last executing test programs:

3.050682923s ago: executing program 4 (id=1027):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = memfd_create(0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000240)={'#! ', './file0'}, 0xb)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755ade000005a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6d86d5688ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f00"/185, 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x16}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast1}}}], 0x20}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000010000000500080001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f7ff0000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x94)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
pipe2$9p(&(0x7f0000001900), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r5=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000070000000100010008000000"], 0x48)
close(r5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x29fd, 0x84, 0x105}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r6}, 0x38)

1.90198645s ago: executing program 3 (id=1041):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{0x0}], 0x1)
writev(r2, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r3 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000007c0)='>', 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r3, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

1.727191623s ago: executing program 3 (id=1044):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xa, {"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", 0x1000}}, 0x1006)

1.624950855s ago: executing program 3 (id=1046):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, 0x0, 0x0)
perf_event_open(&(0x7f0000000ac0)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0xd}, 0x1419d, 0xffff, 0x2000000, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
writev(r2, 0x0, 0x0)
r3 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000007c0)}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r3, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="e5ffff6e18"], 0xa0}, 0x4004881)
recvmsg(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x160)

1.584429405s ago: executing program 3 (id=1048):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b10000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94)
syz_open_procfs(0x0, &(0x7f00000001c0)='net/vlan/vlan0\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000d3010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getrusage(0x0, &(0x7f0000000600))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x57, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(r4, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
splice(r1, 0x0, r2, 0x0, 0x7, 0x0)

1.544043016s ago: executing program 4 (id=1050):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r0, &(0x7f0000000000)="fa", 0xfffffdef)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="05000000030000000400000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001780)={{r1}, &(0x7f00000006c0), &(0x7f0000001740)='%pi6   \x00'}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)

1.28029663s ago: executing program 1 (id=1056):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="02130000"], 0x10}}, 0x0)

1.153039752s ago: executing program 1 (id=1059):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)

1.152335102s ago: executing program 1 (id=1060):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = memfd_create(0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000240)={'#! ', './file0'}, 0xb)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755ade000005a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6d86d5688ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f00"/185, 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x16}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast1}}}], 0x20}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000010000000500080001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f7ff0000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x94)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
pipe2$9p(&(0x7f0000001900), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r5=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000070000000100010008000000"], 0x48)
close(r5)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x29fd, 0x84, 0x105}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r6}, 0x38)

845.050667ms ago: executing program 0 (id=1065):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r2, &(0x7f0000000180)=[{0xff, 0x0, 0x10, 0x0, @time={0x800, 0x400}, {0x6}, {}, @result={0x1, 0x2}}], 0x1c)

769.436487ms ago: executing program 0 (id=1066):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x200000000000035a, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x170)
fgetxattr(r2, &(0x7f00000003c0)=@known='security.selinux\x00', 0x0, 0x0)

696.347939ms ago: executing program 0 (id=1067):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0xc7)
getpgid(0xffffffffffffffff)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00'})
setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt(0xffffffffffffffff, 0x1, 0x10000000000009, &(0x7f00000000c0)="f5c89e1e", 0x4)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000040)=0x3e, 0x4)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000900)={{0x1, 0x1, 0x18, r4, {0xee00}}, './file0\x00'})
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000005, 0x10, 0xffffffffffffffff, 0x9846b000)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000008c0), 0x1000000, &(0x7f0000000c40)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@access_any}, {@access_uid}, {@privport}, {@posixacl}, {@fscache}, {@cache_fscache}, {@privport}, {@cache_mmap}, {@debug={'debug', 0x3d, 0x8001}}], [{@smackfsfloor={'smackfsfloor', 0x3d, '\\-]]-'}}, {@fowner_gt}, {@fowner_eq}]}})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000040)={[{@errors_remount}, {@discard}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

633.26837ms ago: executing program 3 (id=1068):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000006000000040000000000000e0400000000000000000000000000000500000000020000000000000802000000000000000000000a0300000000005f0061"], 0x0, 0x52}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100030010651fbe347b2c2b00000c00018008000100", @ANYRES16=r2], 0x20}, 0x1, 0x0, 0x0, 0x40090}, 0x880)
r4 = socket$netlink(0x10, 0x3, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/177, &(0x7f0000000200)=0xb1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x54}}, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20081e, &(0x7f00000001c0)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}, {@noauto_da_alloc}]}, 0x1, 0x502, &(0x7f0000000a00)="$eJzs3c9vI1cdAPCvnV9OmjZp6QEQokspLGi1TuJto6oHKCeEUCVEjyBtQ+KNothxFDulCXvY/g9IVOIER/4Azj3xJyC4cYEDEj8iULMSSFPNeLzrzdob7yaxs/HnI41m3ryxv+/t7rzn+W7iF8DYuhYR9yJiOiI+iIiF/Hwh3+Ld9pZe99nR3fXjo7vrhUiS9/9VyOrTc9H1mtQL+XuWIuLH34/4WeHxuM2Dw+21Wq261y7OLrXqu0vNg8ObW/W1zepmdadSWV1ZXX771luVc+vra/Xp9sFE2sBv/yJt1nxe192Pc/T/JDP1IE5qMiJ+eAHBRmEi78/0qBvCMylGxCsR8Xp2/y/ERPa3CQBcZUmyEMlCdxkAuOqKWQ6sUCznuYD5KBbL5XYO79WYK9YazdaNO439nY12rmwxpop3tmrV5TxXuBhThbS8kh0/LFdOlG9FxMsR8cuZ2axcXm/UNkb5wQcAxtgLJ+b//860538A4IorjboBAMDQmf8BYPyY/wFg/Jj/AWD8mP8BYPyY/wFg/Jj/AWCs/Oi999ItOc6//3rjw4P97caHNzeqze1yfX+9vN7Y2y1vNhqb2Xf21E97v1qjsbvyZux/tPid3WZrqXlweLve2N9p3c6+1/t2dWoovQIAnuTl1z79cyEi7r0zm23RtZaDuRqutuJZXjx7fu0Ahm9i1A0ARsZqXzC+zvCMLz0AV0SPJXofUXrkcT+/OkmS5GKbBVyg61+S/4dx1ZX/91PAMGbk/2F8DZr/Py0/ADx/kqQw6Jr/MeiFAMDlJscP9Hm+fyXf/y7/z4Gfbpy84pOLbBUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcbp31f8v5WuDzUSyWyxEvRsRiTBXubNWqyxHxUkT8aWZqJi2vjLjNAMBZFf9eyNf/ur7wxvzJ2unC/ZlsHxE///X7v/pordXa+2N6/t8Pzrc+yc9XRtF+AOA0nXk623c9yH92dHe9sw2zPf/4XkSU2vGPj6bj+EH8yZjM9qWYioi5/xTycluhK3dxFvc+jogv9up/IeazHEh75dOT8dPYLw41fvGR+MWsrr1P/yy+8NSRk4VzaD481z5Nx593e91/xbiW7Xvf/6VshDq7fPxL32r9OBsDH8bvjH8Tfca/a4PGePMPP2gfzT5e93HElycjOrGPu8afTvxCn/hvDBj/L1/56uv96pLfRFyP3vG7Yy216rtLzYPDm1v1tc3qZnWnUlldWV1++9ZblaUsR73Ufzb45zs3XupXl/Z/rk/80in9/8aA/f/t/z74ydeeEP9bX+8VvxivPiF+Oid+c8D4a3O/L/WrS+Nv9Ox/R//+3xgw/l//dvjYsuEAwOg0Dw6312q16t4wDzofJIYa1MEVOEj/1VyCZvQ8+O6wYk3HU70qSZ4pVr8R4zyybsBl0L7Xk+peRNwfdWMAAAAAAAAAAAAAAICehvEbS6PuIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFfX5wEAAP//90HVog==")
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
clock_settime(0xfffffffb, &(0x7f0000000140)={0x77359400})
r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0x30)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18)
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000000))
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x31)
pwrite64(r7, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
ioctl$EXT4_IOC_MIGRATE(r6, 0x6609)

591.2673ms ago: executing program 4 (id=1069):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="5c000000020605000000000000000000000000000c00078005001500267d00000500010007000000050005000a000000050004"], 0x5c}}, 0x0)
r0 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
pipe(&(0x7f00000002c0)={<r1=>0xffffffffffffffff})
dup2(r0, r1)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f00000006c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={0x0}, 0x1, 0x0, 0x0, 0x840}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x18)
socket$inet6_udp(0xa, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000d00)='sched_switch\x00', r5}, 0x10)
r6 = inotify_init1(0x0)
inotify_add_watch(r6, &(0x7f00000000c0)='.\x00', 0xa4000061)
close(r6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x7, 0x7ffc1ff3}]})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101080000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff08000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000080000a4c000000060a0b04000000000000000002000000200004801c0001800a00010072616e67650000000c0002800800b43ac0f2897ad5a4bb298d01400000000b0900010073797a05000000000900020073797a3200000000140000001100010000"], 0x74}}, 0x0)
pidfd_send_signal(0xffffffffffffffff, 0x2, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r8, &(0x7f0000000040)={0x0, 0x18, &(0x7f00000009c0)=[{&(0x7f0000000140)="d800000018007b29e00212ba0d8105040a601800fe0f040b067c55a1bc000900b80006990600000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ccd40dd601edef3d93452a92307ff0ff0e97031e9f05e9f16e9cb500"/216, 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0)

492.559222ms ago: executing program 2 (id=1070):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)

472.364633ms ago: executing program 4 (id=1071):
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x1b}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe935"], 0x7c8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r3, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r5}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x70, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
pipe2$9p(&(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80800)
r8 = dup(r7)
write$P9_RLERRORu(r8, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r8, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r8, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x8080, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r8])
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

389.113164ms ago: executing program 0 (id=1072):
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe935"], 0x7c8)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80800)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x8080, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
stat(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

365.087554ms ago: executing program 2 (id=1073):
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe935"], 0x7c8)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80800)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[], 0x15)
r5 = dup(r4)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x8080, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
stat(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

335.144684ms ago: executing program 4 (id=1074):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="02130000"], 0x10}}, 0x0)

311.058845ms ago: executing program 2 (id=1075):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f80)=ANY=[@ANYBLOB="140000001000010000000000000000020000000a3c000000120a01010000000000000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000000002"], 0x64}}, 0x0)

281.628915ms ago: executing program 4 (id=1076):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x7, 0x3714}, 0x2, 0x8000000000000000, 0x2, 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0x6, 0xffffffffffffffff, 0x1)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000004cc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x400, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1d, 0x1, @perf_bp={0x0, 0x1}, 0x100410, 0x200, 0x2, 0x1, 0x9, 0x9, 0xfffd, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20c006, &(0x7f00000003c0)={[{@i_version}, {@mblk_io_submit}, {@norecovery}, {@journal_path={'journal_path', 0x3d, './file2'}}, {@discard}, {@data_err_abort}], [{@seclabel}]}, 0x1, 0x43d, &(0x7f0000000900)="$eJzs281vG0UbAPBn7SR9+/FSU5WPpgUCBRHxkTRpKT1wAYHEASQkOJRjSNIq1G1QEyRaRRAQKkdUiTviiMRfwAkuCDghcYU7qlShXFrgYrTZ3cR27LQOTlzw7ydtMrM7zszj3bFnZ7IB9K2R9EcSsS8ifomI/Vm2scBI9uvmytL0HytL00nUaq//nqyWu7GyNF0ULV63t8gMRJQ+TuJwi3oXLl0+N1Wtzl7M8+OL598ZX7h0+em581NnZ8/OXpg8derE8YlnT04+05U407huDL8/f+TQy29efXX69NW3fvgqKeJviqNLRjY7+Fit1uXqeuv/delkoIcNoSPlrJvG4Gr/3x/lWD95++Olj3raOGBb1Wq12r3tDy/XgP+wJHrdAqA3ii/69P632HZo6HFHuP58dgOUxn0z37IjA1HKyww23d9200hEnF7+8/N0i+2ZhwAAaPBNOv55Kh//NSz8lKJ+XuiufA2lEhF3R8SBiDgZEQcj4p6I1bL3RcT9HdbfvEiycfxTutbhn+xIOv57Ll/bahz/FaO/qJQj/iqGy5UYTM7MVWeP5e/JaAzuSvMTm9Tx7Ys/f9ruWP34L93S+ouxYN6OawO7Gl8zM7U49U9irnf9w4jhgVbxJ2srAellcSgihrdYx9wTXx5pd+zW8Tcaqs90YZ2p9kXE49n5X46m+AvJ5uuT4/+L6uyx8eKq2OjHn6681q7+TuPvtvT872l5/a/FX0nq12sXOq/jyq+ftL2n2er1P5S80bDvvanFxYsTEUPJK1mj6/dPNpWbXC+fxj96tHX/PxDr78ThiEgv4gci4sGIeChv+8MR8UhEHN0k/u9fePTtxj1JB/FvrzT+mY7O/3piKJr3tE6Uz333dUOllegg/vT8n1hNjeZ7bufz73batbWrGQAAAP59ShGxL5LS2Fq6VBoby/6H/2DsKVXnFxafPDP/7oWZ7BmBSgyWipmubD44mw+dyG/ri/xkU/54Pm/8WXn3an5ser460+vgoc/tbdP/U7+Ve906YNt5Xgv6l/4P/Uv/h/6l/0P/atH/d/eiHcDOa/X9/0EP2gHsvKb+b9kP+oj7f+hf+j/0L/0f+tLC7rj1Q/ISEhsSUbojmiGxTYlefzIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB0x98BAAD///1B6is=")
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0xc0542, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x40ffffffff}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000480)={0x1c, r3, 0x62c21a4ade68aba1, 0x0, 0x0, {{0x32}, {@val={0x8, 0x117, 0x56}, @void, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4050}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x20, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_PROTO_MIN={0x8, 0x5, 0x1, 0x0, 0x3}, @NFTA_NAT_TYPE={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000440)={@local, @random='\x00 \x00\x00\x00\b', @void, {@ipv4={0x800, @tcp={{0x9, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0xd}, {[@lsrr={0x83, 0x7, 0xd7, [@multicast2]}, @cipso={0x86, 0x6, 0xfffffffffffffffd}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r5 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000000380), 0x12)
open(&(0x7f0000000040)='./file2\x00', 0x181042, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val={'init_itable', 0x3d, 0x8000}}, {@nodiscard}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {}, {@nobarrier}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
socket$netlink(0x10, 0x3, 0x0)

280.973656ms ago: executing program 0 (id=1077):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00\x00\x00\b\x00\x00\x00\f'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000002c0)='syzkaller\x00', 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000540)='kfree\x00', r1}, 0x18)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000440)=ANY=[], 0x48)

244.382496ms ago: executing program 2 (id=1078):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4008804)

199.234417ms ago: executing program 0 (id=1079):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r0, &(0x7f0000000000)="fa", 0xfffffdef)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="05000000030000000400000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000fe, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001780)={{r1}, &(0x7f00000006c0), &(0x7f0000001740)='%pi6   \x00'}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)

177.490187ms ago: executing program 1 (id=1080):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{0x0, 0x300}, {&(0x7f0000000300)="359cb6", 0x3}], 0x2, &(0x7f0000000000)=ANY=[@ANYBLOB="30000300000000008400000001000000000000000c000400"/44, @ANYRES32=0x0], 0x30}], 0x1, 0x0)

169.929987ms ago: executing program 2 (id=1081):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000003"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f00000003c0), &(0x7f0000000400)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r2)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0180000000000000000001"], 0x28}}, 0x40000)

125.912698ms ago: executing program 2 (id=1082):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)
close(r1)

73.235049ms ago: executing program 1 (id=1083):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="5c000000020605000000000000000000000000000c00078005001500267d00000500010007000000050005000a000000050004"], 0x5c}}, 0x0)
r0 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
pipe(&(0x7f00000002c0)={<r1=>0xffffffffffffffff})
dup2(r0, r1)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f00000006c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={0x0}, 0x1, 0x0, 0x0, 0x840}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x18)
socket$inet6_udp(0xa, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b708000002001e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000d00)='sched_switch\x00', r5}, 0x10)
r6 = inotify_init1(0x0)
inotify_add_watch(r6, &(0x7f00000000c0)='.\x00', 0xa4000061)
close(r6)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x7, 0x7ffc1ff3}]})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101080000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff08000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000080000a4c000000060a0b04000000000000000002000000200004801c0001800a00010072616e67650000000c0002800800b43ac0f2897ad5a4bb298d01400000000b0900010073797a05000000000900020073797a3200000000140000001100010000"], 0x74}}, 0x0)
pidfd_send_signal(0xffffffffffffffff, 0x2, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r8, &(0x7f0000000040)={0x0, 0x18, &(0x7f00000009c0)=[{&(0x7f0000000140)="d800000018007b29e00212ba0d8105040a601800fe0f040b067c55a1bc000900b80006990600000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ccd40dd601edef3d93452a92307ff0ff0e97031e9f05e9f16e9cb500"/216, 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0)

10.69645ms ago: executing program 3 (id=1084):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
symlink(&(0x7f0000000080)='.\x00', 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0/file0/..\x00', &(0x7f0000000240)={0x0, 0x0, 0x8}, 0x18)

0s ago: executing program 1 (id=1085):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
close(0xffffffffffffffff)
getpgid(0xffffffffffffffff)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00'})
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt(0xffffffffffffffff, 0x1, 0x10000000000009, &(0x7f00000000c0)="f5c89e1e", 0x4)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000040)=0x3e, 0x4)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000900)={{0x1, 0x1, 0x18, r3, {0xee00}}, './file0\x00'})
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000005, 0x10, 0xffffffffffffffff, 0x9846b000)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000008c0), 0x1000000, &(0x7f0000000c40)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@access_any}, {@access_uid}, {@privport}, {@posixacl}, {@fscache}, {@cache_fscache}, {@privport}, {@cache_mmap}, {@debug={'debug', 0x3d, 0x8001}}], [{@smackfsfloor={'smackfsfloor', 0x3d, '\\-]]-'}}, {@fowner_gt}, {@fowner_eq}]}})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000040)={[{@errors_remount}, {@discard}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

kernel console output (not intermixed with test programs):

5.860212][ T5469] mapped_file 0
[  105.863726][ T5469] dirty 0
[  105.866685][ T5469] writeback 0
[  105.870041][ T5469] workingset_refault_anon 168
[  105.874799][ T5469] workingset_refault_file 580
[  105.879497][ T5469] swap 196608
[  105.882853][ T5469] swapcached 0
[  105.886478][ T5469] pgpgin 43682
[  105.890593][ T5469] pgpgout 43681
[  105.894122][ T5469] pgfault 66437
[  105.897591][ T5469] pgmajfault 137
[  105.901304][ T5469] inactive_anon 0
[  105.905025][ T5469] active_anon 0
[  105.908504][ T5469] inactive_file 0
[  105.912183][ T5469] active_file 4096
[  105.915916][ T5469] unevictable 0
[  105.919381][ T5469] hierarchical_memory_limit 314572800
[  105.924799][ T5469] hierarchical_memsw_limit 9223372036854771712
[  105.931012][ T5469] total_cache 4096
[  105.934797][ T5469] total_rss 0
[  105.938094][ T5469] total_shmem 0
[  105.941551][ T5469] total_mapped_file 0
[  105.945612][ T5469] total_dirty 0
[  105.949130][ T5469] total_writeback 0
[  105.952988][ T5469] total_workingset_refault_anon 168
[  105.958229][ T5469] total_workingset_refault_file 580
[  105.963460][ T5469] total_swap 196608
[  105.967294][ T5469] total_swapcached 0
[  105.971204][ T5469] total_pgpgin 43682
[  105.975570][ T5469] total_pgpgout 43681
[  105.979552][ T5469] total_pgfault 66437
[  105.983587][ T5469] total_pgmajfault 137
[  105.987671][ T5469] total_inactive_anon 0
[  105.991843][ T5469] total_active_anon 0
[  105.995881][ T5469] total_inactive_file 0
[  106.000102][ T5469] total_active_file 4096
[  106.004443][ T5469] total_unevictable 0
[  106.008446][ T5469] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.628,pid=5468,uid=0
[  106.023041][ T5469] Memory cgroup out of memory: Killed process 5468 (syz.0.628) total-vm:93752kB, anon-rss:936kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:148kB oom_score_adj:1000
[  106.041735][ T5505] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  106.062469][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.099305][ T5509] netlink: 4 bytes leftover after parsing attributes in process `syz.1.643'.
[  106.137897][ T5513] openvswitch: netlink: Message has 6 unknown bytes.
[  106.176158][ T5519] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  106.186068][ T5507] 9pnet_fd: Insufficient options for proto=fd
[  106.195442][ T5507] loop4: detected capacity change from 0 to 512
[  106.202072][ T5518] loop3: detected capacity change from 0 to 512
[  106.230039][ T5507] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  106.234896][ T5522] netlink: 'syz.2.649': attribute type 4 has an invalid length.
[  106.238132][ T5518] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  106.254663][ T5522] netlink: 'syz.2.649': attribute type 4 has an invalid length.
[  106.272145][ T5507] EXT4-fs (loop4): orphan cleanup on readonly fs
[  106.292112][ T5518] EXT4-fs (loop3): orphan cleanup on readonly fs
[  106.312109][ T5507] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.642: corrupted inode contents
[  106.327735][ T5518] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.647: corrupted inode contents
[  106.348460][ T5507] EXT4-fs (loop4): Remounting filesystem read-only
[  106.356539][ T5507] EXT4-fs (loop4): 1 truncate cleaned up
[  106.360957][ T5518] EXT4-fs (loop3): Remounting filesystem read-only
[  106.363608][ T5524] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  106.363608][ T5524]    program syz.1.648 not setting count and/or reply_len properly
[  106.368984][ T5518] EXT4-fs (loop3): 1 truncate cleaned up
[  106.391833][ T4137] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  106.402459][ T4137] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  106.414564][ T4137] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  106.425680][ T4137] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  106.436435][ T4137] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  106.449847][ T4137] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  106.460876][ T5507] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  106.460972][ T5518] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  106.476833][ T5507] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.496755][ T5530] lo speed is unknown, defaulting to 1000
[  106.505891][ T5530] lo speed is unknown, defaulting to 1000
[  106.523421][ T5530] lo speed is unknown, defaulting to 1000
[  106.525291][ T5518] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.537271][ T5530] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  106.549426][ T5530] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  106.582908][ T5530] lo speed is unknown, defaulting to 1000
[  106.589009][ T5530] lo speed is unknown, defaulting to 1000
[  106.610918][ T5530] lo speed is unknown, defaulting to 1000
[  106.662980][ T5530] lo speed is unknown, defaulting to 1000
[  106.669352][ T5530] lo speed is unknown, defaulting to 1000
[  106.778162][ T5547] loop1: detected capacity change from 0 to 128
[  106.810323][ T5550] loop0: detected capacity change from 0 to 512
[  107.393703][ T5552] loop4: detected capacity change from 0 to 128
[  107.613107][ T5547] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  107.626875][ T5552] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  107.638273][ T5550] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.639470][ T5547] ext4 filesystem being mounted at /158/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.664913][ T5552] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.691744][ T5550] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.716023][ T5545] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.656: corrupted inode contents
[  107.732875][ T5545] EXT4-fs (loop0): Remounting filesystem read-only
[  107.743037][ T5545] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[  107.752335][ T5558] loop2: detected capacity change from 0 to 2048
[  107.764725][ T5558] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.777893][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.827835][ T5558] ext4: Unknown parameter '
'
[  107.873276][ T5562] loop3: detected capacity change from 0 to 8192
[  107.898869][ T3306] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  107.913411][ T3308] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  107.932016][ T5564] capability: warning: `syz.1.661' uses deprecated v2 capabilities in a way that may be insecure
[  107.958016][ T5570] loop4: detected capacity change from 0 to 512
[  107.964931][ T5570] EXT4-fs: Ignoring removed oldalloc option
[  107.971186][ T5570] EXT4-fs (loop4): can't mount with data=, fs mounted w/o journal
[  108.018303][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.068537][ T5580] loop2: detected capacity change from 0 to 1024
[  108.075119][ T5581] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  108.075119][ T5581]    program syz.3.662 not setting count and/or reply_len properly
[  108.094815][ T5580] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  108.108035][ T5580] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.121245][ T5580] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  108.150363][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  108.175447][ T5591] openvswitch: netlink: Message has 6 unknown bytes.
[  108.204844][ T5593] netlink: 'syz.2.673': attribute type 4 has an invalid length.
[  108.216713][ T3413] lo speed is unknown, defaulting to 1000
[  108.222555][ T3413] syz0: Port: 1 Link DOWN
[  108.301965][   T29] kauditd_printk_skb: 524 callbacks suppressed
[  108.302056][   T29] audit: type=1326 audit(1751353438.720:9080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.0.659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1d0b1858e7 code=0x7ffc0000
[  108.331736][   T29] audit: type=1326 audit(1751353438.730:9081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.0.659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1d0b12ab19 code=0x7ffc0000
[  108.355176][   T29] audit: type=1326 audit(1751353438.730:9082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.0.659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f1d0b18e929 code=0x7ffc0000
[  108.378547][   T29] audit: type=1326 audit(1751353438.730:9083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5577 comm="syz.1.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f94e39558e7 code=0x7ffc0000
[  108.401851][   T29] audit: type=1326 audit(1751353438.730:9084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5577 comm="syz.1.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f94e38fab19 code=0x7ffc0000
[  108.425243][   T29] audit: type=1326 audit(1751353438.730:9085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5577 comm="syz.1.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  108.452375][ T5597] loop3: detected capacity change from 0 to 128
[  108.465222][ T5596] loop2: detected capacity change from 0 to 512
[  108.474229][   T29] audit: type=1326 audit(1751353438.880:9086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5577 comm="syz.1.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f94e39558e7 code=0x7ffc0000
[  108.497668][   T29] audit: type=1326 audit(1751353438.880:9087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5577 comm="syz.1.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f94e38fab19 code=0x7ffc0000
[  108.520913][   T29] audit: type=1326 audit(1751353438.880:9088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5577 comm="syz.1.668" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  108.544283][   T29] audit: type=1326 audit(1751353438.880:9089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.0.659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1d0b1858e7 code=0x7ffc0000
[  108.575790][ T5597] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  108.589170][ T5597] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.625616][ T5596] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  108.643631][ T5596] EXT4-fs (loop2): orphan cleanup on readonly fs
[  108.654056][ T5596] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.674: corrupted inode contents
[  108.667771][ T5596] EXT4-fs (loop2): Remounting filesystem read-only
[  108.680456][ T5596] EXT4-fs (loop2): 1 truncate cleaned up
[  108.686373][  T376] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  108.697090][  T376] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  108.707679][  T376] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  108.718395][ T5596] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  108.731228][ T5596] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.795596][ T5604] loop0: detected capacity change from 0 to 1024
[  108.813902][ T5604] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  108.826327][ T5604] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.839630][ T5604] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  108.867216][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  108.911501][ T5612] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  108.911501][ T5612]    program syz.1.678 not setting count and/or reply_len properly
[  109.074067][ T3318] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  109.083232][ T5617] loop1: detected capacity change from 0 to 128
[  109.093307][ T5617] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  109.106123][ T5617] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.177826][ T3306] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  109.179318][ T5621] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  109.179318][ T5621]    program syz.3.681 not setting count and/or reply_len properly
[  109.242632][ T5623] netlink: 4 bytes leftover after parsing attributes in process `syz.1.682'.
[  109.287652][ T5628] IPv6: Can't replace route, no match found
[  109.317854][ T5632] FAULT_INJECTION: forcing a failure.
[  109.317854][ T5632] name failslab, interval 1, probability 0, space 0, times 0
[  109.330606][ T5632] CPU: 0 UID: 0 PID: 5632 Comm: syz.1.685 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  109.330764][ T5632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  109.330781][ T5632] Call Trace:
[  109.330789][ T5632]  <TASK>
[  109.330798][ T5632]  __dump_stack+0x1d/0x30
[  109.330886][ T5632]  dump_stack_lvl+0xe8/0x140
[  109.330906][ T5632]  dump_stack+0x15/0x1b
[  109.330998][ T5632]  should_fail_ex+0x265/0x280
[  109.331040][ T5632]  should_failslab+0x8c/0xb0
[  109.331069][ T5632]  kmem_cache_alloc_noprof+0x50/0x310
[  109.331103][ T5632]  ? getname_flags+0x80/0x3b0
[  109.331195][ T5632]  getname_flags+0x80/0x3b0
[  109.331221][ T5632]  __x64_sys_rename+0x33/0x70
[  109.331240][ T5632]  x64_sys_call+0x2aee/0x2fb0
[  109.331268][ T5632]  do_syscall_64+0xd2/0x200
[  109.331352][ T5632]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  109.331388][ T5632]  ? clear_bhb_loop+0x40/0x90
[  109.331416][ T5632]  ? clear_bhb_loop+0x40/0x90
[  109.331445][ T5632]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.331555][ T5632] RIP: 0033:0x7f94e395e929
[  109.331575][ T5632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.331599][ T5632] RSP: 002b:00007f94e1fc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  109.331621][ T5632] RAX: ffffffffffffffda RBX: 00007f94e3b85fa0 RCX: 00007f94e395e929
[  109.331634][ T5632] RDX: 0000000000000000 RSI: 0000200000000440 RDI: 0000200000000280
[  109.331646][ T5632] RBP: 00007f94e1fc7090 R08: 0000000000000000 R09: 0000000000000000
[  109.331660][ T5632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.331674][ T5632] R13: 0000000000000000 R14: 00007f94e3b85fa0 R15: 00007ffcca7aded8
[  109.331695][ T5632]  </TASK>
[  109.638825][ T5637] netlink: 8 bytes leftover after parsing attributes in process `syz.2.688'.
[  109.652679][ T5637] Dead loop on virtual device ip6_vti0, fix it urgently!
[  109.682983][ T5639] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  109.682983][ T5639]    program syz.2.689 not setting count and/or reply_len properly
[  109.729418][ T5641] openvswitch: netlink: Message has 6 unknown bytes.
[  109.752912][ T5642] loop1: detected capacity change from 0 to 128
[  109.774977][ T5645] 9pnet_fd: Insufficient options for proto=fd
[  109.792306][ T5642] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  109.805432][ T5642] ext4 filesystem being mounted at /168/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.827287][ T5645] loop2: detected capacity change from 0 to 512
[  109.850762][ T5645] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  109.860464][ T5645] EXT4-fs (loop2): orphan cleanup on readonly fs
[  109.869616][ T5645] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.691: corrupted inode contents
[  109.883522][ T5645] EXT4-fs (loop2): Remounting filesystem read-only
[  109.890222][ T5645] EXT4-fs (loop2): 1 truncate cleaned up
[  109.904789][ T5648] loop0: detected capacity change from 0 to 1024
[  109.913675][ T5648] EXT4-fs: Ignoring removed orlov option
[  109.922251][ T5648] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.020005][ T1863] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  110.030661][ T1863] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  110.042083][ T1863] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  110.054839][ T5645] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  110.068997][ T5645] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.148964][ T5657] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  110.148964][ T5657]    program syz.2.693 not setting count and/or reply_len properly
[  110.211594][ T5661] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  110.226417][ T5663] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  110.252684][ T5665] loop2: detected capacity change from 0 to 512
[  110.260091][ T5667] netlink: 4 bytes leftover after parsing attributes in process `syz.3.698'.
[  110.264224][ T5665] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  110.277294][ T5665] EXT4-fs (loop2): orphan cleanup on readonly fs
[  110.286210][ T5665] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.697: corrupted inode contents
[  110.298589][ T5665] EXT4-fs (loop2): Remounting filesystem read-only
[  110.306702][ T5665] EXT4-fs (loop2): 1 truncate cleaned up
[  110.312984][   T51] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  110.323638][   T51] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  110.327932][ T5673] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  110.327932][ T5673]    program syz.3.700 not setting count and/or reply_len properly
[  110.335787][   T51] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  110.363244][ T5665] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  110.378117][ T5665] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.396050][ T5675] loop3: detected capacity change from 0 to 1024
[  110.428023][ T3306] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  110.438377][ T5675] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  110.453955][ T5675] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.467309][ T5675] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  110.483602][ T5679] futex_wake_op: syz.2.702 tries to shift op by -1; fix this program
[  110.488355][ T5681] loop1: detected capacity change from 0 to 4096
[  110.511559][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  110.523852][ T5681] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.538310][ T5681] FAULT_INJECTION: forcing a failure.
[  110.538310][ T5681] name failslab, interval 1, probability 0, space 0, times 0
[  110.551025][ T5681] CPU: 0 UID: 0 PID: 5681 Comm: syz.1.703 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  110.551061][ T5681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  110.551077][ T5681] Call Trace:
[  110.551084][ T5681]  <TASK>
[  110.551092][ T5681]  __dump_stack+0x1d/0x30
[  110.551113][ T5681]  dump_stack_lvl+0xe8/0x140
[  110.551137][ T5681]  dump_stack+0x15/0x1b
[  110.551237][ T5681]  should_fail_ex+0x265/0x280
[  110.551273][ T5681]  should_failslab+0x8c/0xb0
[  110.551313][ T5681]  __kmalloc_noprof+0xa5/0x3e0
[  110.551346][ T5681]  ? qtree_write_dquot+0x70/0x300
[  110.551393][ T5681]  qtree_write_dquot+0x70/0x300
[  110.551421][ T5681]  ? __pfx_ext4_quota_write+0x10/0x10
[  110.551460][ T5681]  ? __rcu_read_unlock+0x4f/0x70
[  110.551483][ T5681]  v2_write_dquot+0xda/0x140
[  110.551516][ T5681]  dquot_commit+0x219/0x260
[  110.551584][ T5681]  ext4_write_dquot+0x126/0x1d0
[  110.551623][ T5681]  ext4_mark_dquot_dirty+0x95/0xd0
[  110.551657][ T5681]  dquot_alloc_inode+0x405/0x5d0
[  110.551679][ T5681]  ? _raw_spin_unlock+0x26/0x50
[  110.551770][ T5681]  ? insert_inode_locked+0x2a3/0x2e0
[  110.551803][ T5681]  __ext4_new_inode+0x1ec1/0x22e0
[  110.552002][ T5681]  ext4_mkdir+0x28b/0x740
[  110.552043][ T5681]  vfs_mkdir+0x210/0x340
[  110.552075][ T5681]  do_mkdirat+0x132/0x3f0
[  110.552179][ T5681]  __x64_sys_mkdir+0x42/0x50
[  110.552215][ T5681]  x64_sys_call+0x2289/0x2fb0
[  110.552348][ T5681]  do_syscall_64+0xd2/0x200
[  110.552371][ T5681]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  110.552406][ T5681]  ? clear_bhb_loop+0x40/0x90
[  110.552434][ T5681]  ? clear_bhb_loop+0x40/0x90
[  110.552462][ T5681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.552496][ T5681] RIP: 0033:0x7f94e395e929
[  110.552515][ T5681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.552539][ T5681] RSP: 002b:00007f94e1fc7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  110.552558][ T5681] RAX: ffffffffffffffda RBX: 00007f94e3b85fa0 RCX: 00007f94e395e929
[  110.552653][ T5681] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000200000000140
[  110.552665][ T5681] RBP: 00007f94e1fc7090 R08: 0000000000000000 R09: 0000000000000000
[  110.552677][ T5681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  110.552690][ T5681] R13: 0000000000000000 R14: 00007f94e3b85fa0 R15: 00007ffcca7aded8
[  110.552709][ T5681]  </TASK>
[  110.791472][ T5681] EXT4-fs error (device loop1): ext4_write_dquot:6913: comm syz.1.703: Failed to commit dquot type 1
[  110.813409][ T5683] lo speed is unknown, defaulting to 1000
[  110.850344][ T5683] loop2: detected capacity change from 0 to 2048
[  110.868355][ T5683] ext4 filesystem being mounted at /148/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.881276][ T5681] EXT4-fs (loop1): Remounting filesystem read-only
[  110.951212][ T5687] loop3: detected capacity change from 0 to 512
[  110.986739][ T5687] ext4 filesystem being mounted at /114/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.015303][ T5687] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.704: corrupted inode contents
[  111.021695][ T5692] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  111.021695][ T5692]    program syz.1.706 not setting count and/or reply_len properly
[  111.027720][ T5687] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #18: comm syz.3.704: mark_inode_dirty error
[  111.058095][ T5687] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.704: corrupted inode contents
[  111.072607][ T5697] netlink: 24 bytes leftover after parsing attributes in process `syz.2.708'.
[  111.085806][ T5697] IPv6: Can't replace route, no match found
[  111.105624][ T5687] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm syz.3.704: mark_inode_dirty error
[  111.120514][ T5699] netlink: 4 bytes leftover after parsing attributes in process `syz.1.709'.
[  111.130452][ T5687] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm syz.3.704: mark inode dirty (error -117)
[  111.165707][ T5705] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  111.165707][ T5705]    program syz.1.711 not setting count and/or reply_len properly
[  111.184399][ T5687] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  111.245585][ T5711] openvswitch: netlink: Message has 6 unknown bytes.
[  111.310429][ T5722] loop1: detected capacity change from 0 to 512
[  111.318733][ T5723] FAULT_INJECTION: forcing a failure.
[  111.318733][ T5723] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  111.332141][ T5723] CPU: 0 UID: 0 PID: 5723 Comm: syz.2.717 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  111.332174][ T5723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  111.332190][ T5723] Call Trace:
[  111.332199][ T5723]  <TASK>
[  111.332208][ T5723]  __dump_stack+0x1d/0x30
[  111.332236][ T5723]  dump_stack_lvl+0xe8/0x140
[  111.332339][ T5723]  dump_stack+0x15/0x1b
[  111.332356][ T5723]  should_fail_ex+0x265/0x280
[  111.332440][ T5723]  should_fail_alloc_page+0xf2/0x100
[  111.332474][ T5723]  __alloc_frozen_pages_noprof+0xff/0x360
[  111.332525][ T5723]  alloc_pages_mpol+0xb3/0x250
[  111.332605][ T5723]  vma_alloc_folio_noprof+0x1aa/0x300
[  111.332639][ T5723]  handle_mm_fault+0xec2/0x2be0
[  111.332692][ T5723]  ? mas_walk+0xf2/0x120
[  111.332808][ T5723]  do_user_addr_fault+0x636/0x1090
[  111.332843][ T5723]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  111.332880][ T5723]  exc_page_fault+0x62/0xa0
[  111.332918][ T5723]  asm_exc_page_fault+0x26/0x30
[  111.332966][ T5723] RIP: 0033:0x7f4273bcbf4b
[  111.332983][ T5723] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[  111.333001][ T5723] RSP: 002b:00007f4272284e10 EFLAGS: 00010246
[  111.333054][ T5723] RAX: 00007f4272286f30 RBX: 00007f4273e14620 RCX: 0000000000000000
[  111.333072][ T5723] RDX: 00007f4272286f78 RSI: 00007f4273c7dbf8 RDI: 00007f4272284e30
[  111.333169][ T5723] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  111.333186][ T5723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.333202][ T5723] R13: 0000000000000000 R14: 00007f4273e45fa0 R15: 00007ffc60c4c088
[  111.333227][ T5723]  </TASK>
[  111.333239][ T5723] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  111.346055][ T5716] loop3: detected capacity change from 0 to 1024
[  111.404075][ T5722] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  111.406864][ T5716] EXT4-fs: Ignoring removed orlov option
[  111.410719][ T5722] EXT4-fs (loop1): orphan cleanup on readonly fs
[  111.541700][ T5722] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.713: corrupted inode contents
[  111.554949][ T5722] EXT4-fs (loop1): Remounting filesystem read-only
[  111.561955][ T5722] EXT4-fs (loop1): 1 truncate cleaned up
[  111.562091][ T5729] futex_wake_op: syz.2.718 tries to shift op by -1; fix this program
[  111.568140][  T376] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  111.586571][  T376] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  111.654090][  T376] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  111.766936][ T5708] loop4: detected capacity change from 0 to 512
[  111.828427][ T5736] lo speed is unknown, defaulting to 1000
[  111.925025][ T5737] loop2: detected capacity change from 0 to 2048
[  111.976986][ T5737] ext4 filesystem being mounted at /154/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.988128][ T5735] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  111.988128][ T5735]    program syz.0.719 not setting count and/or reply_len properly
[  112.193858][ T5744] netlink: 4 bytes leftover after parsing attributes in process `syz.1.721'.
[  112.231167][ T5748] netlink: 24 bytes leftover after parsing attributes in process `syz.3.722'.
[  112.249719][ T5748] IPv6: Can't replace route, no match found
[  112.259724][ T5750] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  112.259724][ T5750]    program syz.0.724 not setting count and/or reply_len properly
[  112.278273][ T5752] loop1: detected capacity change from 0 to 512
[  112.310572][ T5752] ext4 filesystem being mounted at /175/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  112.393894][ T5752] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.725: corrupted inode contents
[  112.409929][ T5758] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  112.420471][ T5755] loop3: detected capacity change from 0 to 128
[  112.434595][ T5752] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #18: comm syz.1.725: mark_inode_dirty error
[  112.447221][ T5755] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.494572][ T5752] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.725: corrupted inode contents
[  112.520522][ T5763] loop0: detected capacity change from 0 to 1024
[  112.529331][ T5752] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #18: comm syz.1.725: mark_inode_dirty error
[  112.544135][ T5752] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #18: comm syz.1.725: mark inode dirty (error -117)
[  112.610620][ T5767] loop3: detected capacity change from 0 to 128
[  112.620075][ T5554] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set
[  112.636791][ T5752] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[  112.647320][ T5767] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.836081][ T5763] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.728: Allocating blocks 385-513 which overlap fs metadata
[  112.885228][ T5763] EXT4-fs (loop0): pa ffff8881069ce8c0: logic 16, phys. 129, len 24
[  112.893426][ T5763] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  113.135223][ T5778] loop3: detected capacity change from 0 to 8192
[  113.175615][ T5784] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  113.175615][ T5784]    program syz.2.737 not setting count and/or reply_len properly
[  113.201209][ T5785] loop1: detected capacity change from 0 to 512
[  113.213582][ T5787] netlink: 4 bytes leftover after parsing attributes in process `syz.3.736'.
[  113.214869][ T5790] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  113.234218][ T5785] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  113.262968][ T5785] EXT4-fs (loop1): orphan cleanup on readonly fs
[  113.264287][ T5795] 9pnet_fd: Insufficient options for proto=fd
[  113.283307][ T5795] loop0: detected capacity change from 0 to 512
[  113.292319][ T5785] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.734: corrupted inode contents
[  113.306578][ T5785] EXT4-fs (loop1): Remounting filesystem read-only
[  113.313714][ T5785] EXT4-fs (loop1): 1 truncate cleaned up
[  113.319576][  T376] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  113.324579][ T5797] loop3: detected capacity change from 0 to 2048
[  113.330170][  T376] __quota_error: 1071 callbacks suppressed
[  113.330191][  T376] Quota error (device loop1): write_blk: dquota write failed
[  113.349921][  T376] Quota error (device loop1): remove_free_dqentry: Can't write block (5) with free entries
[  113.350177][ T5800] loop2: detected capacity change from 0 to 512
[  113.359952][  T376] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  113.359980][  T376] Quota error (device loop1): write_blk: dquota write failed
[  113.359995][  T376] Quota error (device loop1): free_dqentry: Can't move quota data block (5) to free list
[  113.378659][ T5795] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  113.385562][  T376] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  113.396570][ T5795] EXT4-fs (loop0): orphan cleanup on readonly fs
[  113.402131][  T376] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  113.415469][ T5795] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.740: corrupted inode contents
[  113.418614][  T376] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  113.428848][ T5800] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  113.456621][ T5797] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.741: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  113.457346][ T5800] EXT4-fs (loop2): orphan cleanup on readonly fs
[  113.474946][ T5795] EXT4-fs (loop0): Remounting filesystem read-only
[  113.482345][ T5800] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.742: corrupted inode contents
[  113.499305][ T5800] EXT4-fs (loop2): Remounting filesystem read-only
[  113.506083][ T5800] EXT4-fs (loop2): 1 truncate cleaned up
[  113.507033][ T5795] EXT4-fs (loop0): 1 truncate cleaned up
[  113.514585][ T5797] EXT4-fs (loop3): Remounting filesystem read-only
[  113.524069][ T4137] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  113.534719][ T4137] Quota error (device loop2): write_blk: dquota write failed
[  113.542226][ T4137] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries
[  113.552260][ T4137] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  113.562879][ T4137] Quota error (device loop2): write_blk: dquota write failed
[  113.570275][ T4137] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list
[  113.581124][ T4137] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  113.591536][ T4137] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  113.602112][ T4137] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  113.614624][ T4137] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  113.644680][ T5809] openvswitch: netlink: Message has 6 unknown bytes.
[  113.683410][ T5813] loop0: detected capacity change from 0 to 512
[  113.694722][ T5813] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.813444][ T5828] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  113.835853][ T5830] netlink: 4 bytes leftover after parsing attributes in process `syz.0.752'.
[  113.861223][ T5832] netlink: 8 bytes leftover after parsing attributes in process `syz.0.753'.
[  113.910754][ T5836] IPv6: Can't replace route, no match found
[  113.930819][ T5832] loop0: detected capacity change from 0 to 128
[  113.942484][ T5839] openvswitch: netlink: Message has 6 unknown bytes.
[  113.993128][ T5845] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  113.993128][ T5845]    program syz.0.759 not setting count and/or reply_len properly
[  114.014356][ T5847] loop3: detected capacity change from 0 to 512
[  114.045675][ T5847] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.053817][ T5854] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  114.063632][ T5850] loop1: detected capacity change from 0 to 512
[  114.093925][ T5850] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  114.102840][ T5850] EXT4-fs (loop1): orphan cleanup on readonly fs
[  114.110779][ T5850] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.758: corrupted inode contents
[  114.122875][ T5850] EXT4-fs (loop1): Remounting filesystem read-only
[  114.129662][ T5850] EXT4-fs (loop1): 1 truncate cleaned up
[  114.137005][ T4137] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.147718][ T4137] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.158493][ T4137] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  114.217691][ T5867] IPv6: Can't replace route, no match found
[  114.241746][ T5869] openvswitch: netlink: Message has 6 unknown bytes.
[  114.247404][ T5870] loop0: detected capacity change from 0 to 512
[  114.264852][ T5870] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.289919][ T5874] loop3: detected capacity change from 0 to 512
[  114.303870][ T5874] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  114.312206][ T5874] EXT4-fs (loop3): orphan cleanup on readonly fs
[  114.319959][ T5874] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.769: corrupted inode contents
[  114.332453][ T5874] EXT4-fs (loop3): Remounting filesystem read-only
[  114.339192][ T5874] EXT4-fs (loop3): 1 truncate cleaned up
[  114.345247][  T376] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.355867][  T376] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.366479][  T376] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  114.367534][ T5870] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.766: corrupted inode contents
[  114.389218][ T5870] EXT4-fs (loop0): Remounting filesystem read-only
[  114.397058][ T5870] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[  114.428715][ T5878] Driver unsupported XDP return value 0 on prog  (id 557) dev N/A, expect packet loss!
[  114.486147][ T5884] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  114.486147][ T5884]    program syz.0.773 not setting count and/or reply_len properly
[  114.525169][ T5888] __nla_validate_parse: 3 callbacks suppressed
[  114.525184][ T5888] netlink: 4 bytes leftover after parsing attributes in process `syz.3.775'.
[  114.562299][ T5892] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  114.574222][ T5894] loop0: detected capacity change from 0 to 512
[  114.585036][ T5894] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.599705][ T5898] openvswitch: netlink: Message has 6 unknown bytes.
[  114.672579][ T5902] loop2: detected capacity change from 0 to 512
[  114.686810][ T5902] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  114.696957][ T5902] EXT4-fs (loop2): orphan cleanup on readonly fs
[  114.705862][ T5902] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.781: corrupted inode contents
[  114.718104][ T5902] EXT4-fs (loop2): Remounting filesystem read-only
[  114.730828][ T5905] loop3: detected capacity change from 0 to 512
[  114.737412][ T5902] EXT4-fs (loop2): 1 truncate cleaned up
[  114.743826][   T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.754586][   T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.766141][ T5913] 9pnet_fd: Insufficient options for proto=fd
[  114.767420][   T12] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  114.783783][ T5913] loop0: detected capacity change from 0 to 512
[  114.785340][ T5905] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.825800][ T5913] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  114.839615][ T5913] EXT4-fs (loop0): orphan cleanup on readonly fs
[  114.857150][ T5913] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.785: corrupted inode contents
[  114.881953][ T5913] EXT4-fs (loop0): Remounting filesystem read-only
[  114.896044][ T5913] EXT4-fs (loop0): 1 truncate cleaned up
[  114.901841][   T12] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.912512][   T12] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  114.913739][ T5926] lo speed is unknown, defaulting to 1000
[  114.947822][ T5922] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.782: corrupted inode contents
[  114.954536][ T5928] openvswitch: netlink: Message has 6 unknown bytes.
[  114.959989][ T5922] EXT4-fs (loop3): Remounting filesystem read-only
[  114.974646][   T12] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  114.985241][ T5922] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -30)
[  115.055005][ T5935] FAULT_INJECTION: forcing a failure.
[  115.055005][ T5935] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.055779][ T5933] loop4: detected capacity change from 0 to 512
[  115.068227][ T5935] CPU: 0 UID: 0 PID: 5935 Comm: syz.0.793 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  115.068303][ T5935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  115.068320][ T5935] Call Trace:
[  115.068330][ T5935]  <TASK>
[  115.068340][ T5935]  __dump_stack+0x1d/0x30
[  115.068369][ T5935]  dump_stack_lvl+0xe8/0x140
[  115.068398][ T5935]  dump_stack+0x15/0x1b
[  115.068421][ T5935]  should_fail_ex+0x265/0x280
[  115.068493][ T5935]  should_fail+0xb/0x20
[  115.068531][ T5935]  should_fail_usercopy+0x1a/0x20
[  115.068599][ T5935]  _copy_from_user+0x1c/0xb0
[  115.068689][ T5935]  ___sys_sendmsg+0xc1/0x1d0
[  115.068753][ T5935]  __x64_sys_sendmsg+0xd4/0x160
[  115.068805][ T5935]  x64_sys_call+0x2999/0x2fb0
[  115.068894][ T5935]  do_syscall_64+0xd2/0x200
[  115.068919][ T5935]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.068959][ T5935]  ? clear_bhb_loop+0x40/0x90
[  115.068989][ T5935]  ? clear_bhb_loop+0x40/0x90
[  115.069020][ T5935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.069076][ T5935] RIP: 0033:0x7f1d0b18e929
[  115.069097][ T5935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.069122][ T5935] RSP: 002b:00007f1d097f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.069149][ T5935] RAX: ffffffffffffffda RBX: 00007f1d0b3b5fa0 RCX: 00007f1d0b18e929
[  115.069204][ T5935] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  115.069222][ T5935] RBP: 00007f1d097f7090 R08: 0000000000000000 R09: 0000000000000000
[  115.069239][ T5935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.069256][ T5935] R13: 0000000000000000 R14: 00007f1d0b3b5fa0 R15: 00007ffd568abac8
[  115.069284][ T5935]  </TASK>
[  115.117357][ T5939] netlink: 24 bytes leftover after parsing attributes in process `syz.0.795'.
[  115.135746][ T5941] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.796'.
[  115.135784][ T5941] netlink: zone id is out of range
[  115.135844][ T5941] netlink: del zone limit has 8 unknown bytes
[  115.147801][ T5933] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.225624][ T5944] loop3: detected capacity change from 0 to 8192
[  115.306391][ T5946] loop2: detected capacity change from 0 to 512
[  115.337223][ T5946] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  115.345808][ T5946] EXT4-fs (loop2): orphan cleanup on readonly fs
[  115.358549][ T5946] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.797: corrupted inode contents
[  115.370738][ T5946] EXT4-fs (loop2): Remounting filesystem read-only
[  115.378677][ T5946] EXT4-fs (loop2): 1 truncate cleaned up
[  115.390252][  T376] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  115.401074][  T376] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  115.415851][  T376] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  115.483975][ T5959] loop3: detected capacity change from 0 to 2048
[  115.495857][ T5959] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  115.515247][ T5960] loop2: detected capacity change from 0 to 512
[  115.535423][ T5960] ext4 filesystem being mounted at /170/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.582985][ T5971] infiniband syz!: set active
[  115.587751][ T5971] infiniband syz!: added team_slave_0
[  115.599544][ T5971] RDS/IB: syz!: added
[  115.604194][ T5971] smc: adding ib device syz! with port count 1
[  115.610398][ T5971] smc:    ib device syz! port 1 has pnetid 
[  115.625370][ T5973] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.802: corrupted inode contents
[  115.649065][ T5974] loop3: detected capacity change from 0 to 2048
[  115.663723][ T5973] EXT4-fs (loop2): Remounting filesystem read-only
[  115.670981][ T5973] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -30)
[  115.742121][ T5978] FAULT_INJECTION: forcing a failure.
[  115.742121][ T5978] name failslab, interval 1, probability 0, space 0, times 0
[  115.754826][ T5978] CPU: 0 UID: 0 PID: 5978 Comm: syz.2.806 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  115.754958][ T5978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  115.754974][ T5978] Call Trace:
[  115.754983][ T5978]  <TASK>
[  115.754993][ T5978]  __dump_stack+0x1d/0x30
[  115.755015][ T5978]  dump_stack_lvl+0xe8/0x140
[  115.755035][ T5978]  dump_stack+0x15/0x1b
[  115.755072][ T5978]  should_fail_ex+0x265/0x280
[  115.755111][ T5978]  should_failslab+0x8c/0xb0
[  115.755140][ T5978]  kmem_cache_alloc_noprof+0x50/0x310
[  115.755204][ T5978]  ? skb_clone+0x151/0x1f0
[  115.755229][ T5978]  skb_clone+0x151/0x1f0
[  115.755303][ T5978]  __netlink_deliver_tap+0x2c9/0x500
[  115.755344][ T5978]  netlink_unicast+0x64c/0x670
[  115.755386][ T5978]  netlink_sendmsg+0x58b/0x6b0
[  115.755415][ T5978]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.755489][ T5978]  __sock_sendmsg+0x145/0x180
[  115.755515][ T5978]  ____sys_sendmsg+0x31e/0x4e0
[  115.755559][ T5978]  ___sys_sendmsg+0x17b/0x1d0
[  115.755609][ T5978]  __x64_sys_sendmsg+0xd4/0x160
[  115.755691][ T5978]  x64_sys_call+0x2999/0x2fb0
[  115.755716][ T5978]  do_syscall_64+0xd2/0x200
[  115.755740][ T5978]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.755833][ T5978]  ? clear_bhb_loop+0x40/0x90
[  115.755862][ T5978]  ? clear_bhb_loop+0x40/0x90
[  115.755892][ T5978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.755920][ T5978] RIP: 0033:0x7f4273c1e929
[  115.755938][ T5978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.755959][ T5978] RSP: 002b:00007f4272287038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.755997][ T5978] RAX: ffffffffffffffda RBX: 00007f4273e45fa0 RCX: 00007f4273c1e929
[  115.756010][ T5978] RDX: 0000000000008000 RSI: 0000200000000300 RDI: 0000000000000005
[  115.756092][ T5978] RBP: 00007f4272287090 R08: 0000000000000000 R09: 0000000000000000
[  115.756104][ T5978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.756116][ T5978] R13: 0000000000000000 R14: 00007f4273e45fa0 R15: 00007ffc60c4c088
[  115.756140][ T5978]  </TASK>
[  115.756584][ T5978] smc: net device syz_tun applied user defined pnetid SYZ0
[  115.941052][ T5981] FAULT_INJECTION: forcing a failure.
[  115.941052][ T5981] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.989205][ T5981] CPU: 1 UID: 0 PID: 5981 Comm: syz.1.807 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  115.989239][ T5981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  115.989254][ T5981] Call Trace:
[  115.989262][ T5981]  <TASK>
[  115.989291][ T5981]  __dump_stack+0x1d/0x30
[  115.989310][ T5981]  dump_stack_lvl+0xe8/0x140
[  115.989327][ T5981]  dump_stack+0x15/0x1b
[  115.989341][ T5981]  should_fail_ex+0x265/0x280
[  115.989387][ T5981]  should_fail+0xb/0x20
[  115.989410][ T5981]  should_fail_usercopy+0x1a/0x20
[  115.989456][ T5981]  _copy_from_user+0x1c/0xb0
[  115.989556][ T5981]  ___sys_sendmsg+0xc1/0x1d0
[  115.989601][ T5981]  __x64_sys_sendmsg+0xd4/0x160
[  115.989636][ T5981]  x64_sys_call+0x2999/0x2fb0
[  115.989723][ T5981]  do_syscall_64+0xd2/0x200
[  115.989739][ T5981]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  115.989862][ T5981]  ? clear_bhb_loop+0x40/0x90
[  115.989888][ T5981]  ? clear_bhb_loop+0x40/0x90
[  115.989917][ T5981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.989944][ T5981] RIP: 0033:0x7f94e395e929
[  115.989998][ T5981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.990013][ T5981] RSP: 002b:00007f94e1fa6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.990067][ T5981] RAX: ffffffffffffffda RBX: 00007f94e3b86080 RCX: 00007f94e395e929
[  115.990078][ T5981] RDX: 0000000004040814 RSI: 0000200000000000 RDI: 0000000000000004
[  115.990089][ T5981] RBP: 00007f94e1fa6090 R08: 0000000000000000 R09: 0000000000000000
[  115.990099][ T5981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.990109][ T5981] R13: 0000000000000000 R14: 00007f94e3b86080 R15: 00007ffcca7aded8
[  115.990126][ T5981]  </TASK>
[  116.235849][ T5983] loop2: detected capacity change from 0 to 8192
[  116.279869][ T5993] netlink: 24 bytes leftover after parsing attributes in process `syz.3.814'.
[  116.281239][ T5995] openvswitch: netlink: Message has 6 unknown bytes.
[  116.299164][ T5993] IPv6: Can't replace route, no match found
[  116.309797][ T5962] 9pnet_fd: p9_fd_create_tcp (5962): problem connecting socket to 127.0.0.1
[  116.327199][ T5997] loop2: detected capacity change from 0 to 512
[  116.353716][ T6001] loop3: detected capacity change from 0 to 1024
[  116.362141][ T6003] netlink: 'syz.0.818': attribute type 4 has an invalid length.
[  116.364140][ T5997] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  116.378808][ T5997] EXT4-fs (loop2): orphan cleanup on readonly fs
[  116.387820][ T6001] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.388036][ T6003] netlink: 'syz.0.818': attribute type 4 has an invalid length.
[  116.401155][ T6001] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  116.422440][ T5997] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.813: corrupted inode contents
[  116.434657][ T5997] EXT4-fs (loop2): Remounting filesystem read-only
[  116.441276][ T5997] EXT4-fs (loop2): 1 truncate cleaned up
[  116.447134][ T4137] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  116.457806][ T4137] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  116.486242][ T4137] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  116.499322][ T6013] FAULT_INJECTION: forcing a failure.
[  116.499322][ T6013] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.512656][ T6013] CPU: 0 UID: 0 PID: 6013 Comm: syz.0.821 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  116.512691][ T6013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  116.512707][ T6013] Call Trace:
[  116.512713][ T6013]  <TASK>
[  116.512722][ T6013]  __dump_stack+0x1d/0x30
[  116.512823][ T6013]  dump_stack_lvl+0xe8/0x140
[  116.512848][ T6013]  dump_stack+0x15/0x1b
[  116.512870][ T6013]  should_fail_ex+0x265/0x280
[  116.512907][ T6013]  should_fail+0xb/0x20
[  116.512936][ T6013]  should_fail_usercopy+0x1a/0x20
[  116.513043][ T6013]  _copy_from_user+0x1c/0xb0
[  116.513099][ T6013]  ___sys_sendmsg+0xc1/0x1d0
[  116.513231][ T6013]  __sys_sendmmsg+0x178/0x300
[  116.513271][ T6013]  __x64_sys_sendmmsg+0x57/0x70
[  116.513295][ T6013]  x64_sys_call+0x2f2f/0x2fb0
[  116.513327][ T6013]  do_syscall_64+0xd2/0x200
[  116.513345][ T6013]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  116.513408][ T6013]  ? clear_bhb_loop+0x40/0x90
[  116.513436][ T6013]  ? clear_bhb_loop+0x40/0x90
[  116.513465][ T6013]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.513524][ T6013] RIP: 0033:0x7f1d0b18e929
[  116.513543][ T6013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.513566][ T6013] RSP: 002b:00007f1d097f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  116.513589][ T6013] RAX: ffffffffffffffda RBX: 00007f1d0b3b5fa0 RCX: 00007f1d0b18e929
[  116.513604][ T6013] RDX: 00000000000002c8 RSI: 00002000000000c0 RDI: 0000000000000004
[  116.513655][ T6013] RBP: 00007f1d097f7090 R08: 0000000000000000 R09: 0000000000000000
[  116.513671][ T6013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.513686][ T6013] R13: 0000000000000000 R14: 00007f1d0b3b5fa0 R15: 00007ffd568abac8
[  116.513783][ T6013]  </TASK>
[  116.529638][ T6015] loop1: detected capacity change from 0 to 512
[  116.596909][ T6013] loop0: detected capacity change from 0 to 512
[  116.652036][ T6017] loop3: detected capacity change from 0 to 8192
[  116.668122][ T6013] EXT4-fs (loop0): Invalid default hash set in the superblock
[  116.734689][ T6015] ext4 filesystem being mounted at /190/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.747551][ T6023] loop2: detected capacity change from 0 to 512
[  116.761028][ T6023] EXT4-fs: Ignoring removed orlov option
[  116.769921][ T6023] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  116.783090][ T6023] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[  116.783212][ T6023] EXT4-fs: failed to create workqueue
[  116.792583][ T6015] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.822: corrupted inode contents
[  116.792886][ T6023] EXT4-fs (loop2): mount failed
[  116.798601][ T6015] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #18: comm syz.1.822: mark_inode_dirty error
[  116.840514][ T6015] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.822: corrupted inode contents
[  116.848065][ T6034] openvswitch: netlink: Message has 6 unknown bytes.
[  116.873767][ T6015] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #18: comm syz.1.822: mark_inode_dirty error
[  116.916697][ T6015] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #18: comm syz.1.822: mark inode dirty (error -117)
[  116.974723][ T6015] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[  116.997296][ T6043] netlink: 'syz.0.831': attribute type 4 has an invalid length.
[  117.006239][ T6038] loop2: detected capacity change from 0 to 8192
[  117.056863][ T6038] lo speed is unknown, defaulting to 1000
[  117.072202][ T6046] loop0: detected capacity change from 0 to 1024
[  117.086215][ T6046] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.099261][ T6050] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  117.123844][ T6050] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  117.158619][ T6046] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  117.272314][ T6055] loop1: detected capacity change from 0 to 512
[  117.319206][ T6054] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  117.319206][ T6054]    program syz.0.835 not setting count and/or reply_len properly
[  117.422596][ T6055] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  117.430794][ T6055] EXT4-fs (loop1): orphan cleanup on readonly fs
[  117.448935][ T6055] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.834: corrupted inode contents
[  117.469097][ T6062] loop0: detected capacity change from 0 to 8192
[  117.509473][ T6055] EXT4-fs (loop1): Remounting filesystem read-only
[  117.518228][ T6055] EXT4-fs (loop1): 1 truncate cleaned up
[  117.524417][   T51] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  117.535136][   T51] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  117.547138][   T51] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  117.565902][ T6064] netlink: 4 bytes leftover after parsing attributes in process `syz.0.838'.
[  117.582837][ T3318] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  117.593803][ T3318] CPU: 1 UID: 0 PID: 3318 Comm: syz-executor Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  117.593836][ T3318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  117.593879][ T3318] Call Trace:
[  117.593888][ T3318]  <TASK>
[  117.593898][ T3318]  __dump_stack+0x1d/0x30
[  117.593925][ T3318]  dump_stack_lvl+0xe8/0x140
[  117.594013][ T3318]  dump_stack+0x15/0x1b
[  117.594035][ T3318]  dump_header+0x81/0x220
[  117.594079][ T3318]  oom_kill_process+0x334/0x3f0
[  117.594175][ T3318]  out_of_memory+0x979/0xb80
[  117.594218][ T3318]  try_charge_memcg+0x5e6/0x9e0
[  117.594256][ T3318]  charge_memcg+0x51/0xc0
[  117.594314][ T3318]  __mem_cgroup_charge+0x28/0xb0
[  117.594420][ T3318]  filemap_add_folio+0x4e/0x1b0
[  117.594460][ T3318]  __filemap_get_folio+0x31e/0x6b0
[  117.594503][ T3318]  filemap_fault+0x41d/0xb40
[  117.594554][ T3318]  __do_fault+0xbc/0x200
[  117.594623][ T3318]  handle_mm_fault+0xf78/0x2be0
[  117.594663][ T3318]  ? mas_walk+0xf2/0x120
[  117.594705][ T3318]  do_user_addr_fault+0x636/0x1090
[  117.594752][ T3318]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  117.594828][ T3318]  exc_page_fault+0x62/0xa0
[  117.594877][ T3318]  asm_exc_page_fault+0x26/0x30
[  117.594903][ T3318] RIP: 0033:0x7f3902e15974
[  117.594949][ T3318] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 28 fe e7 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d 39 fd e7 00 48 01 d1
[  117.594971][ T3318] RSP: 002b:00007ffe28c6a690 EFLAGS: 00010202
[  117.594987][ T3318] RAX: 0000001b32420000 RBX: 0000000000000180 RCX: 000000000001c908
[  117.595000][ T3318] RDX: 00000000080488cc RSI: 00007ffe28c6a720 RDI: 0000000000000001
[  117.595015][ T3318] RBP: 00007ffe28c6a6cc R08: 000000001e95cc18 R09: 7fffffffffffffff
[  117.595030][ T3318] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[  117.595042][ T3318] R13: 00000000000927c0 R14: 000000000001c8c4 R15: 00007ffe28c6a720
[  117.595062][ T3318]  </TASK>
[  117.595068][ T3318] memory: usage 307200kB, limit 307200kB, failcnt 1053
[  117.794381][ T3318] memory+swap: usage 307392kB, limit 9007199254740988kB, failcnt 0
[  117.802468][ T3318] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  117.809866][ T3318] Memory cgroup stats for /syz3:
[  117.810104][ T3318] cache 0
[  117.818061][ T3318] rss 0
[  117.820921][ T3318] shmem 0
[  117.823994][ T3318] mapped_file 0
[  117.827486][ T3318] dirty 0
[  117.830510][ T3318] writeback 0
[  117.833838][ T3318] workingset_refault_anon 423
[  117.838564][ T3318] workingset_refault_file 1414
[  117.843386][ T3318] swap 196608
[  117.846692][ T3318] swapcached 4096
[  117.850344][ T3318] pgpgin 88731
[  117.853849][ T3318] pgpgout 88730
[  117.857340][ T3318] pgfault 124298
[  117.860905][ T3318] pgmajfault 295
[  117.864542][ T3318] inactive_anon 4096
[  117.868461][ T3318] active_anon 0
[  117.872008][ T3318] inactive_file 0
[  117.875662][ T3318] active_file 0
[  117.879142][ T3318] unevictable 0
[  117.882707][ T3318] hierarchical_memory_limit 314572800
[  117.888115][ T3318] hierarchical_memsw_limit 9223372036854771712
[  117.894424][ T3318] total_cache 0
[  117.897906][ T3318] total_rss 0
[  117.901213][ T3318] total_shmem 0
[  117.904792][ T3318] total_mapped_file 0
[  117.908848][ T3318] total_dirty 0
[  117.912387][ T3318] total_writeback 0
[  117.916209][ T3318] total_workingset_refault_anon 423
[  117.921459][ T3318] total_workingset_refault_file 1414
[  117.926853][ T3318] total_swap 196608
[  117.930686][ T3318] total_swapcached 4096
[  117.932390][ T6069] loop0: detected capacity change from 0 to 1024
[  117.934876][ T3318] total_pgpgin 88731
[  117.942008][ T6069] EXT4-fs: Ignoring removed nomblk_io_submit option
[  117.945162][ T3318] total_pgpgout 88730
[  117.951797][ T6069] EXT4-fs: Ignoring removed nomblk_io_submit option
[  117.955783][ T3318] total_pgfault 124298
[  117.963438][ T6069] EXT4-fs (loop0): can't mount with journal_checksum, fs mounted w/o journal
[  117.966437][ T3318] total_pgmajfault 295
[  117.979421][ T3318] total_inactive_anon 4096
[  117.983874][ T3318] total_active_anon 0
[  117.987925][ T3318] total_inactive_file 0
[  117.992117][ T3318] total_active_file 0
[  117.996119][ T3318] total_unevictable 0
[  118.000101][ T3318] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.828,pid=6032,uid=0
[  118.014708][ T3318] Memory cgroup out of memory: Killed process 6032 (syz.3.828) total-vm:93752kB, anon-rss:936kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  118.109993][ T6073] loop1: detected capacity change from 0 to 512
[  118.167421][ T6079] loop2: detected capacity change from 0 to 1024
[  118.175386][ T6079] EXT4-fs: Ignoring removed orlov option
[  118.176095][ T6081] FAULT_INJECTION: forcing a failure.
[  118.176095][ T6081] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  118.194507][ T6081] CPU: 0 UID: 0 PID: 6081 Comm: syz.0.845 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  118.194558][ T6081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  118.194571][ T6081] Call Trace:
[  118.194578][ T6081]  <TASK>
[  118.194586][ T6081]  __dump_stack+0x1d/0x30
[  118.194607][ T6081]  dump_stack_lvl+0xe8/0x140
[  118.194631][ T6081]  dump_stack+0x15/0x1b
[  118.194733][ T6081]  should_fail_ex+0x265/0x280
[  118.194775][ T6081]  should_fail+0xb/0x20
[  118.194811][ T6081]  should_fail_usercopy+0x1a/0x20
[  118.194853][ T6081]  _copy_from_user+0x1c/0xb0
[  118.194948][ T6081]  __se_sys_move_pages+0xd2e/0x1340
[  118.194980][ T6081]  ? get_pid_task+0x96/0xd0
[  118.195017][ T6081]  ? fput+0x8f/0xc0
[  118.195049][ T6081]  ? ksys_write+0x192/0x1a0
[  118.195118][ T6081]  __x64_sys_move_pages+0x78/0x90
[  118.195153][ T6081]  x64_sys_call+0x2eab/0x2fb0
[  118.195181][ T6081]  do_syscall_64+0xd2/0x200
[  118.195204][ T6081]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  118.195237][ T6081]  ? clear_bhb_loop+0x40/0x90
[  118.195315][ T6081]  ? clear_bhb_loop+0x40/0x90
[  118.195344][ T6081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.195370][ T6081] RIP: 0033:0x7f1d0b18e929
[  118.195390][ T6081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.195412][ T6081] RSP: 002b:00007f1d097f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[  118.195475][ T6081] RAX: ffffffffffffffda RBX: 00007f1d0b3b5fa0 RCX: 00007f1d0b18e929
[  118.195490][ T6081] RDX: 0000200000000140 RSI: 0000000000000001 RDI: 0000000000000000
[  118.195503][ T6081] RBP: 00007f1d097f7090 R08: 0000000000000000 R09: 0000000000000000
[  118.195515][ T6081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.195556][ T6081] R13: 0000000000000000 R14: 00007f1d0b3b5fa0 R15: 00007ffd568abac8
[  118.195580][ T6081]  </TASK>
[  118.196948][ T6073] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  118.401169][   T29] kauditd_printk_skb: 378 callbacks suppressed
[  118.401185][   T29] audit: type=1326 audit(1751353448.830:10465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f94e395d290 code=0x7ffc0000
[  118.432764][   T29] audit: type=1326 audit(1751353448.860:10466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f94e395d677 code=0x7ffc0000
[  118.456252][   T29] audit: type=1326 audit(1751353448.860:10467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f94e395d290 code=0x7ffc0000
[  118.480002][   T29] audit: type=1326 audit(1751353448.860:10468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  118.503505][   T29] audit: type=1326 audit(1751353448.860:10469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  118.527000][   T29] audit: type=1326 audit(1751353448.860:10470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  118.550707][   T29] audit: type=1326 audit(1751353448.860:10471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  118.574206][   T29] audit: type=1326 audit(1751353448.860:10472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  118.574243][   T29] audit: type=1326 audit(1751353448.890:10473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  118.575105][   T29] audit: type=1326 audit(1751353449.010:10474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6072 comm="syz.1.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  118.669632][ T6073] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.842: corrupted inode contents
[  118.685929][ T6073] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #18: comm syz.1.842: mark_inode_dirty error
[  118.697918][ T6073] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.842: corrupted inode contents
[  118.714002][ T6073] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #18: comm syz.1.842: mark_inode_dirty error
[  118.726751][ T6073] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #18: comm syz.1.842: mark inode dirty (error -117)
[  118.740398][ T6073] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[  118.768373][ T6104] loop4: detected capacity change from 0 to 512
[  118.782868][ T6104] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  118.791161][ T6104] EXT4-fs (loop4): orphan cleanup on readonly fs
[  118.800294][ T6104] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.852: corrupted inode contents
[  118.813376][ T6104] EXT4-fs (loop4): Remounting filesystem read-only
[  118.820266][ T6104] EXT4-fs (loop4): 1 truncate cleaned up
[  118.826309][  T376] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  118.836986][  T376] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  118.847799][  T376] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  118.876494][ T6115] netlink: 24 bytes leftover after parsing attributes in process `syz.1.854'.
[  119.214130][ T6122] loop1: detected capacity change from 0 to 128
[  119.227710][ T6122] ext4 filesystem being mounted at /196/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.421543][ T6127] 9pnet_fd: Insufficient options for proto=fd
[  119.487764][ T6129] netlink: 4 bytes leftover after parsing attributes in process `syz.0.862'.
[  119.537165][ T6125] loop3: detected capacity change from 0 to 8192
[  119.595601][ T6131] 9pnet_fd: Insufficient options for proto=fd
[  119.597011][ T6133] loop0: detected capacity change from 0 to 512
[  119.818463][ T6131] loop4: detected capacity change from 0 to 512
[  119.883088][ T6131] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  119.915657][ T6133] ext4 filesystem being mounted at /176/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  119.920727][ T6131] EXT4-fs (loop4): orphan cleanup on readonly fs
[  119.953702][ T6131] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.863: corrupted inode contents
[  119.970120][ T6133] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.864: corrupted inode contents
[  119.983221][ T6133] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #18: comm syz.0.864: mark_inode_dirty error
[  119.994657][ T6133] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.864: corrupted inode contents
[  120.002350][ T6131] EXT4-fs (loop4): Remounting filesystem read-only
[  120.014378][ T6133] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #18: comm syz.0.864: mark_inode_dirty error
[  120.037461][ T6131] EXT4-fs (loop4): 1 truncate cleaned up
[  120.044821][ T6133] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #18: comm syz.0.864: mark inode dirty (error -117)
[  120.044855][   T12] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  120.067922][   T12] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  120.091841][ T6133] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117)
[  120.100018][   T12] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  120.120085][ T6152] netlink: 4 bytes leftover after parsing attributes in process `syz.3.872'.
[  120.202710][ T6160] 9pnet: p9_errstr2errno: server reported unknown error 
[  120.230186][ T6163] netlink: 24 bytes leftover after parsing attributes in process `syz.0.876'.
[  120.249175][ T6164] loop4: detected capacity change from 0 to 512
[  120.257246][ T6165] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  120.257246][ T6165]    program syz.3.873 not setting count and/or reply_len properly
[  120.283519][ T6167] loop0: detected capacity change from 0 to 1024
[  120.294509][ T6160] loop1: detected capacity change from 0 to 512
[  120.297627][ T6150] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  120.297627][ T6150]    program syz.2.870 not setting count and/or reply_len properly
[  120.320761][ T6167] ext4 filesystem being mounted at /178/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.334176][ T6167] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  120.353490][ T6160] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  120.361546][ T6160] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  120.372014][ T6164] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  120.374805][ T6160] System zones: 0-1, 15-15, 18-18, 34-34
[  120.386371][ T6164] EXT4-fs (loop4): orphan cleanup on readonly fs
[  120.387832][ T6160] EXT4-fs (loop1): orphan cleanup on readonly fs
[  120.399702][ T6160] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  120.414350][ T6160] EXT4-fs (loop1): Cannot turn on quotas: error -22
[  120.415901][ T6164] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.874: corrupted inode contents
[  120.433506][ T6160] EXT4-fs error (device loop1): ext4_orphan_get:1419: comm syz.1.875: bad orphan inode 16
[  120.445319][ T6160] ext4_test_bit(bit=15, block=18) = 1
[  120.450911][ T6160] is_bad_inode(inode)=0
[  120.455287][ T6160] NEXT_ORPHAN(inode)=0
[  120.459365][ T6160] max_ino=32
[  120.462611][ T6160] i_nlink=2
[  120.467004][ T6164] EXT4-fs (loop4): Remounting filesystem read-only
[  120.473772][ T6164] EXT4-fs (loop4): 1 truncate cleaned up
[  120.485065][   T51] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  120.495892][   T51] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  120.517538][   T51] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  120.551081][ T6185] netlink: 24 bytes leftover after parsing attributes in process `syz.0.881'.
[  120.616978][ T6193] loop2: detected capacity change from 0 to 2048
[  120.617962][ T6189] loop1: detected capacity change from 0 to 8192
[  120.639532][ T6195] netlink: 4 bytes leftover after parsing attributes in process `syz.3.884'.
[  120.655641][ T6189] lo speed is unknown, defaulting to 1000
[  120.656757][ T6193] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  120.698489][ T6200] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  120.707510][ T6200] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  120.737071][ T6202] netlink: 24 bytes leftover after parsing attributes in process `syz.2.890'.
[  120.748069][ T6202] IPv6: Can't replace route, no match found
[  120.780210][ T6204] loop2: detected capacity change from 0 to 1024
[  120.794024][ T6204] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.806558][ T6204] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  121.031205][ T6210] netlink: 4 bytes leftover after parsing attributes in process `syz.4.893'.
[  121.062495][ T6212] FAULT_INJECTION: forcing a failure.
[  121.062495][ T6212] name failslab, interval 1, probability 0, space 0, times 0
[  121.075344][ T6212] CPU: 0 UID: 0 PID: 6212 Comm: syz.4.894 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  121.075392][ T6212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  121.075409][ T6212] Call Trace:
[  121.075418][ T6212]  <TASK>
[  121.075428][ T6212]  __dump_stack+0x1d/0x30
[  121.075452][ T6212]  dump_stack_lvl+0xe8/0x140
[  121.075555][ T6212]  dump_stack+0x15/0x1b
[  121.075639][ T6212]  should_fail_ex+0x265/0x280
[  121.075701][ T6212]  ? audit_log_d_path+0x8d/0x150
[  121.075739][ T6212]  should_failslab+0x8c/0xb0
[  121.075772][ T6212]  __kmalloc_cache_noprof+0x4c/0x320
[  121.075807][ T6212]  audit_log_d_path+0x8d/0x150
[  121.075891][ T6212]  audit_log_d_path_exe+0x42/0x70
[  121.075962][ T6212]  audit_log_task+0x1e9/0x250
[  121.076052][ T6212]  audit_seccomp+0x61/0x100
[  121.076092][ T6212]  ? __seccomp_filter+0x68c/0x10d0
[  121.076119][ T6212]  __seccomp_filter+0x69d/0x10d0
[  121.076147][ T6212]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  121.076217][ T6212]  ? vfs_write+0x75e/0x8e0
[  121.076264][ T6212]  ? kmem_cache_free+0xdf/0x300
[  121.076360][ T6212]  __secure_computing+0x82/0x150
[  121.076394][ T6212]  syscall_trace_enter+0xcf/0x1e0
[  121.076460][ T6212]  do_syscall_64+0xac/0x200
[  121.076483][ T6212]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  121.076511][ T6212]  ? clear_bhb_loop+0x40/0x90
[  121.076587][ T6212]  ? clear_bhb_loop+0x40/0x90
[  121.076619][ T6212]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.076655][ T6212] RIP: 0033:0x7f1b2d3fe929
[  121.076671][ T6212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.076688][ T6212] RSP: 002b:00007f1b2ba67038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  121.076706][ T6212] RAX: ffffffffffffffda RBX: 00007f1b2d625fa0 RCX: 00007f1b2d3fe929
[  121.076719][ T6212] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000004
[  121.076731][ T6212] RBP: 00007f1b2ba67090 R08: 0000000000000000 R09: 0000000000000000
[  121.076783][ T6212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.076795][ T6212] R13: 0000000000000000 R14: 00007f1b2d625fa0 R15: 00007ffe72d634f8
[  121.076815][ T6212]  </TASK>
[  121.319677][ T6217] 9pnet_fd: Insufficient options for proto=fd
[  121.328193][ T6217] loop4: detected capacity change from 0 to 512
[  121.353127][ T6217] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  121.361296][ T6217] EXT4-fs (loop4): orphan cleanup on readonly fs
[  121.369385][ T6217] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.895: corrupted inode contents
[  121.381533][ T6217] EXT4-fs (loop4): Remounting filesystem read-only
[  121.388210][ T6217] EXT4-fs (loop4): 1 truncate cleaned up
[  121.394279][   T12] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  121.404915][   T12] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  121.416902][   T12] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  121.515171][ T6229] netlink: 4 bytes leftover after parsing attributes in process `syz.1.900'.
[  121.560881][ T6231] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  121.574073][ T6235] loop4: detected capacity change from 0 to 512
[  121.649482][ T6235] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.702362][ T6245] loop3: detected capacity change from 0 to 512
[  121.712126][ T6244] loop0: detected capacity change from 0 to 512
[  121.723495][ T6244] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  121.736819][ T6244] EXT4-fs (loop0): orphan cleanup on readonly fs
[  121.739803][ T6245] ext4 filesystem being mounted at /164/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.794342][ T6244] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.904: corrupted inode contents
[  121.810330][ T6253] loop1: detected capacity change from 0 to 128
[  121.819597][ T6244] EXT4-fs (loop0): Remounting filesystem read-only
[  121.826483][ T6244] EXT4-fs (loop0): 1 truncate cleaned up
[  121.832646][ T1863] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  121.843203][ T1863] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  121.853987][ T1863] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  121.893230][ T6253] ext4 filesystem being mounted at /204/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.199531][ T6258] FAULT_INJECTION: forcing a failure.
[  122.199531][ T6258] name failslab, interval 1, probability 0, space 0, times 0
[  122.212273][ T6258] CPU: 1 UID: 0 PID: 6258 Comm: syz.4.907 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  122.212332][ T6258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  122.212345][ T6258] Call Trace:
[  122.212353][ T6258]  <TASK>
[  122.212363][ T6258]  __dump_stack+0x1d/0x30
[  122.212389][ T6258]  dump_stack_lvl+0xe8/0x140
[  122.212414][ T6258]  dump_stack+0x15/0x1b
[  122.212473][ T6258]  should_fail_ex+0x265/0x280
[  122.212514][ T6258]  should_failslab+0x8c/0xb0
[  122.212541][ T6258]  kmem_cache_alloc_noprof+0x50/0x310
[  122.212647][ T6258]  ? prepare_creds+0x37/0x4c0
[  122.212677][ T6258]  prepare_creds+0x37/0x4c0
[  122.212706][ T6258]  __sys_setgid+0x6a/0x1d0
[  122.212743][ T6258]  __x64_sys_setgid+0x1e/0x30
[  122.212799][ T6258]  x64_sys_call+0xeaf/0x2fb0
[  122.212827][ T6258]  do_syscall_64+0xd2/0x200
[  122.212861][ T6258]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  122.212947][ T6258]  ? clear_bhb_loop+0x40/0x90
[  122.212970][ T6258]  ? clear_bhb_loop+0x40/0x90
[  122.213060][ T6258]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.213110][ T6258] RIP: 0033:0x7f1b2d3fe929
[  122.213129][ T6258] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.213153][ T6258] RSP: 002b:00007f1b2ba67038 EFLAGS: 00000246 ORIG_RAX: 000000000000006a
[  122.213255][ T6258] RAX: ffffffffffffffda RBX: 00007f1b2d625fa0 RCX: 00007f1b2d3fe929
[  122.213272][ T6258] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  122.213287][ T6258] RBP: 00007f1b2ba67090 R08: 0000000000000000 R09: 0000000000000000
[  122.213303][ T6258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.213318][ T6258] R13: 0000000000000000 R14: 00007f1b2d625fa0 R15: 00007ffe72d634f8
[  122.213358][ T6258]  </TASK>
[  122.503391][ T6266] netlink: 4 bytes leftover after parsing attributes in process `syz.0.913'.
[  122.563625][ T6274] loop0: detected capacity change from 0 to 2048
[  122.575925][ T6274] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  122.601997][ T6278] futex_wake_op: syz.4.917 tries to shift op by -1; fix this program
[  122.722648][ T6283] loop3: detected capacity change from 0 to 512
[  122.732648][ T6282] loop0: detected capacity change from 0 to 1024
[  122.744293][ T6282] ext4 filesystem being mounted at /187/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.744431][ T6283] ext4 filesystem being mounted at /166/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.759117][ T6282] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  122.844985][ T6289] lo speed is unknown, defaulting to 1000
[  123.024133][ T6294] loop4: detected capacity change from 0 to 2048
[  123.046021][ T6294] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.063247][ T6296] loop2: detected capacity change from 0 to 128
[  123.073576][ T6296] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.089460][ T6303] loop0: detected capacity change from 0 to 512
[  123.125306][ T6303] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.221441][ T6311] netlink: 'syz.3.926': attribute type 4 has an invalid length.
[  123.260107][ T6311] netlink: 'syz.3.926': attribute type 4 has an invalid length.
[  123.334090][ T6303] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.921: corrupted inode contents
[  123.348263][ T6303] EXT4-fs (loop0): Remounting filesystem read-only
[  123.355474][ T6303] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[  123.475123][ T6315] 9pnet_fd: Insufficient options for proto=fd
[  123.495945][ T6315] loop3: detected capacity change from 0 to 512
[  123.534304][ T6317] loop0: detected capacity change from 0 to 1024
[  123.611181][ T6317] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.624939][ T6315] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  123.637288][ T6315] EXT4-fs (loop3): orphan cleanup on readonly fs
[  123.648762][ T6315] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.927: corrupted inode contents
[  123.661587][ T6317] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  123.681065][   T29] kauditd_printk_skb: 990 callbacks suppressed
[  123.681080][   T29] audit: type=1400 audit(1751353454.110:11434): avc:  denied  { create } for  pid=6318 comm="syz.1.929" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  123.682281][ T6315] EXT4-fs (loop3): Remounting filesystem read-only
[  123.717259][ T6315] EXT4-fs (loop3): 1 truncate cleaned up
[  123.724328][ T1863] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  123.734940][ T1863] Quota error (device loop3): write_blk: dquota write failed
[  123.742402][ T1863] Quota error (device loop3): remove_free_dqentry: Can't write block (5) with free entries
[  123.752503][ T1863] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  123.763031][ T1863] Quota error (device loop3): write_blk: dquota write failed
[  123.770466][ T1863] Quota error (device loop3): free_dqentry: Can't move quota data block (5) to free list
[  123.781040][ T1863] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  123.791214][ T1863] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  123.821284][ T1863] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  123.870072][ T6329] loop2: detected capacity change from 0 to 164
[  123.879677][ T6333] netlink: 4 bytes leftover after parsing attributes in process `syz.3.934'.
[  123.890640][   T29] audit: type=1400 audit(1751353454.310:11435): avc:  denied  { mount } for  pid=6328 comm="syz.2.933" name="/" dev="loop2" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  123.956957][   T29] audit: type=1326 audit(1751353454.380:11436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6338 comm="syz.3.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3902f3e929 code=0x7ffc0000
[  123.980723][   T29] audit: type=1326 audit(1751353454.380:11437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6338 comm="syz.3.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3902f3e929 code=0x7ffc0000
[  123.983529][ T6339] IPv6: Can't replace route, no match found
[  124.054347][ T6350] netlink: 'syz.3.943': attribute type 4 has an invalid length.
[  124.066896][ T6350] netlink: 'syz.3.943': attribute type 4 has an invalid length.
[  124.288516][ T6362] lo speed is unknown, defaulting to 1000
[  124.310407][ T6367] loop4: detected capacity change from 0 to 512
[  124.317689][ T6367] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  124.334361][ T6367] ext4 filesystem being mounted at /167/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.476190][ T6367] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.942: corrupted xattr block 19: overlapping e_value 
[  124.518642][ T6378] openvswitch: netlink: Message has 6 unknown bytes.
[  124.519786][ T6367] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  124.549127][ T6368] loop2: detected capacity change from 0 to 2048
[  124.578579][ T6367] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.942: corrupted xattr block 19: overlapping e_value 
[  124.665095][ T6373] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.942: corrupted xattr block 19: overlapping e_value 
[  124.747384][ T6373] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  124.788612][ T6367] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  124.826218][ T6373] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.942: corrupted xattr block 19: overlapping e_value 
[  124.881678][ T6367] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.942: corrupted xattr block 19: overlapping e_value 
[  124.890616][ T6385] loop0: detected capacity change from 0 to 2048
[  124.916040][ T6373] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.942: corrupted xattr block 19: overlapping e_value 
[  124.958539][ T6385] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  124.967339][ T6373] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[  124.982684][ T6368] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.984904][ T6388] loop1: detected capacity change from 0 to 512
[  125.006505][ T6385] xt_hashlimit: max too large, truncated to 1048576
[  125.017596][ T6385] netlink: 92 bytes leftover after parsing attributes in process `syz.0.953'.
[  125.088718][ T6388] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.158409][ T3318] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  125.169424][ T3318] CPU: 1 UID: 0 PID: 3318 Comm: syz-executor Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  125.169459][ T3318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  125.169476][ T3318] Call Trace:
[  125.169484][ T3318]  <TASK>
[  125.169492][ T3318]  __dump_stack+0x1d/0x30
[  125.169628][ T3318]  dump_stack_lvl+0xe8/0x140
[  125.169659][ T3318]  dump_stack+0x15/0x1b
[  125.169676][ T3318]  dump_header+0x81/0x220
[  125.169716][ T3318]  oom_kill_process+0x334/0x3f0
[  125.169821][ T3318]  out_of_memory+0x979/0xb80
[  125.169880][ T3318]  try_charge_memcg+0x5e6/0x9e0
[  125.169916][ T3318]  charge_memcg+0x51/0xc0
[  125.169951][ T3318]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  125.169997][ T3318]  __read_swap_cache_async+0x1df/0x350
[  125.170058][ T3318]  swap_cluster_readahead+0x376/0x3e0
[  125.170115][ T3318]  swapin_readahead+0xde/0x6f0
[  125.170146][ T3318]  ? __filemap_get_folio+0x4f7/0x6b0
[  125.170178][ T3318]  ? next_uptodate_folio+0x81c/0x890
[  125.170206][ T3318]  ? swap_cache_get_folio+0x77/0x200
[  125.170328][ T3318]  do_swap_page+0x301/0x2430
[  125.170349][ T3318]  ? css_rstat_updated+0xcd/0x5b0
[  125.170393][ T3318]  ? __pfx_default_wake_function+0x10/0x10
[  125.170429][ T3318]  handle_mm_fault+0x9a5/0x2be0
[  125.170479][ T3318]  ? mas_walk+0xf2/0x120
[  125.170546][ T3318]  do_user_addr_fault+0x636/0x1090
[  125.170595][ T3318]  exc_page_fault+0x62/0xa0
[  125.170698][ T3318]  asm_exc_page_fault+0x26/0x30
[  125.170725][ T3318] RIP: 0033:0x7f3902e15977
[  125.170747][ T3318] Code: 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 28 fe e7 00 48 69 8c 24 90 00 00 00 e8 03 00 00 8b 78 08 <48> 8b 44 24 18 48 c1 ea 12 4c 8b 0d 39 fd e7 00 48 01 d1 39 7c 24
[  125.170787][ T3318] RSP: 002b:00007ffe28c6a690 EFLAGS: 00010206
[  125.170807][ T3318] RAX: 0000001b32420000 RBX: 00000000000001b7 RCX: 000000000001e460
[  125.170821][ T3318] RDX: 000000000f97ce03 RSI: 00007ffe28c6a720 RDI: 0000000000000018
[  125.170833][ T3318] RBP: 00007ffe28c6a6cc R08: 000000003b7b86d3 R09: 7fffffffffffffff
[  125.170847][ T3318] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[  125.170859][ T3318] R13: 00000000000927c0 R14: 000000000001e520 R15: 00007ffe28c6a720
[  125.170877][ T3318]  </TASK>
[  125.170885][ T3318] memory: usage 307200kB, limit 307200kB, failcnt 1418
[  125.393140][ T3318] memory+swap: usage 307392kB, limit 9007199254740988kB, failcnt 0
[  125.401171][ T3318] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  125.408495][ T3318] Memory cgroup stats for /syz3:
[  125.453351][ T3318] cache 0
[  125.461350][ T3318] rss 0
[  125.464181][ T3318] shmem 0
[  125.467139][ T3318] mapped_file 0
[  125.470687][ T3318] dirty 0
[  125.473747][ T3318] writeback 0
[  125.477053][ T3318] workingset_refault_anon 491
[  125.481750][ T3318] workingset_refault_file 1707
[  125.486613][ T3318] swap 196608
[  125.489953][ T3318] swapcached 4096
[  125.493639][ T3318] pgpgin 94403
[  125.497030][ T3318] pgpgout 94402
[  125.500530][ T3318] pgfault 135215
[  125.504265][ T3318] pgmajfault 347
[  125.507843][ T3318] inactive_anon 0
[  125.511503][ T3318] active_anon 4096
[  125.515284][ T3318] inactive_file 0
[  125.519083][ T3318] active_file 0
[  125.522639][ T3318] unevictable 0
[  125.526105][ T3318] hierarchical_memory_limit 314572800
[  125.531486][ T3318] hierarchical_memsw_limit 9223372036854771712
[  125.537683][ T3318] total_cache 0
[  125.541169][ T3318] total_rss 0
[  125.544607][ T3318] total_shmem 0
[  125.548088][ T3318] total_mapped_file 0
[  125.552121][ T3318] total_dirty 0
[  125.555626][ T3318] total_writeback 0
[  125.559456][ T3318] total_workingset_refault_anon 491
[  125.564819][ T3318] total_workingset_refault_file 1707
[  125.570122][ T3318] total_swap 196608
[  125.573967][ T3318] total_swapcached 4096
[  125.578142][ T3318] total_pgpgin 94403
[  125.582067][ T3318] total_pgpgout 94402
[  125.586188][ T3318] total_pgfault 135215
[  125.590277][ T3318] total_pgmajfault 347
[  125.594416][ T3318] total_inactive_anon 0
[  125.598586][ T3318] total_active_anon 4096
[  125.602880][ T3318] total_inactive_file 0
[  125.607043][ T3318] total_active_file 0
[  125.611076][ T3318] total_unevictable 0
[  125.615122][ T3318] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.944,pid=6351,uid=0
[  125.629813][ T3318] Memory cgroup out of memory: Killed process 6351 (syz.3.944) total-vm:93752kB, anon-rss:936kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[  125.720319][ T6406] loop1: detected capacity change from 0 to 1024
[  125.730809][ T6410] loop0: detected capacity change from 0 to 128
[  125.752600][ T6406] EXT4-fs: Ignoring removed orlov option
[  125.812053][ T6410] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.981460][ T6424] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  126.026075][ T6426] 9pnet_fd: Insufficient options for proto=fd
[  126.038336][ T6426] loop1: detected capacity change from 0 to 512
[  126.072144][ T6426] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  126.111754][ T6426] EXT4-fs (loop1): orphan cleanup on readonly fs
[  126.129630][ T6435] loop3: detected capacity change from 0 to 512
[  126.203996][ T6435] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  126.225997][ T6435] EXT4-fs (loop3): orphan cleanup on readonly fs
[  126.233491][ T6422] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  126.233491][ T6422]    program syz.2.965 not setting count and/or reply_len properly
[  126.252773][ T6426] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.967: corrupted inode contents
[  126.267402][ T6435] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.970: corrupted inode contents
[  126.290073][ T6426] EXT4-fs (loop1): Remounting filesystem read-only
[  126.312105][ T6426] EXT4-fs (loop1): 1 truncate cleaned up
[  126.320285][ T1863] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  126.330939][ T1863] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  126.373072][ T6435] EXT4-fs (loop3): Remounting filesystem read-only
[  126.379803][ T6435] EXT4-fs (loop3): 1 truncate cleaned up
[  126.393221][ T1863] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  126.407282][ T1863] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  126.417881][ T1863] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  126.441865][ T1863] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  126.453588][ T6441] loop2: detected capacity change from 0 to 2048
[  126.497060][ T6441] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  126.518069][ T6445] netlink: 4 bytes leftover after parsing attributes in process `syz.3.972'.
[  126.586301][ T6450] loop2: detected capacity change from 0 to 1024
[  126.595368][ T6451] loop1: detected capacity change from 0 to 512
[  126.614818][ T6450] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.622061][ T6450] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.651334][ T6454] netlink: 'syz.3.976': attribute type 4 has an invalid length.
[  126.656846][ T6450] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[  126.670612][ T6454] netlink: 'syz.3.976': attribute type 4 has an invalid length.
[  126.679665][ T6451] ext4 filesystem being mounted at /213/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.730318][ T6458] loop3: detected capacity change from 0 to 1024
[  126.776762][ T6458] EXT4-fs: Ignoring removed orlov option
[  126.835292][ T6451] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.973: corrupted inode contents
[  126.892180][ T6451] EXT4-fs (loop1): Remounting filesystem read-only
[  126.947910][ T6451] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -30)
[  127.106356][ T6468] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  127.203730][ T6480] 9pnet_fd: Insufficient options for proto=fd
[  127.211371][ T6476] loop2: detected capacity change from 0 to 512
[  127.229534][ T6480] loop3: detected capacity change from 0 to 512
[  127.254374][ T6476] ext4 filesystem being mounted at /204/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  127.268280][ T6482] loop1: detected capacity change from 0 to 8192
[  127.308081][ T6480] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  127.330695][ T6476] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.983: corrupted inode contents
[  127.350578][ T6480] EXT4-fs (loop3): orphan cleanup on readonly fs
[  127.368278][ T6476] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #18: comm syz.2.983: mark_inode_dirty error
[  127.370832][ T6480] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.985: corrupted inode contents
[  127.398888][ T6476] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.983: corrupted inode contents
[  127.424257][ T6480] EXT4-fs (loop3): Remounting filesystem read-only
[  127.431445][ T6476] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm syz.2.983: mark_inode_dirty error
[  127.443675][ T6480] EXT4-fs (loop3): 1 truncate cleaned up
[  127.447046][ T6476] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm syz.2.983: mark inode dirty (error -117)
[  127.453197][ T4137] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  127.472548][ T4137] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  127.485083][ T6476] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[  127.487095][ T4137] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started
[  127.557043][ T6499] loop0: detected capacity change from 0 to 128
[  127.646833][ T6500] loop4: detected capacity change from 0 to 1024
[  127.654232][ T6500] EXT4-fs: Ignoring removed orlov option
[  127.830783][ T6499] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  127.890904][ T6504] netlink: 'syz.2.990': attribute type 3 has an invalid length.
[  127.915448][ T6507] FAULT_INJECTION: forcing a failure.
[  127.915448][ T6507] name failslab, interval 1, probability 0, space 0, times 0
[  127.928150][ T6507] CPU: 1 UID: 0 PID: 6507 Comm: syz.3.991 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  127.928188][ T6507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  127.928204][ T6507] Call Trace:
[  127.928211][ T6507]  <TASK>
[  127.928299][ T6507]  __dump_stack+0x1d/0x30
[  127.928362][ T6507]  dump_stack_lvl+0xe8/0x140
[  127.928390][ T6507]  dump_stack+0x15/0x1b
[  127.928411][ T6507]  should_fail_ex+0x265/0x280
[  127.928452][ T6507]  should_failslab+0x8c/0xb0
[  127.928538][ T6507]  __kmalloc_noprof+0xa5/0x3e0
[  127.928565][ T6507]  ? process_vm_rw+0x27c/0x950
[  127.928601][ T6507]  ? iovec_from_user+0x179/0x210
[  127.928670][ T6507]  process_vm_rw+0x27c/0x950
[  127.928705][ T6507]  ? _parse_integer+0x27/0x40
[  127.928735][ T6507]  ? kstrtoull+0x111/0x140
[  127.928863][ T6507]  __x64_sys_process_vm_writev+0x78/0x90
[  127.928903][ T6507]  x64_sys_call+0xe80/0x2fb0
[  127.928931][ T6507]  do_syscall_64+0xd2/0x200
[  127.928955][ T6507]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  127.929034][ T6507]  ? clear_bhb_loop+0x40/0x90
[  127.929055][ T6507]  ? clear_bhb_loop+0x40/0x90
[  127.929077][ T6507]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.929176][ T6507] RIP: 0033:0x7f3902f3e929
[  127.929274][ T6507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.929297][ T6507] RSP: 002b:00007f39015a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[  127.929315][ T6507] RAX: ffffffffffffffda RBX: 00007f3903165fa0 RCX: 00007f3902f3e929
[  127.929352][ T6507] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 00000000000001cd
[  127.929369][ T6507] RBP: 00007f39015a7090 R08: 0000000000000001 R09: 0000000000000000
[  127.929394][ T6507] R10: 0000200000121000 R11: 0000000000000246 R12: 0000000000000001
[  127.929411][ T6507] R13: 0000000000000000 R14: 00007f3903165fa0 R15: 00007ffe28c6a308
[  127.929434][ T6507]  </TASK>
[  128.141417][ T6504] loop2: detected capacity change from 0 to 512
[  128.153662][ T6504] EXT4-fs: Ignoring removed nomblk_io_submit option
[  128.216479][ T6509] loop3: detected capacity change from 0 to 2048
[  128.230028][ T6504] EXT4-fs (loop2): external journal device major/minor numbers have changed
[  128.255069][ T6509] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  128.282157][ T6518] loop0: detected capacity change from 0 to 512
[  128.301330][ T6504] EXT4-fs (loop2): failed to open journal device unknown-block(0,2) -6
[  128.329508][ T6514] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  128.329508][ T6514]    program syz.1.994 not setting count and/or reply_len properly
[  128.359838][ T6518] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.385309][ T6527] loop3: detected capacity change from 0 to 128
[  128.396408][ T6525] loop2: detected capacity change from 0 to 1024
[  128.423582][ T6530] netlink: 'syz.1.998': attribute type 4 has an invalid length.
[  128.459221][ T6531] loop4: detected capacity change from 0 to 2048
[  128.478063][ T6525] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.501262][ T6531] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  128.524431][ T6525] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  128.543933][ T6531] xt_hashlimit: max too large, truncated to 1048576
[  128.561300][ T6518] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.993: corrupted inode contents
[  128.572492][ T6531] netlink: 92 bytes leftover after parsing attributes in process `syz.4.999'.
[  128.575796][ T6518] EXT4-fs (loop0): Remounting filesystem read-only
[  128.594257][ T6518] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[  128.653485][ T6537] lo speed is unknown, defaulting to 1000
[  129.081718][   T29] kauditd_printk_skb: 376 callbacks suppressed
[  129.081734][   T29] audit: type=1326 audit(1751353459.431:11796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.111709][   T29] audit: type=1326 audit(1751353459.431:11797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.135296][   T29] audit: type=1326 audit(1751353459.431:11798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.158841][   T29] audit: type=1326 audit(1751353459.431:11799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.182503][   T29] audit: type=1326 audit(1751353459.431:11800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.188689][ T6545] openvswitch: netlink: Message has 6 unknown bytes.
[  129.206095][   T29] audit: type=1326 audit(1751353459.431:11801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.206135][   T29] audit: type=1326 audit(1751353459.431:11802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.259942][   T29] audit: type=1326 audit(1751353459.441:11803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.283580][   T29] audit: type=1326 audit(1751353459.441:11804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.307407][   T29] audit: type=1326 audit(1751353459.441:11805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6539 comm="syz.1.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94e395e929 code=0x7ffc0000
[  129.390728][ T6547] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  129.425226][ T6550] loop3: detected capacity change from 0 to 2048
[  129.427211][ T6553] loop2: detected capacity change from 0 to 512
[  129.447281][ T6550] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  129.478710][ T6553] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.513349][ T3318] EXT4-fs unmount: 150 callbacks suppressed
[  129.513365][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.532930][ T6553] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.1007: corrupted inode contents
[  129.556444][ T6553] EXT4-fs (loop2): Remounting filesystem read-only
[  129.567112][ T6553] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -30)
[  129.599590][ T6559] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  129.599590][ T6559]    program syz.0.1008 not setting count and/or reply_len properly
[  129.616957][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.623647][ T6564] loop3: detected capacity change from 0 to 512
[  129.656826][ T6566] serio: Serial port ptm0
[  129.663001][ T6564] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.678257][ T6564] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.715817][ T6564] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.1010: corrupted inode contents
[  129.728195][ T6564] EXT4-fs (loop3): Remounting filesystem read-only
[  129.749325][ T6564] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -30)
[  129.781834][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.891308][ T6582] loop4: detected capacity change from 0 to 1024
[  129.903111][ T6583] loop2: detected capacity change from 0 to 512
[  129.933043][ T6582] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  129.950585][ T6583] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.955642][ T6591] netlink: 'syz.3.1019': attribute type 4 has an invalid length.
[  129.970993][ T6580] loop1: detected capacity change from 0 to 8192
[  129.977694][ T6582] ext4 filesystem being mounted at /179/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.990339][ T6583] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.021473][ T6582] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  130.116160][ T6595] loop1: detected capacity change from 0 to 1024
[  130.123138][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  130.150925][ T6583] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.1015: corrupted inode contents
[  130.176521][ T6602] loop3: detected capacity change from 0 to 512
[  130.193870][ T6595] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  130.208360][ T6583] EXT4-fs (loop2): Remounting filesystem read-only
[  130.216868][ T6595] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.243285][ T6602] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.256782][ T6583] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -30)
[  130.278422][ T6595] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  130.291034][ T6602] ext4 filesystem being mounted at /195/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  130.299799][ T6603] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  130.299799][ T6603]    program syz.4.1022 not setting count and/or reply_len properly
[  130.338502][ T6602] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.1024: corrupted inode contents
[  130.357667][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.367365][ T6602] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #18: comm syz.3.1024: mark_inode_dirty error
[  130.401878][ T6602] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.1024: corrupted inode contents
[  130.404704][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  130.429907][ T6602] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm syz.3.1024: mark_inode_dirty error
[  130.463779][ T6611] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  130.497454][ T6602] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm syz.3.1024: mark inode dirty (error -117)
[  130.539977][ T6620] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  130.553924][ T6602] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  130.609568][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.704172][ T6623] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1031'.
[  130.714067][ T6623] IPv6: Can't replace route, no match found
[  130.739864][ T6626] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  130.754661][ T6627] openvswitch: netlink: Message has 6 unknown bytes.
[  130.846656][ T6631] 9pnet_fd: Insufficient options for proto=fd
[  130.860663][ T6629] IPv6: Can't replace route, no match found
[  130.888416][ T6631] loop2: detected capacity change from 0 to 512
[  130.972720][ T6631] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  130.987607][ T6638] loop0: detected capacity change from 0 to 1024
[  131.001771][ T6631] EXT4-fs (loop2): orphan cleanup on readonly fs
[  131.119859][ T6608] syz.4.1027 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  131.131103][ T6608] CPU: 1 UID: 0 PID: 6608 Comm: syz.4.1027 Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  131.131182][ T6608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  131.131195][ T6608] Call Trace:
[  131.131203][ T6608]  <TASK>
[  131.131211][ T6608]  __dump_stack+0x1d/0x30
[  131.131238][ T6608]  dump_stack_lvl+0xe8/0x140
[  131.131338][ T6608]  dump_stack+0x15/0x1b
[  131.131358][ T6608]  dump_header+0x81/0x220
[  131.131392][ T6608]  oom_kill_process+0x334/0x3f0
[  131.131489][ T6608]  out_of_memory+0x979/0xb80
[  131.131568][ T6608]  try_charge_memcg+0x5e6/0x9e0
[  131.131669][ T6608]  charge_memcg+0x51/0xc0
[  131.131708][ T6608]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  131.131842][ T6608]  __read_swap_cache_async+0x1df/0x350
[  131.131886][ T6608]  swap_cluster_readahead+0x376/0x3e0
[  131.132009][ T6608]  swapin_readahead+0xde/0x6f0
[  131.132067][ T6608]  ? __filemap_get_folio+0x4f7/0x6b0
[  131.132134][ T6608]  ? __rcu_read_unlock+0x34/0x70
[  131.132162][ T6608]  ? swap_cache_get_folio+0x77/0x200
[  131.132194][ T6608]  do_swap_page+0x301/0x2430
[  131.132295][ T6608]  ? css_rstat_updated+0xcd/0x5b0
[  131.132341][ T6608]  ? __pfx_default_wake_function+0x10/0x10
[  131.132370][ T6608]  handle_mm_fault+0x9a5/0x2be0
[  131.132397][ T6608]  ? mas_walk+0xf2/0x120
[  131.132519][ T6608]  do_user_addr_fault+0x636/0x1090
[  131.132618][ T6608]  exc_page_fault+0x62/0xa0
[  131.132656][ T6608]  asm_exc_page_fault+0x26/0x30
[  131.132690][ T6608] RIP: 0033:0x7f1b2d3fe88f
[  131.132711][ T6608] Code: 00 00 00 00 48 0f 45 d8 48 89 d8 5b c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 83 ec 28 31 f6 64 48 8b 04 25 28 00 00 00 <48> 89 44 24 18 31 c0 89 f8 48 69 c0 83 de 1b 43 48 c1 e8 32 89 c1
[  131.132734][ T6608] RSP: 002b:00007ffe72d63630 EFLAGS: 00010246
[  131.132749][ T6608] RAX: 44323ddb4355e000 RBX: 00007f1b2d625fa0 RCX: 000000000001ffb8
[  131.132768][ T6608] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 00000000000003e8
[  131.132834][ T6608] RBP: 00007f1b2d627ba0 R08: 0000000004c59a8e R09: 7fffffffffffffff
[  131.132851][ T6608] R10: 3fffffffffffffff R11: 0000000000000293 R12: 00000000000200ba
[  131.132867][ T6608] R13: 00007ffe72d63750 R14: ffffffffffffffff R15: 00007ffe72d63770
[  131.132893][ T6608]  </TASK>
[  131.153288][ T6637] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  131.153288][ T6637]    program syz.3.1037 not setting count and/or reply_len properly
[  131.155708][ T6608] memory: usage 307200kB, limit 307200kB, failcnt 350
[  131.244510][ T6631] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.1034: corrupted inode contents
[  131.245379][ T6608] memory+swap: usage 307392kB, limit 9007199254740988kB, failcnt 0
[  131.256911][ T6631] EXT4-fs (loop2): Remounting filesystem read-only
[  131.260349][ T6608] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[  131.275213][ T6631] EXT4-fs (loop2): 1 truncate cleaned up
[  131.279281][ T6608] Memory cgroup stats for /syz4:
[  131.318226][ T6608] cache 0
[  131.325551][  T376] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  131.329351][ T6608] rss 0
[  131.337349][  T376] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  131.345344][ T6608] shmem 0
[  131.345354][ T6608] mapped_file 0
[  131.345363][ T6608] dirty 0
[  131.350169][ T6638] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  131.365193][ T6608] writeback 0
[  131.365206][ T6608] workingset_refault_anon 317
[  131.365216][ T6608] workingset_refault_file 1074
[  131.365227][ T6608] swap 204800
[  131.373335][ T6638] ext4 filesystem being mounted at /214/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.383827][ T6608] swapcached 0
[  131.431611][  T376] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started
[  131.432513][ T6608] pgpgin 119146
[  131.443834][ T6631] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  131.445982][ T6608] pgpgout 119146
[  131.445994][ T6608] pgfault 136174
[  131.452443][ T6638] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  131.464538][ T6608] pgmajfault 233
[  131.464552][ T6608] inactive_anon 0
[  131.464561][ T6608] active_anon 0
[  131.464570][ T6608] inactive_file 0
[  131.471069][ T6631] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.472572][ T6608] active_file 0
[  131.569576][ T6608] unevictable 0
[  131.573227][ T6608] hierarchical_memory_limit 314572800
[  131.578620][ T6608] hierarchical_memsw_limit 9223372036854771712
[  131.584846][ T6608] total_cache 0
[  131.588333][ T6608] total_rss 0
[  131.591663][ T6608] total_shmem 0
[  131.595144][ T6608] total_mapped_file 0
[  131.599149][ T6608] total_dirty 0
[  131.602704][ T6608] total_writeback 0
[  131.606546][ T6608] total_workingset_refault_anon 317
[  131.611870][ T6608] total_workingset_refault_file 1074
[  131.617179][ T6608] total_swap 204800
[  131.621091][ T6608] total_swapcached 0
[  131.622961][ T6647] netlink: 'syz.3.1041': attribute type 4 has an invalid length.
[  131.625035][ T6608] total_pgpgin 119146
[  131.636794][ T6608] total_pgpgout 119146
[  131.640892][ T6608] total_pgfault 136174
[  131.644998][ T6608] total_pgmajfault 233
[  131.649087][ T6608] total_inactive_anon 0
[  131.653298][ T6608] total_active_anon 0
[  131.657316][ T6608] total_inactive_file 0
[  131.661506][ T6608] total_active_file 0
[  131.665605][ T6608] total_unevictable 0
[  131.669602][ T6608] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1027,pid=6608,uid=0
[  131.672833][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  131.684299][ T6608] Memory cgroup out of memory: Killed process 6608 (syz.4.1027) total-vm:93752kB, anon-rss:936kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[  131.757555][ T6651] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  131.829777][ T6657] openvswitch: netlink: Message has 6 unknown bytes.
[  131.874404][ T6662] loop0: detected capacity change from 0 to 512
[  131.894208][ T6662] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.911562][ T6662] ext4 filesystem being mounted at /215/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.922226][ T6670] loop2: detected capacity change from 0 to 1024
[  131.943779][ T6670] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  131.955960][ T6670] ext4 filesystem being mounted at /220/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.968717][ T6670] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  131.999226][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  132.058669][ T6662] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.1038: corrupted inode contents
[  132.090963][ T6682] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1053'.
[  132.101196][ T6662] EXT4-fs (loop0): Remounting filesystem read-only
[  132.118723][ T6662] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -30)
[  132.150619][ T6684] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1054'.
[  132.150651][ T6679] loop1: detected capacity change from 0 to 8192
[  132.177818][ T6684] IPv6: Can't replace route, no match found
[  132.193888][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.230517][ T6687] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  132.266996][ T6688] loop0: detected capacity change from 0 to 2048
[  132.289035][ T6694] openvswitch: netlink: Message has 6 unknown bytes.
[  132.295962][ T6692] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  132.316506][ T6688] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.387658][ T6688] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  132.490540][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.551354][ T6705] loop2: detected capacity change from 0 to 512
[  132.597039][ T6709] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1064'.
[  132.608841][ T6705] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.635402][ T6705] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.812635][ T6717] 9pnet_fd: Insufficient options for proto=fd
[  132.821951][ T6705] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.1062: corrupted inode contents
[  132.853997][ T6705] EXT4-fs (loop2): Remounting filesystem read-only
[  132.860714][ T6717] loop0: detected capacity change from 0 to 512
[  132.867506][ T6705] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -30)
[  132.899039][ T6721] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1069'.
[  132.916065][ T6717] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  132.925040][ T6717] EXT4-fs (loop0): orphan cleanup on readonly fs
[  132.935294][ T6717] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.1067: corrupted inode contents
[  132.935511][ T6724] loop3: detected capacity change from 0 to 512
[  132.948975][ T6717] EXT4-fs (loop0): Remounting filesystem read-only
[  132.960671][ T6717] EXT4-fs (loop0): 1 truncate cleaned up
[  132.968083][ T4137] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  132.978730][ T4137] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  132.995162][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.006711][ T4137] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  133.017579][ T6717] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  133.032083][ T6717] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.058914][ T6724] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.059775][ T6728] openvswitch: netlink: Message has 6 unknown bytes.
[  133.090474][ T6724] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.192072][ T6738] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1075'.
[  133.282970][ T6724] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.1068: corrupted inode contents
[  133.326887][ T6724] EXT4-fs (loop3): Remounting filesystem read-only
[  133.364670][ T6724] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -30)
[  133.370506][ T6754] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  133.389156][ T6740] loop4: detected capacity change from 0 to 512
[  133.406230][ T6756] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1083'.
[  133.417544][ T6740] EXT4-fs: Ignoring removed i_version option
[  133.425452][ T6740] EXT4-fs: Ignoring removed mblk_io_submit option
[  133.445568][ T6740] journal_path: Lookup failure for './file2'
[  133.446685][ T3318] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.453690][ T6740] EXT4-fs: error: could not find journal device path
[  133.494036][ T3318] ==================================================================
[  133.494423][ T6758] loop1: detected capacity change from 0 to 512
[  133.502178][ T3318] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru
[  133.502238][ T3318] 
[  133.502245][ T3318] read-write to 0xffff888237d25e68 of 1 bytes by task 6758 on cpu 1:
[  133.502262][ T3318]  folio_add_lru+0xa5/0x1f0
[  133.502299][ T3318]  shmem_get_folio_gfp+0x7ab/0xd60
[  133.502329][ T3318]  shmem_write_begin+0xa8/0x190
[  133.541033][ T3318]  generic_perform_write+0x184/0x490
[  133.546360][ T3318]  shmem_file_write_iter+0xc5/0xf0
[  133.551513][ T3318]  vfs_write+0x4a0/0x8e0
[  133.555804][ T3318]  ksys_write+0xda/0x1a0
[  133.560095][ T3318]  __x64_sys_write+0x40/0x50
[  133.564741][ T3318]  x64_sys_call+0x2cdd/0x2fb0
[  133.569459][ T3318]  do_syscall_64+0xd2/0x200
[  133.573991][ T3318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.579918][ T3318] 
[  133.582251][ T3318] read to 0xffff888237d25e68 of 1 bytes by task 3318 on cpu 0:
[  133.589806][ T3318]  __lru_add_drain_all+0x12b/0x3f0
[  133.594951][ T3318]  lru_add_drain_all+0x10/0x20
[  133.599741][ T3318]  invalidate_bdev+0x47/0x70
[  133.604345][ T3318]  ext4_put_super+0x624/0x7d0
[  133.609043][ T3318]  generic_shutdown_super+0xe3/0x210
[  133.614356][ T3318]  kill_block_super+0x2a/0x70
[  133.619073][ T3318]  ext4_kill_sb+0x42/0x80
[  133.623442][ T3318]  deactivate_locked_super+0x72/0x1c0
[  133.628858][ T3318]  deactivate_super+0x97/0xa0
[  133.633563][ T3318]  cleanup_mnt+0x269/0x2e0
[  133.638005][ T3318]  __cleanup_mnt+0x19/0x20
[  133.642439][ T3318]  task_work_run+0x131/0x1a0
[  133.647046][ T3318]  exit_to_user_mode_loop+0xe4/0x100
[  133.652354][ T3318]  do_syscall_64+0x1d6/0x200
[  133.656959][ T3318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.662869][ T3318] 
[  133.665205][ T3318] value changed: 0x12 -> 0x1c
[  133.669886][ T3318] 
[  133.672222][ T3318] Reported by Kernel Concurrency Sanitizer on:
[  133.678385][ T3318] CPU: 0 UID: 0 PID: 3318 Comm: syz-executor Not tainted 6.16.0-rc4-syzkaller-00013-g66701750d556 #0 PREEMPT(voluntary) 
[  133.690986][ T3318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  133.701053][ T3318] ==================================================================
[  133.720682][ T6758] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  133.732334][ T6758] EXT4-fs (loop1): orphan cleanup on readonly fs
[  133.739927][ T6758] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #16: comm syz.1.1085: corrupted inode contents
[  133.753029][ T6758] EXT4-fs (loop1): Remounting filesystem read-only
[  133.759689][ T6758] EXT4-fs (loop1): 1 truncate cleaned up
[  133.766354][ T4137] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  133.776969][ T4137] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  133.789020][ T4137] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  133.799697][ T6758] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  133.826885][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.843181][ T6740] loop4: detected capacity change from 0 to 512
[  133.854090][ T6740] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  133.872243][ T6740] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  133.886517][ T6740] EXT4-fs (loop4): 1 truncate cleaned up
[  133.894180][ T6740] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.942336][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.