.424838][T11879]  out_of_memory+0x9ca/0xc00
[ 1483.429441][T11879]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1483.435522][T11879]  mem_cgroup_out_of_memory+0x139/0x190
[ 1483.441121][T11879]  try_charge_memcg+0x75c/0xd30
[ 1483.446013][T11879]  obj_cgroup_charge_pages+0xab/0x130
[ 1483.451433][T11879]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1483.457000][T11879]  __alloc_pages+0x1bb/0x340
[ 1483.461689][T11879]  alloc_pages+0x3e1/0x4e0
[ 1483.466186][T11879]  __vmalloc_node_range+0x6d2/0xea0
[ 1483.471447][T11879]  kvmalloc_node+0x121/0x160
[ 1483.477398][T11879]  ? xt_alloc_table_info+0x3d/0x80
[ 1483.482546][T11879]  xt_alloc_table_info+0x3d/0x80
[ 1483.487682][T11879]  do_arpt_set_ctl+0x634/0x13b0
[ 1483.492584][T11879]  ? futex_unqueue+0xba/0xe0
[ 1483.497193][T11879]  ? futex_wait+0x3c3/0x410
[ 1483.501865][T11879]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1483.507067][T11879]  ? lock_sock_nested+0x10e/0x130
[ 1483.512125][T11879]  ? tcp_release_cb+0xfe/0x340
[ 1483.516912][T11879]  nf_setsockopt+0x18d/0x1b0
[ 1483.521591][T11879]  ip_setsockopt+0xe6/0x100
[ 1483.526181][T11879]  tcp_setsockopt+0x90/0xa0
[ 1483.530700][T11879]  sock_common_setsockopt+0x61/0x70
[ 1483.535908][T11879]  ? sock_common_recvmsg+0xe0/0xe0
[ 1483.541030][T11879]  __sys_setsockopt+0x1d7/0x240
[ 1483.545903][T11879]  __x64_sys_setsockopt+0x66/0x80
[ 1483.550977][T11879]  do_syscall_64+0x41/0xc0
[ 1483.555433][T11879]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1483.561168][T11879]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1483.567113][T11879] RIP: 0033:0x7f2c4ab0cae9
[ 1483.571533][T11879] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1483.591152][T11879] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1483.599737][T11879] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1483.607807][T11879] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1483.615785][T11879] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1483.623765][T11879] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1483.631743][T11879] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1483.639726][T11879]  </TASK>
[ 1483.642931][T11879] memory: usage 307196kB, limit 307200kB, failcnt 263723
[ 1483.650007][T11879] memory+swap: usage 308148kB, limit 9007199254740988kB, failcnt 0
[ 1483.657933][T11879] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1483.665354][T11879] Memory cgroup stats for /syz2:
[ 1483.665524][T11879] cache 4096
[ 1483.673685][T11879] rss 0
[ 1483.676651][T11879] shmem 0
[ 1483.679641][T11879] mapped_file 0
[ 1483.683097][T11879] dirty 0
[ 1483.686121][T11879] writeback 8192
[ 1483.689674][T11879] workingset_refault_anon 55876
[ 1483.694603][T11879] workingset_refault_file 20
[ 1483.699347][T11879] swap 970752
[ 1483.702733][T11879] pgpgin 200791
[ 1483.706274][T11879] pgpgout 200786
[ 1483.709827][T11879] pgfault 282433
[ 1483.713376][T11879] pgmajfault 21064
[ 1483.717152][T11879] inactive_anon 16384
[ 1483.721222][T11879] active_anon 0
[ 1483.724707][T11879] inactive_file 0
[ 1483.728471][T11879] active_file 4096
[ 1483.732249][T11879] unevictable 0
[ 1483.735735][T11879] hierarchical_memory_limit 314572800
[ 1483.741295][T11879] hierarchical_memsw_limit 9223372036854771712
[ 1483.747485][T11879] total_cache 4096
[ 1483.751279][T11879] total_rss 0
[ 1483.754552][T11879] total_shmem 0
[ 1483.758074][T11879] total_mapped_file 0
[ 1483.762068][T11879] total_dirty 0
[ 1483.765619][T11879] total_writeback 8192
[ 1483.769703][T11879] total_workingset_refault_anon 55876
[ 1483.775122][T11879] total_workingset_refault_file 20
[ 1483.780252][T11879] total_swap 970752
[ 1483.784077][T11879] total_pgpgin 200791
[ 1483.788088][T11879] total_pgpgout 200786
[ 1483.792215][T11879] total_pgfault 282433
[ 1483.796393][T11879] total_pgmajfault 21064
[ 1483.800639][T11879] total_inactive_anon 16384
[ 1483.805187][T11879] total_active_anon 0
[ 1483.809184][T11879] total_inactive_file 0
[ 1483.813526][T11879] total_active_file 4096
[ 1483.817805][T11879] total_unevictable 0
[ 1483.821857][T11879] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11877,uid=0
[ 1483.837432][T11879] Memory cgroup out of memory: Killed process 11877 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:26 executing program 0:
syslog(0x2, 0x0, 0x0)

00:55:26 executing program 3:
ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000040))
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x1d5d)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x3, &(0x7f0000000080)=""/34, 0x22)

00:55:26 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x300}, 0x0)

00:55:26 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x301, 0x0)

00:55:26 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:26 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x359, 0x0)

00:55:26 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xda050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:26 executing program 0:
syslog(0x2, 0x0, 0x0)

00:55:27 executing program 3:
ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000040))
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x1d5d) (async)
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x1d5d)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x3, &(0x7f0000000080)=""/34, 0x22)

[ 1484.061433][T11906] loop5: detected capacity change from 0 to 512
00:55:27 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x36f, 0x0)

00:55:27 executing program 3:
ioctl$TIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000040))
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x1d5d) (async)
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x1d5d)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x3, &(0x7f0000000080)=""/34, 0x22)

00:55:27 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (fail_nth: 1)

00:55:27 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x385, 0x0)

[ 1484.117018][T11906] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1484.125256][T11906] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1484.133385][T11913] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1484.203762][T11924] FAULT_INJECTION: forcing a failure.
[ 1484.203762][T11924] name failslab, interval 1, probability 0, space 0, times 0
[ 1484.216483][T11924] CPU: 0 PID: 11924 Comm: syz-executor.0 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1484.226924][T11924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1484.236994][T11924] Call Trace:
[ 1484.240305][T11924]  <TASK>
[ 1484.243307][T11924]  dump_stack_lvl+0xda/0x130
[ 1484.247942][T11924]  dump_stack+0x15/0x20
[ 1484.252125][T11924]  should_fail_ex+0x21f/0x230
[ 1484.256898][T11924]  ? syslog_print+0x74/0x760
[ 1484.261559][T11924]  __should_failslab+0x92/0xa0
[ 1484.266361][T11924]  should_failslab+0x9/0x20
[ 1484.270992][T11924]  slab_pre_alloc_hook+0x38/0x180
[ 1484.276042][T11924]  ? syslog_print+0x74/0x760
[ 1484.280731][T11924]  __kmem_cache_alloc_node+0x48/0x1d0
[ 1484.286256][T11924]  ? syslog_print+0x74/0x760
[ 1484.290953][T11924]  kmalloc_trace+0x2a/0xa0
[ 1484.295407][T11924]  syslog_print+0x74/0x760
00:55:27 executing program 3:
sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x800, 0x70bd28, 0x25cfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x44020)
setsockopt$CAIFSO_REQ_PARAM(0xffffffffffffffff, 0x116, 0x80, &(0x7f0000000040)="b6e97b4c1e1d50503b8790d21cedfe0960417d625a26131701c8e0e65bf2ee007e62b0c910b58d942e", 0x29)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x3, &(0x7f00000001c0)=""/4096, 0x1000)
syslog(0xa, &(0x7f0000000140), 0x0)

[ 1484.299919][T11924]  ? avc_has_perm_noaudit+0x1c8/0x210
[ 1484.305376][T11924]  ? __rcu_read_unlock+0x4d/0x70
[ 1484.310340][T11924]  ? avc_has_perm_noaudit+0x1c8/0x210
[ 1484.315743][T11924]  ? selinux_syslog+0xe3/0xf0
[ 1484.320466][T11924]  do_syslog+0x3c6/0x860
[ 1484.324757][T11924]  ? __fget_files+0x1c4/0x200
[ 1484.329532][T11924]  ? ksys_write+0x178/0x1a0
[ 1484.334051][T11924]  __x64_sys_syslog+0x43/0x50
[ 1484.338769][T11924]  do_syscall_64+0x41/0xc0
[ 1484.343271][T11924]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1484.349277][T11924] RIP: 0033:0x7f4dbba27ae9
[ 1484.353713][T11924] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1484.373416][T11924] RSP: 002b:00007f4dbadaa0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000067
[ 1484.381969][T11924] RAX: ffffffffffffffda RBX: 00007f4dbbb46f80 RCX: 00007f4dbba27ae9
[ 1484.390020][T11924] RDX: 000000000000002e RSI: 0000000020000000 RDI: 0000000000000002
00:55:27 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x305}, 0x0)

00:55:27 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrHFEdAPD/bLI1bVOTqodaaC22khbtbtLYNnhoK4i3glLvNSSbELLJhuymbUKRFD+AIKIFT568CH4AQfoRRCjoXVQU0VYPHtSRmZ206brbpJhky+b3g9d5b3Zn/u/tdmfnzXvZCeDYSiLiXkQMRcS1iBgr1peKFNvtdCkiXr96OpelJNL0wV+TfNusvHtfmdPFZiPtRVfNza3l2Xq9tl6Uq62VtWpzc+v60srsYm2xtjo9PXVr5vbMzZnJA2ln1q47X/vjD7/306/f+eWXHv/u4Z+vfier72jx+O52HKT2a1LOXos3hiNi/TCC9cFQ0Z5yvysCAMC+ZOenn4qIz+fn/2MxlJ/N5ZzSAQAAwIBI747Gv5KIFAAAABhYd/M5sEmpUsz3HY1SqVJpz+H9TJwq1RvN1hcXGhur8+25suNRLi0s1WuTxZza8SgnWXkqz78t3+goT0fE2Yj4wdjJvFyZa9Tn+33xAwAAAI6J0x39/3+Mtfv/AAAAwIAZ73cFAAAAgEOn/w8AAACDT/8fAAAABto37t/PUrpz/+v5R5sby41H1+drzeXKysZcZa6xvlZZbDQW89/sW9lrf/VGY+3LsbrxpNqqNVvV5ubWw5XGxmrr4dI7t8AGAAAAjtDZz734bRIR2185macoftc/hnpsYK4ADIzShzz5D4dXD+Do9fqaBwbfcL8rAPRNud8VAPou2ePxnpN3fnXwdQEAAA7HxGf/d/z/RHFd0LUBGGwfNP4PDBTj/3B8Gf+H46vsDACOvcMf/0/TPfcFAAAcqtE8JaVKMRY4GqVSpRJxJv9T/3KysFSvTUbEJyPiN2PlT2TlqXzLZM8+AwAAAAAAAAAAAAAAAAAAAAAAAADQlqZJpAAAAMBAiyj9KSnu/zUxdmW08/rAieSfY/kyIh7/+MGPnsy2WutT2fq/vVnfel6sv9GPKxgAAABAp51++k4/HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO0utXT+d20lHG/ctXI2K8W/zhGMmXI1GOiFN/T2J413ZJRAwdQPztZxFxrlv8JKtWjBe16IxfioiTRxP/QpqmXeOfPoD4cJy9yI4/97p9/kpxKV92//wPF+n/1fv4V3pz/Bvqcfw7s88Y51/+vNoz/rOI88Pdjz878ZMe8S9322GXF+Xb39ra6hU//UnERNfvn+SdWNXWylq1ubl1fWlldrG2WFudnp66NXN75ubMZHVhqV4r/u0a4/sXfvGfjlX/Ttvy9keP+ON7tP9Klin3atmuYC+fvPp0O1vu2EUe/+rl7u//uffEz/5PfKH4Hsgen9jJb7fzu1382a8v9qpbFn++R/v3ev+v7t303LVvfvf3+3wqAHAEmptby7P1em390DPP0zQ9qlgyH2Fm5OOohsz+Mv0+MgEAAAft7Ul/v2sCAAAAAAAAAAAAAAAAAAAAx9dR/JxYZ8zt/jQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOC9/hsAAP//M5rhdA==")

00:55:27 executing program 3:
sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x800, 0x70bd28, 0x25cfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x44020)
setsockopt$CAIFSO_REQ_PARAM(0xffffffffffffffff, 0x116, 0x80, &(0x7f0000000040)="b6e97b4c1e1d50503b8790d21cedfe0960417d625a26131701c8e0e65bf2ee007e62b0c910b58d942e", 0x29) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x3, &(0x7f00000001c0)=""/4096, 0x1000)
syslog(0xa, &(0x7f0000000140), 0x0)

00:55:27 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3b1, 0x0)

[ 1484.398082][T11924] RBP: 00007f4dbadaa120 R08: 0000000000000000 R09: 0000000000000000
[ 1484.406091][T11924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1484.414088][T11924] R13: 000000000000000b R14: 00007f4dbbb46f80 R15: 00007ffcd9504f88
[ 1484.422110][T11924]  </TASK>
[ 1484.481275][T11934] loop5: detected capacity change from 0 to 512
[ 1484.488000][T11940] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1484.498166][T11934] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1484.506449][T11934] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1485.024421][T11916] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1485.035815][T11916] CPU: 1 PID: 11916 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1485.046316][T11916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1485.056431][T11916] Call Trace:
[ 1485.059707][T11916]  <TASK>
[ 1485.062633][T11916]  dump_stack_lvl+0xda/0x130
[ 1485.067297][T11916]  dump_stack+0x15/0x20
[ 1485.071462][T11916]  dump_header+0x95/0x3c0
[ 1485.075896][T11916]  oom_kill_process+0xe3/0x3e0
[ 1485.080710][T11916]  out_of_memory+0x9ca/0xc00
[ 1485.085394][T11916]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1485.091464][T11916]  mem_cgroup_out_of_memory+0x139/0x190
[ 1485.097046][T11916]  try_charge_memcg+0x75c/0xd30
[ 1485.101957][T11916]  ? __alloc_pages+0x193/0x340
[ 1485.106727][T11916]  charge_memcg+0x51/0x200
[ 1485.111138][T11916]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1485.117209][T11916]  __read_swap_cache_async+0x339/0x590
[ 1485.122804][T11916]  swap_cluster_readahead+0x29d/0x4e0
[ 1485.128224][T11916]  swapin_readahead+0x8d/0x710
[ 1485.132989][T11916]  ? __filemap_get_folio+0x42b/0x500
[ 1485.138398][T11916]  ? swap_cache_get_folio+0x6e/0x200
[ 1485.143720][T11916]  do_swap_page+0x306/0x1780
[ 1485.148313][T11916]  ? __rcu_read_lock+0x35/0x50
[ 1485.153079][T11916]  handle_mm_fault+0xa2e/0x2cc0
[ 1485.157935][T11916]  ? mt_find+0x1d9/0x310
[ 1485.162209][T11916]  exc_page_fault+0x2f7/0x6c0
[ 1485.166890][T11916]  asm_exc_page_fault+0x26/0x30
[ 1485.171801][T11916] RIP: 0010:__get_user_8+0x11/0x20
[ 1485.177009][T11916] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 1485.196618][T11916] RSP: 0018:ffffc90000abfe38 EFLAGS: 00050202
[ 1485.202717][T11916] RAX: 0000555556d54da8 RBX: ffffc90000abfe40 RCX: ffffffff81438f03
[ 1485.210687][T11916] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881085aba98
[ 1485.218656][T11916] RBP: ffffc90000abfef8 R08: 00018881085aba9f R09: 0000000000000000
[ 1485.226675][T11916] R10: 0001ffffffffffff R11: 00018881085ab758 R12: ffff8881085ab0c0
[ 1485.234675][T11916] R13: ffff8881085aba98 R14: ffffc90000abff58 R15: ffffc90000abffd8
[ 1485.242723][T11916]  ? __rseq_handle_notify_resume+0xb3/0xbf0
[ 1485.248702][T11916]  __rseq_handle_notify_resume+0xc7/0xbf0
[ 1485.254483][T11916]  ? mem_cgroup_handle_over_high+0x2c/0x1b0
[ 1485.260421][T11916]  exit_to_user_mode_loop+0xcc/0xe0
[ 1485.265636][T11916]  exit_to_user_mode_prepare+0x6c/0xb0
[ 1485.271173][T11916]  irqentry_exit_to_user_mode+0x9/0x20
[ 1485.276649][T11916]  irqentry_exit+0x12/0x40
[ 1485.281069][T11916]  asm_exc_page_fault+0x26/0x30
[ 1485.285925][T11916] RIP: 0033:0x7f2c4aac6acd
[ 1485.290389][T11916] Code: 31 d2 48 f7 f1 4c 01 f8 49 39 c4 4c 0f 42 e0 83 3d cf 6e 16 00 00 0f 8e 12 ff ff ff e8 1c 08 ff ff 49 39 c4 0f 82 60 01 00 00 <69> 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00
[ 1485.310018][T11916] RSP: 002b:00007ffcead55b10 EFLAGS: 00010216
[ 1485.316079][T11916] RAX: 000000000016a8ae RBX: 00007f2c4ac2d980 RCX: 000000000016a4e0
[ 1485.324057][T11916] RDX: 00000000000003ce RSI: 00007ffcead55af0 RDI: 7fffffffffffffff
[ 1485.332067][T11916] RBP: 00007f2c4ac2d980 R08: 0000000000000010 R09: 00007ffceada50b0
[ 1485.340075][T11916] R10: 00007ffceada5080 R11: 000000000004450c R12: 000000000016a8b3
[ 1485.348042][T11916] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016a572
[ 1485.356020][T11916]  </TASK>
[ 1485.359112][T11916] memory: usage 307200kB, limit 307200kB, failcnt 264071
[ 1485.366198][T11916] memory+swap: usage 308248kB, limit 9007199254740988kB, failcnt 0
[ 1485.374135][T11916] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 1485.381467][T11916] Memory cgroup stats for /syz2:
[ 1485.381729][T11916] cache 8192
[ 1485.389892][T11916] rss 4096
[ 1485.392904][T11916] shmem 0
[ 1485.395863][T11916] mapped_file 0
[ 1485.399327][T11916] dirty 0
[ 1485.402253][T11916] writeback 4096
[ 1485.405838][T11916] workingset_refault_anon 56002
[ 1485.410702][T11916] workingset_refault_file 21
[ 1485.415317][T11916] swap 1073152
[ 1485.418780][T11916] pgpgin 200949
[ 1485.422229][T11916] pgpgout 200945
[ 1485.425796][T11916] pgfault 282722
[ 1485.429337][T11916] pgmajfault 21104
[ 1485.433056][T11916] inactive_anon 4096
[ 1485.436974][T11916] active_anon 0
[ 1485.440450][T11916] inactive_file 8192
[ 1485.444353][T11916] active_file 0
[ 1485.447947][T11916] unevictable 0
[ 1485.451414][T11916] hierarchical_memory_limit 314572800
[ 1485.456928][T11916] hierarchical_memsw_limit 9223372036854771712
[ 1485.463103][T11916] total_cache 8192
[ 1485.466890][T11916] total_rss 4096
[ 1485.470452][T11916] total_shmem 0
[ 1485.473960][T11916] total_mapped_file 0
[ 1485.477974][T11916] total_dirty 0
[ 1485.481461][T11916] total_writeback 4096
[ 1485.485562][T11916] total_workingset_refault_anon 56002
[ 1485.490970][T11916] total_workingset_refault_file 21
[ 1485.496179][T11916] total_swap 1073152
[ 1485.500078][T11916] total_pgpgin 200949
[ 1485.504043][T11916] total_pgpgout 200945
[ 1485.508166][T11916] total_pgfault 282722
[ 1485.512325][T11916] total_pgmajfault 21104
[ 1485.516604][T11916] total_inactive_anon 4096
[ 1485.521072][T11916] total_active_anon 0
[ 1485.525095][T11916] total_inactive_file 8192
[ 1485.529526][T11916] total_active_file 0
[ 1485.533540][T11916] total_unevictable 0
[ 1485.537611][T11916] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11916,uid=0
[ 1485.552933][T11916] Memory cgroup out of memory: Killed process 11916 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:28 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3c5, 0x0)

00:55:28 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (fail_nth: 2)

00:55:28 executing program 3:
sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x800, 0x70bd28, 0x25cfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x44020)
setsockopt$CAIFSO_REQ_PARAM(0xffffffffffffffff, 0x116, 0x80, &(0x7f0000000040)="b6e97b4c1e1d50503b8790d21cedfe0960417d625a26131701c8e0e65bf2ee007e62b0c910b58d942e", 0x29)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x3, &(0x7f00000001c0)=""/4096, 0x1000)
syslog(0xa, &(0x7f0000000140), 0x0)
sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x800, 0x70bd28, 0x25cfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x44020) (async)
setsockopt$CAIFSO_REQ_PARAM(0xffffffffffffffff, 0x116, 0x80, &(0x7f0000000040)="b6e97b4c1e1d50503b8790d21cedfe0960417d625a26131701c8e0e65bf2ee007e62b0c910b58d942e", 0x29) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x3, &(0x7f00000001c0)=""/4096, 0x1000) (async)
syslog(0xa, &(0x7f0000000140), 0x0) (async)

00:55:28 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x342}, 0x0)

00:55:28 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xdb050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:28 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1485.866630][T11949] loop5: detected capacity change from 0 to 512
[ 1485.876132][T11947] FAULT_INJECTION: forcing a failure.
[ 1485.876132][T11947] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1485.881074][T11951] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1485.889264][T11947] CPU: 0 PID: 11947 Comm: syz-executor.0 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1485.889296][T11947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1485.919156][T11947] Call Trace:
[ 1485.922448][T11947]  <TASK>
[ 1485.925393][T11947]  dump_stack_lvl+0xda/0x130
[ 1485.930053][T11947]  dump_stack+0x15/0x20
[ 1485.934227][T11947]  should_fail_ex+0x21f/0x230
[ 1485.939071][T11947]  should_fail+0xb/0x10
[ 1485.943273][T11947]  should_fail_usercopy+0x1a/0x20
[ 1485.948385][T11947]  _copy_to_user+0x1e/0x90
[ 1485.952830][T11947]  syslog_print+0x667/0x760
[ 1485.957508][T11947]  ? selinux_syslog+0xe3/0xf0
[ 1485.962229][T11947]  do_syslog+0x3c6/0x860
[ 1485.966541][T11947]  ? fpregs_restore_userregs+0xc1/0x1a0
[ 1485.972258][T11947]  __x64_sys_syslog+0x43/0x50
[ 1485.976975][T11947]  do_syscall_64+0x41/0xc0
[ 1485.981420][T11947]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1485.987407][T11947] RIP: 0033:0x7f4dbba27ae9
[ 1485.991831][T11947] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1486.011494][T11947] RSP: 002b:00007f4dbadaa0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000067
[ 1486.019961][T11947] RAX: ffffffffffffffda RBX: 00007f4dbbb46f80 RCX: 00007f4dbba27ae9
[ 1486.027936][T11947] RDX: 000000000000002e RSI: 0000000020000000 RDI: 0000000000000002
[ 1486.035934][T11947] RBP: 00007f4dbadaa120 R08: 0000000000000000 R09: 0000000000000000
[ 1486.044019][T11947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1486.052056][T11947] R13: 000000000000000b R14: 00007f4dbbb46f80 R15: 00007ffcd9504f88
[ 1486.060035][T11947]  </TASK>
00:55:28 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3d7, 0x0)

00:55:29 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x1, &(0x7f0000000040)=""/68, 0x44)

00:55:29 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x360}, 0x0)

[ 1486.075584][T11949] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1486.083864][T11949] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:29 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (fail_nth: 3)

00:55:29 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3d9, 0x0)

00:55:29 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x1, &(0x7f0000000040)=""/68, 0x44)

[ 1486.126501][T11964] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1486.143135][T11968] FAULT_INJECTION: forcing a failure.
[ 1486.143135][T11968] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1486.156447][T11968] CPU: 1 PID: 11968 Comm: syz-executor.0 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1486.166910][T11968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1486.177032][T11968] Call Trace:
[ 1486.180355][T11968]  <TASK>
[ 1486.183325][T11968]  dump_stack_lvl+0xda/0x130
[ 1486.188019][T11968]  dump_stack+0x15/0x20
[ 1486.192308][T11968]  should_fail_ex+0x21f/0x230
[ 1486.197000][T11968]  __should_fail_alloc_page+0xfd/0x110
[ 1486.202488][T11968]  __alloc_pages+0x108/0x340
[ 1486.207172][T11968]  alloc_pages+0x3e1/0x4e0
[ 1486.211628][T11968]  __pmd_alloc+0x4b/0x3c0
[ 1486.215981][T11968]  handle_mm_fault+0x1d5c/0x2cc0
[ 1486.221010][T11968]  ? mt_find+0x1d9/0x310
[ 1486.225290][T11968]  exc_page_fault+0x2f7/0x6c0
[ 1486.230137][T11968]  asm_exc_page_fault+0x26/0x30
[ 1486.235007][T11968] RIP: 0010:rep_movs_alternative+0x33/0x70
[ 1486.240877][T11968] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[ 1486.260585][T11968] RSP: 0018:ffffc90000cdfca0 EFLAGS: 00050202
[ 1486.266805][T11968] RAX: 383431205b3e343c RBX: 0000000020000000 RCX: 000000000000002e
[ 1486.274795][T11968] RDX: 0000000000000000 RSI: ffff8881a0059800 RDI: 0000000020000000
[ 1486.282802][T11968] RBP: ffffc90000cdfe10 R08: 0000000080000000 R09: 0000000000000000
[ 1486.290792][T11968] R10: 00018881a0059800 R11: 00018881a005982d R12: 000000002000002e
[ 1486.298832][T11968] R13: ffff8881a0059800 R14: 000000000000002e R15: ffff8881a0059800
[ 1486.306831][T11968]  _copy_to_user+0x77/0x90
[ 1486.311338][T11968]  syslog_print+0x667/0x760
[ 1486.315880][T11968]  ? selinux_syslog+0xe3/0xf0
[ 1486.320617][T11968]  do_syslog+0x3c6/0x860
[ 1486.325006][T11968]  ? __fget_files+0x1c4/0x200
[ 1486.329746][T11968]  ? ksys_write+0x178/0x1a0
[ 1486.334324][T11968]  __x64_sys_syslog+0x43/0x50
[ 1486.339055][T11968]  do_syscall_64+0x41/0xc0
[ 1486.343511][T11968]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1486.349507][T11968] RIP: 0033:0x7f4dbba27ae9
[ 1486.353936][T11968] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
00:55:29 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x1, &(0x7f0000000040)=""/68, 0x44)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x1, &(0x7f0000000040)=""/68, 0x44) (async)

00:55:29 executing program 3:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f0000000040)=0x4)

00:55:29 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3e9, 0x0)

00:55:29 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1486.373648][T11968] RSP: 002b:00007f4dbadaa0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000067
[ 1486.382106][T11968] RAX: ffffffffffffffda RBX: 00007f4dbbb46f80 RCX: 00007f4dbba27ae9
[ 1486.390120][T11968] RDX: 000000000000002e RSI: 0000000020000000 RDI: 0000000000000002
[ 1486.398165][T11968] RBP: 00007f4dbadaa120 R08: 0000000000000000 R09: 0000000000000000
[ 1486.406165][T11968] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1486.414164][T11968] R13: 000000000000000b R14: 00007f4dbbb46f80 R15: 00007ffcd9504f88
[ 1486.422239][T11968]  </TASK>
[ 1486.470563][T11982] loop5: detected capacity change from 0 to 512
[ 1486.479592][T11982] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1486.487867][T11982] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1486.971924][T11957] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1486.983276][T11957] CPU: 1 PID: 11957 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1486.993684][T11957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1487.003813][T11957] Call Trace:
[ 1487.007154][T11957]  <TASK>
[ 1487.010082][T11957]  dump_stack_lvl+0xda/0x130
[ 1487.014685][T11957]  dump_stack+0x15/0x20
[ 1487.018876][T11957]  dump_header+0x95/0x3c0
[ 1487.023297][T11957]  oom_kill_process+0xe3/0x3e0
[ 1487.028066][T11957]  out_of_memory+0x9ca/0xc00
[ 1487.032659][T11957]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1487.038815][T11957]  mem_cgroup_out_of_memory+0x139/0x190
[ 1487.044391][T11957]  try_charge_memcg+0x75c/0xd30
[ 1487.049318][T11957]  ? __alloc_pages+0x193/0x340
[ 1487.054213][T11957]  charge_memcg+0x51/0x200
[ 1487.058680][T11957]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1487.064663][T11957]  __read_swap_cache_async+0x339/0x590
[ 1487.070138][T11957]  swap_cluster_readahead+0x29d/0x4e0
[ 1487.075561][T11957]  swapin_readahead+0x8d/0x710
[ 1487.080322][T11957]  ? __filemap_get_folio+0x42b/0x500
[ 1487.085677][T11957]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1487.091326][T11957]  ? swap_cache_get_folio+0x6e/0x200
[ 1487.096625][T11957]  do_swap_page+0x306/0x1780
[ 1487.101223][T11957]  ? mas_state_walk+0xf9/0x5d0
[ 1487.106052][T11957]  ? __rcu_read_lock+0x35/0x50
[ 1487.110843][T11957]  handle_mm_fault+0xa2e/0x2cc0
[ 1487.115792][T11957]  exc_page_fault+0x3ff/0x6c0
[ 1487.120490][T11957]  asm_exc_page_fault+0x26/0x30
[ 1487.125389][T11957] RIP: 0033:0x7f2c4aac87ac
[ 1487.129921][T11957] Code: 83 c4 01 44 3b 63 04 0f 83 c9 00 00 00 48 8b 34 24 44 89 e1 48 8b 53 28 4c 89 f8 48 03 14 ce 89 d5 49 89 d7 81 e5 00 f0 ff ff <80> 3d 05 f9 15 00 00 75 3f be 00 00 00 80 48 8d 3c 32 48 81 ff ff
[ 1487.149617][T11957] RSP: 002b:00007ffcead55a70 EFLAGS: 00010286
[ 1487.155680][T11957] RAX: ffffffff83af1815 RBX: 00007f2c4ac2c018 RCX: 0000000000000002
[ 1487.163650][T11957] RDX: ffffffff815d2e23 RSI: 00007f2c4a490008 RDI: 0000000083af1cbd
[ 1487.171789][T11957] RBP: 00000000815d2000 R08: 0000001b2cd20000 R09: 0000000000001cbd
[ 1487.179833][T11957] R10: 0000000083af1cc1 R11: 0000000000044640 R12: 0000000000000002
[ 1487.187837][T11957] R13: 0000000000000001 R14: 00007f2c4ac20000 R15: ffffffff815d2e23
[ 1487.195811][T11957]  ? __fdget+0x13/0x130
[ 1487.200047][T11957]  ? __sys_setsockopt+0x25/0x240
[ 1487.205134][T11957]  ? __fdget+0x13/0x130
[ 1487.209291][T11957]  </TASK>
[ 1487.212398][T11957] memory: usage 307200kB, limit 307200kB, failcnt 264655
[ 1487.219500][T11957] memory+swap: usage 308172kB, limit 9007199254740988kB, failcnt 0
[ 1487.227417][T11957] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[ 1487.234799][T11957] Memory cgroup stats for /syz2:
[ 1487.235032][T11957] cache 4096
[ 1487.243150][T11957] rss 8192
[ 1487.246202][T11957] shmem 0
[ 1487.249144][T11957] mapped_file 0
[ 1487.252634][T11957] dirty 0
[ 1487.255671][T11957] writeback 8192
[ 1487.259220][T11957] workingset_refault_anon 56084
[ 1487.264087][T11957] workingset_refault_file 21
[ 1487.268768][T11957] swap 995328
[ 1487.272138][T11957] pgpgin 201061
[ 1487.275643][T11957] pgpgout 201057
[ 1487.279191][T11957] pgfault 283027
[ 1487.282805][T11957] pgmajfault 21130
[ 1487.286562][T11957] inactive_anon 0
[ 1487.290202][T11957] active_anon 0
[ 1487.293665][T11957] inactive_file 4096
[ 1487.297592][T11957] active_file 0
[ 1487.301053][T11957] unevictable 0
[ 1487.304544][T11957] hierarchical_memory_limit 314572800
[ 1487.310033][T11957] hierarchical_memsw_limit 9223372036854771712
[ 1487.316208][T11957] total_cache 4096
[ 1487.319955][T11957] total_rss 8192
[ 1487.323487][T11957] total_shmem 0
[ 1487.326966][T11957] total_mapped_file 0
[ 1487.331040][T11957] total_dirty 0
[ 1487.334493][T11957] total_writeback 8192
[ 1487.338589][T11957] total_workingset_refault_anon 56084
[ 1487.343959][T11957] total_workingset_refault_file 21
[ 1487.349165][T11957] total_swap 995328
[ 1487.353026][T11957] total_pgpgin 201061
[ 1487.357089][T11957] total_pgpgout 201057
[ 1487.361170][T11957] total_pgfault 283027
[ 1487.365288][T11957] total_pgmajfault 21130
[ 1487.369569][T11957] total_inactive_anon 0
[ 1487.373729][T11957] total_active_anon 0
[ 1487.377746][T11957] total_inactive_file 4096
[ 1487.382224][T11957] total_active_file 0
[ 1487.386252][T11957] total_unevictable 0
[ 1487.390279][T11957] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11957,uid=0
[ 1487.405592][T11957] Memory cgroup out of memory: Killed process 11957 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:30 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x361}, 0x0)

00:55:30 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (fail_nth: 4)

00:55:30 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3f5, 0x0)

00:55:30 executing program 3:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f0000000040)=0x4)

00:55:30 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:30 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xdc050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:30 executing program 3:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f0000000040)=0x4)

[ 1487.655662][T11990] loop5: detected capacity change from 0 to 512
[ 1487.656124][T11992] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1487.673815][T11990] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1487.682079][T11990] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:30 executing program 3:
syslog(0xa, &(0x7f0000000000)=""/32, 0x20)

00:55:30 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3f9, 0x0)

00:55:30 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:30 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3fb, 0x0)

00:55:30 executing program 3:
syslog(0xa, &(0x7f0000000000)=""/32, 0x20)

00:55:30 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x368}, 0x0)

[ 1487.789120][T12006] loop5: detected capacity change from 0 to 512
[ 1487.809395][T12006] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1487.817689][T12006] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1487.877234][T12011] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1488.367494][T11996] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1488.378859][T11996] CPU: 1 PID: 11996 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1488.389375][T11996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1488.399554][T11996] Call Trace:
[ 1488.402833][T11996]  <TASK>
[ 1488.405759][T11996]  dump_stack_lvl+0xda/0x130
[ 1488.410348][T11996]  dump_stack+0x15/0x20
[ 1488.414520][T11996]  dump_header+0x95/0x3c0
[ 1488.418939][T11996]  oom_kill_process+0xe3/0x3e0
[ 1488.423733][T11996]  out_of_memory+0x9ca/0xc00
[ 1488.428381][T11996]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1488.434538][T11996]  mem_cgroup_out_of_memory+0x139/0x190
[ 1488.440088][T11996]  try_charge_memcg+0x75c/0xd30
[ 1488.445022][T11996]  ? __alloc_pages+0x193/0x340
[ 1488.449796][T11996]  charge_memcg+0x51/0x200
[ 1488.454211][T11996]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1488.460207][T11996]  __read_swap_cache_async+0x339/0x590
[ 1488.465729][T11996]  swap_cluster_readahead+0x29d/0x4e0
[ 1488.471142][T11996]  swapin_readahead+0x8d/0x710
[ 1488.475922][T11996]  ? __filemap_get_folio+0x42b/0x500
[ 1488.481276][T11996]  ? swap_cache_get_folio+0x6e/0x200
[ 1488.486673][T11996]  do_swap_page+0x306/0x1780
[ 1488.491517][T11996]  ? __rcu_read_lock+0x35/0x50
[ 1488.496311][T11996]  handle_mm_fault+0xa2e/0x2cc0
[ 1488.501169][T11996]  exc_page_fault+0x3ff/0x6c0
[ 1488.505972][T11996]  asm_exc_page_fault+0x26/0x30
[ 1488.510832][T11996] RIP: 0033:0x7f2c4aac6af4
[ 1488.515244][T11996] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1488.532320][T11995] FAULT_INJECTION: forcing a failure.
[ 1488.532320][T11995] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1488.534848][T11996] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1488.534869][T11996] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1488.534884][T11996] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1488.534899][T11996] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1488.578070][T11996] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016b69f
[ 1488.586118][T11996] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016b35e
[ 1488.594487][T11996]  </TASK>
[ 1488.597509][T11995] CPU: 0 PID: 11995 Comm: syz-executor.0 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1488.597667][T11996] memory: usage 307200kB, limit 307200kB, failcnt 265024
[ 1488.607964][T11995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1488.607982][T11995] Call Trace:
[ 1488.607992][T11995]  <TASK>
[ 1488.607999][T11995]  dump_stack_lvl+0xda/0x130
[ 1488.615050][T11996] memory+swap: usage 308260kB, limit 9007199254740988kB, failcnt 0
[ 1488.625088][T11995]  dump_stack+0x15/0x20
[ 1488.628379][T11996] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1488.631302][T11995]  should_fail_ex+0x21f/0x230
[ 1488.635895][T11996] Memory cgroup stats for /syz2:
[ 1488.636069][T11996] cache 4096
[ 1488.643830][T11995]  __should_fail_alloc_page+0xfd/0x110
[ 1488.647994][T11996] rss 8192
[ 1488.655233][T11995]  __alloc_pages+0x108/0x340
[ 1488.655276][T11995]  alloc_pages+0x3e1/0x4e0
[ 1488.659924][T11996] shmem 0
[ 1488.659932][T11996] mapped_file 0
[ 1488.664844][T11995]  ? __mod_lruvec_state+0xa2/0x110
[ 1488.668069][T11996] dirty 0
[ 1488.668077][T11996] writeback 4096
[ 1488.673509][T11995]  pte_alloc_one+0x32/0xe0
[ 1488.676540][T11996] workingset_refault_anon 56159
[ 1488.681089][T11995]  __pte_alloc+0x33/0x270
[ 1488.685511][T11996] workingset_refault_file 21
[ 1488.688413][T11995]  handle_mm_fault+0x207f/0x2cc0
[ 1488.691856][T11996] swap 1085440
[ 1488.691864][T11996] pgpgin 201166
[ 1488.696951][T11995]  ? mt_find+0x1d9/0x310
[ 1488.697049][T11995]  exc_page_fault+0x2f7/0x6c0
[ 1488.699896][T11996] pgpgout 201161
[ 1488.699905][T11996] pgfault 283171
[ 1488.703428][T11995]  asm_exc_page_fault+0x26/0x30
[ 1488.707849][T11996] pgmajfault 21156
[ 1488.712660][T11995] RIP: 0010:rep_movs_alternative+0x33/0x70
[ 1488.717014][T11996] inactive_anon 4096
[ 1488.721560][T11995] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[ 1488.726541][T11996] active_anon 0
[ 1488.729841][T11995] RSP: 0018:ffffc90000c77ca0 EFLAGS: 00050202
[ 1488.733285][T11996] inactive_file 0
[ 1488.733295][T11996] active_file 4096
[ 1488.737511][T11995] 
[ 1488.737516][T11995] RAX: 383431205b3e343c RBX: 0000000020000000 RCX: 000000000000002e
[ 1488.737534][T11995] RDX: 0000000000000000 RSI: ffff8881a005a800 RDI: 0000000020000000
[ 1488.737548][T11995] RBP: ffffc90000c77e10 R08: 0000000080000000 R09: 0000000000000000
[ 1488.742207][T11996] unevictable 0
[ 1488.742216][T11996] hierarchical_memory_limit 314572800
[ 1488.745734][T11995] R10: 00018881a005a800 R11: 00018881a005a82d R12: 000000002000002e
[ 1488.749285][T11996] hierarchical_memsw_limit 9223372036854771712
[ 1488.754114][T11995] R13: ffff8881a005a800 R14: 000000000000002e R15: ffff8881a005a800
[ 1488.757857][T11996] total_cache 4096
[ 1488.763610][T11995]  _copy_to_user+0x77/0x90
00:55:31 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

[ 1488.767503][T11996] total_rss 8192
[ 1488.787158][T11995]  syslog_print+0x667/0x760
[ 1488.787205][T11995]  ? selinux_syslog+0xe3/0xf0
[ 1488.790714][T11996] total_shmem 0
[ 1488.790724][T11996] total_mapped_file 0
[ 1488.790731][T11996] total_dirty 0
[ 1488.790737][T11996] total_writeback 4096
[ 1488.796781][T11995]  do_syslog+0x3c6/0x860
[ 1488.796817][T11995]  ? __fget_files+0x1c4/0x200
[ 1488.796842][T11995]  ? ksys_write+0x178/0x1a0
[ 1488.800505][T11996] total_workingset_refault_anon 56159
[ 1488.804181][T11995]  __x64_sys_syslog+0x43/0x50
[ 1488.806523][T11996] total_workingset_refault_file 21
[ 1488.814459][T11995]  do_syscall_64+0x41/0xc0
[ 1488.822478][T11996] total_swap 1085440
[ 1488.830457][T11995]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1488.833955][T11996] total_pgpgin 201166
[ 1488.833983][T11996] total_pgpgout 201161
[ 1488.839325][T11995] RIP: 0033:0x7f4dbba27ae9
[ 1488.839345][T11995] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1488.847354][T11996] total_pgfault 283171
[ 1488.853443][T11995] RSP: 002b:00007f4dbadaa0c8 EFLAGS: 00000246
[ 1488.861426][T11996] total_pgmajfault 21156
[ 1488.865110][T11995]  ORIG_RAX: 0000000000000067
[ 1488.865120][T11995] RAX: ffffffffffffffda RBX: 00007f4dbbb46f80 RCX: 00007f4dbba27ae9
[ 1488.865139][T11995] RDX: 000000000000002e RSI: 0000000020000000 RDI: 0000000000000002
[ 1488.865154][T11995] RBP: 00007f4dbadaa120 R08: 0000000000000000 R09: 0000000000000000
[ 1488.869551][T11996] total_inactive_anon 4096
[ 1488.873088][T11995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1488.873103][T11995] R13: 000000000000000b R14: 00007f4dbbb46f80 R15: 00007ffcd9504f88
[ 1488.873122][T11995]  </TASK>
[ 1489.040375][T11996] total_active_anon 0
[ 1489.044355][T11996] total_inactive_file 0
[ 1489.048565][T11996] total_active_file 4096
[ 1489.052813][T11996] total_unevictable 0
[ 1489.056838][T11996] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=11996,uid=0
[ 1489.072259][T11996] Memory cgroup out of memory: Killed process 11996 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:32 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xdd050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:32 executing program 3:
syslog(0xa, &(0x7f0000000000)=""/32, 0x20)

00:55:32 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3fd, 0x0)

00:55:32 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:32 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x3c4}, 0x0)

00:55:32 executing program 0:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:32 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:32 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x402, 0x0)

00:55:32 executing program 3:
syslog(0x1, &(0x7f0000000040)=""/51, 0x33)
syslog(0x3, &(0x7f0000000080)=""/236, 0xec)

[ 1489.345599][T12024] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:32 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:32 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x406, 0x0)

00:55:32 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x500, 0x0)

[ 1490.064280][T12025] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1490.075746][T12025] CPU: 1 PID: 12025 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1490.086230][T12025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1490.096292][T12025] Call Trace:
[ 1490.099726][T12025]  <TASK>
[ 1490.102744][T12025]  dump_stack_lvl+0xda/0x130
[ 1490.107362][T12025]  dump_stack+0x15/0x20
[ 1490.111539][T12025]  dump_header+0x95/0x3c0
[ 1490.115958][T12025]  oom_kill_process+0xe3/0x3e0
[ 1490.120728][T12025]  out_of_memory+0x9ca/0xc00
[ 1490.125356][T12025]  ? css_next_descendant_pre+0x67/0x140
[ 1490.130949][T12025]  mem_cgroup_out_of_memory+0x139/0x190
[ 1490.136513][T12025]  try_charge_memcg+0x75c/0xd30
[ 1490.141379][T12025]  ? __alloc_pages+0x193/0x340
[ 1490.146261][T12025]  charge_memcg+0x51/0x200
[ 1490.150836][T12025]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1490.156817][T12025]  __read_swap_cache_async+0x339/0x590
[ 1490.162364][T12025]  swap_cluster_readahead+0x29d/0x4e0
[ 1490.167780][T12025]  swapin_readahead+0x8d/0x710
[ 1490.172559][T12025]  ? __filemap_get_folio+0x42b/0x500
[ 1490.177974][T12025]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1490.183530][T12025]  ? swap_cache_get_folio+0x6e/0x200
[ 1490.188816][T12025]  do_swap_page+0x306/0x1780
[ 1490.193414][T12025]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1490.198773][T12025]  ? __rcu_read_lock+0x35/0x50
[ 1490.203633][T12025]  handle_mm_fault+0xa2e/0x2cc0
[ 1490.208490][T12025]  exc_page_fault+0x3ff/0x6c0
[ 1490.213267][T12025]  asm_exc_page_fault+0x26/0x30
[ 1490.218128][T12025] RIP: 0033:0x7f2c4aac6af4
[ 1490.222556][T12025] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1490.242166][T12025] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1490.248272][T12025] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1490.256246][T12025] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1490.264214][T12025] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1490.272333][T12025] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016bcf1
[ 1490.280318][T12025] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016b9b0
[ 1490.288391][T12025]  </TASK>
[ 1490.291635][T12025] memory: usage 307200kB, limit 307200kB, failcnt 265415
[ 1490.298720][T12025] memory+swap: usage 308196kB, limit 9007199254740988kB, failcnt 0
[ 1490.306683][T12025] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 1490.314049][T12025] Memory cgroup stats for /syz2:
[ 1490.314936][T12025] cache 4096
[ 1490.323127][T12025] rss 0
[ 1490.325946][T12025] shmem 0
[ 1490.328890][T12025] mapped_file 0
[ 1490.332345][T12025] dirty 0
[ 1490.335294][T12025] writeback 8192
[ 1490.338840][T12025] workingset_refault_anon 56220
[ 1490.343684][T12025] workingset_refault_file 21
[ 1490.348293][T12025] swap 1019904
[ 1490.351669][T12025] pgpgin 201257
[ 1490.355148][T12025] pgpgout 201250
[ 1490.358699][T12025] pgfault 283392
[ 1490.362233][T12025] pgmajfault 21175
[ 1490.365971][T12025] inactive_anon 0
[ 1490.369644][T12025] active_anon 0
[ 1490.373090][T12025] inactive_file 4096
[ 1490.376998][T12025] active_file 0
[ 1490.380542][T12025] unevictable 0
[ 1490.384060][T12025] hierarchical_memory_limit 314572800
[ 1490.389482][T12025] hierarchical_memsw_limit 9223372036854771712
[ 1490.395705][T12025] total_cache 4096
[ 1490.399462][T12025] total_rss 0
[ 1490.402739][T12025] total_shmem 0
[ 1490.406215][T12025] total_mapped_file 0
[ 1490.410241][T12025] total_dirty 0
[ 1490.413690][T12025] total_writeback 8192
[ 1490.417862][T12025] total_workingset_refault_anon 56220
[ 1490.423276][T12025] total_workingset_refault_file 21
[ 1490.428420][T12025] total_swap 1019904
[ 1490.432344][T12025] total_pgpgin 201257
[ 1490.436366][T12025] total_pgpgout 201250
[ 1490.440475][T12025] total_pgfault 283392
[ 1490.444562][T12025] total_pgmajfault 21175
[ 1490.448852][T12025] total_inactive_anon 0
[ 1490.453010][T12025] total_active_anon 0
[ 1490.457080][T12025] total_inactive_file 4096
[ 1490.461552][T12025] total_active_file 0
[ 1490.465571][T12025] total_unevictable 0
[ 1490.469597][T12025] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12025,uid=0
[ 1490.484905][T12025] Memory cgroup out of memory: Killed process 12025 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:33 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:33 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xde050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:33 executing program 3:
syslog(0x1, &(0x7f0000000040)=""/51, 0x33)
syslog(0x3, &(0x7f0000000080)=""/236, 0xec)
syslog(0x1, &(0x7f0000000040)=""/51, 0x33) (async)
syslog(0x3, &(0x7f0000000080)=""/236, 0xec) (async)

00:55:33 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x600, 0x0)

00:55:33 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x3cd}, 0x0)

00:55:33 executing program 0:
syslog(0x4, &(0x7f0000000000)=""/46, 0x2e)

00:55:33 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x604, 0x0)

[ 1490.735227][T12050] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:33 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:33 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x700, 0x0)

00:55:33 executing program 3:
syslog(0x1, &(0x7f0000000040)=""/51, 0x33) (async)
syslog(0x3, &(0x7f0000000080)=""/236, 0xec)

00:55:33 executing program 0:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:33 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1020, 0x0)

00:55:33 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1490.913823][T12070] loop5: detected capacity change from 0 to 512
[ 1490.937697][T12070] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1490.945993][T12070] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1491.479224][T12057] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1491.492769][T12057] CPU: 0 PID: 12057 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1491.503266][T12057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1491.513345][T12057] Call Trace:
[ 1491.516644][T12057]  <TASK>
[ 1491.519647][T12057]  dump_stack_lvl+0xda/0x130
[ 1491.524241][T12057]  dump_stack+0x15/0x20
[ 1491.528495][T12057]  dump_header+0x95/0x3c0
[ 1491.532926][T12057]  oom_kill_process+0xe3/0x3e0
[ 1491.537694][T12057]  out_of_memory+0x9ca/0xc00
[ 1491.542316][T12057]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1491.548420][T12057]  mem_cgroup_out_of_memory+0x139/0x190
[ 1491.554112][T12057]  try_charge_memcg+0x75c/0xd30
[ 1491.558966][T12057]  obj_cgroup_charge_pages+0xab/0x130
[ 1491.564529][T12057]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1491.570158][T12057]  __alloc_pages+0x1bb/0x340
[ 1491.574776][T12057]  alloc_pages+0x3e1/0x4e0
[ 1491.579233][T12057]  __vmalloc_node_range+0x6d2/0xea0
[ 1491.584440][T12057]  kvmalloc_node+0x121/0x160
[ 1491.589090][T12057]  ? xt_alloc_table_info+0x3d/0x80
[ 1491.594241][T12057]  xt_alloc_table_info+0x3d/0x80
[ 1491.599298][T12057]  do_arpt_set_ctl+0x634/0x13b0
[ 1491.604160][T12057]  ? futex_unqueue+0xba/0xe0
[ 1491.608758][T12057]  ? futex_wait+0x3c3/0x410
[ 1491.613266][T12057]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1491.618429][T12057]  ? lock_sock_nested+0x10e/0x130
[ 1491.623524][T12057]  ? tcp_release_cb+0xfe/0x340
[ 1491.628377][T12057]  nf_setsockopt+0x18d/0x1b0
[ 1491.633029][T12057]  ip_setsockopt+0xe6/0x100
[ 1491.637602][T12057]  tcp_setsockopt+0x90/0xa0
[ 1491.642158][T12057]  sock_common_setsockopt+0x61/0x70
[ 1491.647445][T12057]  ? sock_common_recvmsg+0xe0/0xe0
[ 1491.652569][T12057]  __sys_setsockopt+0x1d7/0x240
[ 1491.657428][T12057]  __x64_sys_setsockopt+0x66/0x80
[ 1491.662457][T12057]  do_syscall_64+0x41/0xc0
[ 1491.666875][T12057]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1491.672595][T12057]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1491.678509][T12057] RIP: 0033:0x7f2c4ab0cae9
[ 1491.682947][T12057] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1491.702567][T12057] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1491.710976][T12057] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1491.718943][T12057] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1491.726997][T12057] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1491.735061][T12057] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1491.743028][T12057] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1491.751000][T12057]  </TASK>
[ 1491.754154][T12057] memory: usage 307200kB, limit 307200kB, failcnt 265805
[ 1491.761280][T12057] memory+swap: usage 308156kB, limit 9007199254740988kB, failcnt 0
[ 1491.769200][T12057] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1491.776575][T12057] Memory cgroup stats for /syz2:
[ 1491.776837][T12057] cache 4096
[ 1491.785045][T12057] rss 0
[ 1491.787906][T12057] shmem 0
[ 1491.790840][T12057] mapped_file 0
[ 1491.794357][T12057] dirty 0
[ 1491.797320][T12057] writeback 8192
[ 1491.800867][T12057] workingset_refault_anon 56260
[ 1491.805765][T12057] workingset_refault_file 21
[ 1491.810433][T12057] swap 978944
[ 1491.813784][T12057] pgpgin 201327
[ 1491.817283][T12057] pgpgout 201324
[ 1491.820855][T12057] pgfault 283598
[ 1491.824387][T12057] pgmajfault 21191
[ 1491.828126][T12057] inactive_anon 8192
[ 1491.832017][T12057] active_anon 0
[ 1491.835617][T12057] inactive_file 4096
[ 1491.839536][T12057] active_file 0
[ 1491.843073][T12057] unevictable 0
[ 1491.846592][T12057] hierarchical_memory_limit 314572800
[ 1491.851962][T12057] hierarchical_memsw_limit 9223372036854771712
[ 1491.858206][T12057] total_cache 4096
[ 1491.861927][T12057] total_rss 0
[ 1491.865231][T12057] total_shmem 0
[ 1491.868723][T12057] total_mapped_file 0
[ 1491.872697][T12057] total_dirty 0
[ 1491.876263][T12057] total_writeback 8192
[ 1491.880345][T12057] total_workingset_refault_anon 56260
[ 1491.885801][T12057] total_workingset_refault_file 21
[ 1491.890947][T12057] total_swap 978944
[ 1491.894782][T12057] total_pgpgin 201327
[ 1491.898763][T12057] total_pgpgout 201324
[ 1491.902821][T12057] total_pgfault 283598
[ 1491.906915][T12057] total_pgmajfault 21191
[ 1491.911211][T12057] total_inactive_anon 8192
[ 1491.915700][T12057] total_active_anon 0
[ 1491.919686][T12057] total_inactive_file 4096
[ 1491.924115][T12057] total_active_file 0
[ 1491.928245][T12057] total_unevictable 0
[ 1491.932225][T12057] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12055,uid=0
[ 1491.947605][T12057] Memory cgroup out of memory: Killed process 12055 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:35 executing program 0:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:35 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:35 executing program 3:
syslog(0x9, &(0x7f0000000140)=""/36, 0x24)
syslog(0x2, &(0x7f0000000180)=""/236, 0xec)
syslog(0xa, 0x0, 0x0)
syslog(0x1, &(0x7f0000000000)=""/187, 0xbb)
syslog(0x3, &(0x7f0000000280)=""/131, 0x83)

00:55:35 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xdf050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:35 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x3d0}, 0x0)

00:55:35 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1900, 0x0)

00:55:35 executing program 0:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:35 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1902, 0x0)

00:55:35 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1492.184047][T12077] loop5: detected capacity change from 0 to 512
[ 1492.197341][T12077] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1492.205651][T12077] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1492.214226][T12078] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:35 executing program 0:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:35 executing program 3:
syslog(0x9, &(0x7f0000000140)=""/36, 0x24)
syslog(0x2, &(0x7f0000000180)=""/236, 0xec)
syslog(0xa, 0x0, 0x0) (async)
syslog(0xa, 0x0, 0x0)
syslog(0x1, &(0x7f0000000000)=""/187, 0xbb)
syslog(0x3, &(0x7f0000000280)=""/131, 0x83)

00:55:35 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1d01, 0x0)

00:55:35 executing program 0:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

[ 1492.289012][T12090] loop5: detected capacity change from 0 to 512
[ 1492.326360][T12090] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1492.334714][T12090] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1492.892471][T12081] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1492.903851][T12081] CPU: 1 PID: 12081 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1492.914424][T12081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1492.924484][T12081] Call Trace:
[ 1492.927769][T12081]  <TASK>
[ 1492.930726][T12081]  dump_stack_lvl+0xda/0x130
[ 1492.935367][T12081]  dump_stack+0x15/0x20
[ 1492.939558][T12081]  dump_header+0x95/0x3c0
[ 1492.943896][T12081]  oom_kill_process+0xe3/0x3e0
[ 1492.948674][T12081]  out_of_memory+0x9ca/0xc00
[ 1492.953342][T12081]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1492.959461][T12081]  mem_cgroup_out_of_memory+0x139/0x190
[ 1492.965022][T12081]  try_charge_memcg+0x75c/0xd30
[ 1492.969965][T12081]  ? __alloc_pages+0x193/0x340
[ 1492.974841][T12081]  charge_memcg+0x51/0x200
[ 1492.979265][T12081]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1492.985303][T12081]  __read_swap_cache_async+0x339/0x590
[ 1492.990770][T12081]  swap_cluster_readahead+0x29d/0x4e0
[ 1492.996221][T12081]  swapin_readahead+0x8d/0x710
[ 1493.000994][T12081]  ? __filemap_get_folio+0x42b/0x500
[ 1493.006383][T12081]  ? swap_cache_get_folio+0x6e/0x200
[ 1493.011777][T12081]  do_swap_page+0x306/0x1780
[ 1493.016374][T12081]  ? asm_exc_page_fault+0x26/0x30
[ 1493.021487][T12081]  ? __rcu_read_lock+0x35/0x50
[ 1493.026295][T12081]  handle_mm_fault+0xa2e/0x2cc0
[ 1493.031157][T12081]  exc_page_fault+0x3ff/0x6c0
[ 1493.035882][T12081]  asm_exc_page_fault+0x26/0x30
[ 1493.040751][T12081] RIP: 0033:0x7f2c4aac6af4
[ 1493.045169][T12081] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1493.064793][T12081] RSP: 002b:00007ffcead55b10 EFLAGS: 00010283
[ 1493.070942][T12081] RAX: 0000000000000000 RBX: 00007f2c4ac2d090 RCX: 0000000000000000
[ 1493.078917][T12081] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1493.086966][T12081] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1493.094940][T12081] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016c81e
[ 1493.102958][T12081] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016c4dd
[ 1493.110936][T12081]  </TASK>
[ 1493.114070][T12081] memory: usage 307200kB, limit 307200kB, failcnt 266119
[ 1493.121198][T12081] memory+swap: usage 308176kB, limit 9007199254740988kB, failcnt 0
[ 1493.129151][T12081] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 1493.136487][T12081] Memory cgroup stats for /syz2:
[ 1493.136704][T12081] cache 4096
[ 1493.144973][T12081] rss 20480
[ 1493.148095][T12081] shmem 0
[ 1493.151033][T12081] mapped_file 0
[ 1493.154518][T12081] dirty 0
[ 1493.157514][T12081] writeback 0
[ 1493.160877][T12081] workingset_refault_anon 56333
[ 1493.165833][T12081] workingset_refault_file 21
[ 1493.170466][T12081] swap 999424
[ 1493.173815][T12081] pgpgin 201430
[ 1493.177375][T12081] pgpgout 201423
[ 1493.180927][T12081] pgfault 283767
[ 1493.184466][T12081] pgmajfault 21213
[ 1493.188277][T12081] inactive_anon 12288
[ 1493.192286][T12081] active_anon 8192
[ 1493.196127][T12081] inactive_file 0
[ 1493.199765][T12081] active_file 4096
[ 1493.203501][T12081] unevictable 0
[ 1493.207003][T12081] hierarchical_memory_limit 314572800
[ 1493.212377][T12081] hierarchical_memsw_limit 9223372036854771712
[ 1493.218582][T12081] total_cache 4096
[ 1493.222361][T12081] total_rss 20480
[ 1493.226054][T12081] total_shmem 0
[ 1493.229545][T12081] total_mapped_file 0
[ 1493.233514][T12081] total_dirty 0
[ 1493.236993][T12081] total_writeback 0
[ 1493.240801][T12081] total_workingset_refault_anon 56333
[ 1493.246195][T12081] total_workingset_refault_file 21
[ 1493.251342][T12081] total_swap 999424
[ 1493.255174][T12081] total_pgpgin 201430
[ 1493.259153][T12081] total_pgpgout 201423
[ 1493.263211][T12081] total_pgfault 283767
[ 1493.267360][T12081] total_pgmajfault 21213
[ 1493.271608][T12081] total_inactive_anon 12288
[ 1493.276174][T12081] total_active_anon 8192
[ 1493.280416][T12081] total_inactive_file 0
[ 1493.284625][T12081] total_active_file 4096
[ 1493.288894][T12081] total_unevictable 0
[ 1493.292908][T12081] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12081,uid=0
[ 1493.308227][T12081] Memory cgroup out of memory: Killed process 12081 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:36 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2000, 0x0)

00:55:36 executing program 3:
syslog(0x9, &(0x7f0000000140)=""/36, 0x24) (async)
syslog(0x2, &(0x7f0000000180)=""/236, 0xec)
syslog(0xa, 0x0, 0x0) (async)
syslog(0x1, &(0x7f0000000000)=""/187, 0xbb)
syslog(0x3, &(0x7f0000000280)=""/131, 0x83)

00:55:36 executing program 0:
syslog(0xa, &(0x7f0000000000)=""/46, 0x2e)

00:55:36 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x3d2}, 0x0)

00:55:36 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3V9rHGsZAPBnNtljeppjctSL44HTFltJi3Y3aWwbvGgriHcFpd7XkGxCyCYbspu2CUVS/ACCiBa88sobwQ8gSD+CCAW9FxVFtK0Xgn9GZnbTpstuk2J2t+z+fvBm3nd2Z57n3c3Ozjsz7AQwspKIuBURYxFxKSKmWvMLrRL7zXIuIp4/e7iUlSTS9M7fknzZrH14XZnTrcUmmpOO6rt764vVamW71S43NrbK9d29y2sbi6uV1crm/PzctYXrC1cXZk+kn1m/bnz9Tz/6/s++ceNXX77/+7t/ufjdLN/J1uOH+3GSmq9JMXstXhqPiO1eBBuAsVZ/ioNOBACAY8n2Tz8TEV/I9/+nYizfm8vZpQMAAIAhkd6cjH8nESkAAAAwtG7m18AmhVLret/JKBRKpeY1vJ+L9wvVWr3xpZXazuZy81rZ6SgWVtaqldnWNbXTUUyy9lxef9W+0taej4gPI+KHU6fydmmpVl0e9MEPAAAAGBGn28b//5hqjv8BAACAITM96AQAAACAnjP+BwAAgOFn/A8AAABD7Zu3b2clPbj/9fK93Z312r3Ly5X6emljZ6m0VNveKq3Waqv5b/ZtHLW+aq229ZXY3HlQblTqjXJ9d+/uRm1ns3F37bVbYAMAAAB99OHZJ79LImL/q6fyknkv+zPW+fln03+96GuCQM8U3ubJf+xdHkD/dfmaB0bA+KATAAamOOgEgIFLjni868U7vz75XAAAgN6Y+Xzn8//jjg3A0Hur8//AUHH+H0aX8/8wuor2AGDk9f78f5oeuS4AAKCnJvOSFEqtc4GTUSiUShEf5LcFKCYra9XKbER8OiJ+O1X8VNaey5dMjhwzAAAAAAAAAAAAAAAAAAAAAAAAAABNaZpECgAAAAy1iMKfk9b9v2amLky2Hx94L/nnVD6NiPs/ufPjB4uNxvZcNv/vL+c3HrfmXxnEEQwAAACg3cE4/WAcDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAn6fmzh0sHpZ9x//q1iJjuFH88JvLpRBQj4v0XSYwfWi6JiLETiL//KCI+6hQ/ydKK6VYW7fELEXGqP/E/SdO0Y/zTJxAfRtmTbPtzq9PnrxDn8mnnz/94q/y/um//Ci+3f2Ndtn8fHDPGx09/Ue4a/1HEx+Odtz8H8ZMu8c93WmGHF+U7397b6xY//WnETMfvn+S1WOXGxla5vrt3eW1jcbWyWtmcn5+7tnB94erCbHllrVpp/e0Y4wef/PK/bbP+kzbl/Y8u8aeP6P+FrFLs1rNDwZ4+ePbZZrXYtoo8/sXznd//j94QP/uf+GLreyB7fOagvt+sH3bm57850y23LP5yl/4f9f5fPLrruUvf+t4fjvlUAKAP6rt764vVamW755XHaZr2K5bKO1iZeDfSUDleZdBbJgAA4KS92ukfdCYAAAAAAAAAAAAAAAAAAAAwuvrxc2LtMfcH01UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgDf6XwAAAP//h13kZw==")

00:55:36 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xe0050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:36 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2010, 0x0)

00:55:36 executing program 0:
syslog(0xb, &(0x7f0000000000)=""/46, 0x2e)

00:55:36 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3902, 0x0)

[ 1493.557381][T12105] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:36 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:36 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3f00, 0x0)

00:55:36 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x25)

00:55:36 executing program 3:
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10)

00:55:36 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x4000, 0x0)

00:55:36 executing program 3:
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10)

[ 1493.634557][T12122] loop5: detected capacity change from 0 to 512
[ 1493.655402][T12122] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1493.663626][T12122] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:36 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x3de}, 0x0)

00:55:36 executing program 3:
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10)

[ 1493.779878][T12138] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1494.293920][T12118] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1494.305368][T12118] CPU: 0 PID: 12118 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1494.315842][T12118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1494.325915][T12118] Call Trace:
[ 1494.329198][T12118]  <TASK>
[ 1494.332132][T12118]  dump_stack_lvl+0xda/0x130
[ 1494.336754][T12118]  dump_stack+0x15/0x20
[ 1494.340916][T12118]  dump_header+0x95/0x3c0
[ 1494.345333][T12118]  oom_kill_process+0xe3/0x3e0
[ 1494.350121][T12118]  out_of_memory+0x9ca/0xc00
[ 1494.354727][T12118]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1494.360801][T12118]  mem_cgroup_out_of_memory+0x139/0x190
[ 1494.366503][T12118]  try_charge_memcg+0x75c/0xd30
[ 1494.371389][T12118]  ? __alloc_pages+0x193/0x340
[ 1494.376174][T12118]  charge_memcg+0x51/0x200
[ 1494.380712][T12118]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1494.386765][T12118]  __read_swap_cache_async+0x339/0x590
[ 1494.392337][T12118]  swap_cluster_readahead+0x29d/0x4e0
[ 1494.397733][T12118]  swapin_readahead+0x8d/0x710
[ 1494.402571][T12118]  ? __filemap_get_folio+0x42b/0x500
[ 1494.407874][T12118]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1494.413457][T12118]  ? swap_cache_get_folio+0x6e/0x200
[ 1494.418782][T12118]  do_swap_page+0x306/0x1780
[ 1494.423375][T12118]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1494.428667][T12118]  ? __rcu_read_lock+0x35/0x50
[ 1494.433433][T12118]  handle_mm_fault+0xa2e/0x2cc0
[ 1494.438295][T12118]  exc_page_fault+0x3ff/0x6c0
[ 1494.442979][T12118]  asm_exc_page_fault+0x26/0x30
[ 1494.447872][T12118] RIP: 0033:0x7f2c4aac6af4
[ 1494.452296][T12118] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1494.472040][T12118] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1494.478172][T12118] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1494.486177][T12118] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1494.494144][T12118] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1494.502113][T12118] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016cda7
[ 1494.510083][T12118] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016ca66
[ 1494.518145][T12118]  </TASK>
[ 1494.521270][T12118] memory: usage 307200kB, limit 307200kB, failcnt 266501
[ 1494.528330][T12118] memory+swap: usage 308136kB, limit 9007199254740988kB, failcnt 0
[ 1494.536255][T12118] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[ 1494.543548][T12118] Memory cgroup stats for /syz2:
[ 1494.543820][T12118] cache 4096
[ 1494.552056][T12118] rss 16384
[ 1494.555266][T12118] shmem 0
[ 1494.558232][T12118] mapped_file 0
[ 1494.561682][T12118] dirty 0
[ 1494.564625][T12118] writeback 8192
[ 1494.568212][T12118] workingset_refault_anon 56392
[ 1494.573134][T12118] workingset_refault_file 21
[ 1494.577778][T12118] swap 958464
[ 1494.581116][T12118] pgpgin 201519
[ 1494.584571][T12118] pgpgout 201510
[ 1494.588236][T12118] pgfault 283961
[ 1494.591780][T12118] pgmajfault 21230
[ 1494.595592][T12118] inactive_anon 8192
[ 1494.599488][T12118] active_anon 8192
[ 1494.603279][T12118] inactive_file 0
[ 1494.606942][T12118] active_file 4096
[ 1494.610687][T12118] unevictable 0
[ 1494.614153][T12118] hierarchical_memory_limit 314572800
[ 1494.619549][T12118] hierarchical_memsw_limit 9223372036854771712
[ 1494.625730][T12118] total_cache 4096
[ 1494.629449][T12118] total_rss 16384
[ 1494.633072][T12118] total_shmem 0
[ 1494.636586][T12118] total_mapped_file 0
[ 1494.640566][T12118] total_dirty 0
[ 1494.644017][T12118] total_writeback 8192
[ 1494.648131][T12118] total_workingset_refault_anon 56392
[ 1494.653510][T12118] total_workingset_refault_file 21
[ 1494.658673][T12118] total_swap 958464
[ 1494.662491][T12118] total_pgpgin 201519
[ 1494.666510][T12118] total_pgpgout 201510
[ 1494.670603][T12118] total_pgfault 283961
[ 1494.674716][T12118] total_pgmajfault 21230
[ 1494.678954][T12118] total_inactive_anon 8192
[ 1494.683446][T12118] total_active_anon 8192
[ 1494.687727][T12118] total_inactive_file 0
[ 1494.691885][T12118] total_active_file 4096
[ 1494.696227][T12118] total_unevictable 0
[ 1494.700211][T12118] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12118,uid=0
[ 1494.715564][T12118] Memory cgroup out of memory: Killed process 12118 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:37 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:37 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x4102, 0x0)

00:55:37 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
ioctl$EVIOCREVOKE(r1, 0x40044591, &(0x7f0000000040)=0x60)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:37 executing program 0:
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, 0xfffffffe}, 0x1c)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:37 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xe1050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:37 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x3ed}, 0x0)

00:55:37 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x5100, 0x0)

00:55:37 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x5903, 0x0)

[ 1494.954538][T12146] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1494.964410][T12144] loop5: detected capacity change from 0 to 512
[ 1494.981219][T12144] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1494.989442][T12144] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:37 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:37 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x5d02, 0x0)

00:55:38 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
ioctl$EVIOCREVOKE(r1, 0x40044591, &(0x7f0000000040)=0x60) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:38 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x6102, 0x0)

00:55:38 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x3fd}, 0x0)

00:55:38 executing program 0:
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, 0xfffffffe}, 0x1c)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, 0xfffffffe}, 0x1c) (async)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (async)

[ 1495.122393][T12162] loop5: detected capacity change from 0 to 512
[ 1495.140490][T12165] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1495.161674][T12162] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
00:55:38 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x6f03, 0x0)

[ 1495.169935][T12162] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:38 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x7f00, 0x0)

[ 1495.765901][T12152] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1495.777258][T12152] CPU: 1 PID: 12152 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1495.787674][T12152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1495.797729][T12152] Call Trace:
[ 1495.801002][T12152]  <TASK>
[ 1495.803927][T12152]  dump_stack_lvl+0xda/0x130
[ 1495.808597][T12152]  dump_stack+0x15/0x20
[ 1495.812958][T12152]  dump_header+0x95/0x3c0
[ 1495.817346][T12152]  oom_kill_process+0xe3/0x3e0
[ 1495.822161][T12152]  out_of_memory+0x9ca/0xc00
[ 1495.826764][T12152]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1495.832880][T12152]  mem_cgroup_out_of_memory+0x139/0x190
[ 1495.838431][T12152]  try_charge_memcg+0x75c/0xd30
[ 1495.843326][T12152]  ? __alloc_pages+0x193/0x340
[ 1495.848132][T12152]  charge_memcg+0x51/0x200
[ 1495.852714][T12152]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1495.858855][T12152]  __read_swap_cache_async+0x339/0x590
[ 1495.864317][T12152]  swap_cluster_readahead+0x29d/0x4e0
[ 1495.869695][T12152]  swapin_readahead+0x8d/0x710
[ 1495.874457][T12152]  ? __filemap_get_folio+0x42b/0x500
[ 1495.879776][T12152]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1495.885374][T12152]  ? swap_cache_get_folio+0x6e/0x200
[ 1495.890676][T12152]  do_swap_page+0x306/0x1780
[ 1495.895329][T12152]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1495.900676][T12152]  ? __rcu_read_lock+0x35/0x50
[ 1495.905452][T12152]  handle_mm_fault+0xa2e/0x2cc0
[ 1495.910379][T12152]  exc_page_fault+0x3ff/0x6c0
[ 1495.915062][T12152]  asm_exc_page_fault+0x26/0x30
[ 1495.920025][T12152] RIP: 0033:0x7f2c4aac6af4
[ 1495.924443][T12152] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1495.944080][T12152] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1495.950161][T12152] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1495.958131][T12152] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1495.966108][T12152] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1495.974080][T12152] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016d31b
[ 1495.982069][T12152] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016cfda
[ 1495.990090][T12152]  </TASK>
[ 1495.993180][T12152] memory: usage 307200kB, limit 307200kB, failcnt 266652
[ 1496.000315][T12152] memory+swap: usage 308240kB, limit 9007199254740988kB, failcnt 0
[ 1496.008280][T12152] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1496.015605][T12152] Memory cgroup stats for /syz2:
[ 1496.015944][T12152] cache 4096
[ 1496.024165][T12152] rss 8192
[ 1496.027234][T12152] shmem 0
[ 1496.030252][T12152] mapped_file 0
[ 1496.033728][T12152] dirty 0
[ 1496.036698][T12152] writeback 8192
[ 1496.040246][T12152] workingset_refault_anon 56435
[ 1496.045188][T12152] workingset_refault_file 21
[ 1496.049778][T12152] swap 1064960
[ 1496.053160][T12152] pgpgin 201592
[ 1496.056639][T12152] pgpgout 201587
[ 1496.060198][T12152] pgfault 284145
[ 1496.063758][T12152] pgmajfault 21250
[ 1496.067534][T12152] inactive_anon 0
[ 1496.071180][T12152] active_anon 0
[ 1496.074629][T12152] inactive_file 0
[ 1496.078298][T12152] active_file 4096
[ 1496.082029][T12152] unevictable 0
[ 1496.085602][T12152] hierarchical_memory_limit 314572800
[ 1496.090980][T12152] hierarchical_memsw_limit 9223372036854771712
[ 1496.097219][T12152] total_cache 4096
[ 1496.101059][T12152] total_rss 8192
[ 1496.104601][T12152] total_shmem 0
[ 1496.108091][T12152] total_mapped_file 0
[ 1496.112075][T12152] total_dirty 0
[ 1496.115566][T12152] total_writeback 8192
[ 1496.119742][T12152] total_workingset_refault_anon 56435
[ 1496.125128][T12152] total_workingset_refault_file 21
[ 1496.130247][T12152] total_swap 1064960
[ 1496.134138][T12152] total_pgpgin 201592
[ 1496.138147][T12152] total_pgpgout 201587
[ 1496.142311][T12152] total_pgfault 284145
[ 1496.146401][T12152] total_pgmajfault 21250
[ 1496.150742][T12152] total_inactive_anon 0
[ 1496.154974][T12152] total_active_anon 0
[ 1496.158948][T12152] total_inactive_file 0
[ 1496.163089][T12152] total_active_file 4096
[ 1496.167389][T12152] total_unevictable 0
[ 1496.171370][T12152] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12152,uid=0
[ 1496.186677][T12152] Memory cgroup out of memory: Killed process 12152 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:39 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:39 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x8503, 0x0)

00:55:39 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x500}, 0x0)

00:55:39 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async, rerun: 32)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) (rerun: 32)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
ioctl$EVIOCREVOKE(r1, 0x40044591, &(0x7f0000000040)=0x60)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:39 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xe2050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:39 executing program 0:
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, 0xfffffffe}, 0x1c)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:39 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x8b02, 0x0)

00:55:39 executing program 3:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x3ff]}, 0x8, 0x800)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000380), 0x8000, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000004c0), &(0x7f0000000500)=0xc)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r3=>0x0)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r3}, &(0x7f0000000180))
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000480)=r3, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)
sendmsg$nl_route(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=r0, @ANYRES16=0x0, @ANYBLOB="100af367ba394e0a674233979c0946f5663126c1dc45292080a4add1b89ab4a6d9fe2417f0eac82829599f74fdf2da260b8501b59be554c277de4b7c428cfe0b46329368c7c39567852239e21a211782ee5515728f2838a074279e9de335d2301afebe0c89897edfae27e582bfcceed0d4912ea95fa1213320bd31bb2fe43f0f3e923b65aa5930cca726de1694fce4597a2b1b9d6a88a230d58362e6ae5570dd92f0f79cf65691c43f"], 0x28}, 0x1, 0x0, 0x0, 0x100}, 0x20000005)
syslog(0x0, 0xfffffffffffffffd, 0x0)
syslog(0x4, &(0x7f0000000040)=""/114, 0xfffffffffffffeae)
r4 = syz_open_dev$vcsa(&(0x7f0000000200), 0x8000000000000000, 0x40100)
getsockopt$IPT_SO_GET_ENTRIES(r4, 0x0, 0x41, &(0x7f0000000240)={'mangle\x00', 0xb4, "90bd397ee290a2c09722bfc368ff4687de1bfa81ccb8e178ee745a65fe6d334a4be9dedaa276eec6206cc61fa163e2529387cb17c28594c7fbd0c6c9710104c2028475499cba2cc38bd3ff809141a569f92eb93679910716042b2526633b3ad559e21ab3c9119da99702c77fcedb328a0e9123c72745460659c33812181d4013e9d0511b0d9c9b2613a36a966274a6cc1e4b9d9b012640bcf187339373e0f9403e1e2f9855188c7c61582016af28064b83b5d017"}, &(0x7f0000000340)=0xd8)

00:55:39 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x9f00, 0x0)

[ 1496.486231][T12186] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1496.496225][T12190] loop5: detected capacity change from 0 to 512
[ 1496.521220][T12190] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1496.529544][T12190] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:39 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xa101, 0x0)

00:55:39 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x503}, 0x0)

00:55:39 executing program 3:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x3ff]}, 0x8, 0x800) (async)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1) (async)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000380), 0x8000, 0x0) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000004c0), &(0x7f0000000500)=0xc) (async)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r3=>0x0)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r3}, &(0x7f0000000180))
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000480)=r3, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03) (async)
sendmsg$nl_route(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=r0, @ANYRES16=0x0, @ANYBLOB="100af367ba394e0a674233979c0946f5663126c1dc45292080a4add1b89ab4a6d9fe2417f0eac82829599f74fdf2da260b8501b59be554c277de4b7c428cfe0b46329368c7c39567852239e21a211782ee5515728f2838a074279e9de335d2301afebe0c89897edfae27e582bfcceed0d4912ea95fa1213320bd31bb2fe43f0f3e923b65aa5930cca726de1694fce4597a2b1b9d6a88a230d58362e6ae5570dd92f0f79cf65691c43f"], 0x28}, 0x1, 0x0, 0x0, 0x100}, 0x20000005) (async)
syslog(0x0, 0xfffffffffffffffd, 0x0)
syslog(0x4, &(0x7f0000000040)=""/114, 0xfffffffffffffeae) (async)
r4 = syz_open_dev$vcsa(&(0x7f0000000200), 0x8000000000000000, 0x40100)
getsockopt$IPT_SO_GET_ENTRIES(r4, 0x0, 0x41, &(0x7f0000000240)={'mangle\x00', 0xb4, "90bd397ee290a2c09722bfc368ff4687de1bfa81ccb8e178ee745a65fe6d334a4be9dedaa276eec6206cc61fa163e2529387cb17c28594c7fbd0c6c9710104c2028475499cba2cc38bd3ff809141a569f92eb93679910716042b2526633b3ad559e21ab3c9119da99702c77fcedb328a0e9123c72745460659c33812181d4013e9d0511b0d9c9b2613a36a966274a6cc1e4b9d9b012640bcf187339373e0f9403e1e2f9855188c7c61582016af28064b83b5d017"}, &(0x7f0000000340)=0xd8)

00:55:39 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:39 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xa502, 0x0)

00:55:39 executing program 3:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x3ff]}, 0x8, 0x800)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1) (async)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000380), 0x8000, 0x0) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000004c0), &(0x7f0000000500)=0xc) (async)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)=<r3=>0x0)
timer_create(0x3, &(0x7f0000000240)={0x0, 0x21, 0x2, @tid=r3}, &(0x7f0000000180)) (async, rerun: 32)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000480)=r3, 0x12) (async, rerun: 32)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0) (async, rerun: 32)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03) (rerun: 32)
sendmsg$nl_route(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=r0, @ANYRES16=0x0, @ANYBLOB="100af367ba394e0a674233979c0946f5663126c1dc45292080a4add1b89ab4a6d9fe2417f0eac82829599f74fdf2da260b8501b59be554c277de4b7c428cfe0b46329368c7c39567852239e21a211782ee5515728f2838a074279e9de335d2301afebe0c89897edfae27e582bfcceed0d4912ea95fa1213320bd31bb2fe43f0f3e923b65aa5930cca726de1694fce4597a2b1b9d6a88a230d58362e6ae5570dd92f0f79cf65691c43f"], 0x28}, 0x1, 0x0, 0x0, 0x100}, 0x20000005) (async)
syslog(0x0, 0xfffffffffffffffd, 0x0)
syslog(0x4, &(0x7f0000000040)=""/114, 0xfffffffffffffeae) (async)
r4 = syz_open_dev$vcsa(&(0x7f0000000200), 0x8000000000000000, 0x40100)
getsockopt$IPT_SO_GET_ENTRIES(r4, 0x0, 0x41, &(0x7f0000000240)={'mangle\x00', 0xb4, "90bd397ee290a2c09722bfc368ff4687de1bfa81ccb8e178ee745a65fe6d334a4be9dedaa276eec6206cc61fa163e2529387cb17c28594c7fbd0c6c9710104c2028475499cba2cc38bd3ff809141a569f92eb93679910716042b2526633b3ad559e21ab3c9119da99702c77fcedb328a0e9123c72745460659c33812181d4013e9d0511b0d9c9b2613a36a966274a6cc1e4b9d9b012640bcf187339373e0f9403e1e2f9855188c7c61582016af28064b83b5d017"}, &(0x7f0000000340)=0xd8)

[ 1496.634238][T12204] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:39 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xa900, 0x0)

[ 1496.715479][T12215] loop5: detected capacity change from 0 to 512
[ 1496.761353][T12215] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1496.769701][T12215] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1497.261982][T12192] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1497.273344][T12192] CPU: 1 PID: 12192 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1497.283797][T12192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1497.293987][T12192] Call Trace:
[ 1497.297272][T12192]  <TASK>
[ 1497.300206][T12192]  dump_stack_lvl+0xda/0x130
[ 1497.304830][T12192]  dump_stack+0x15/0x20
[ 1497.309032][T12192]  dump_header+0x95/0x3c0
[ 1497.313368][T12192]  oom_kill_process+0xe3/0x3e0
[ 1497.318198][T12192]  out_of_memory+0x9ca/0xc00
[ 1497.322796][T12192]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1497.328897][T12192]  mem_cgroup_out_of_memory+0x139/0x190
[ 1497.334470][T12192]  try_charge_memcg+0x75c/0xd30
[ 1497.339345][T12192]  ? __alloc_pages+0x193/0x340
[ 1497.344180][T12192]  charge_memcg+0x51/0x200
[ 1497.348654][T12192]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1497.354664][T12192]  __read_swap_cache_async+0x339/0x590
[ 1497.360171][T12192]  swap_cluster_readahead+0x29d/0x4e0
[ 1497.365613][T12192]  swapin_readahead+0x8d/0x710
[ 1497.370387][T12192]  ? __filemap_get_folio+0x42b/0x500
[ 1497.375687][T12192]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1497.381256][T12192]  ? swap_cache_get_folio+0x6e/0x200
[ 1497.386611][T12192]  do_swap_page+0x306/0x1780
[ 1497.391269][T12192]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1497.396573][T12192]  ? __rcu_read_lock+0x35/0x50
[ 1497.401367][T12192]  handle_mm_fault+0xa2e/0x2cc0
[ 1497.406241][T12192]  exc_page_fault+0x3ff/0x6c0
[ 1497.410940][T12192]  asm_exc_page_fault+0x26/0x30
[ 1497.415846][T12192] RIP: 0033:0x7f2c4aac6af4
[ 1497.420257][T12192] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1497.439862][T12192] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1497.445937][T12192] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1497.453971][T12192] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1497.461958][T12192] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1497.470003][T12192] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016d8fa
[ 1497.477975][T12192] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016d5b9
[ 1497.485951][T12192]  </TASK>
[ 1497.489113][T12192] memory: usage 307200kB, limit 307200kB, failcnt 267216
[ 1497.496177][T12192] memory+swap: usage 308220kB, limit 9007199254740988kB, failcnt 0
[ 1497.504110][T12192] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1497.511493][T12192] Memory cgroup stats for /syz2:
[ 1497.511675][T12192] cache 4096
[ 1497.519843][T12192] rss 8192
[ 1497.522914][T12192] shmem 0
[ 1497.525906][T12192] mapped_file 0
[ 1497.529367][T12192] dirty 0
[ 1497.532300][T12192] writeback 8192
[ 1497.535872][T12192] workingset_refault_anon 56479
[ 1497.540737][T12192] workingset_refault_file 21
[ 1497.545361][T12192] swap 1044480
[ 1497.548734][T12192] pgpgin 201666
[ 1497.552184][T12192] pgpgout 201663
[ 1497.555755][T12192] pgfault 284289
[ 1497.559309][T12192] pgmajfault 21273
[ 1497.563077][T12192] inactive_anon 0
[ 1497.566755][T12192] active_anon 0
[ 1497.570336][T12192] inactive_file 4096
[ 1497.574219][T12192] active_file 0
[ 1497.577752][T12192] unevictable 0
[ 1497.581218][T12192] hierarchical_memory_limit 314572800
[ 1497.586695][T12192] hierarchical_memsw_limit 9223372036854771712
[ 1497.592889][T12192] total_cache 4096
[ 1497.596655][T12192] total_rss 8192
[ 1497.600273][T12192] total_shmem 0
[ 1497.603751][T12192] total_mapped_file 0
[ 1497.607855][T12192] total_dirty 0
[ 1497.611405][T12192] total_writeback 8192
[ 1497.615632][T12192] total_workingset_refault_anon 56479
[ 1497.621001][T12192] total_workingset_refault_file 21
[ 1497.626139][T12192] total_swap 1044480
[ 1497.630057][T12192] total_pgpgin 201666
[ 1497.634034][T12192] total_pgpgout 201663
[ 1497.638214][T12192] total_pgfault 284289
[ 1497.642412][T12192] total_pgmajfault 21273
[ 1497.646747][T12192] total_inactive_anon 0
[ 1497.650905][T12192] total_active_anon 0
[ 1497.654945][T12192] total_inactive_file 4096
[ 1497.659414][T12192] total_active_file 0
[ 1497.663410][T12192] total_unevictable 0
[ 1497.667431][T12192] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12192,uid=0
[ 1497.682870][T12192] Memory cgroup out of memory: Killed process 12192 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:41 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f00000000c0)={{}, 0x0, 0x0, @inherit={0x50, &(0x7f0000001200)=ANY=[@ANYBLOB="000000000000000001000000180000000300000000000000000400000000000008000000000000000500000000000000010000000000000003000000000000001b2300000000000d0300000000000000560437fb3104ba000fa2a9577670b62222c80f3c0943529f753bdbad3d847d6016d89ec8958bd30b19c366467ad990a9c31c9f372d8327656649e4ed71eb6c5274d5a6d161ab5270d2264b2458547a8b5148cc7cc1e9a4f117637ff7ee7a336640bf4932a989d4786513d7d8a9e561a45696eb39fd66212c525184f56b7f6bbdf7ccb26134b1ef77eaa40b9aff02418288c74002c24c3beab487766785389042221174962ed8c21515e2d11bbd5107f9bbc4e5aa895c3c90b477e4bb7cf41c189fd04d92b359102adce95692977332a44d6cd48403cab7a8ff71c4b1b1519418d388f300000000"]}, @devid})
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:41 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x600}, 0x0)

00:55:41 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x0, &(0x7f00000000c0)=""/225, 0xe1)
syslog(0x2, &(0x7f0000000040)=""/118, 0x76)

00:55:41 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xe3050000, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:41 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:41 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xaf00, 0x0)

00:55:41 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xb101, 0x0)

[ 1498.130732][T12228] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1498.156273][T12230] loop5: detected capacity change from 0 to 512
00:55:41 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xb103, 0x0)

00:55:41 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x0, &(0x7f00000000c0)=""/225, 0xe1)
syslog(0x2, &(0x7f0000000040)=""/118, 0x76)

00:55:41 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x700}, 0x0)

00:55:41 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xc503, 0x0)

[ 1498.209579][T12230] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1498.217875][T12230] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:41 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xc901, 0x0)

[ 1498.297391][T12247] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:41 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) (async)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f00000000c0)={{}, 0x0, 0x0, @inherit={0x50, &(0x7f0000001200)=ANY=[@ANYBLOB="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"]}, @devid}) (async)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

[ 1498.892583][T12231] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1498.904074][T12231] CPU: 1 PID: 12231 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1498.914785][T12231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1498.924963][T12231] Call Trace:
[ 1498.928313][T12231]  <TASK>
[ 1498.931325][T12231]  dump_stack_lvl+0xda/0x130
[ 1498.935929][T12231]  dump_stack+0x15/0x20
[ 1498.940118][T12231]  dump_header+0x95/0x3c0
[ 1498.944471][T12231]  oom_kill_process+0xe3/0x3e0
[ 1498.949268][T12231]  out_of_memory+0x9ca/0xc00
[ 1498.953902][T12231]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1498.959988][T12231]  mem_cgroup_out_of_memory+0x139/0x190
[ 1498.965646][T12231]  try_charge_memcg+0x75c/0xd30
[ 1498.970567][T12231]  ? __alloc_pages+0x193/0x340
[ 1498.975350][T12231]  charge_memcg+0x51/0x200
[ 1498.979850][T12231]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1498.985856][T12231]  __read_swap_cache_async+0x339/0x590
[ 1498.991343][T12231]  swap_cluster_readahead+0x29d/0x4e0
[ 1498.996778][T12231]  swapin_readahead+0x8d/0x710
[ 1499.001567][T12231]  ? __filemap_get_folio+0x42b/0x500
[ 1499.006958][T12231]  ? _raw_spin_unlock+0x26/0x40
[ 1499.011907][T12231]  ? finish_task_switch+0xac/0x280
[ 1499.018180][T12231]  ? swap_cache_get_folio+0x6e/0x200
[ 1499.023480][T12231]  do_swap_page+0x306/0x1780
[ 1499.028134][T12231]  ? __rcu_read_lock+0x35/0x50
[ 1499.033008][T12231]  handle_mm_fault+0xa2e/0x2cc0
[ 1499.037891][T12231]  exc_page_fault+0x3ff/0x6c0
[ 1499.042595][T12231]  asm_exc_page_fault+0x26/0x30
[ 1499.047503][T12231] RIP: 0033:0x7f2c4aac6af4
[ 1499.051922][T12231] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1499.071536][T12231] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1499.077613][T12231] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1499.085594][T12231] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1499.093611][T12231] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1499.101594][T12231] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016df6b
[ 1499.109604][T12231] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016dc2a
[ 1499.117676][T12231]  </TASK>
[ 1499.120939][T12231] memory: usage 307200kB, limit 307200kB, failcnt 268818
[ 1499.128049][T12231] memory+swap: usage 308140kB, limit 9007199254740988kB, failcnt 0
[ 1499.136011][T12231] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[ 1499.143316][T12231] Memory cgroup stats for /syz2:
[ 1499.144458][T12231] cache 4096
[ 1499.152687][T12231] rss 8192
[ 1499.155780][T12231] shmem 0
[ 1499.158727][T12231] mapped_file 0
[ 1499.162233][T12231] dirty 0
[ 1499.165232][T12231] writeback 0
[ 1499.168605][T12231] workingset_refault_anon 56537
[ 1499.173514][T12231] workingset_refault_file 21
[ 1499.178170][T12231] swap 962560
[ 1499.181455][T12231] pgpgin 201754
[ 1499.185005][T12231] pgpgout 201747
[ 1499.188548][T12231] pgfault 284469
[ 1499.192085][T12231] pgmajfault 21295
[ 1499.195838][T12231] inactive_anon 0
[ 1499.199480][T12231] active_anon 8192
[ 1499.203231][T12231] inactive_file 0
[ 1499.206978][T12231] active_file 4096
[ 1499.210714][T12231] unevictable 0
[ 1499.214163][T12231] hierarchical_memory_limit 314572800
[ 1499.219554][T12231] hierarchical_memsw_limit 9223372036854771712
[ 1499.225731][T12231] total_cache 4096
[ 1499.229448][T12231] total_rss 8192
[ 1499.232994][T12231] total_shmem 0
[ 1499.236527][T12231] total_mapped_file 0
[ 1499.240513][T12231] total_dirty 0
[ 1499.243957][T12231] total_writeback 0
[ 1499.247821][T12231] total_workingset_refault_anon 56537
[ 1499.253271][T12231] total_workingset_refault_file 21
[ 1499.258415][T12231] total_swap 962560
[ 1499.264281][T12231] total_pgpgin 201754
[ 1499.268287][T12231] total_pgpgout 201747
[ 1499.272352][T12231] total_pgfault 284469
[ 1499.276463][T12231] total_pgmajfault 21295
[ 1499.280706][T12231] total_inactive_anon 0
[ 1499.284946][T12231] total_active_anon 8192
[ 1499.289188][T12231] total_inactive_file 0
[ 1499.293332][T12231] total_active_file 4096
[ 1499.297607][T12231] total_unevictable 0
[ 1499.301592][T12231] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12231,uid=0
[ 1499.316931][T12231] Memory cgroup out of memory: Killed process 12231 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xf4ffffff, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:42 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:42 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xc902, 0x0)

00:55:42 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x900}, 0x0)

00:55:42 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x0, &(0x7f00000000c0)=""/225, 0xe1)
syslog(0x2, &(0x7f0000000040)=""/118, 0x76)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x0, &(0x7f00000000c0)=""/225, 0xe1) (async)
syslog(0x2, &(0x7f0000000040)=""/118, 0x76) (async)

00:55:42 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (async)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f00000000c0)={{}, 0x0, 0x0, @inherit={0x50, &(0x7f0000001200)=ANY=[@ANYBLOB="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"]}, @devid}) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f00000000c0)={{}, 0x0, 0x0, @inherit={0x50, &(0x7f0000001200)=ANY=[@ANYBLOB="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"]}, @devid})
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:42 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xd502, 0x0)

[ 1499.543182][T12258] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1499.573686][T12260] loop5: detected capacity change from 0 to 512
00:55:42 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xd700, 0x0)

00:55:42 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/46, 0x2e)

00:55:42 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xd703, 0x0)

[ 1499.617306][T12260] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1499.625653][T12260] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:42 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x2, 0x0, 0x0)

00:55:42 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xa00}, 0x0)

[ 1499.743449][T12283] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1500.256712][T12265] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1500.270230][T12265] CPU: 0 PID: 12265 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1500.280756][T12265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1500.290812][T12265] Call Trace:
[ 1500.294095][T12265]  <TASK>
[ 1500.297111][T12265]  dump_stack_lvl+0xda/0x130
[ 1500.301738][T12265]  dump_stack+0x15/0x20
[ 1500.305899][T12265]  dump_header+0x95/0x3c0
[ 1500.310323][T12265]  oom_kill_process+0xe3/0x3e0
[ 1500.315099][T12265]  out_of_memory+0x9ca/0xc00
[ 1500.319707][T12265]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1500.325817][T12265]  mem_cgroup_out_of_memory+0x139/0x190
[ 1500.331375][T12265]  try_charge_memcg+0x75c/0xd30
[ 1500.336236][T12265]  obj_cgroup_charge_pages+0xab/0x130
[ 1500.341628][T12265]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1500.347237][T12265]  __alloc_pages+0x1bb/0x340
[ 1500.351860][T12265]  alloc_pages+0x3e1/0x4e0
[ 1500.356381][T12265]  __vmalloc_node_range+0x6d2/0xea0
[ 1500.361610][T12265]  kvmalloc_node+0x121/0x160
[ 1500.366274][T12265]  ? xt_alloc_table_info+0x3d/0x80
[ 1500.371459][T12265]  xt_alloc_table_info+0x3d/0x80
[ 1500.376439][T12265]  do_arpt_set_ctl+0x634/0x13b0
[ 1500.382095][T12265]  ? futex_unqueue+0xba/0xe0
[ 1500.386731][T12265]  ? futex_wait+0x3c3/0x410
[ 1500.391239][T12265]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1500.396361][T12265]  ? lock_sock_nested+0x10e/0x130
[ 1500.401415][T12265]  ? tcp_release_cb+0xfe/0x340
[ 1500.406208][T12265]  nf_setsockopt+0x18d/0x1b0
[ 1500.410817][T12265]  ip_setsockopt+0xe6/0x100
[ 1500.415380][T12265]  tcp_setsockopt+0x90/0xa0
[ 1500.419944][T12265]  sock_common_setsockopt+0x61/0x70
[ 1500.425230][T12265]  ? sock_common_recvmsg+0xe0/0xe0
[ 1500.430389][T12265]  __sys_setsockopt+0x1d7/0x240
[ 1500.435283][T12265]  __x64_sys_setsockopt+0x66/0x80
[ 1500.440349][T12265]  do_syscall_64+0x41/0xc0
[ 1500.444887][T12265]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1500.450677][T12265]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1500.456630][T12265] RIP: 0033:0x7f2c4ab0cae9
[ 1500.461110][T12265] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1500.480733][T12265] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1500.489154][T12265] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1500.497131][T12265] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1500.505106][T12265] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1500.513085][T12265] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1500.521074][T12265] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1500.529066][T12265]  </TASK>
[ 1500.532369][T12265] memory: usage 307200kB, limit 307200kB, failcnt 269127
[ 1500.539515][T12265] memory+swap: usage 308220kB, limit 9007199254740988kB, failcnt 0
[ 1500.547514][T12265] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1500.554860][T12265] Memory cgroup stats for /syz2:
[ 1500.556699][T12265] cache 4096
[ 1500.564941][T12265] rss 8192
[ 1500.567986][T12265] shmem 0
[ 1500.570931][T12265] mapped_file 0
[ 1500.574467][T12265] dirty 0
[ 1500.577450][T12265] writeback 4096
[ 1500.581007][T12265] workingset_refault_anon 56592
[ 1500.585892][T12265] workingset_refault_file 21
[ 1500.590557][T12265] swap 1044480
[ 1500.593961][T12265] pgpgin 201839
[ 1500.597461][T12265] pgpgout 201834
[ 1500.601011][T12265] pgfault 284663
[ 1500.604578][T12265] pgmajfault 21306
[ 1500.608345][T12265] inactive_anon 0
[ 1500.612097][T12265] active_anon 0
[ 1500.615578][T12265] inactive_file 0
[ 1500.619227][T12265] active_file 4096
[ 1500.622939][T12265] unevictable 0
[ 1500.626416][T12265] hierarchical_memory_limit 314572800
[ 1500.631796][T12265] hierarchical_memsw_limit 9223372036854771712
[ 1500.637982][T12265] total_cache 4096
[ 1500.641812][T12265] total_rss 8192
[ 1500.645425][T12265] total_shmem 0
[ 1500.648972][T12265] total_mapped_file 0
[ 1500.653066][T12265] total_dirty 0
[ 1500.656609][T12265] total_writeback 4096
[ 1500.660698][T12265] total_workingset_refault_anon 56592
[ 1500.666101][T12265] total_workingset_refault_file 21
[ 1500.671352][T12265] total_swap 1044480
[ 1500.675265][T12265] total_pgpgin 201839
[ 1500.679249][T12265] total_pgpgout 201834
[ 1500.683310][T12265] total_pgfault 284663
[ 1500.687401][T12265] total_pgmajfault 21306
[ 1500.691654][T12265] total_inactive_anon 0
[ 1500.695847][T12265] total_active_anon 0
[ 1500.699877][T12265] total_inactive_file 0
[ 1500.704119][T12265] total_active_file 4096
[ 1500.708386][T12265] total_unevictable 0
[ 1500.712370][T12265] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12259,uid=0
[ 1500.727678][T12265] Memory cgroup out of memory: Killed process 12259 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:43 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/46, 0x2e)

00:55:43 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:43 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xd903, 0x0)

00:55:43 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xc00}, 0x0)

00:55:43 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xf5ffffff, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:43 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x2, 0x0, 0x0)

00:55:43 executing program 3:
syslog(0x0, &(0x7f0000000000)=""/46, 0x2e)

00:55:43 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x2, 0x0, 0x0)

00:55:43 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xe502, 0x0)

00:55:43 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x4, &(0x7f0000000040)=""/131, 0x83)
syslog(0xa, &(0x7f0000000100)=""/4096, 0x1000)

[ 1500.951921][T12294] loop5: detected capacity change from 0 to 512
[ 1500.959884][T12293] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1500.981971][T12294] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1500.990229][T12294] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:43 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xe900, 0x0)

00:55:43 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:43 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xe902, 0x0)

00:55:44 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x4, &(0x7f0000000040)=""/131, 0x83) (async)
syslog(0xa, &(0x7f0000000100)=""/4096, 0x1000)

00:55:44 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xe903, 0x0)

00:55:44 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0xf00}, 0x0)

[ 1501.124390][T12314] loop5: detected capacity change from 0 to 512
[ 1501.177377][T12314] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1501.185731][T12314] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1501.187641][T12321] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1501.694014][T12298] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1501.705472][T12298] CPU: 0 PID: 12298 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1501.715880][T12298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1501.725993][T12298] Call Trace:
[ 1501.729271][T12298]  <TASK>
[ 1501.732201][T12298]  dump_stack_lvl+0xda/0x130
[ 1501.736835][T12298]  dump_stack+0x15/0x20
[ 1501.741033][T12298]  dump_header+0x95/0x3c0
[ 1501.745371][T12298]  oom_kill_process+0xe3/0x3e0
[ 1501.750151][T12298]  out_of_memory+0x9ca/0xc00
[ 1501.754746][T12298]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1501.760846][T12298]  mem_cgroup_out_of_memory+0x139/0x190
[ 1501.766498][T12298]  try_charge_memcg+0x75c/0xd30
[ 1501.771362][T12298]  ? __alloc_pages+0x193/0x340
[ 1501.776208][T12298]  charge_memcg+0x51/0x200
[ 1501.780645][T12298]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1501.786660][T12298]  __read_swap_cache_async+0x339/0x590
[ 1501.792181][T12298]  swap_cluster_readahead+0x29d/0x4e0
[ 1501.797557][T12298]  swapin_readahead+0x8d/0x710
[ 1501.802319][T12298]  ? __filemap_get_folio+0x42b/0x500
[ 1501.807696][T12298]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1501.813274][T12298]  ? swap_cache_get_folio+0x6e/0x200
[ 1501.818652][T12298]  do_swap_page+0x306/0x1780
[ 1501.823244][T12298]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1501.828550][T12298]  ? __rcu_read_lock+0x35/0x50
[ 1501.833317][T12298]  handle_mm_fault+0xa2e/0x2cc0
[ 1501.838177][T12298]  exc_page_fault+0x3ff/0x6c0
[ 1501.842909][T12298]  asm_exc_page_fault+0x26/0x30
[ 1501.847774][T12298] RIP: 0033:0x7f2c4aac6af4
[ 1501.852218][T12298] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1501.871898][T12298] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1501.877999][T12298] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1501.885984][T12298] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1501.893970][T12298] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1501.901997][T12298] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016ea7d
[ 1501.910130][T12298] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016e73c
[ 1501.918122][T12298]  </TASK>
[ 1501.921195][T12298] memory: usage 307200kB, limit 307200kB, failcnt 269335
[ 1501.928319][T12298] memory+swap: usage 308180kB, limit 9007199254740988kB, failcnt 0
[ 1501.936341][T12298] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1501.943636][T12298] Memory cgroup stats for /syz2:
[ 1501.943897][T12298] cache 4096
[ 1501.952042][T12298] rss 0
[ 1501.954900][T12298] shmem 0
[ 1501.957871][T12298] mapped_file 0
[ 1501.961389][T12298] dirty 0
[ 1501.964347][T12298] writeback 16384
[ 1501.968002][T12298] workingset_refault_anon 56690
[ 1501.972906][T12298] workingset_refault_file 21
[ 1501.977521][T12298] swap 1003520
[ 1501.980897][T12298] pgpgin 201967
[ 1501.984351][T12298] pgpgout 201962
[ 1501.988007][T12298] pgfault 284885
[ 1501.991570][T12298] pgmajfault 21341
[ 1501.995316][T12298] inactive_anon 16384
[ 1501.999376][T12298] active_anon 0
[ 1502.002831][T12298] inactive_file 4096
[ 1502.006760][T12298] active_file 0
[ 1502.010222][T12298] unevictable 0
[ 1502.013778][T12298] hierarchical_memory_limit 314572800
[ 1502.019208][T12298] hierarchical_memsw_limit 9223372036854771712
[ 1502.025415][T12298] total_cache 4096
[ 1502.029250][T12298] total_rss 0
[ 1502.032555][T12298] total_shmem 0
[ 1502.036083][T12298] total_mapped_file 0
[ 1502.040112][T12298] total_dirty 0
[ 1502.043592][T12298] total_writeback 16384
[ 1502.047829][T12298] total_workingset_refault_anon 56690
[ 1502.053216][T12298] total_workingset_refault_file 21
[ 1502.058360][T12298] total_swap 1003520
[ 1502.062266][T12298] total_pgpgin 201967
[ 1502.066271][T12298] total_pgpgout 201962
[ 1502.070371][T12298] total_pgfault 284885
[ 1502.074477][T12298] total_pgmajfault 21341
[ 1502.078806][T12298] total_inactive_anon 16384
[ 1502.083333][T12298] total_active_anon 0
[ 1502.087403][T12298] total_inactive_file 4096
[ 1502.091902][T12298] total_active_file 0
[ 1502.095922][T12298] total_unevictable 0
[ 1502.099935][T12298] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12298,uid=0
[ 1502.115240][T12298] Memory cgroup out of memory: Killed process 12298 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:45 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x4, &(0x7f0000000040)=""/131, 0x83)
syslog(0xa, &(0x7f0000000100)=""/4096, 0x1000)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x4, &(0x7f0000000040)=""/131, 0x83) (async)
syslog(0xa, &(0x7f0000000100)=""/4096, 0x1000) (async)

00:55:45 executing program 0:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x0, &(0x7f0000000140)=""/246, 0xf6)
syslog(0x9, &(0x7f0000000040)=""/196, 0xc4)

00:55:45 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xfbffffff, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:45 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xedc0, 0x0)

00:55:45 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:45 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1100}, 0x0)

00:55:45 executing program 0:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x0, &(0x7f0000000140)=""/246, 0xf6) (async)
syslog(0x9, &(0x7f0000000040)=""/196, 0xc4)

00:55:45 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8a94300}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r2, 0x10, 0x70bd28, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
syslog(0x3, &(0x7f0000000140)=""/46, 0x2e)
syslog(0x3, &(0x7f0000000040)=""/238, 0xee)

00:55:45 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xf102, 0x0)

[ 1502.378391][T12329] loop5: detected capacity change from 0 to 512
[ 1502.413949][T12336] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:45 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xf503, 0x0)

00:55:45 executing program 0:
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x0, &(0x7f0000000140)=""/246, 0xf6) (async)
syslog(0x0, &(0x7f0000000140)=""/246, 0xf6)
syslog(0x9, &(0x7f0000000040)=""/196, 0xc4)

[ 1502.427399][T12329] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1502.435639][T12329] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:45 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xf903, 0x0)

00:55:45 executing program 0:
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect={0x800})
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:45 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xfb03, 0x0)

[ 1503.149832][T12337] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1503.161275][T12337] CPU: 1 PID: 12337 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1503.171706][T12337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1503.181762][T12337] Call Trace:
[ 1503.185055][T12337]  <TASK>
[ 1503.187988][T12337]  dump_stack_lvl+0xda/0x130
[ 1503.192591][T12337]  dump_stack+0x15/0x20
[ 1503.196820][T12337]  dump_header+0x95/0x3c0
[ 1503.201164][T12337]  oom_kill_process+0xe3/0x3e0
[ 1503.206059][T12337]  out_of_memory+0x9ca/0xc00
[ 1503.210657][T12337]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1503.216792][T12337]  mem_cgroup_out_of_memory+0x139/0x190
[ 1503.222348][T12337]  try_charge_memcg+0x75c/0xd30
[ 1503.227198][T12337]  ? __alloc_pages+0x193/0x340
[ 1503.232042][T12337]  charge_memcg+0x51/0x200
[ 1503.236534][T12337]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1503.242540][T12337]  __read_swap_cache_async+0x339/0x590
[ 1503.248003][T12337]  swap_cluster_readahead+0x29d/0x4e0
[ 1503.253516][T12337]  swapin_readahead+0x8d/0x710
[ 1503.258377][T12337]  ? __filemap_get_folio+0x42b/0x500
[ 1503.263809][T12337]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1503.269366][T12337]  ? swap_cache_get_folio+0x6e/0x200
[ 1503.274679][T12337]  do_swap_page+0x306/0x1780
[ 1503.279313][T12337]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1503.284685][T12337]  ? __rcu_read_lock+0x35/0x50
[ 1503.289449][T12337]  handle_mm_fault+0xa2e/0x2cc0
[ 1503.294320][T12337]  exc_page_fault+0x3ff/0x6c0
[ 1503.299001][T12337]  asm_exc_page_fault+0x26/0x30
[ 1503.303873][T12337] RIP: 0033:0x7f2c4aac6af4
[ 1503.308357][T12337] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1503.328002][T12337] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1503.334065][T12337] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1503.342097][T12337] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1503.350064][T12337] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1503.358032][T12337] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016f006
[ 1503.366091][T12337] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016ecc5
[ 1503.374078][T12337]  </TASK>
[ 1503.377284][T12337] memory: usage 307200kB, limit 307200kB, failcnt 269728
[ 1503.384363][T12337] memory+swap: usage 308264kB, limit 9007199254740988kB, failcnt 0
[ 1503.392319][T12337] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[ 1503.399711][T12337] Memory cgroup stats for /syz2:
[ 1503.399911][T12337] cache 4096
[ 1503.408167][T12337] rss 8192
[ 1503.411180][T12337] shmem 0
[ 1503.414105][T12337] mapped_file 0
[ 1503.417624][T12337] dirty 0
[ 1503.420691][T12337] writeback 8192
[ 1503.424384][T12337] workingset_refault_anon 56743
[ 1503.429277][T12337] workingset_refault_file 21
[ 1503.433869][T12337] swap 1089536
[ 1503.437355][T12337] pgpgin 202050
[ 1503.440816][T12337] pgpgout 202044
[ 1503.444348][T12337] pgfault 285058
[ 1503.447991][T12337] pgmajfault 21365
[ 1503.451713][T12337] inactive_anon 20480
[ 1503.455722][T12337] active_anon 0
[ 1503.459186][T12337] inactive_file 4096
[ 1503.463099][T12337] active_file 0
[ 1503.466587][T12337] unevictable 0
[ 1503.470176][T12337] hierarchical_memory_limit 314572800
[ 1503.475623][T12337] hierarchical_memsw_limit 9223372036854771712
[ 1503.481780][T12337] total_cache 4096
[ 1503.485537][T12337] total_rss 8192
[ 1503.489080][T12337] total_shmem 0
[ 1503.492525][T12337] total_mapped_file 0
[ 1503.496554][T12337] total_dirty 0
[ 1503.500006][T12337] total_writeback 8192
[ 1503.504064][T12337] total_workingset_refault_anon 56743
[ 1503.509554][T12337] total_workingset_refault_file 21
[ 1503.514711][T12337] total_swap 1089536
[ 1503.518599][T12337] total_pgpgin 202050
[ 1503.522602][T12337] total_pgpgout 202044
[ 1503.526697][T12337] total_pgfault 285058
[ 1503.530823][T12337] total_pgmajfault 21365
[ 1503.535167][T12337] total_inactive_anon 20480
[ 1503.539730][T12337] total_active_anon 0
[ 1503.543703][T12337] total_inactive_file 4096
[ 1503.548161][T12337] total_active_file 0
[ 1503.552169][T12337] total_unevictable 0
[ 1503.556181][T12337] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12337,uid=0
[ 1503.571601][T12337] Memory cgroup out of memory: Killed process 12337 (syz-executor.2) total-vm:46428kB, anon-rss:412kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:46 executing program 0:
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect={0x800})
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)

00:55:46 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xfeffffff, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:46 executing program 3:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (async)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8a94300}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r2, 0x10, 0x70bd28, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x0) (async)
syslog(0x3, &(0x7f0000000140)=""/46, 0x2e) (async)
syslog(0x3, &(0x7f0000000040)=""/238, 0xee)

00:55:46 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1201}, 0x0)

00:55:46 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:46 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xfd02, 0x0)

00:55:46 executing program 0:
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect={0x800})
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect={0x800}) (async)
syslog(0x9, &(0x7f0000000000)=""/46, 0x2e) (async)

00:55:46 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xfd03, 0x0)

00:55:46 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xff03, 0x0)

00:55:46 executing program 0:
syslog(0xa, &(0x7f0000000080)=""/57, 0x39)
syslog(0x0, &(0x7f0000000000)=""/20, 0x14)
syslog(0xa, &(0x7f00000000c0)=""/225, 0xe1)
syslog(0x2, &(0x7f0000000040)=""/31, 0x1f)
syslog(0x0, 0x0, 0x0)

[ 1503.841898][T12371] loop5: detected capacity change from 0 to 512
[ 1503.845039][T12365] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1503.858161][T12371] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1503.866452][T12371] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:46 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x40000, 0x0)

00:55:46 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1202}, 0x0)

00:55:46 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1504.012405][T12389] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1504.037295][T12391] loop5: detected capacity change from 0 to 512
[ 1504.052024][T12391] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1504.060310][T12391] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1504.612674][T12375] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1504.624020][T12375] CPU: 0 PID: 12375 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1504.634467][T12375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1504.644584][T12375] Call Trace:
[ 1504.647893][T12375]  <TASK>
[ 1504.650875][T12375]  dump_stack_lvl+0xda/0x130
[ 1504.655537][T12375]  dump_stack+0x15/0x20
[ 1504.659766][T12375]  dump_header+0x95/0x3c0
[ 1504.664098][T12375]  oom_kill_process+0xe3/0x3e0
[ 1504.668925][T12375]  out_of_memory+0x9ca/0xc00
[ 1504.673599][T12375]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1504.679705][T12375]  mem_cgroup_out_of_memory+0x139/0x190
[ 1504.685255][T12375]  try_charge_memcg+0x75c/0xd30
[ 1504.690119][T12375]  ? __alloc_pages+0x193/0x340
[ 1504.694897][T12375]  charge_memcg+0x51/0x200
[ 1504.699391][T12375]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1504.705392][T12375]  __read_swap_cache_async+0x339/0x590
[ 1504.710927][T12375]  swap_cluster_readahead+0x29d/0x4e0
[ 1504.716303][T12375]  swapin_readahead+0x8d/0x710
[ 1504.721073][T12375]  ? __filemap_get_folio+0x42b/0x500
[ 1504.726418][T12375]  ? swap_cache_get_folio+0x6e/0x200
[ 1504.731729][T12375]  do_swap_page+0x306/0x1780
[ 1504.736502][T12375]  ? __rcu_read_lock+0x35/0x50
[ 1504.741360][T12375]  handle_mm_fault+0xa2e/0x2cc0
[ 1504.746232][T12375]  exc_page_fault+0x3ff/0x6c0
[ 1504.750927][T12375]  asm_exc_page_fault+0x26/0x30
[ 1504.755889][T12375] RIP: 0033:0x7f2c4aac6af4
[ 1504.760315][T12375] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1504.780018][T12375] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1504.786083][T12375] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1504.794054][T12375] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1504.802025][T12375] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1504.810016][T12375] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016f5d9
[ 1504.818090][T12375] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016f298
[ 1504.826144][T12375]  </TASK>
[ 1504.829427][T12375] memory: usage 307196kB, limit 307200kB, failcnt 270094
[ 1504.836494][T12375] memory+swap: usage 308188kB, limit 9007199254740988kB, failcnt 0
[ 1504.844429][T12375] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1504.851777][T12375] Memory cgroup stats for /syz2:
[ 1504.852250][T12375] cache 4096
[ 1504.860624][T12375] rss 8192
[ 1504.863713][T12375] shmem 0
[ 1504.866760][T12375] mapped_file 0
[ 1504.870207][T12375] dirty 0
[ 1504.873135][T12375] writeback 4096
[ 1504.876716][T12375] workingset_refault_anon 56808
[ 1504.881645][T12375] workingset_refault_file 21
[ 1504.886275][T12375] swap 1015808
[ 1504.889717][T12375] pgpgin 202146
[ 1504.893163][T12375] pgpgout 202142
[ 1504.896754][T12375] pgfault 285261
[ 1504.900322][T12375] pgmajfault 21397
[ 1504.904127][T12375] inactive_anon 0
[ 1504.907802][T12375] active_anon 0
[ 1504.911302][T12375] inactive_file 4096
[ 1504.915222][T12375] active_file 0
[ 1504.918690][T12375] unevictable 0
[ 1504.922223][T12375] hierarchical_memory_limit 314572800
[ 1504.927613][T12375] hierarchical_memsw_limit 9223372036854771712
[ 1504.933826][T12375] total_cache 4096
[ 1504.937652][T12375] total_rss 8192
[ 1504.941198][T12375] total_shmem 0
[ 1504.944668][T12375] total_mapped_file 0
[ 1504.948674][T12375] total_dirty 0
[ 1504.952140][T12375] total_writeback 4096
[ 1504.956303][T12375] total_workingset_refault_anon 56808
[ 1504.961668][T12375] total_workingset_refault_file 21
[ 1504.966811][T12375] total_swap 1015808
[ 1504.970766][T12375] total_pgpgin 202146
[ 1504.974777][T12375] total_pgpgout 202142
[ 1504.978886][T12375] total_pgfault 285261
[ 1504.982942][T12375] total_pgmajfault 21397
[ 1504.987285][T12375] total_inactive_anon 0
[ 1504.991467][T12375] total_active_anon 0
[ 1504.995485][T12375] total_inactive_file 4096
[ 1504.999899][T12375] total_active_file 0
[ 1505.003915][T12375] total_unevictable 0
[ 1505.007942][T12375] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12375,uid=0
[ 1505.023293][T12375] Memory cgroup out of memory: Killed process 12375 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:48 executing program 3:
memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0) (async)
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (async)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8a94300}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r2, 0x10, 0x70bd28, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
syslog(0x3, &(0x7f0000000140)=""/46, 0x2e)
syslog(0x3, &(0x7f0000000040)=""/238, 0xee)

00:55:48 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1700}, 0x0)

00:55:48 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1fffff, 0x0)

00:55:48 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xff0f2020, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:48 executing program 0:
syslog(0xa, &(0x7f0000000080)=""/57, 0x39)
syslog(0x0, &(0x7f0000000000)=""/20, 0x14)
syslog(0xa, &(0x7f00000000c0)=""/225, 0xe1)
syslog(0x2, &(0x7f0000000040)=""/31, 0x1f)
syslog(0x0, 0x0, 0x0)
syslog(0xa, &(0x7f0000000080)=""/57, 0x39) (async)
syslog(0x0, &(0x7f0000000000)=""/20, 0x14) (async)
syslog(0xa, &(0x7f00000000c0)=""/225, 0xe1) (async)
syslog(0x2, &(0x7f0000000040)=""/31, 0x1f) (async)
syslog(0x0, 0x0, 0x0) (async)

00:55:48 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3V9rHGsZAPBnNtljeppjctSL44HTFltJi3Y3aWwbvGgriHcFpd7XkGxCyCYbspu2CUVS/ACCiBa88sobwQ8gSD+CCAW9FxVFtK0Xgn9GZnbTpstuk2J2t+z+fvBm3nd2Z57n3c3Ozjsz7AQwspKIuBURYxFxKSKmWvMLrRL7zXIuIp4/e7iUlSTS9M7fknzZrH14XZnTrcUmmpOO6rt764vVamW71S43NrbK9d29y2sbi6uV1crm/PzctYXrC1cXZk+kn1m/bnz9Tz/6/s++ceNXX77/+7t/ufjdLN/J1uOH+3GSmq9JMXstXhqPiO1eBBuAsVZ/ioNOBACAY8n2Tz8TEV/I9/+nYizfm8vZpQMAAIAhkd6cjH8nESkAAAAwtG7m18AmhVLret/JKBRKpeY1vJ+L9wvVWr3xpZXazuZy81rZ6SgWVtaqldnWNbXTUUyy9lxef9W+0taej4gPI+KHU6fydmmpVl0e9MEPAAAAGBGn28b//5hqjv8BAACAITM96AQAAACAnjP+BwAAgOFn/A8AAABD7Zu3b2clPbj/9fK93Z312r3Ly5X6emljZ6m0VNveKq3Waqv5b/ZtHLW+aq229ZXY3HlQblTqjXJ9d+/uRm1ns3F37bVbYAMAAAB99OHZJ79LImL/q6fyknkv+zPW+fln03+96GuCQM8U3ubJf+xdHkD/dfmaB0bA+KATAAamOOgEgIFLjni868U7vz75XAAAgN6Y+Xzn8//jjg3A0Hur8//AUHH+H0aX8/8wuor2AGDk9f78f5oeuS4AAKCnJvOSFEqtc4GTUSiUShEf5LcFKCYra9XKbER8OiJ+O1X8VNaey5dMjhwzAAAAAAAAAAAAAAAAAAAAAAAAAABNaZpECgAAAAy1iMKfk9b9v2amLky2Hx94L/nnVD6NiPs/ufPjB4uNxvZcNv/vL+c3HrfmXxnEEQwAAACg3cE4/WAcDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAn6fmzh0sHpZ9x//q1iJjuFH88JvLpRBQj4v0XSYwfWi6JiLETiL//KCI+6hQ/ydKK6VYW7fELEXGqP/E/SdO0Y/zTJxAfRtmTbPtzq9PnrxDn8mnnz/94q/y/um//Ci+3f2Ndtn8fHDPGx09/Ue4a/1HEx+Odtz8H8ZMu8c93WmGHF+U7397b6xY//WnETMfvn+S1WOXGxla5vrt3eW1jcbWyWtmcn5+7tnB94erCbHllrVpp/e0Y4wef/PK/bbP+kzbl/Y8u8aeP6P+FrFLs1rNDwZ4+ePbZZrXYtoo8/sXznd//j94QP/uf+GLreyB7fOagvt+sH3bm57850y23LP5yl/4f9f5fPLrruUvf+t4fjvlUAKAP6rt764vVamW755XHaZr2K5bKO1iZeDfSUDleZdBbJgAA4KS92ukfdCYAAAAAAAAAAAAAAAAAAAAwuvrxc2LtMfcH01UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgDf6XwAAAP//h13kZw==")

00:55:48 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3VFrW20dAPD/SZvZbZ3t1Is52Bxu0g1d0q5uK15sE8S7gTLvZ2nTUpo2pUm3tQzp8AMIIjrwyitvBD+AIPsIIgz0XlQU0U0vvHjf97yck3TrQrIW3rQZye8HT8/znOyc//9Jl5PznPM0CWBoJRFxLyJGIuJaREy01hdaJXab5VJEvH71dCErSaTpg38n+bZZe/++Mqdbm401Fx3Vt3dW56vVymarXW6sbZTr2zvXV9bmlyvLlfXZ2Zlbc7fnbs5N96SfWb/ufOfvP//Jr7975/ffePyXh/+8+qMs3/HW4/v70UvN56SYPRdvjEbE5lEE64ORVn+K/U4EAIBDyc5PvxARX83P/ydiJD+byzmlAwAAgAGR3h2Pj5KIFAAAABhYd/M5sEmh1JrvOx6FQqnUnMP7pThVqNbqja8v1bbWF5tzZSejWFhaqVamW3NqJ6OYZO2ZvP62faOtPRsRZyPiZxMn83ZpoVZd7PfFDwAAABgSp9vG//+baI7/AQAAgAEz2e8EAAAAgCNn/A8AAACDz/gfAAAABtr37t/PSrr3/deLj7a3VmuPri9W6qulta2F0kJtc6O0XKst55/Zt3bQ/qq12sY3Y33rSblRqTfK9e2dh2u1rfXGw5V3vgIbAAAAOEZnv/Liz0lE7H7rZF4yJ7IfI102MFcAhtPf+p0A0Evd3uaBwTfa7wSAvin2OwGg75IDHu86eecPvc8FAAA4GlNf7nz/f9S1ARh4hX4nAPSN+/8wvNz/h+FVdAYAQ+/o7/+n6YH7AgAAjtR4XpJCqXUvcDwKhVIp4kz+p/7FZGmlWpmOiM9HxJ8mip/L2jP5lsmBYwYAAAAAAAAAAAAAAAAAAAAAAAAAoClNk0gBAACAgRZR+EfS+v6vqYkr4+3XB04k/5/IlxHx+JcPfvFkvtHYnMnW/+fN+sbz1vob/biCAQAAALTbG6fvjeMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoJdev3q6sFeOM+6/vh0Rk53ij8ZYvhyLYkSc+m8So/u2SyJipAfxd59FxLlO8ZMsrZhsZdEevxARJ48n/oU0TTvGP92D+DDMXmTHn3udXn+FuJQvO7/+R1vls+p+/Cu8Of6NdDn+nTlkjPMvf1vuGv9ZxPnRzsefvfhJl/iXO+2ww5Pywx/s7HSLn/4qYqrj+0/yTqxyY22jXN/eub6yNr9cWa6sz87O3Jq7PXdzbrq8tFKttH52jPHTC7/7pG3Vx2lT3v/oEn/ygP5fySrFbj3bF+zlk1dfbFaLbbvI41+93Pn3f+498bP/E19rvQ9kj0/t1Xeb9f0u/uaPF7vllsVf7NL/g37/Vw/ueu7a93/810P+UwDgGNS3d1bnq9XK5pFXnqdpelyxVD7AytiHkYbK4Sr9PjIBAAC99vakv9+ZAAAAAAAAAAAAAAAAAAAAwPA6jo8Ta4+525+uAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC816cBAAD//2oU4Wk=")

00:55:48 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1000000, 0x0)

00:55:48 executing program 0:
syslog(0xa, &(0x7f0000000080)=""/57, 0x39)
syslog(0x0, &(0x7f0000000000)=""/20, 0x14) (async)
syslog(0x0, &(0x7f0000000000)=""/20, 0x14)
syslog(0xa, &(0x7f00000000c0)=""/225, 0xe1)
syslog(0x2, &(0x7f0000000040)=""/31, 0x1f)
syslog(0x0, 0x0, 0x0)

[ 1505.273582][T12396] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:48 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1030000, 0x0)

[ 1505.363296][T12414] loop5: detected capacity change from 0 to 512
[ 1505.402630][T12414] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
00:55:48 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x1802}, 0x0)

00:55:48 executing program 3:
r0 = fsmount(0xffffffffffffffff, 0x0, 0x3)
getsockname$tipc(r0, &(0x7f0000000040)=@id, &(0x7f0000000080)=0x10)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:48 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2000000, 0x0)

[ 1505.410926][T12414] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1505.436638][T12422] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1506.073528][T12407] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1506.084910][T12407] CPU: 0 PID: 12407 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1506.095342][T12407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1506.105474][T12407] Call Trace:
[ 1506.108748][T12407]  <TASK>
[ 1506.111679][T12407]  dump_stack_lvl+0xda/0x130
[ 1506.117247][T12407]  dump_stack+0x15/0x20
[ 1506.121401][T12407]  dump_header+0x95/0x3c0
[ 1506.125758][T12407]  oom_kill_process+0xe3/0x3e0
[ 1506.130648][T12407]  out_of_memory+0x9ca/0xc00
[ 1506.135264][T12407]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1506.141428][T12407]  mem_cgroup_out_of_memory+0x139/0x190
[ 1506.147055][T12407]  try_charge_memcg+0x75c/0xd30
[ 1506.152000][T12407]  ? __alloc_pages+0x193/0x340
[ 1506.156821][T12407]  charge_memcg+0x51/0x200
[ 1506.161384][T12407]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1506.167398][T12407]  __read_swap_cache_async+0x339/0x590
[ 1506.172867][T12407]  swap_cluster_readahead+0x29d/0x4e0
[ 1506.178309][T12407]  swapin_readahead+0x8d/0x710
[ 1506.183074][T12407]  ? __filemap_get_folio+0x42b/0x500
[ 1506.188409][T12407]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1506.194129][T12407]  ? swap_cache_get_folio+0x6e/0x200
[ 1506.199428][T12407]  do_swap_page+0x306/0x1780
[ 1506.204025][T12407]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1506.209419][T12407]  ? __rcu_read_lock+0x35/0x50
[ 1506.214250][T12407]  handle_mm_fault+0xa2e/0x2cc0
[ 1506.219114][T12407]  exc_page_fault+0x3ff/0x6c0
[ 1506.223841][T12407]  asm_exc_page_fault+0x26/0x30
[ 1506.228732][T12407] RIP: 0033:0x7f2c4aac6af4
[ 1506.233144][T12407] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1506.252749][T12407] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1506.258903][T12407] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1506.266945][T12407] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1506.275077][T12407] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1506.283043][T12407] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000016fb58
[ 1506.291022][T12407] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000016f817
[ 1506.298998][T12407]  </TASK>
[ 1506.302071][T12407] memory: usage 307200kB, limit 307200kB, failcnt 270519
[ 1506.309245][T12407] memory+swap: usage 308256kB, limit 9007199254740988kB, failcnt 0
[ 1506.317176][T12407] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 1506.324532][T12407] Memory cgroup stats for /syz2:
[ 1506.324685][T12407] cache 4096
[ 1506.332808][T12407] rss 8192
[ 1506.335861][T12407] shmem 0
[ 1506.338803][T12407] mapped_file 0
[ 1506.342249][T12407] dirty 0
[ 1506.345203][T12407] writeback 0
[ 1506.348491][T12407] workingset_refault_anon 56866
[ 1506.353425][T12407] workingset_refault_file 21
[ 1506.358035][T12407] swap 1081344
[ 1506.361428][T12407] pgpgin 202235
[ 1506.364936][T12407] pgpgout 202227
[ 1506.368536][T12407] pgfault 285436
[ 1506.372071][T12407] pgmajfault 21418
[ 1506.375814][T12407] inactive_anon 28672
[ 1506.379791][T12407] active_anon 0
[ 1506.383381][T12407] inactive_file 4096
[ 1506.387326][T12407] active_file 0
[ 1506.390800][T12407] unevictable 0
[ 1506.394252][T12407] hierarchical_memory_limit 314572800
[ 1506.399646][T12407] hierarchical_memsw_limit 9223372036854771712
[ 1506.405830][T12407] total_cache 4096
[ 1506.409563][T12407] total_rss 8192
[ 1506.413115][T12407] total_shmem 0
[ 1506.416599][T12407] total_mapped_file 0
[ 1506.420577][T12407] total_dirty 0
[ 1506.424025][T12407] total_writeback 0
[ 1506.427853][T12407] total_workingset_refault_anon 56866
[ 1506.433230][T12407] total_workingset_refault_file 21
[ 1506.438372][T12407] total_swap 1081344
[ 1506.442343][T12407] total_pgpgin 202235
[ 1506.446351][T12407] total_pgpgout 202227
[ 1506.450422][T12407] total_pgfault 285436
[ 1506.454483][T12407] total_pgmajfault 21418
[ 1506.458791][T12407] total_inactive_anon 28672
[ 1506.463476][T12407] total_active_anon 0
[ 1506.467482][T12407] total_inactive_file 4096
[ 1506.471905][T12407] total_active_file 0
[ 1506.475949][T12407] total_unevictable 0
[ 1506.479934][T12407] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12407,uid=0
[ 1506.495563][T12407] Memory cgroup out of memory: Killed process 12407 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:49 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xffefffff, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:49 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x2, 0x22011, r2, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f0000000040)={r1})
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:49 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x2040000, 0x0)

00:55:49 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:49 executing program 3:
r0 = fsmount(0xffffffffffffffff, 0x0, 0x3)
getsockname$tipc(r0, &(0x7f0000000040)=@id, &(0x7f0000000080)=0x10)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:55:49 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x2000}, 0x0)

00:55:49 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x5000000, 0x0)

00:55:49 executing program 3:
r0 = fsmount(0xffffffffffffffff, 0x0, 0x3)
getsockname$tipc(r0, &(0x7f0000000040)=@id, &(0x7f0000000080)=0x10)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

[ 1506.753866][T12436] loop5: detected capacity change from 0 to 512
[ 1506.761257][T12437] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:49 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0xa, &(0x7f0000000200)=""/181, 0xb5)
syslog(0x2, &(0x7f0000000100)=""/215, 0xd7)

00:55:49 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x2502}, 0x0)

00:55:49 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x6000000, 0x0)

[ 1506.791674][   T27] audit: type=1400 audit(1696380949.661:335): avc:  denied  { write } for  pid=12431 comm="syz-executor.0" path="socket:[136956]" dev="sockfs" ino=136956 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[ 1506.821024][T12436] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1506.829294][T12436] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:49 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x6040000, 0x0)

[ 1506.885875][T12447] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1507.551221][T12443] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1507.564786][T12443] CPU: 0 PID: 12443 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1507.575227][T12443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1507.585452][T12443] Call Trace:
[ 1507.588779][T12443]  <TASK>
[ 1507.591714][T12443]  dump_stack_lvl+0xda/0x130
[ 1507.596387][T12443]  dump_stack+0x15/0x20
[ 1507.600580][T12443]  dump_header+0x95/0x3c0
[ 1507.604924][T12443]  oom_kill_process+0xe3/0x3e0
[ 1507.609789][T12443]  out_of_memory+0x9ca/0xc00
[ 1507.614420][T12443]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1507.620532][T12443]  mem_cgroup_out_of_memory+0x139/0x190
[ 1507.626088][T12443]  try_charge_memcg+0x75c/0xd30
[ 1507.630993][T12443]  obj_cgroup_charge_pages+0xab/0x130
[ 1507.636400][T12443]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1507.642023][T12443]  __alloc_pages+0x1bb/0x340
[ 1507.646654][T12443]  alloc_pages+0x3e1/0x4e0
[ 1507.651165][T12443]  __vmalloc_node_range+0x6d2/0xea0
[ 1507.656460][T12443]  kvmalloc_node+0x121/0x160
[ 1507.661124][T12443]  ? xt_alloc_table_info+0x3d/0x80
[ 1507.666246][T12443]  xt_alloc_table_info+0x3d/0x80
[ 1507.671264][T12443]  do_arpt_set_ctl+0x634/0x13b0
[ 1507.676690][T12443]  ? futex_unqueue+0xba/0xe0
[ 1507.681311][T12443]  ? futex_wait+0x3c3/0x410
[ 1507.685831][T12443]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1507.691030][T12443]  ? lock_sock_nested+0x10e/0x130
[ 1507.696062][T12443]  ? tcp_release_cb+0xfe/0x340
[ 1507.700964][T12443]  nf_setsockopt+0x18d/0x1b0
[ 1507.705682][T12443]  ip_setsockopt+0xe6/0x100
[ 1507.710219][T12443]  tcp_setsockopt+0x90/0xa0
[ 1507.714804][T12443]  sock_common_setsockopt+0x61/0x70
[ 1507.720015][T12443]  ? sock_common_recvmsg+0xe0/0xe0
[ 1507.725185][T12443]  __sys_setsockopt+0x1d7/0x240
[ 1507.730053][T12443]  __x64_sys_setsockopt+0x66/0x80
[ 1507.735184][T12443]  do_syscall_64+0x41/0xc0
[ 1507.739634][T12443]  ? syscall_exit_to_user_mode+0x38/0x140
[ 1507.745367][T12443]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1507.751332][T12443] RIP: 0033:0x7f2c4ab0cae9
[ 1507.756263][T12443] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1507.775915][T12443] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1507.784335][T12443] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1507.792356][T12443] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1507.800446][T12443] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1507.808424][T12443] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1507.816438][T12443] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1507.824418][T12443]  </TASK>
[ 1507.827654][T12443] memory: usage 307192kB, limit 307200kB, failcnt 270778
[ 1507.834740][T12443] memory+swap: usage 308212kB, limit 9007199254740988kB, failcnt 0
[ 1507.842649][T12443] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 1507.850017][T12443] Memory cgroup stats for /syz2:
[ 1507.850255][T12443] cache 4096
[ 1507.858499][T12443] rss 20480
[ 1507.861637][T12443] shmem 0
[ 1507.864621][T12443] mapped_file 0
[ 1507.868122][T12443] dirty 0
[ 1507.871146][T12443] writeback 0
[ 1507.874429][T12443] workingset_refault_anon 56951
[ 1507.879312][T12443] workingset_refault_file 21
[ 1507.883903][T12443] swap 1044480
[ 1507.887324][T12443] pgpgin 202350
[ 1507.890794][T12443] pgpgout 202344
[ 1507.894348][T12443] pgfault 285584
[ 1507.897931][T12443] pgmajfault 21447
[ 1507.901659][T12443] inactive_anon 8192
[ 1507.905678][T12443] active_anon 12288
[ 1507.909526][T12443] inactive_file 0
[ 1507.913172][T12443] active_file 0
[ 1507.916654][T12443] unevictable 0
[ 1507.920117][T12443] hierarchical_memory_limit 314572800
[ 1507.925512][T12443] hierarchical_memsw_limit 9223372036854771712
[ 1507.931816][T12443] total_cache 4096
[ 1507.935554][T12443] total_rss 20480
[ 1507.939206][T12443] total_shmem 0
[ 1507.942670][T12443] total_mapped_file 0
[ 1507.946687][T12443] total_dirty 0
[ 1507.950147][T12443] total_writeback 0
[ 1507.953981][T12443] total_workingset_refault_anon 56951
[ 1507.959388][T12443] total_workingset_refault_file 21
[ 1507.964498][T12443] total_swap 1044480
[ 1507.968435][T12443] total_pgpgin 202350
[ 1507.972459][T12443] total_pgpgout 202344
[ 1507.976602][T12443] total_pgfault 285584
[ 1507.980686][T12443] total_pgmajfault 21447
[ 1507.984975][T12443] total_inactive_anon 8192
[ 1507.989433][T12443] total_active_anon 12288
[ 1507.993768][T12443] total_inactive_file 0
[ 1507.997962][T12443] total_active_file 0
[ 1508.001960][T12443] total_unevictable 0
[ 1508.006000][T12443] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12438,uid=0
[ 1508.021365][T12443] Memory cgroup out of memory: Killed process 12438 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:51 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:51 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0xa, &(0x7f0000000200)=""/181, 0xb5)
syslog(0x2, &(0x7f0000000100)=""/215, 0xd7)

00:55:51 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x7000000, 0x0)

00:55:51 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x2902}, 0x0)

00:55:51 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xfffdffff, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:51 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async, rerun: 32)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0) (rerun: 32)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x2, 0x22011, r2, 0x0) (async, rerun: 64)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (rerun: 64)
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f0000000040)={r1})
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:51 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x19000000, 0x0)

00:55:51 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x2, 0x22011, r2, 0x0) (async, rerun: 32)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (async, rerun: 32)
ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f0000000040)={r1}) (async)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)

00:55:51 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKgvS+7yy7LbrJ72MPuzjIjOXGEFDusbQX594OneW+kmf97kjUzb+ZZE8ChlUTErYgYiIhLETHSml9opdhspnMR8fzZw5ksJZGmdz5O8mWz8vZ1ZY63FhtqTjqqr28sTlerldVWudxYWinX1zcuLyxNz1fmK8uTkxPXpq5PXZ0a35N2Zu268Yv3//yHv//yxr9/cv+dux9e/F1W3+HW89vbsZea70kxey9eGIyI1f0I1gMDrfYUe10RAAB2JTs+/U5E/DA//h+JgfxoLueQDgAAAPpEenM4vkgiUgAAAKBv3czHwCaFUmu873AUCqVScwzv9+JYoVqrN348V1tbnm2OlR2NYmFuoVoZb42pHY1ikpUn8vzL8pW28mREnIyIP40czculmVp1ttcnPwAAAOCQON7W//9spNn/BwAAAPrMaK8rAAAAAOw7/X8AAADof/r/AAAA0Nd+dft2ltKt+1/P3ltfW6zduzxbqS+WltZmSjO11ZXSfK02n/9m39JO66vWais/jeW1B+VGpd4o19c37i7V1pYbdxdeuQU2AAAAcIBO/uDJ/5OI2PzZ0TxljmQPA10WMFYA+sbgm7z4vf2rB3Dwuu3mgf73Rvt/oK8Ue10BoOeSHZ7vOnjnP3tfFwAAYH+Mfb/z9f9B5wag7xV6XQGgZ1z/h8PL9X84vIqOAODQ2//r/2m647oAAIB9NZynpFBqXQscjkKhVIo4kf+rfzGZW6hWxiPi2xHxv5Hit7LyRL5ksmOfAQAAAAAAAAAAAAAAAAAAAAAAAABoStMkUgAAAKCvRRQ+SFr3/xobuTDcfn7gSPL5SD6NiPt/vfOXB9ONxupENv+TF/Mbj1vzr/TiDAYAAADQbqufvtWPBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC99PzZw5mtdJBxP/p5RIx2ij8YQ/l0KIoRcezTJAa3LZdExMAexN98FBGnOsVPsmrFaKsW7fELEXH0YOKfSdO0Y/zjexAfDrMn2fbnVqfvXyHO5dPO3//BVvqmum//Ci+2fwNdtn8ndhnj9NN/lrvGfxRxerDz9mcrftIl/vlOK+zwpvz2Nxsb3eKnf4sY67j/SV6JVW4srZTr6xuXF5am5yvzleXJyYlrU9enrk6Nl+cWqpXWY8cYfzzzr6/aZn2ZNuXtjy7xR3do/4UsU+zWsm3Bnj549t1mtti2ijz+xfOdP/9Tr4mf/U38qLUfyJ4f28pvNvPbnf3Hf892q1sWf7ZL+3f6/C/u3PTcpV///t1dvhQAOAD19Y3F6Wq1srrvmcdpmh5ULJm3MDP0dlRDZneZXm+ZAACAvfbyoL/XNQEAAAAAAAAAAAAAAAAAAIDD6yB+Tqw95mZvmgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8FpfBwAA//8a5uFt")

00:55:51 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0xa, &(0x7f0000000200)=""/181, 0xb5) (async)
syslog(0x2, &(0x7f0000000100)=""/215, 0xd7)

00:55:51 executing program 0:
syslog(0xa, &(0x7f0000000000)=""/46, 0x2e)

[ 1508.260837][T12464] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:51 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x19020000, 0x0)

[ 1508.330621][T12477] loop5: detected capacity change from 0 to 512
[ 1508.370114][T12477] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
00:55:51 executing program 0:
syslog(0xa, &(0x7f0000000000)=""/46, 0x2e)

00:55:51 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x3, &(0x7f0000001140)=""/239, 0xef)
syslog(0x9, &(0x7f0000000140)=""/4096, 0x1000)
syslog(0xa, &(0x7f0000000040)=""/235, 0xeb)

00:55:51 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x1d010000, 0x0)

[ 1508.378448][T12477] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:51 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x2a01}, 0x0)

[ 1508.443746][T12493] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1509.003858][T12467] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1509.015217][T12467] CPU: 0 PID: 12467 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1509.025636][T12467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1509.035753][T12467] Call Trace:
[ 1509.039037][T12467]  <TASK>
[ 1509.041997][T12467]  dump_stack_lvl+0xda/0x130
[ 1509.046603][T12467]  dump_stack+0x15/0x20
[ 1509.050935][T12467]  dump_header+0x95/0x3c0
[ 1509.055279][T12467]  oom_kill_process+0xe3/0x3e0
[ 1509.060142][T12467]  out_of_memory+0x9ca/0xc00
[ 1509.064825][T12467]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1509.070900][T12467]  mem_cgroup_out_of_memory+0x139/0x190
[ 1509.076461][T12467]  try_charge_memcg+0x75c/0xd30
[ 1509.081337][T12467]  ? __alloc_pages+0x193/0x340
[ 1509.086319][T12467]  charge_memcg+0x51/0x200
[ 1509.090782][T12467]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1509.096769][T12467]  __read_swap_cache_async+0x339/0x590
[ 1509.102247][T12467]  swap_cluster_readahead+0x29d/0x4e0
[ 1509.107626][T12467]  swapin_readahead+0x8d/0x710
[ 1509.112455][T12467]  ? __filemap_get_folio+0x42b/0x500
[ 1509.117757][T12467]  ? _raw_spin_unlock+0x26/0x40
[ 1509.122621][T12467]  ? finish_task_switch+0xac/0x280
[ 1509.127814][T12467]  ? swap_cache_get_folio+0x6e/0x200
[ 1509.133178][T12467]  do_swap_page+0x306/0x1780
[ 1509.137788][T12467]  ? __rcu_read_lock+0x35/0x50
[ 1509.142580][T12467]  handle_mm_fault+0xa2e/0x2cc0
[ 1509.147475][T12467]  exc_page_fault+0x3ff/0x6c0
[ 1509.152274][T12467]  asm_exc_page_fault+0x26/0x30
[ 1509.157669][T12467] RIP: 0033:0x7f2c4aac6af4
[ 1509.162113][T12467] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1509.181727][T12467] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1509.187790][T12467] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1509.195826][T12467] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1509.203835][T12467] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1509.211815][T12467] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000001706e6
[ 1509.219787][T12467] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 00000000001703a5
[ 1509.227896][T12467]  </TASK>
[ 1509.231033][T12467] memory: usage 307200kB, limit 307200kB, failcnt 270966
[ 1509.238105][T12467] memory+swap: usage 308312kB, limit 9007199254740988kB, failcnt 0
[ 1509.246138][T12467] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1509.253568][T12467] Memory cgroup stats for /syz2:
[ 1509.253790][T12467] cache 4096
[ 1509.262076][T12467] rss 8192
[ 1509.265142][T12467] shmem 0
[ 1509.268166][T12467] mapped_file 0
[ 1509.271627][T12467] dirty 0
[ 1509.274563][T12467] writeback 12288
[ 1509.278232][T12467] workingset_refault_anon 57034
[ 1509.283085][T12467] workingset_refault_file 21
[ 1509.287735][T12467] swap 1138688
[ 1509.291104][T12467] pgpgin 202463
[ 1509.294603][T12467] pgpgout 202458
[ 1509.298162][T12467] pgfault 285806
[ 1509.301709][T12467] pgmajfault 21495
[ 1509.305458][T12467] inactive_anon 12288
[ 1509.309487][T12467] active_anon 0
[ 1509.312971][T12467] inactive_file 0
[ 1509.316612][T12467] active_file 4096
[ 1509.320351][T12467] unevictable 0
[ 1509.323794][T12467] hierarchical_memory_limit 314572800
[ 1509.329186][T12467] hierarchical_memsw_limit 9223372036854771712
[ 1509.335429][T12467] total_cache 4096
[ 1509.339173][T12467] total_rss 8192
[ 1509.342710][T12467] total_shmem 0
[ 1509.346206][T12467] total_mapped_file 0
[ 1509.350218][T12467] total_dirty 0
[ 1509.353665][T12467] total_writeback 12288
[ 1509.357855][T12467] total_workingset_refault_anon 57034
[ 1509.363228][T12467] total_workingset_refault_file 21
[ 1509.368354][T12467] total_swap 1138688
[ 1509.372251][T12467] total_pgpgin 202463
[ 1509.376280][T12467] total_pgpgout 202458
[ 1509.380395][T12467] total_pgfault 285806
[ 1509.384452][T12467] total_pgmajfault 21495
[ 1509.388757][T12467] total_inactive_anon 12288
[ 1509.393264][T12467] total_active_anon 0
[ 1509.397312][T12467] total_inactive_file 0
[ 1509.401525][T12467] total_active_file 4096
[ 1509.405797][T12467] total_unevictable 0
[ 1509.409870][T12467] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12467,uid=0
[ 1509.425519][T12467] Memory cgroup out of memory: Killed process 12467 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
[ 1509.464754][T12467] ==================================================================
[ 1509.472872][T12467] BUG: KCSAN: data-race in mem_cgroup_flush_stats / tick_do_update_jiffies64
[ 1509.481683][T12467] 
[ 1509.484013][T12467] read-write to 0xffffffff85a079c0 of 8 bytes by interrupt on cpu 1:
[ 1509.492084][T12467]  tick_do_update_jiffies64+0x112/0x1b0
[ 1509.497659][T12467]  tick_sched_timer+0x7b/0x2c0
[ 1509.502437][T12467]  __hrtimer_run_queues+0x217/0x700
[ 1509.507680][T12467]  hrtimer_interrupt+0x20d/0x7b0
[ 1509.512658][T12467]  __sysvec_apic_timer_interrupt+0x52/0x190
[ 1509.518580][T12467]  sysvec_apic_timer_interrupt+0x68/0x80
[ 1509.524237][T12467]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1509.530237][T12467]  shrink_lruvec+0x41f/0x17a0
[ 1509.534929][T12467]  shrink_node+0xab3/0x15c0
[ 1509.539453][T12467]  do_try_to_free_pages+0x43d/0xce0
[ 1509.544665][T12467]  try_to_free_mem_cgroup_pages+0x1e2/0x480
[ 1509.550581][T12467]  try_charge_memcg+0x280/0xd30
[ 1509.555442][T12467]  charge_memcg+0x51/0x200
[ 1509.559958][T12467]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1509.565941][T12467]  __read_swap_cache_async+0x339/0x590
[ 1509.571410][T12467]  swap_cluster_readahead+0x29d/0x4e0
[ 1509.576778][T12467]  swapin_readahead+0x8d/0x710
[ 1509.581537][T12467]  do_swap_page+0x306/0x1780
[ 1509.586129][T12467]  handle_mm_fault+0xa2e/0x2cc0
[ 1509.590983][T12467]  exc_page_fault+0x2f7/0x6c0
[ 1509.595675][T12467]  asm_exc_page_fault+0x26/0x30
[ 1509.600580][T12467]  __get_user_8+0x11/0x20
[ 1509.604933][T12467]  exit_robust_list+0x31/0x270
[ 1509.609718][T12467]  futex_exit_release+0xdf/0x130
[ 1509.614756][T12467]  exit_mm_release+0x1a/0x30
[ 1509.619375][T12467]  exit_mm+0x37/0x180
[ 1509.623358][T12467]  do_exit+0x580/0x1660
[ 1509.627539][T12467]  do_group_exit+0x101/0x150
[ 1509.632133][T12467]  get_signal+0xf3c/0x1090
[ 1509.636592][T12467]  arch_do_signal_or_restart+0x95/0x4b0
[ 1509.642139][T12467]  exit_to_user_mode_loop+0x6f/0xe0
[ 1509.647433][T12467]  exit_to_user_mode_prepare+0x6c/0xb0
[ 1509.652903][T12467]  syscall_exit_to_user_mode+0x26/0x140
[ 1509.658455][T12467]  do_syscall_64+0x4d/0xc0
[ 1509.662870][T12467]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1509.668768][T12467] 
[ 1509.671089][T12467] read to 0xffffffff85a079c0 of 8 bytes by task 12467 on cpu 0:
[ 1509.678717][T12467]  mem_cgroup_flush_stats+0x5d/0xd0
[ 1509.683930][T12467]  shrink_node+0x304/0x15c0
[ 1509.688437][T12467]  do_try_to_free_pages+0x43d/0xce0
[ 1509.693641][T12467]  try_to_free_mem_cgroup_pages+0x1e2/0x480
[ 1509.699541][T12467]  try_charge_memcg+0x280/0xd30
[ 1509.704392][T12467]  charge_memcg+0x51/0x200
[ 1509.708807][T12467]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1509.714797][T12467]  __read_swap_cache_async+0x339/0x590
[ 1509.720265][T12467]  swap_cluster_readahead+0x29d/0x4e0
[ 1509.725660][T12467]  swapin_readahead+0x8d/0x710
[ 1509.730426][T12467]  do_swap_page+0x306/0x1780
[ 1509.735021][T12467]  handle_mm_fault+0xa2e/0x2cc0
[ 1509.739897][T12467]  exc_page_fault+0x3ff/0x6c0
[ 1509.744579][T12467]  asm_exc_page_fault+0x26/0x30
[ 1509.749456][T12467] 
[ 1509.751773][T12467] value changed: 0x000000010001d849 -> 0x000000010001d84a
[ 1509.758874][T12467] 
[ 1509.761194][T12467] Reported by Kernel Concurrency Sanitizer on:
[ 1509.767361][T12467] CPU: 0 PID: 12467 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1509.777771][T12467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1509.787826][T12467] ==================================================================
00:55:52 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x20000000, 0x0)

00:55:52 executing program 0:
syslog(0xa, &(0x7f0000000000)=""/46, 0x2e)

00:55:52 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEJg977sLrssu8nuYQ+7O8uM5MQRUuxlbSvIvx88zZuRZv7/J1mjeTPPUgCHVhIRtyJiICIuRcRIa3mhVWKzWc5FxPNnD2eykkSa3vk4ydfN5rdvK3O8tdpQc9JRfX1jcbparay25suNpZVyfX3j8sLS9HxlvrI8OTlxber61NWp8T1pZ9auG796/69/+uevb/z3Z/ffufvhxT9k+Q637t/ejr3UfE6K2XPxwmBErO5HsB4YaLWn2OtEAADYlez49HsR8eP8+H8kBvKjuZxDOgAAAOgT6c3h+CKJSAEAAIC+dTMfA5sUSq3xvsNRKJRKzTG8P4hjhWqt3vjpXG1tebY5VnY0ioW5hWplvDWmdjSKSTY/kddfzl9pm5+MiJMR8ZeRo/l8aaZWne31yQ8AAAA4JI639f8/G2n2/wEAAIA+M9rrBAAAAIB9p/8PAAAA/U//HwAAAPrab27fzkq69fvXs/fW1xZr9y7PVuqLpaW1mdJMbXWlNF+rzeff2be00/aqtdrKz2N57UG5Uak3yvX1jbtLtbXlxt2FV34CGwAAADhAJ3/05O0kIjZ/cTQvmSPZzUCXFYwVgL5x5Js8+L39ywM4eN0+5oH+N9jrBICeKfY6AaDnkh3u7zp45397nwsAALA/xn7Y+fr/oHMD0PcKvU4A6BnX/+Hwcv0fDq+iIwA49Pb/+n+a7rgtAABgXw3nJSmUWtcCh6NQKJUiTuT/6l9M5haqlfGI+G5EvDVS/E42P5GvmezYZwAAAAAAAAAAAAAAAAAAAAAAAAAAmtI0iRQAAADoaxGFD5LW73+NjVwYbj8/cCT5fCSfRsT9v9/524PpRmN1Ilv+yYvljcet5Vd6cQYDAAAAaLfVT9/qxwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAXnr+7OHMVjnIuB/9MiJGO8UfjKF8OhTFiDj2aRKD29ZLImJgD+JvPoqIU53iJ1laMdrKoj1+ISKOHkz8M2madox/fA/iw2H2JNv/3Or0/ivEuXza+f0/2CrfVvf9X+HF/m+gy/7vxC5jnH7673LX+I8iTg923v9sxU+6xD/faYMdnpTf/25jo1v89B8RYx0/f5JXYpUbSyvl+vrG5YWl6fnKfGV5cnLi2tT1qatT4+W5hWqlddsxxp/P/OertkVfpk15+6NL/NEd2n8hqxS7tWxbsKcPnn2/WS22bSKPf/F859f/1GviZ38TP2l9DmT3j23VN5v17c7+6/9nu+WWxZ/t0v6dXv+LOzc9d+m3f3x3lw8FAA5AfX1jcbparazue+VxmqYHFUvlDawMvRlpqOyu0us9EwAAsNdeHvT3OhMAAAAAAAAAAAAAAAAAAAA4vA7i68TaY272pqkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAK/1dQAAAP//80Dhbw==")

00:55:52 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x3, &(0x7f0000001140)=""/239, 0xef)
syslog(0x9, &(0x7f0000000140)=""/4096, 0x1000)
syslog(0xa, &(0x7f0000000040)=""/235, 0xeb)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x3, &(0x7f0000001140)=""/239, 0xef) (async)
syslog(0x9, &(0x7f0000000140)=""/4096, 0x1000) (async)
syslog(0xa, &(0x7f0000000040)=""/235, 0xeb) (async)

00:55:52 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x3e02}, 0x0)

00:55:52 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xffffefff, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:52 executing program 0:
syslog(0x3, &(0x7f0000000000)=""/60, 0x73)
syslog(0xe, 0x0, 0x0)

00:55:52 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1510.026906][T12502] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:52 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x20100000, 0x0)

00:55:53 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x3, &(0x7f0000001140)=""/239, 0xef) (async)
syslog(0x9, &(0x7f0000000140)=""/4096, 0x1000) (async)
syslog(0xa, &(0x7f0000000040)=""/235, 0xeb)

00:55:53 executing program 3:
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0x7f, <r0=>0x0}, 0x8)
r1 = syz_io_uring_complete(0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x2, 0x1f, 0x2, 0x2000, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x5, 0x1}, 0x48)
r3 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r4 = dup(r3)
write$cgroup_pid(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r3, 0x0)
sendfile(r3, r4, &(0x7f0000000100), 0x6c03)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x8, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x382f, 0x0, 0x0, 0x0, 0xffff}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}]}, &(0x7f0000000080)='GPL\x00', 0x9, 0xba, &(0x7f00000000c0)=""/186, 0x40f00, 0x92, '\x00', 0x0, 0x16, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x6, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x2, 0x7, 0x1, 0x5}, 0x10, r0, 0xffffffffffffffff, 0x5, &(0x7f00000002c0)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, r2, r4, 0x1], &(0x7f0000000300)=[{0x0, 0x5, 0xc}, {0x1, 0x1, 0x8}, {0x2, 0x2, 0x7, 0xc}, {0x1, 0x5, 0x7, 0x3}, {0x4, 0x3, 0x4, 0x8}], 0x10, 0x9}, 0x90)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r6=>r5, {0x1}}, './file0\x00'})
ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f00000004c0)={0x7, &(0x7f0000000480)=[{0x9, 0x101}, {0x9}, {0x9, 0x7}, {0x0, 0x8001}, {0x9}, {0x5, 0x8}, {0xfff, 0x800}]})
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xd, 0x5, &(0x7f0000000500)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4}, [@map_idx={0x18, 0x7, 0x5, 0x0, 0xc}]}, &(0x7f0000000540)='GPL\x00', 0x6, 0x5e, &(0x7f0000000580)=""/94, 0x41000, 0x20, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0xf, 0x7, 0x3}, 0x10, r0, r4, 0xa, &(0x7f0000000680)=[r1], &(0x7f00000006c0)=[{0x2, 0x4, 0xa}, {0x3, 0x1, 0xa, 0xc}, {0x5, 0x5, 0x6, 0x6}, {0x4, 0x5, 0x2, 0x9}, {0x1, 0x4, 0xf, 0x4}, {0x0, 0x3, 0xe, 0x6}, {0x0, 0x5, 0xd, 0xa}, {0x5, 0x3, 0x3, 0x3}, {0x0, 0x3, 0xe, 0x9}, {0x2, 0x5, 0xf, 0x2}], 0x10, 0x28000}, 0x90)

00:55:53 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x39020000, 0x0)

00:55:53 executing program 0:
syslog(0x3, &(0x7f0000000000)=""/60, 0x73) (async)
syslog(0xe, 0x0, 0x0)

[ 1510.149961][T12519] loop5: detected capacity change from 0 to 512
[ 1510.186726][T12519] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
00:55:53 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x3f000000, 0x0)

[ 1510.195009][T12519] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:53 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x4203}, 0x0)

00:55:53 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:53 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x40000000, 0x0)

[ 1510.284407][T12534] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1510.974256][T12508] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1510.985689][T12508] CPU: 1 PID: 12508 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1510.996113][T12508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1511.006171][T12508] Call Trace:
[ 1511.009494][T12508]  <TASK>
[ 1511.012428][T12508]  dump_stack_lvl+0xda/0x130
[ 1511.017133][T12508]  dump_stack+0x15/0x20
[ 1511.021296][T12508]  dump_header+0x95/0x3c0
[ 1511.025702][T12508]  oom_kill_process+0xe3/0x3e0
[ 1511.030476][T12508]  out_of_memory+0x9ca/0xc00
[ 1511.035087][T12508]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1511.041195][T12508]  mem_cgroup_out_of_memory+0x139/0x190
[ 1511.046825][T12508]  try_charge_memcg+0x75c/0xd30
[ 1511.051716][T12508]  ? __alloc_pages+0x193/0x340
[ 1511.057084][T12508]  charge_memcg+0x51/0x200
[ 1511.061505][T12508]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1511.067536][T12508]  __read_swap_cache_async+0x339/0x590
[ 1511.072996][T12508]  swap_cluster_readahead+0x29d/0x4e0
[ 1511.078424][T12508]  swapin_readahead+0x8d/0x710
[ 1511.083250][T12508]  ? __filemap_get_folio+0x42b/0x500
[ 1511.088600][T12508]  ? swap_cache_get_folio+0x6e/0x200
[ 1511.093904][T12508]  do_swap_page+0x306/0x1780
[ 1511.098595][T12508]  ? __rcu_read_lock+0x35/0x50
[ 1511.103494][T12508]  handle_mm_fault+0xa2e/0x2cc0
[ 1511.108350][T12508]  ? mt_find+0x1d9/0x310
[ 1511.112637][T12508]  exc_page_fault+0x2f7/0x6c0
[ 1511.117334][T12508]  asm_exc_page_fault+0x26/0x30
[ 1511.122252][T12508] RIP: 0010:__get_user_8+0x11/0x20
[ 1511.127426][T12508] Code: 48 c1 fa 3f 48 09 d0 0f 01 cb 8b 10 31 c0 0f 01 ca c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 66 0f 1f 44 00 00 f3 0f 1e fa 0f 01 cb
[ 1511.147040][T12508] RSP: 0018:ffffc90000cd7e38 EFLAGS: 00050202
[ 1511.153103][T12508] RAX: 0000555556d54da8 RBX: ffffc90000cd7e40 RCX: ffffffff81438f03
[ 1511.161088][T12508] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881085aba98
[ 1511.169058][T12508] RBP: ffffc90000cd7ef8 R08: 00018881085aba9f R09: 0000000000000000
[ 1511.177059][T12508] R10: 0001ffffffffffff R11: 00018881085ab758 R12: ffff8881085ab0c0
[ 1511.185047][T12508] R13: ffff8881085aba98 R14: ffffc90000cd7f58 R15: ffffc90000cd7fd8
[ 1511.193020][T12508]  ? __rseq_handle_notify_resume+0xb3/0xbf0
[ 1511.198930][T12508]  __rseq_handle_notify_resume+0xc7/0xbf0
[ 1511.204760][T12508]  ? mem_cgroup_handle_over_high+0x2c/0x1b0
[ 1511.210669][T12508]  exit_to_user_mode_loop+0xcc/0xe0
[ 1511.215917][T12508]  exit_to_user_mode_prepare+0x6c/0xb0
[ 1511.221408][T12508]  irqentry_exit_to_user_mode+0x9/0x20
[ 1511.226932][T12508]  irqentry_exit+0x12/0x40
[ 1511.231405][T12508]  asm_exc_page_fault+0x26/0x30
[ 1511.236303][T12508] RIP: 0033:0x7f2c4aac6af4
[ 1511.240726][T12508] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1511.260346][T12508] RSP: 002b:00007ffcead55b10 EFLAGS: 00010202
[ 1511.266415][T12508] RAX: 0000000000000000 RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1511.274420][T12508] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1511.282390][T12508] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1511.290445][T12508] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000170de4
[ 1511.298440][T12508] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000170aa3
[ 1511.306455][T12508]  </TASK>
[ 1511.309705][T12508] memory: usage 307200kB, limit 307200kB, failcnt 271479
[ 1511.316829][T12508] memory+swap: usage 308308kB, limit 9007199254740988kB, failcnt 0
[ 1511.324771][T12508] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1511.332163][T12508] Memory cgroup stats for /syz2:
[ 1511.333095][T12508] cache 4096
[ 1511.341244][T12508] rss 8192
[ 1511.344257][T12508] shmem 0
[ 1511.347243][T12508] mapped_file 0
[ 1511.350707][T12508] dirty 0
[ 1511.353717][T12508] writeback 4096
[ 1511.357303][T12508] workingset_refault_anon 57080
[ 1511.362155][T12508] workingset_refault_file 21
[ 1511.366800][T12508] swap 1134592
[ 1511.370176][T12508] pgpgin 202540
[ 1511.373729][T12508] pgpgout 202537
[ 1511.377385][T12508] pgfault 285991
[ 1511.380976][T12508] pgmajfault 21510
[ 1511.384710][T12508] inactive_anon 0
[ 1511.388347][T12508] active_anon 0
[ 1511.391826][T12508] inactive_file 0
[ 1511.395487][T12508] active_file 4096
[ 1511.399282][T12508] unevictable 0
[ 1511.402754][T12508] hierarchical_memory_limit 314572800
[ 1511.408149][T12508] hierarchical_memsw_limit 9223372036854771712
[ 1511.414354][T12508] total_cache 4096
[ 1511.418105][T12508] total_rss 8192
[ 1511.421656][T12508] total_shmem 0
[ 1511.425171][T12508] total_mapped_file 0
[ 1511.429284][T12508] total_dirty 0
[ 1511.432784][T12508] total_writeback 4096
[ 1511.436879][T12508] total_workingset_refault_anon 57080
[ 1511.442288][T12508] total_workingset_refault_file 21
[ 1511.447435][T12508] total_swap 1134592
[ 1511.451337][T12508] total_pgpgin 202540
[ 1511.455396][T12508] total_pgpgout 202537
[ 1511.459467][T12508] total_pgfault 285991
[ 1511.463548][T12508] total_pgmajfault 21510
[ 1511.467831][T12508] total_inactive_anon 0
[ 1511.471995][T12508] total_active_anon 0
[ 1511.475991][T12508] total_inactive_file 0
[ 1511.480179][T12508] total_active_file 4096
[ 1511.484423][T12508] total_unevictable 0
[ 1511.488433][T12508] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12508,uid=0
[ 1511.503842][T12508] Memory cgroup out of memory: Killed process 12508 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:54 executing program 3:
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0x7f, <r0=>0x0}, 0x8)
r1 = syz_io_uring_complete(0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x2, 0x1f, 0x2, 0x2000, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x5, 0x1}, 0x48) (async)
r3 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r4 = dup(r3)
write$cgroup_pid(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r3, 0x0) (async)
sendfile(r3, r4, &(0x7f0000000100), 0x6c03)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x8, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x382f, 0x0, 0x0, 0x0, 0xffff}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}]}, &(0x7f0000000080)='GPL\x00', 0x9, 0xba, &(0x7f00000000c0)=""/186, 0x40f00, 0x92, '\x00', 0x0, 0x16, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x6, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x2, 0x7, 0x1, 0x5}, 0x10, r0, 0xffffffffffffffff, 0x5, &(0x7f00000002c0)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, r2, r4, 0x1], &(0x7f0000000300)=[{0x0, 0x5, 0xc}, {0x1, 0x1, 0x8}, {0x2, 0x2, 0x7, 0xc}, {0x1, 0x5, 0x7, 0x3}, {0x4, 0x3, 0x4, 0x8}], 0x10, 0x9}, 0x90)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r6=>r5, {0x1}}, './file0\x00'})
ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f00000004c0)={0x7, &(0x7f0000000480)=[{0x9, 0x101}, {0x9}, {0x9, 0x7}, {0x0, 0x8001}, {0x9}, {0x5, 0x8}, {0xfff, 0x800}]}) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xd, 0x5, &(0x7f0000000500)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4}, [@map_idx={0x18, 0x7, 0x5, 0x0, 0xc}]}, &(0x7f0000000540)='GPL\x00', 0x6, 0x5e, &(0x7f0000000580)=""/94, 0x41000, 0x20, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0xf, 0x7, 0x3}, 0x10, r0, r4, 0xa, &(0x7f0000000680)=[r1], &(0x7f00000006c0)=[{0x2, 0x4, 0xa}, {0x3, 0x1, 0xa, 0xc}, {0x5, 0x5, 0x6, 0x6}, {0x4, 0x5, 0x2, 0x9}, {0x1, 0x4, 0xf, 0x4}, {0x0, 0x3, 0xe, 0x6}, {0x0, 0x5, 0xd, 0xa}, {0x5, 0x3, 0x3, 0x3}, {0x0, 0x3, 0xe, 0x9}, {0x2, 0x5, 0xf, 0x2}], 0x10, 0x28000}, 0x90)

00:55:54 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:54 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x41020000, 0x0)

00:55:54 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x4788}, 0x0)

00:55:54 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xfffffdff, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:54 executing program 0:
syslog(0x3, &(0x7f0000000000)=""/60, 0x73) (async)
syslog(0xe, 0x0, 0x0)

[ 1511.754802][T12550] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1511.765514][T12546] loop5: detected capacity change from 0 to 512
00:55:54 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x51000000, 0x0)

00:55:54 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="07000000bc6070209d5e97a635f608771f05f3efa80525c1f0c0b9231c6e1d52ed5a0eb72b1d9ff3d078a669d2dd89f4882723342c1ac7400a912a71ef0bf2095185a93303aa20f382353c8cf436d62f49b4ae89f15d0bde63d8c86edc0794", @ANYRES16=r2, @ANYBLOB="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"], 0x1a0}}, 0x0)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)
r3 = syz_open_pts(r1, 0x8800)
ftruncate(r3, 0x1)

[ 1511.800959][T12546] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1511.809215][T12546] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:54 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x59030000, 0x0)

00:55:54 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:54 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x5d020000, 0x0)

00:55:54 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x61020000, 0x0)

00:55:54 executing program 3:
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0x7f}, 0x8) (async)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0x7f, <r0=>0x0}, 0x8)
r1 = syz_io_uring_complete(0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x2, 0x1f, 0x2, 0x2000, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x5, 0x1}, 0x48) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x2, 0x1f, 0x2, 0x2000, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x5, 0x1}, 0x48)
r3 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r4 = dup(r3)
write$cgroup_pid(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r3, 0x0)
sendfile(r3, r4, &(0x7f0000000100), 0x6c03)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x8, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x382f, 0x0, 0x0, 0x0, 0xffff}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}]}, &(0x7f0000000080)='GPL\x00', 0x9, 0xba, &(0x7f00000000c0)=""/186, 0x40f00, 0x92, '\x00', 0x0, 0x16, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x6, 0x3}, 0x8, 0x10, &(0x7f00000001c0)={0x2, 0x7, 0x1, 0x5}, 0x10, r0, 0xffffffffffffffff, 0x5, &(0x7f00000002c0)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, r2, r4, 0x1], &(0x7f0000000300)=[{0x0, 0x5, 0xc}, {0x1, 0x1, 0x8}, {0x2, 0x2, 0x7, 0xc}, {0x1, 0x5, 0x7, 0x3}, {0x4, 0x3, 0x4, 0x8}], 0x10, 0x9}, 0x90)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, r5, {0x1}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r6=>r5, {0x1}}, './file0\x00'})
ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f00000004c0)={0x7, &(0x7f0000000480)=[{0x9, 0x101}, {0x9}, {0x9, 0x7}, {0x0, 0x8001}, {0x9}, {0x5, 0x8}, {0xfff, 0x800}]})
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xd, 0x5, &(0x7f0000000500)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4}, [@map_idx={0x18, 0x7, 0x5, 0x0, 0xc}]}, &(0x7f0000000540)='GPL\x00', 0x6, 0x5e, &(0x7f0000000580)=""/94, 0x41000, 0x20, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x0, 0xf, 0x7, 0x3}, 0x10, r0, r4, 0xa, &(0x7f0000000680)=[r1], &(0x7f00000006c0)=[{0x2, 0x4, 0xa}, {0x3, 0x1, 0xa, 0xc}, {0x5, 0x5, 0x6, 0x6}, {0x4, 0x5, 0x2, 0x9}, {0x1, 0x4, 0xf, 0x4}, {0x0, 0x3, 0xe, 0x6}, {0x0, 0x5, 0xd, 0xa}, {0x5, 0x3, 0x3, 0x3}, {0x0, 0x3, 0xe, 0x9}, {0x2, 0x5, 0xf, 0x2}], 0x10, 0x28000}, 0x90)

00:55:54 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="07000000bc6070209d5e97a635f608771f05f3efa80525c1f0c0b9231c6e1d52ed5a0eb72b1d9ff3d078a669d2dd89f4882723342c1ac7400a912a71ef0bf2095185a93303aa20f382353c8cf436d62f49b4ae89f15d0bde63d8c86edc0794", @ANYRES16=r2, @ANYBLOB="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"], 0x1a0}}, 0x0) (async)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="07000000bc6070209d5e97a635f608771f05f3efa80525c1f0c0b9231c6e1d52ed5a0eb72b1d9ff3d078a669d2dd89f4882723342c1ac7400a912a71ef0bf2095185a93303aa20f382353c8cf436d62f49b4ae89f15d0bde63d8c86edc0794", @ANYRES16=r2, @ANYBLOB="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"], 0x1a0}}, 0x0)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)
syz_open_pts(r1, 0x8800) (async)
r3 = syz_open_pts(r1, 0x8800)
ftruncate(r3, 0x1)

[ 1511.952366][T12567] loop5: detected capacity change from 0 to 512
[ 1511.969028][T12567] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1511.977289][T12567] EXT4-fs (loop5): inodes count not valid: 1 vs 32
00:55:54 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:54 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x4888}, 0x0)

[ 1512.061130][T12577] loop5: detected capacity change from 0 to 512
[ 1512.073680][T12578] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 1512.083825][T12577] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1512.092107][T12577] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1512.615456][T12553] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1512.626846][T12553] CPU: 0 PID: 12553 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1512.637337][T12553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1512.647387][T12553] Call Trace:
[ 1512.650663][T12553]  <TASK>
[ 1512.653604][T12553]  dump_stack_lvl+0xda/0x130
[ 1512.658235][T12553]  dump_stack+0x15/0x20
[ 1512.662389][T12553]  dump_header+0x95/0x3c0
[ 1512.666728][T12553]  oom_kill_process+0xe3/0x3e0
[ 1512.671647][T12553]  out_of_memory+0x9ca/0xc00
[ 1512.676244][T12553]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1512.682393][T12553]  mem_cgroup_out_of_memory+0x139/0x190
[ 1512.687942][T12553]  try_charge_memcg+0x75c/0xd30
[ 1512.692800][T12553]  ? __alloc_pages+0x193/0x340
[ 1512.697653][T12553]  charge_memcg+0x51/0x200
[ 1512.702072][T12553]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1512.708155][T12553]  __read_swap_cache_async+0x339/0x590
[ 1512.713641][T12553]  swap_cluster_readahead+0x29d/0x4e0
[ 1512.719051][T12553]  swapin_readahead+0x8d/0x710
[ 1512.723868][T12553]  ? __filemap_get_folio+0x42b/0x500
[ 1512.729267][T12553]  ? swap_cache_get_folio+0x6e/0x200
[ 1512.734600][T12553]  do_swap_page+0x306/0x1780
[ 1512.739236][T12553]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1512.744592][T12553]  ? __rcu_read_lock+0x35/0x50
[ 1512.749400][T12553]  handle_mm_fault+0xa2e/0x2cc0
[ 1512.754315][T12553]  exc_page_fault+0x3ff/0x6c0
[ 1512.759022][T12553]  asm_exc_page_fault+0x26/0x30
[ 1512.763879][T12553] RIP: 0033:0x7f2c4ab37ea3
[ 1512.768291][T12553] Code: 00 00 00 00 00 66 90 31 c0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d 4e 40 0d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f
[ 1512.787957][T12553] RSP: 002b:00007ffcead55ac8 EFLAGS: 00010293
[ 1512.794035][T12553] RAX: 00000000fffffffa RBX: 00007f2c4ac2bf80 RCX: 0000000000000000
[ 1512.802010][T12553] RDX: 00007ffcead55ae0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1512.809982][T12553] RBP: 00007f2c4ac2d980 R08: 0000000000000010 R09: 00007ffceada50b0
[ 1512.817984][T12553] R10: 0000000000000000 R11: 0000000000045882 R12: 0000000000171497
[ 1512.826012][T12553] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000171156
[ 1512.834025][T12553]  </TASK>
[ 1512.837190][T12553] memory: usage 307200kB, limit 307200kB, failcnt 271613
[ 1512.844230][T12553] memory+swap: usage 308212kB, limit 9007199254740988kB, failcnt 0
[ 1512.852213][T12553] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[ 1512.859542][T12553] Memory cgroup stats for /syz2:
[ 1512.859819][T12553] cache 4096
[ 1512.868035][T12553] rss 32768
[ 1512.871139][T12553] shmem 0
[ 1512.874066][T12553] mapped_file 0
[ 1512.877549][T12553] dirty 0
[ 1512.880485][T12553] writeback 0
[ 1512.883772][T12553] workingset_refault_anon 57167
[ 1512.888646][T12553] workingset_refault_file 21
[ 1512.893286][T12553] swap 1032192
[ 1512.896759][T12553] pgpgin 202657
[ 1512.900337][T12553] pgpgout 202648
[ 1512.903875][T12553] pgfault 286162
[ 1512.907435][T12553] pgmajfault 21540
[ 1512.911155][T12553] inactive_anon 16384
[ 1512.915160][T12553] active_anon 0
[ 1512.918722][T12553] inactive_file 0
[ 1512.922445][T12553] active_file 4096
[ 1512.926177][T12553] unevictable 0
[ 1512.929635][T12553] hierarchical_memory_limit 314572800
[ 1512.935041][T12553] hierarchical_memsw_limit 9223372036854771712
[ 1512.941258][T12553] total_cache 4096
[ 1512.945008][T12553] total_rss 32768
[ 1512.948642][T12553] total_shmem 0
[ 1512.952092][T12553] total_mapped_file 0
[ 1512.956118][T12553] total_dirty 0
[ 1512.959655][T12553] total_writeback 0
[ 1512.963448][T12553] total_workingset_refault_anon 57167
[ 1512.968839][T12553] total_workingset_refault_file 21
[ 1512.974027][T12553] total_swap 1032192
[ 1512.978010][T12553] total_pgpgin 202657
[ 1512.981999][T12553] total_pgpgout 202648
[ 1512.986102][T12553] total_pgfault 286162
[ 1512.990182][T12553] total_pgmajfault 21540
[ 1512.994465][T12553] total_inactive_anon 16384
[ 1512.998997][T12553] total_active_anon 0
[ 1513.002999][T12553] total_inactive_file 0
[ 1513.007181][T12553] total_active_file 4096
[ 1513.011423][T12553] total_unevictable 0
[ 1513.015418][T12553] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12553,uid=0
[ 1513.030905][T12553] Memory cgroup out of memory: Killed process 12553 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:56 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="07000000bc6070209d5e97a635f608771f05f3efa80525c1f0c0b9231c6e1d52ed5a0eb72b1d9ff3d078a669d2dd89f4882723342c1ac7400a912a71ef0bf2095185a93303aa20f382353c8cf436d62f49b4ae89f15d0bde63d8c86edc0794", @ANYRES16=r2, @ANYBLOB="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"], 0x1a0}}, 0x0)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)
r3 = syz_open_pts(r1, 0x8800)
ftruncate(r3, 0x1)
memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0) (async)
dup(r0) (async)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) (async)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB="07000000bc6070209d5e97a635f608771f05f3efa80525c1f0c0b9231c6e1d52ed5a0eb72b1d9ff3d078a669d2dd89f4882723342c1ac7400a912a71ef0bf2095185a93303aa20f382353c8cf436d62f49b4ae89f15d0bde63d8c86edc0794", @ANYRES16=r2, @ANYBLOB="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"], 0x1a0}}, 0x0) (async)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (async)
syz_open_pts(r1, 0x8800) (async)
ftruncate(r3, 0x1) (async)

00:55:56 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x6f030000, 0x0)

00:55:56 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xffffff7f, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:56 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x4, &(0x7f0000000040)=""/138, 0x8a)

00:55:56 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x5200}, 0x0)

00:55:56 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:56 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:56 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x7f000000, 0x0)

00:55:56 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x4, &(0x7f0000000040)=""/138, 0x8a)

00:55:56 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

[ 1513.323437][T12593] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:56 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x85030000, 0x0)

00:55:56 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:56 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24000000)

[ 1514.039056][T12599] syz-executor.2 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1514.052584][T12599] CPU: 0 PID: 12599 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1514.063077][T12599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1514.073174][T12599] Call Trace:
[ 1514.076500][T12599]  <TASK>
[ 1514.079444][T12599]  dump_stack_lvl+0xda/0x130
[ 1514.084070][T12599]  dump_stack+0x15/0x20
[ 1514.088246][T12599]  dump_header+0x95/0x3c0
[ 1514.092652][T12599]  oom_kill_process+0xe3/0x3e0
[ 1514.097569][T12599]  out_of_memory+0x9ca/0xc00
[ 1514.102172][T12599]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1514.108274][T12599]  mem_cgroup_out_of_memory+0x139/0x190
[ 1514.113878][T12599]  try_charge_memcg+0x75c/0xd30
[ 1514.118738][T12599]  obj_cgroup_charge_pages+0xab/0x130
[ 1514.124174][T12599]  __memcg_kmem_charge_page+0x1d5/0x2c0
[ 1514.129773][T12599]  __alloc_pages+0x1bb/0x340
[ 1514.134495][T12599]  alloc_pages+0x3e1/0x4e0
[ 1514.138932][T12599]  __vmalloc_node_range+0x6d2/0xea0
[ 1514.144143][T12599]  kvmalloc_node+0x121/0x160
[ 1514.148827][T12599]  ? xt_alloc_table_info+0x3d/0x80
[ 1514.154030][T12599]  xt_alloc_table_info+0x3d/0x80
[ 1514.159019][T12599]  do_arpt_set_ctl+0x634/0x13b0
[ 1514.163881][T12599]  ? futex_unqueue+0xba/0xe0
[ 1514.168480][T12599]  ? futex_wait+0x3c3/0x410
[ 1514.173021][T12599]  ? _raw_spin_unlock_bh+0x36/0x40
[ 1514.178143][T12599]  ? lock_sock_nested+0x10e/0x130
[ 1514.183238][T12599]  ? tcp_release_cb+0xfe/0x340
[ 1514.188114][T12599]  nf_setsockopt+0x18d/0x1b0
[ 1514.192752][T12599]  ip_setsockopt+0xe6/0x100
[ 1514.197273][T12599]  tcp_setsockopt+0x90/0xa0
[ 1514.201780][T12599]  sock_common_setsockopt+0x61/0x70
[ 1514.206983][T12599]  ? sock_common_recvmsg+0xe0/0xe0
[ 1514.212264][T12599]  __sys_setsockopt+0x1d7/0x240
[ 1514.217142][T12599]  __x64_sys_setsockopt+0x66/0x80
[ 1514.222175][T12599]  do_syscall_64+0x41/0xc0
[ 1514.226632][T12599]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1514.232631][T12599] RIP: 0033:0x7f2c4ab0cae9
[ 1514.237050][T12599] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1514.256727][T12599] RSP: 002b:00007f2c49e8f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1514.265145][T12599] RAX: ffffffffffffffda RBX: 00007f2c4ac2bf80 RCX: 00007f2c4ab0cae9
[ 1514.273123][T12599] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[ 1514.281097][T12599] RBP: 00007f2c4ab5847a R08: 0000000000000438 R09: 0000000000000000
[ 1514.289072][T12599] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[ 1514.297121][T12599] R13: 000000000000000b R14: 00007f2c4ac2bf80 R15: 00007ffcead55a28
[ 1514.305105][T12599]  </TASK>
[ 1514.308195][T12599] memory: usage 307200kB, limit 307200kB, failcnt 271959
[ 1514.315252][T12599] memory+swap: usage 308212kB, limit 9007199254740988kB, failcnt 0
[ 1514.323159][T12599] kmem: usage 307148kB, limit 9007199254740988kB, failcnt 0
[ 1514.330561][T12599] Memory cgroup stats for /syz2:
[ 1514.330771][T12599] cache 8192
[ 1514.338989][T12599] rss 32768
[ 1514.342149][T12599] shmem 4096
[ 1514.345378][T12599] mapped_file 4096
[ 1514.349156][T12599] dirty 0
[ 1514.352143][T12599] writeback 0
[ 1514.355455][T12599] workingset_refault_anon 57239
[ 1514.360308][T12599] workingset_refault_file 21
[ 1514.364959][T12599] swap 1036288
[ 1514.368345][T12599] pgpgin 202759
[ 1514.371808][T12599] pgpgout 202746
[ 1514.375383][T12599] pgfault 286326
[ 1514.378941][T12599] pgmajfault 21568
[ 1514.382679][T12599] inactive_anon 20480
[ 1514.386723][T12599] active_anon 28672
[ 1514.390557][T12599] inactive_file 4096
[ 1514.394509][T12599] active_file 0
[ 1514.398146][T12599] unevictable 0
[ 1514.401632][T12599] hierarchical_memory_limit 314572800
[ 1514.407057][T12599] hierarchical_memsw_limit 9223372036854771712
[ 1514.413274][T12599] total_cache 8192
[ 1514.417070][T12599] total_rss 32768
[ 1514.420762][T12599] total_shmem 4096
[ 1514.424554][T12599] total_mapped_file 4096
[ 1514.428837][T12599] total_dirty 0
[ 1514.432306][T12599] total_writeback 0
[ 1514.436158][T12599] total_workingset_refault_anon 57239
[ 1514.441541][T12599] total_workingset_refault_file 21
[ 1514.446709][T12599] total_swap 1036288
[ 1514.450678][T12599] total_pgpgin 202759
[ 1514.454704][T12599] total_pgpgout 202746
[ 1514.458787][T12599] total_pgfault 286326
[ 1514.462899][T12599] total_pgmajfault 21568
[ 1514.467190][T12599] total_inactive_anon 20480
[ 1514.471704][T12599] total_active_anon 28672
[ 1514.476092][T12599] total_inactive_file 4096
[ 1514.480518][T12599] total_active_file 0
[ 1514.484550][T12599] total_unevictable 0
[ 1514.488585][T12599] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12598,uid=0
[ 1514.504082][T12599] Memory cgroup out of memory: Killed process 12598 (syz-executor.2) total-vm:46428kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:57 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x4, &(0x7f0000000040)=""/138, 0x8a)

00:55:57 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xfffffff4, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:57 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:57 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x8b020000, 0x0)

00:55:57 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x5865}, 0x0)

00:55:57 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async, rerun: 32)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) (async, rerun: 32)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (async)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24000000)

00:55:57 executing program 3:
syslog(0x3, &(0x7f0000000040)=""/59, 0x3b)

00:55:57 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x8cffffff, 0x0)

00:55:57 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:57 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24000000)
memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0) (async)
dup(r0) (async)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0) (async)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03) (async)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24000000) (async)

[ 1514.732161][T12628] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:57 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:57 executing program 3:
syslog(0x3, &(0x7f0000000040)=""/59, 0x3b)

00:55:57 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0x9f000000, 0x0)

[ 1514.842823][T12644] loop5: detected capacity change from 0 to 512
[ 1514.884544][T12644] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1514.892823][T12644] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1515.424785][T12629] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1515.436211][T12629] CPU: 1 PID: 12629 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1515.446645][T12629] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1515.456761][T12629] Call Trace:
[ 1515.460129][T12629]  <TASK>
[ 1515.463056][T12629]  dump_stack_lvl+0xda/0x130
[ 1515.467727][T12629]  dump_stack+0x15/0x20
[ 1515.471886][T12629]  dump_header+0x95/0x3c0
[ 1515.476304][T12629]  oom_kill_process+0xe3/0x3e0
[ 1515.481149][T12629]  out_of_memory+0x9ca/0xc00
[ 1515.485776][T12629]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1515.491855][T12629]  mem_cgroup_out_of_memory+0x139/0x190
[ 1515.497481][T12629]  try_charge_memcg+0x75c/0xd30
[ 1515.502387][T12629]  ? __alloc_pages+0x193/0x340
[ 1515.507168][T12629]  charge_memcg+0x51/0x200
[ 1515.511831][T12629]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1515.517822][T12629]  __read_swap_cache_async+0x339/0x590
[ 1515.523293][T12629]  swap_cluster_readahead+0x29d/0x4e0
[ 1515.528723][T12629]  swapin_readahead+0x8d/0x710
[ 1515.533541][T12629]  ? __filemap_get_folio+0x42b/0x500
[ 1515.538910][T12629]  ? swap_cache_get_folio+0x6e/0x200
[ 1515.544205][T12629]  do_swap_page+0x306/0x1780
[ 1515.548854][T12629]  ? asm_exc_page_fault+0x26/0x30
[ 1515.554273][T12629]  ? __rcu_read_lock+0x35/0x50
[ 1515.559044][T12629]  handle_mm_fault+0xa2e/0x2cc0
[ 1515.563905][T12629]  exc_page_fault+0x3ff/0x6c0
[ 1515.568640][T12629]  asm_exc_page_fault+0x26/0x30
[ 1515.573569][T12629] RIP: 0033:0x7f2c4aac6af4
[ 1515.577989][T12629] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1515.597608][T12629] RSP: 002b:00007ffcead55b10 EFLAGS: 00010283
[ 1515.603677][T12629] RAX: 0000000000000000 RBX: 00007f2c4ac2c050 RCX: 0000000000000000
[ 1515.611726][T12629] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1515.619729][T12629] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1515.627790][T12629] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000172035
[ 1515.635786][T12629] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 0000000000171cf4
[ 1515.643841][T12629]  </TASK>
[ 1515.647052][T12629] memory: usage 307196kB, limit 307200kB, failcnt 272167
[ 1515.654087][T12629] memory+swap: usage 308200kB, limit 9007199254740988kB, failcnt 0
[ 1515.662056][T12629] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1515.669455][T12629] Memory cgroup stats for /syz2:
[ 1515.669565][T12629] cache 4096
[ 1515.677732][T12629] rss 8192
[ 1515.680759][T12629] shmem 0
[ 1515.683732][T12629] mapped_file 0
[ 1515.687292][T12629] dirty 0
[ 1515.690237][T12629] writeback 4096
[ 1515.693883][T12629] workingset_refault_anon 57331
[ 1515.698889][T12629] workingset_refault_file 21
[ 1515.703515][T12629] swap 1028096
[ 1515.706934][T12629] pgpgin 202882
[ 1515.710532][T12629] pgpgout 202878
[ 1515.714078][T12629] pgfault 286530
[ 1515.717674][T12629] pgmajfault 21612
[ 1515.721447][T12629] inactive_anon 8192
[ 1515.725385][T12629] active_anon 4096
[ 1515.729217][T12629] inactive_file 4096
[ 1515.733144][T12629] active_file 0
[ 1515.736731][T12629] unevictable 0
[ 1515.740199][T12629] hierarchical_memory_limit 314572800
[ 1515.745614][T12629] hierarchical_memsw_limit 9223372036854771712
[ 1515.751775][T12629] total_cache 4096
[ 1515.755547][T12629] total_rss 8192
[ 1515.759092][T12629] total_shmem 0
[ 1515.762590][T12629] total_mapped_file 0
[ 1515.766652][T12629] total_dirty 0
[ 1515.770110][T12629] total_writeback 4096
[ 1515.774185][T12629] total_workingset_refault_anon 57331
[ 1515.779585][T12629] total_workingset_refault_file 21
[ 1515.784736][T12629] total_swap 1028096
[ 1515.788716][T12629] total_pgpgin 202882
[ 1515.792736][T12629] total_pgpgout 202878
[ 1515.796833][T12629] total_pgfault 286530
[ 1515.800904][T12629] total_pgmajfault 21612
[ 1515.805173][T12629] total_inactive_anon 8192
[ 1515.809615][T12629] total_active_anon 4096
[ 1515.813907][T12629] total_inactive_file 4096
[ 1515.818365][T12629] total_active_file 0
[ 1515.822356][T12629] total_unevictable 0
[ 1515.826359][T12629] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12629,uid=0
[ 1515.841731][T12629] Memory cgroup out of memory: Killed process 12629 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:55:58 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xfffffff5, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:55:58 executing program 3:
syslog(0x3, &(0x7f0000000040)=""/59, 0x3b)

00:55:58 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xa1010000, 0x0)

00:55:58 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x5d02}, 0x0)

00:55:58 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x1, &(0x7f0000000040)=""/239, 0xef)

00:55:58 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:55:58 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xa5020000, 0x0)

00:55:58 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0xa, &(0x7f0000000040)=""/186, 0xba)
syslog(0x9, &(0x7f0000000100)=""/121, 0x79)
syslog(0x3, &(0x7f0000000180)=""/223, 0xdf)

00:55:59 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x1, &(0x7f0000000040)=""/239, 0xef)

[ 1516.073243][T12655] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:55:59 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$eJzs3UFrG9kdAPD/yFbqJE7ttD2kgaShSXFCG8mOm8T0kKRQegu0pPfU2LIxli1jyUlsQnHoByiU0gZ66qmXQj9AoeQjlEKgvS+7yy7LbrJ72MPuzjIjOXGEFDusbQX594OneW+kmf97kjWaN+9ZCuDQSiLiVkQMRMSliBhprS+0Umw207mIeP7s4UyWkkjTOx8n+bZZefu+Msdbmw01Fx3V1zcWp6vVymqrXG4srZTr6xuXF5am5yvzleXJyYlrU9enrk6N70k7s3bd+MX7f/7D3395498/uf/O3Q8v/i6r73Dr/u3t2EvN56SYPRcvDEbE6n4E64GBVnuKva4IAAC7kp2fficifpif/4/EQH42l3NKBwAAAH0ivTkcXyQRKQAAANC3buZzYJNCqTXfdzgKhVKpOYf3e3GsUK3VGz+eq60tzzbnyo5GsTC3UK2Mt+bUjkYxycoTef5l+UpbeTIiTkbEn0aO5uXSTK062+uLHwAAAHBIHG/r/3820uz/AwAAAH1mtNcVAAAAAPad/j8AAAD0P/1/AAAA6Gu/un07S+nW71/P3ltfW6zduzxbqS+WltZmSjO11ZXSfK02n39n39JO+6vWais/jeW1B+VGpd4o19c37i7V1pYbdxde+QlsAAAA4ACd/MGT/ycRsfmzo3nKHMluBrpsYK4A9I/CGzz2vX2sB3Dgun3MA/1vsNcVAHqm2OsKAD2X7HB/18k7/9n7ugAAAPtj7Pudx/8HXRuAvvcmw/9AfzH+D4eX8X84vIrOAODQ2//x/zTdcV8AAMC+Gs5TUii1xgKHo1AolSJO5P/qX0zmFqqV8Yj4dkT8b6T4raw8kW+Z7NhnAAAAAAAAAAAAAAAAAAAAAAAAAACa0jSJFAAAAOhrEYUPktbvf42NXBhuvz5wJPl8JF9GxP2/3vnLg+lGY3UiW//Ji/WNx631V3pxBQMAAABot9VP3+rHAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBeev7s4cxWOsi4H/08IkY7xR+MoXw5FMWIOPZpEoPbtksiYmAP4m8+iohTneInWbVitFWL9viFiDh6MPHPpGnaMf7xPYgPh9mT7Phzq9P7rxDn8mXn9/9gK31T3Y9/hRfHv4Eux78Tu4xx+uk/y13jP4o4Pdj5+LMVP+kS/3ynHXZ4Un77m42NbvHTv0WMdfz8SV6JVW4srZTr6xuXF5am5yvzleXJyYlrU9enrk6Nl+cWqpXWbccYfzzzr6/aVn2ZNuXtjy7xR3do/4UsU+zWsm3Bnj549t1mtti2izz+xfOdX/9Tr4mf/U38qPU5kN0/tpXfbOa3O/uP/57tVrcs/myX9u/0+l/cuem5S7/+/bu7fCgAcADq6xuL09VqZXXfM4/TND2oWDJvYWbo7aiGzO4yvT4yAQAAe+3lSX+vawIAAAAAAAAAAAAAAAAAAACH10F8nVh7zM3eNBUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4LW+DgAA//9Ce+Fr")

00:55:59 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xa9000000, 0x0)

00:55:59 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0xa, &(0x7f0000000040)=""/186, 0xba) (async)
syslog(0x9, &(0x7f0000000100)=""/121, 0x79) (async)
syslog(0x3, &(0x7f0000000180)=""/223, 0xdf)

[ 1516.180641][T12672] loop5: detected capacity change from 0 to 512
[ 1516.210470][T12672] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[ 1516.218787][T12672] EXT4-fs (loop5): inodes count not valid: 1 vs 32
[ 1516.747434][T12662] syz-executor.2 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1516.758818][T12662] CPU: 0 PID: 12662 Comm: syz-executor.2 Not tainted 6.6.0-rc4-syzkaller-00016-g5e62ed3b1c8a #0
[ 1516.769335][T12662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023
[ 1516.779385][T12662] Call Trace:
[ 1516.782694][T12662]  <TASK>
[ 1516.785620][T12662]  dump_stack_lvl+0xda/0x130
[ 1516.790218][T12662]  dump_stack+0x15/0x20
[ 1516.794372][T12662]  dump_header+0x95/0x3c0
[ 1516.798790][T12662]  oom_kill_process+0xe3/0x3e0
[ 1516.803556][T12662]  out_of_memory+0x9ca/0xc00
[ 1516.808221][T12662]  ? try_to_free_mem_cgroup_pages+0x220/0x480
[ 1516.814353][T12662]  mem_cgroup_out_of_memory+0x139/0x190
[ 1516.819913][T12662]  try_charge_memcg+0x75c/0xd30
[ 1516.824830][T12662]  ? __alloc_pages+0x193/0x340
[ 1516.829626][T12662]  charge_memcg+0x51/0x200
[ 1516.834077][T12662]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[ 1516.840061][T12662]  __read_swap_cache_async+0x339/0x590
[ 1516.845542][T12662]  swap_cluster_readahead+0x29d/0x4e0
[ 1516.851010][T12662]  swapin_readahead+0x8d/0x710
[ 1516.855822][T12662]  ? __filemap_get_folio+0x42b/0x500
[ 1516.861136][T12662]  ? __mod_lruvec_page_state+0xfe/0x1d0
[ 1516.866753][T12662]  ? swap_cache_get_folio+0x6e/0x200
[ 1516.872038][T12662]  do_swap_page+0x306/0x1780
[ 1516.876717][T12662]  ? cgroup_rstat_updated+0x8c/0x1c0
[ 1516.882007][T12662]  ? __rcu_read_lock+0x35/0x50
[ 1516.886811][T12662]  handle_mm_fault+0xa2e/0x2cc0
[ 1516.891670][T12662]  exc_page_fault+0x3ff/0x6c0
[ 1516.896461][T12662]  asm_exc_page_fault+0x26/0x30
[ 1516.901402][T12662] RIP: 0033:0x7f2c4aac6af4
[ 1516.905817][T12662] Code: 01 00 00 69 3d b9 eb c8 00 e8 03 00 00 48 8d 1d a2 54 16 00 e8 8d 5f 04 00 eb 0f 0f 1f 00 48 81 c3 d0 00 00 00 48 39 eb 74 be <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 f7 ee ff ff eb
[ 1516.925500][T12662] RSP: 002b:00007ffcead55b10 EFLAGS: 00010283
[ 1516.931568][T12662] RAX: 0000000000000000 RBX: 00007f2c4ac2d090 RCX: 0000000000000000
[ 1516.939539][T12662] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555556d54788
[ 1516.947516][T12662] RBP: 00007f2c4ac2d980 R08: 0000000000000000 R09: 00007ffceada50b0
[ 1516.955485][T12662] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000017257c
[ 1516.963457][T12662] R13: ffffffffffffffff R14: 00007f2c4a690000 R15: 000000000017223b
[ 1516.971433][T12662]  </TASK>
[ 1516.974610][T12662] memory: usage 307200kB, limit 307200kB, failcnt 272498
[ 1516.981753][T12662] memory+swap: usage 308148kB, limit 9007199254740988kB, failcnt 0
[ 1516.989750][T12662] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1516.997055][T12662] Memory cgroup stats for /syz2:
[ 1516.997173][T12662] cache 4096
[ 1517.005353][T12662] rss 8192
[ 1517.008376][T12662] shmem 0
[ 1517.011326][T12662] mapped_file 0
[ 1517.014809][T12662] dirty 0
[ 1517.017746][T12662] writeback 4096
[ 1517.021285][T12662] workingset_refault_anon 57395
[ 1517.026233][T12662] workingset_refault_file 21
[ 1517.030845][T12662] swap 970752
[ 1517.034127][T12662] pgpgin 202976
[ 1517.037694][T12662] pgpgout 202971
[ 1517.041244][T12662] pgfault 286711
[ 1517.044831][T12662] pgmajfault 21631
[ 1517.048553][T12662] inactive_anon 4096
[ 1517.052512][T12662] active_anon 0
[ 1517.055991][T12662] inactive_file 0
[ 1517.059644][T12662] active_file 4096
[ 1517.063386][T12662] unevictable 0
[ 1517.066869][T12662] hierarchical_memory_limit 314572800
[ 1517.072253][T12662] hierarchical_memsw_limit 9223372036854771712
[ 1517.078431][T12662] total_cache 4096
[ 1517.082155][T12662] total_rss 8192
[ 1517.085758][T12662] total_shmem 0
[ 1517.089216][T12662] total_mapped_file 0
[ 1517.093187][T12662] total_dirty 0
[ 1517.096664][T12662] total_writeback 4096
[ 1517.100733][T12662] total_workingset_refault_anon 57395
[ 1517.106130][T12662] total_workingset_refault_file 21
[ 1517.111274][T12662] total_swap 970752
[ 1517.115167][T12662] total_pgpgin 202976
[ 1517.119154][T12662] total_pgpgout 202971
[ 1517.123214][T12662] total_pgfault 286711
[ 1517.127335][T12662] total_pgmajfault 21631
[ 1517.131592][T12662] total_inactive_anon 4096
[ 1517.136029][T12662] total_active_anon 0
[ 1517.140077][T12662] total_inactive_file 0
[ 1517.144222][T12662] total_active_file 4096
[ 1517.148535][T12662] total_unevictable 0
[ 1517.152601][T12662] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=12662,uid=0
[ 1517.168029][T12662] Memory cgroup out of memory: Killed process 12662 (syz-executor.2) total-vm:46428kB, anon-rss:484kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
00:56:00 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xaf000000, 0x0)

00:56:00 executing program 0:
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0x2, &(0x7f0000000000)=""/46, 0x2e)
syslog(0x1, &(0x7f0000000040)=""/239, 0xef)

00:56:00 executing program 3:
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)
syslog(0xa, &(0x7f0000000040)=""/186, 0xba)
syslog(0x9, &(0x7f0000000100)=""/121, 0x79)
syslog(0x3, &(0x7f0000000180)=""/223, 0xdf)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e) (async)
syslog(0xa, &(0x7f0000000040)=""/186, 0xba) (async)
syslog(0x9, &(0x7f0000000100)=""/121, 0x79) (async)
syslog(0x3, &(0x7f0000000180)=""/223, 0xdf) (async)

00:56:00 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}, 0x1, 0x0, 0x0, 0x6000}, 0x0)

00:56:00 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:56:00 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x600, 0x4, 0x1fffffbf, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0xfffffffb, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'ip6gre0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r1 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
sendfile(r1, r2, &(0x7f0000000100), 0x6c03)

00:56:00 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:56:00 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xb1010000, 0x0)

00:56:00 executing program 0:
r0 = memfd_create(&(0x7f0000000140)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xac \xe8\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6)\x9f\x9cR\xae\x12G\xd8\xa4y\xef\x02?\xf2\xe7}\ra\x97F', 0x0)
r1 = dup(r0)
write$cgroup_pid(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
sendfile(r0, r1, &(0x7f0000000100), 0x6c03)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000003c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="eb599093", @ANYRES16=r2, @ANYBLOB="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"], 0x2c4}, 0x1, 0x0, 0x0, 0x20000000}, 0x1)
syslog(0x2, &(0x7f0000000040)=""/46, 0x2e)

[ 1517.462588][T12690] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
00:56:00 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:56:00 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r2, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@delchain={0x44, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff2, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}]}}]}, 0x44}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r7, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@delchain={0x44, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff2, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}]}}]}, 0x44}}, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000100)=0x14)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000140)={<r9=>0x0, @private, @broadcast}, &(0x7f0000000180)=0xc)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'pim6reg0\x00', <r10=>0x0})
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0)
r13 = socket$netlink(0x10, 0x3, 0x0)
r14 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r14)
getsockname$packet(r14, &(0x7f0000000100)={0x11, 0x0, <r15=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r15, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r13, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r15, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@delchain={0x44, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r15, {}, {0xfff2, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}]}}]}, 0x44}}, 0x0)
sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000004c0)={&(0x7f0000000200)={0x294, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}]}]}, 0x294}, 0x1, 0x0, 0x0, 0x44044}, 0x4c)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:56:00 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xb1030000, 0x0)

00:56:00 executing program 5:
r0 = getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES64], 0x1, 0x4d0, &(0x7f0000000f40)="$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")

00:56:00 executing program 1:
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='gadgetfs\x00', 0xc0ed0000, 0x0)

00:56:00 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r2, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@delchain={0x44, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff2, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}]}}]}, 0x44}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
r5 = socket$netlink(0x10, 0x3, 0x0) (rerun: 32)
r6 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r7, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0) (async)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@delchain={0x44, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff2, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}]}}]}, 0x44}}, 0x0) (async)
getpeername$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000100)=0x14)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000140)={<r9=>0x0, @private, @broadcast}, &(0x7f0000000180)=0xc) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'pim6reg0\x00', <r10=>0x0})
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = socket$nl_route(0x10, 0x3, 0x0) (async)
r13 = socket$netlink(0x10, 0x3, 0x0) (async)
r14 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r14) (async)
getsockname$packet(r14, &(0x7f0000000100)={0x11, 0x0, <r15=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r15, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) (async)
sendmsg$nl_route_sched(r13, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r15, @ANYBLOB="00000000f1ffffff000000000b000100636c73616374"], 0x30}}, 0x0) (async, rerun: 32)
sendmsg$nl_route_sched(r12, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=@delchain={0x44, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r15, {}, {0xfff2, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}]}}]}, 0x44}}, 0x0) (rerun: 32)
sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000004c0)={&(0x7f0000000200)={0x294, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}]}]}, 0x294}, 0x1, 0x0, 0x0, 0x44044}, 0x4c)
syslog(0x3, &(0x7f0000000000)=""/46, 0x2e)

00:56:00 executing program 4:
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="4800000010000507000004000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=ANY=[@ANYBLOB="3000000024001d0f3a61aa51acb1d59e1a43ca38", @ANYRES32=r3, @ANYBLOB="00000000f1ffffff000000000b000100636c736163