last executing test programs:

21.483607203s ago: executing program 3 (id=4302):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
sendmsg$tipc(r3, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='mm_page_alloc\x00', r5}, 0x10)
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[], 0x1c}}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
close_range(r1, 0xffffffffffffffff, 0x0)

21.388678802s ago: executing program 3 (id=4304):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket(0x2, 0x80805, 0x0)
dup2(r2, r1)

21.371783784s ago: executing program 3 (id=4305):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

14.23334885s ago: executing program 1 (id=4395):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)

14.200495893s ago: executing program 1 (id=4396):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00'})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c)
connect$pppl2tp(r3, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r3, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)

14.200216723s ago: executing program 1 (id=4397):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000600)={[{@min_batch_time={'min_batch_time', 0x3d, 0xce36}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x88}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@max_batch_time={'max_batch_time', 0x3d, 0xf95}}, {@data_err_abort}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000001200)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
fchown(r2, 0x0, 0xee01)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413e850000000f00000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
vmsplice(r4, &(0x7f00000013c0)=[{&(0x7f0000000080)='4', 0x1}, {&(0x7f0000000100)}, {&(0x7f0000000880)="9f", 0x1}, {&(0x7f0000000300)='b', 0x1}], 0x4, 0x0)
ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000240))
close_range(r4, 0xffffffffffffffff, 0x0)

13.099208689s ago: executing program 1 (id=4406):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000200)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)

13.098809s ago: executing program 1 (id=4407):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff2}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x2}]}}]}, 0x40}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

12.904795006s ago: executing program 1 (id=4409):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[], 0x0)
r0 = gettid()
listen(0xffffffffffffffff, 0xcdf)
syz_emit_ethernet(0x4a, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5002000090780000"], 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000140)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a9646", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x4}}}}}}}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000000180)=@file={0x1}, 0x6e)
listen(r2, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r3, &(0x7f0000000000)=@file={0x1}, 0x6e)
connect$unix(r3, &(0x7f0000000080)=@file={0x1}, 0x6e)
ptrace(0x10, 0x1)

9.849674255s ago: executing program 4 (id=4455):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000180)=@file={0x1}, 0x6e)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r1, &(0x7f0000000000)=@file={0x1}, 0x6e)
connect$unix(r1, &(0x7f0000000080)=@file={0x1}, 0x6e)

9.004293999s ago: executing program 4 (id=4463):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='signal_generate\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='sys_enter\x00', r0}, 0x2b)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5c12, 0x0, 0x0)

8.87180716s ago: executing program 4 (id=4464):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000200), r1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000040)='./file0\x00', 0x2008803, &(0x7f0000000080), 0x1, 0x63d, &(0x7f0000000c00)="$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")
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r3}, &(0x7f0000000000), &(0x7f00000005c0)=r4}, 0x20)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000003c0)=0x14)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
unshare(0x22020600)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f0000000500)={r8, 0x0, 0x0}, 0x20)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x600, 0x0)

7.920789964s ago: executing program 4 (id=4467):
mlockall(0x3)
perf_event_open(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x1)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000020001801000020646c2100000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000002000000000000000000000e00000000000000000c4c6707b64d1f2fa5622242678842e1b865f8b838ac31103d2ddd005d968bb354eec8d70eb72acccb0f291d302cc3a008c7ce48956725915fc7a7fcff48474f54e9071032a0bb330b861b165fd15c84e3296dfbce04e04f9ec3f7a6a93f6e81d0f43d4a4359c6f50ba45ced339e9ed2b858346f09be4ef13deac8d5786f58dbddd714662646125c4b374fa57151b88fc2b1742cf7d13fb129a16624c1d1fcccbc00eaeb43fdf56c38871706d15b738f31ec9419acc5ecf819b605cc26112738735ac263bafbb50f01b53808a6abacf2d474aa19e7f64093470bef3"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rmdir(&(0x7f0000000880)='.\x00')

7.144300692s ago: executing program 3 (id=4432):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x2814000, &(0x7f0000000480)={[{@user_xattr}, {@init_itable_val={'init_itable', 0x3d, 0x20000003}}, {@dioread_lock}, {@max_batch_time={'max_batch_time', 0x3d, 0x4000000}}, {@block_validity}, {@i_version}, {}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x20}}, {@dioread_nolock}, {@discard}, {@block_validity}, {@user_xattr}, {@grpid}]}, 0x1, 0x558, &(0x7f0000001b00)="$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")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
r1 = open(&(0x7f00000003c0)='./bus\x00', 0x14bb42, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x101499, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000640)='./file0\x00', 0x0, 0x101800, 0x0)
mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x94d510, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mount$bind(&(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
sendfile(r1, r0, 0x0, 0x80000000)

7.144097113s ago: executing program 4 (id=4472):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="140100002500010000000000000000"], 0x114}], 0x1}, 0x0)

7.131252873s ago: executing program 4 (id=4473):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r2, 0x0)
shutdown(r1, 0x0)
connect$unix(r1, &(0x7f0000fce000)=@file={0x1, './file0\x00'}, 0x6e)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18002000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000050000005000000095b806a0e549d4b14551f2bbd8a8e8c04449c6a06e7baef475ca60c08e76c13ed4a6"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r9=>0x0})
bind$can_raw(r8, &(0x7f0000000240)={0x1d, r9}, 0x10)
setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, &(0x7f0000000540)=[{}], 0xfffffffffffffd04)
quotactl$Q_SYNC(0x0, 0x0, 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x80)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={0x1}, 0x4)

7.100470406s ago: executing program 3 (id=4474):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a385000000700000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x7, 0x4, 0x8, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffd, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

3.132593495s ago: executing program 3 (id=4535):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x5, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$unix(0x1, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
pipe2$9p(0x0, 0x0)
move_pages(0x0, 0x20000000000001ab, &(0x7f0000000000), 0x0, &(0x7f0000000000)=[0x0], 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xbfff, 0x0, "ec28a144f13d7607"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x2, 0x10000000, 0x100000, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r2 = syz_open_pts(r1, 0x0)
dup3(r2, r1, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
fsmount(r3, 0x0, 0x0)
syz_clone3(&(0x7f0000000440)={0x200900, &(0x7f0000000000), &(0x7f00000000c0), &(0x7f0000000100)=<r4=>0x0, {0x3d}, 0x0, 0x0, &(0x7f0000000240)=""/97, &(0x7f0000000140)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x5}, 0x58)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2200054, &(0x7f00000000c0)={[{@delalloc}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@lazytime}, {@oldalloc}, {@nomblk_io_submit}]}, 0x4, 0x250, &(0x7f0000000200)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
fadvise64(r5, 0x60, 0x15ea, 0x4)
r6 = socket(0x2, 0x80805, 0x0)
listen(r6, 0xe8ca)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095", @ANYRES8=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a00)=ANY=[@ANYRES32=r4], &(0x7f0000000340)='syzkaller\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r8, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a5cfd55", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmmsg$inet_sctp(r6, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="3000000000000000840000000100000000e63381ba"], 0x30}], 0x1, 0x0)

3.000494206s ago: executing program 0 (id=4543):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000d00)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRESHEX], 0x24}}, 0x0)
recvmmsg$unix(r0, &(0x7f0000000340)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f00000008c0)=""/196, 0xc4}, {&(0x7f00000003c0)=""/254, 0xfe}, {&(0x7f0000004480)=""/4085, 0xff5}, {&(0x7f0000000740)=""/74, 0x4a}, {&(0x7f0000000540)=""/133, 0x85}], 0x5}}, {{0x0, 0x0, 0x0}}], 0x3, 0x0, 0x0)
write(r0, &(0x7f0000000100)="1400000052004f7fb3e4bf80a000080000000000", 0x14)

2.893628045s ago: executing program 0 (id=4549):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000aaca468500"/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000001008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095", @ANYRES8=r0], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kfree\x00', r1}, 0x37)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000001500)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000880)={'bridge0\x00', <r4=>0x0})
sendmsg$inet(r3, &(0x7f0000000040)={&(0x7f0000000700)={0x2, 0x4e21, @private=0xa010101}, 0x10, 0x0, 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000007000000890704e0faf16a001c000000000000000000000008000000", @ANYRES32=r4], 0x38}, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x2)

2.829070321s ago: executing program 0 (id=4551):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x2, 0x9, 0x0, 0x1, 0xf000}}, [], {{}, {0x5}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f00000000c0)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (fail_nth: 1)

2.649063887s ago: executing program 0 (id=4552):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

2.608458481s ago: executing program 0 (id=4553):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000080000000000000000000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x5, 0x1, 0x8a, 0xe7c9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

2.542911976s ago: executing program 0 (id=4555):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[], 0x0)
r0 = gettid()
listen(0xffffffffffffffff, 0xcdf)
syz_emit_ethernet(0x4a, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="5002000090780000"], 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000140)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a9646", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x4}}}}}}}, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000000180)=@file={0x1}, 0x6e)
listen(r2, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r3, &(0x7f0000000000)=@file={0x1}, 0x6e)
connect$unix(r3, &(0x7f0000000080)=@file={0x1}, 0x6e)
ptrace(0x10, 0x1)

523.663384ms ago: executing program 2 (id=4563):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000080000000000000000000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x5, 0x1, 0x8a, 0xe7c9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

486.520947ms ago: executing program 2 (id=4564):
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000d40)=ANY=[@ANYBLOB="000000004c90020052feffff03000500"/99])

349.269099ms ago: executing program 2 (id=4565):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a38500000070000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x7, 0x4, 0x8, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffd, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

348.385019ms ago: executing program 2 (id=4566):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x2814000, &(0x7f0000000480)={[{@user_xattr}, {@init_itable_val={'init_itable', 0x3d, 0x20000003}}, {@dioread_lock}, {@max_batch_time={'max_batch_time', 0x3d, 0x4000000}}, {@block_validity}, {@i_version}, {}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x20}}, {@dioread_nolock}, {@discard}, {@block_validity}, {@user_xattr}, {@grpid}]}, 0x1, 0x558, &(0x7f0000001b00)="$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")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00')
r1 = open(&(0x7f00000003c0)='./bus\x00', 0x14bb42, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x101499, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000640)='./file0\x00', 0x0, 0x101800, 0x0)
mount$bind(&(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x1217880, 0x0)
sendfile(r1, r0, 0x0, 0x80000000)

284.796844ms ago: executing program 2 (id=4567):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r3, 0x0, 0x0, 0x1000f4)
r4 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r4, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)

0s ago: executing program 2 (id=4568):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x4, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='signal_generate\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='sys_enter\x00', r0}, 0x2b)
mkdir(&(0x7f0000000200)='./control\x00', 0x0)

kernel console output (not intermixed with test programs):

ffffffda RBX: 00007fd892e25f80 RCX: 00007fd892c6def9
[  439.470452][T17283] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005
[  439.478497][T17283] RBP: 00007fd8918e1090 R08: 0000000000000000 R09: 0000000000000000
[  439.486456][T17283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  439.494457][T17283] R13: 0000000000000000 R14: 00007fd892e25f80 R15: 00007ffc7d594758
[  439.502420][T17283]  </TASK>
[  439.535048][T17279] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4107'.
[  439.567876][T17287] loop4: detected capacity change from 0 to 512
[  439.590619][T17287] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #12: comm syz.4.4112: corrupted in-inode xattr: invalid ea_ino
[  439.614624][T17287] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.4112: couldn't read orphan inode 12 (err -117)
[  439.631636][T17287] EXT4-fs (loop4): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  439.666846][T16919] EXT4-fs (loop4): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  439.686910][T17130] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  439.706477][T17130] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  439.720887][T17130] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  439.731358][T17130] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  439.780819][T17298] loop1: detected capacity change from 0 to 512
[  439.782844][T17130] 8021q: adding VLAN 0 to HW filter on device bond0
[  439.802912][T17130] 8021q: adding VLAN 0 to HW filter on device team0
[  439.813174][T14292] bridge0: port 1(bridge_slave_0) entered blocking state
[  439.820251][T14292] bridge0: port 1(bridge_slave_0) entered forwarding state
[  439.828456][T17298] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  439.844121][T17298] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  439.845744][T14289] bridge0: port 2(bridge_slave_1) entered blocking state
[  439.861879][T14289] bridge0: port 2(bridge_slave_1) entered forwarding state
[  439.882259][T16510] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.069080][T17314] netlink: 256 bytes leftover after parsing attributes in process `syz.3.4119'.
[  440.082767][T17130] 8021q: adding VLAN 0 to HW filter on device batadv0
[  440.112631][T17314] loop3: detected capacity change from 0 to 512
[  440.139974][T17325] loop1: detected capacity change from 0 to 512
[  440.150241][T17325] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #12: comm syz.1.4123: corrupted in-inode xattr: invalid ea_ino
[  440.170544][T17325] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.4123: couldn't read orphan inode 12 (err -117)
[  440.184467][T17325] EXT4-fs (loop1): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.186200][T17314] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.218192][T17314] ext4 filesystem being mounted at /74/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  440.228749][T17130] veth0_vlan: entered promiscuous mode
[  440.234882][T16510] EXT4-fs (loop1): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  440.241798][T17130] veth1_vlan: entered promiscuous mode
[  440.265662][T17130] veth0_macvtap: entered promiscuous mode
[  440.278235][T16760] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.284554][T17130] veth1_macvtap: entered promiscuous mode
[  440.299562][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.310102][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.320102][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.330810][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.331749][T17340] loop1: detected capacity change from 0 to 2048
[  440.340609][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.340625][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.340638][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.340679][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.350419][T17342] loop0: detected capacity change from 0 to 1024
[  440.357393][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.357408][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.357421][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  440.357432][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.359966][T17130] batman_adv: batadv0: Interface activated: batadv_slave_0
[  440.427129][T17342] EXT4-fs: Mount option(s) incompatible with ext2
[  440.436361][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.459417][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.469507][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.480007][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.489898][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.500472][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.510308][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.521308][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.531248][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.541673][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.551607][T17130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  440.562043][T17130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  440.579388][T17130] batman_adv: batadv0: Interface activated: batadv_slave_1
[  440.597952][T17340] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  440.598857][T17130] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  440.619007][T17130] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  440.627812][T17130] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  440.636541][T17130] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  440.685909][T16510] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.769926][T17366] loop2: detected capacity change from 0 to 512
[  440.801280][T17366] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #12: comm syz.2.4134: corrupted in-inode xattr: invalid ea_ino
[  440.815778][T17366] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.4134: couldn't read orphan inode 12 (err -117)
[  440.834019][T17366] EXT4-fs (loop2): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.868974][T17130] EXT4-fs (loop2): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  440.909962][T17384] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4143'.
[  440.923128][T17387] loop3: detected capacity change from 0 to 2048
[  440.933133][T17388] FAULT_INJECTION: forcing a failure.
[  440.933133][T17388] name failslab, interval 1, probability 0, space 0, times 0
[  440.945893][T17388] CPU: 0 UID: 0 PID: 17388 Comm: syz.2.4142 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  440.958173][T17388] Tainted: [W]=WARN
[  440.961966][T17388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  440.972063][T17388] Call Trace:
[  440.975338][T17388]  <TASK>
[  440.978276][T17388]  dump_stack_lvl+0xf2/0x150
[  440.982879][T17388]  dump_stack+0x15/0x20
[  440.987094][T17388]  should_fail_ex+0x229/0x230
[  440.991831][T17388]  ? __request_module+0x1ba/0x3e0
[  440.996874][T17388]  should_failslab+0x8f/0xb0
[  441.001490][T17388]  __kmalloc_cache_noprof+0x4b/0x2a0
[  441.006960][T17388]  ? get_fs_type+0x11b/0x320
[  441.011614][T17388]  __request_module+0x1ba/0x3e0
[  441.016524][T17388]  ? strncmp+0x34/0x70
[  441.020628][T17388]  get_fs_type+0x11b/0x320
[  441.025096][T17388]  __se_sys_fsopen+0x7c/0x1c0
[  441.029845][T17388]  __x64_sys_fsopen+0x31/0x40
[  441.034569][T17388]  x64_sys_call+0x2765/0x2d60
[  441.039430][T17388]  do_syscall_64+0xc9/0x1c0
[  441.043932][T17388]  ? clear_bhb_loop+0x55/0xb0
[  441.049078][T17388]  ? clear_bhb_loop+0x55/0xb0
[  441.053758][T17388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.059719][T17388] RIP: 0033:0x7f52eec9def9
[  441.064133][T17388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  441.083743][T17388] RSP: 002b:00007f52ed911038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ae
[  441.092156][T17388] RAX: ffffffffffffffda RBX: 00007f52eee55f80 RCX: 00007f52eec9def9
[  441.100121][T17388] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[  441.108153][T17388] RBP: 00007f52ed911090 R08: 0000000000000000 R09: 0000000000000000
[  441.116127][T17388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  441.124152][T17388] R13: 0000000000000000 R14: 00007f52eee55f80 R15: 00007fffc4a34018
[  441.132123][T17388]  </TASK>
[  441.139312][T17387] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  441.203316][T16760] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.340769][T17417] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4154'.
[  441.351059][T17417] syz.1.4154[17417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  441.351275][T17417] syz.1.4154[17417] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  441.427823][T17425] 9pnet: p9_errstr2errno: server reported unknown error �@í΂Í(ÿÿ
[  441.500051][T17438] loop1: detected capacity change from 0 to 512
[  441.508905][T17438] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #12: comm syz.1.4161: corrupted in-inode xattr: invalid ea_ino
[  441.535446][T17440] loop2: detected capacity change from 0 to 1024
[  441.542044][   T29] kauditd_printk_skb: 133 callbacks suppressed
[  441.542057][   T29] audit: type=1400 audit(1725955661.569:5405): avc:  denied  { write } for  pid=17410 comm="syz.3.4151" path="socket:[81028]" dev="sockfs" ino=81028 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  441.585583][T17440] EXT4-fs: Ignoring removed nomblk_io_submit option
[  441.592518][T17438] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.4161: couldn't read orphan inode 12 (err -117)
[  441.609954][T17440] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  441.626256][T17438] EXT4-fs (loop1): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  441.640267][T17446] loop4: detected capacity change from 0 to 2048
[  441.649719][T17440] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c09c, mo2=0003]
[  441.662064][T17440] System zones: 0-1, 3-36
[  441.669280][T17440] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  441.679250][T16510] EXT4-fs (loop1): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  441.703733][T17440] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4159'.
[  441.703733][T17446] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  441.814451][T16919] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.835519][   T29] audit: type=1400 audit(1725955661.869:5406): avc:  denied  { write } for  pid=17465 comm="syz.3.4172" path="socket:[81075]" dev="sockfs" ino=81075 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  441.891216][T17476] 9pnet: p9_errstr2errno: server reported unknown error �@í΂Í(ÿÿ
[  441.908939][T17479] loop3: detected capacity change from 0 to 512
[  441.921711][T17479] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #12: comm syz.3.4178: corrupted in-inode xattr: invalid ea_ino
[  441.921926][T17481] netlink: 256 bytes leftover after parsing attributes in process `syz.0.4180'.
[  441.935777][T17479] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4178: couldn't read orphan inode 12 (err -117)
[  441.957474][T17479] EXT4-fs (loop3): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  441.998685][T16760] EXT4-fs (loop3): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  442.135931][T17506] FAULT_INJECTION: forcing a failure.
[  442.135931][T17506] name failslab, interval 1, probability 0, space 0, times 0
[  442.148665][T17506] CPU: 0 UID: 0 PID: 17506 Comm: syz.3.4190 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  442.160915][T17506] Tainted: [W]=WARN
[  442.164719][T17506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  442.174767][T17506] Call Trace:
[  442.178043][T17506]  <TASK>
[  442.180969][T17506]  dump_stack_lvl+0xf2/0x150
[  442.185567][T17506]  dump_stack+0x15/0x20
[  442.189792][T17506]  should_fail_ex+0x229/0x230
[  442.194468][T17506]  ? vm_area_dup+0x2c/0x130
[  442.199007][T17506]  should_failslab+0x8f/0xb0
[  442.203615][T17506]  kmem_cache_alloc_noprof+0x4c/0x290
[  442.208992][T17506]  vm_area_dup+0x2c/0x130
[  442.213314][T17506]  __split_vma+0xf7/0x690
[  442.217642][T17506]  do_vmi_align_munmap+0x227/0xa60
[  442.222818][T17506]  do_vmi_munmap+0x1fb/0x250
[  442.227624][T17506]  mmap_region+0x52a/0x1620
[  442.232157][T17506]  ? mm_get_unmapped_area+0x8a/0xa0
[  442.237350][T17506]  ? security_mmap_addr+0x4c/0x70
[  442.242362][T17506]  ? __get_unmapped_area+0x2d1/0x300
[  442.247642][T17506]  do_mmap+0x72a/0xb70
[  442.251763][T17506]  ? security_mmap_file+0x128/0x150
[  442.257014][T17506]  vm_mmap_pgoff+0x133/0x290
[  442.261601][T17506]  ksys_mmap_pgoff+0x292/0x340
[  442.266528][T17506]  x64_sys_call+0x1884/0x2d60
[  442.271199][T17506]  do_syscall_64+0xc9/0x1c0
[  442.275696][T17506]  ? clear_bhb_loop+0x55/0xb0
[  442.280359][T17506]  ? clear_bhb_loop+0x55/0xb0
[  442.285022][T17506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.290912][T17506] RIP: 0033:0x7f5e5c9ddef9
[  442.295358][T17506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  442.314955][T17506] RSP: 002b:00007f5e5b657038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  442.323399][T17506] RAX: ffffffffffffffda RBX: 00007f5e5cb95f80 RCX: 00007f5e5c9ddef9
[  442.331384][T17506] RDX: 0000000000000002 RSI: 0000000000b36000 RDI: 0000000020000000
[  442.339343][T17506] RBP: 00007f5e5b657090 R08: 0000000000000007 R09: 0000000000000000
[  442.347344][T17506] R10: 0000000000028011 R11: 0000000000000246 R12: 0000000000000001
[  442.355370][T17506] R13: 0000000000000000 R14: 00007f5e5cb95f80 R15: 00007ffec4437b88
[  442.363334][T17506]  </TASK>
[  442.418758][T17130] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.443057][T17513] syz.2.4191[17513] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  442.443112][T17513] syz.2.4191[17513] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  442.553254][T17519] loop0: detected capacity change from 0 to 1024
[  442.604938][T17519] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.733169][T17531] loop3: detected capacity change from 0 to 1024
[  442.767446][T17531] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  442.776766][T17535] loop4: detected capacity change from 0 to 512
[  442.798464][T17535] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #12: comm syz.4.4203: corrupted in-inode xattr: invalid ea_ino
[  442.831218][T17531] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.846940][T17535] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.4203: couldn't read orphan inode 12 (err -117)
[  442.868122][T17535] EXT4-fs (loop4): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  442.883722][T17541] loop1: detected capacity change from 0 to 2048
[  442.899964][T16919] EXT4-fs (loop4): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  442.910780][T17541] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.932317][T16760] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.959198][T17542] loop2: detected capacity change from 0 to 1024
[  442.998116][T17542] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  443.008666][T17548] loop3: detected capacity change from 0 to 512
[  443.025540][T16510] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.045625][T17542] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.056056][T17548] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.112487][T17130] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.133068][T17548] ext4 filesystem being mounted at /100/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  443.185677][T16760] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.195288][T17559] loop2: detected capacity change from 0 to 1024
[  443.214234][T17559] EXT4-fs: Mount option(s) incompatible with ext2
[  443.263278][   T29] audit: type=1326 audit(1725955663.289:5407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17564 comm="syz.3.4211" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5e5c9ddef9 code=0x0
[  443.289948][T17568] __nla_validate_parse: 2 callbacks suppressed
[  443.289963][T17568] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4213'.
[  443.323969][   T29] audit: type=1326 audit(1725955663.359:5408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17545 comm="syz.4.4205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  443.347538][   T29] audit: type=1326 audit(1725955663.359:5409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17545 comm="syz.4.4205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  443.375418][T17571] program syz.3.4211 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  443.402024][   T29] audit: type=1326 audit(1725955663.399:5410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17558 comm="syz.2.4209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52eec9def9 code=0x7ffc0000
[  443.425629][   T29] audit: type=1326 audit(1725955663.399:5411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17558 comm="syz.2.4209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52eec9def9 code=0x7ffc0000
[  443.449433][   T29] audit: type=1326 audit(1725955663.399:5412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17558 comm="syz.2.4209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52eec9def9 code=0x7ffc0000
[  443.472920][   T29] audit: type=1326 audit(1725955663.399:5413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17558 comm="syz.2.4209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52eec9def9 code=0x7ffc0000
[  443.496645][   T29] audit: type=1326 audit(1725955663.399:5414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17558 comm="syz.2.4209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f52eec9def9 code=0x7ffc0000
[  443.522958][T16876] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.553686][T17576] loop2: detected capacity change from 0 to 2048
[  443.596514][T17576] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.628495][T17576] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.658537][T17590] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4221'.
[  443.682486][T17590] loop1: detected capacity change from 0 to 512
[  443.688914][T17130] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /16/file0: bad entry in directory: rec_len is smaller than minimal - offset=108, inode=646161, rec_len=0, size=4096 fake=0
[  443.718189][T17590] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.730925][T17590] ext4 filesystem being mounted at /110/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  443.786189][T16510] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.852317][T17603] loop4: detected capacity change from 0 to 1024
[  443.886542][T17603] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.926681][T17611] netlink: 72 bytes leftover after parsing attributes in process `syz.1.4227'.
[  444.158233][T17620] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4232'.
[  444.173287][T17621] loop3: detected capacity change from 0 to 512
[  444.188073][T17620] syz.1.4232[17620] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  444.188186][T17620] syz.1.4232[17620] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  444.211277][T17621] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #12: comm syz.3.4231: corrupted in-inode xattr: invalid ea_ino
[  444.272607][T17621] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4231: couldn't read orphan inode 12 (err -117)
[  444.291440][T17621] EXT4-fs (loop3): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  444.315090][T17627] loop1: detected capacity change from 0 to 128
[  444.321884][T17627] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  444.340220][T17627] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  444.354951][T16760] EXT4-fs (loop3): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  444.380739][T17629] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4235'.
[  444.398027][   T28] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  444.408158][T17629] syz.3.4235[17629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  444.408242][T17629] syz.3.4235[17629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  444.533144][T17645] netlink: 48 bytes leftover after parsing attributes in process `syz.1.4243'.
[  444.599315][T17650] loop3: detected capacity change from 0 to 1024
[  444.621599][T17650] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  445.017970][T17671] 9pnet: p9_errstr2errno: server reported unknown error �@ÿÿ
[  445.077250][T17677] loop0: detected capacity change from 0 to 512
[  445.096463][T17677] ext4 filesystem being mounted at /49/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  445.154520][T17681] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4257'.
[  445.172290][T17683] loop4: detected capacity change from 0 to 1024
[  445.179364][T17683] EXT4-fs: Mount option(s) incompatible with ext2
[  445.339593][T17690] loop0: detected capacity change from 0 to 1024
[  445.347368][T17690] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  445.361793][T17692] loop4: detected capacity change from 0 to 512
[  445.370493][T17692] journal_path: Lookup failure for './file1'
[  445.376578][T17692] EXT4-fs: error: could not find journal device path
[  445.653401][T17702] 9pnet: p9_errstr2errno: server reported unknown error �@í΂Í(ÿÿ
[  445.748313][T17708] loop1: detected capacity change from 0 to 512
[  445.784600][T17714] loop3: detected capacity change from 0 to 512
[  445.793239][T17714] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.4270: corrupted in-inode xattr: invalid ea_ino
[  445.807271][T17714] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4270: couldn't read orphan inode 15 (err -117)
[  445.819754][T17708] ext4 filesystem being mounted at /128/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  445.852254][T17714] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.4270: invalid indirect mapped block 234881024 (level 0)
[  445.893197][T17723] loop1: detected capacity change from 0 to 1024
[  445.900121][T17723] EXT4-fs: Mount option(s) incompatible with ext2
[  446.046528][T17736] 9pnet: p9_errstr2errno: server reported unknown error �@í΂Í(ááíÿÿ
[  446.163137][T17742] loop1: detected capacity change from 0 to 1024
[  446.169908][T17742] EXT4-fs: Ignoring removed nomblk_io_submit option
[  446.177288][T17742] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  446.188212][T17742] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c09c, mo2=0003]
[  446.197227][T17742] System zones: 0-1, 3-36
[  446.279839][T17751] loop4: detected capacity change from 0 to 512
[  446.296451][T17751] ext4 filesystem being mounted at /29/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  446.420693][   T40] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.468608][   T40] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.527261][   T40] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.566771][   T40] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.603347][T17758] chnl_net:caif_netlink_parms(): no params data found
[  446.640495][T17758] bridge0: port 1(bridge_slave_0) entered blocking state
[  446.647668][T17758] bridge0: port 1(bridge_slave_0) entered disabled state
[  446.655141][T17758] bridge_slave_0: entered allmulticast mode
[  446.661546][T17758] bridge_slave_0: entered promiscuous mode
[  446.670139][T17758] bridge0: port 2(bridge_slave_1) entered blocking state
[  446.677235][T17758] bridge0: port 2(bridge_slave_1) entered disabled state
[  446.684475][T17758] bridge_slave_1: entered allmulticast mode
[  446.690786][T17758] bridge_slave_1: entered promiscuous mode
[  446.708602][   T40] bridge_slave_1: left allmulticast mode
[  446.714372][   T40] bridge_slave_1: left promiscuous mode
[  446.720068][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[  446.728270][   T40] bridge_slave_0: left allmulticast mode
[  446.733956][   T40] bridge_slave_0: left promiscuous mode
[  446.739590][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[  446.813396][T17775] 9pnet: p9_errstr2errno: server reported unknown error �@í΂Í(ááíÿÿ
[  446.837264][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  446.848577][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  446.859331][   T40] bond0 (unregistering): Released all slaves
[  446.869033][T17758] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  446.881676][T17758] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  446.903740][T17758] team0: Port device team_slave_0 added
[  446.910301][T17758] team0: Port device team_slave_1 added
[  446.926513][T17758] batman_adv: batadv0: Adding interface: batadv_slave_0
[  446.933515][T17758] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  446.959543][T17758] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  446.960646][   T29] kauditd_printk_skb: 135 callbacks suppressed
[  446.960657][   T29] audit: type=1326 audit(1725955666.989:5550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  446.971572][T17758] batman_adv: batadv0: Adding interface: batadv_slave_1
[  446.991972][   T29] audit: type=1326 audit(1725955667.019:5551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  446.999833][T17758] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  446.999857][T17758] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  447.067189][   T29] audit: type=1326 audit(1725955667.019:5552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  447.090668][   T29] audit: type=1326 audit(1725955667.019:5553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  447.114366][   T29] audit: type=1326 audit(1725955667.019:5554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  447.137900][   T29] audit: type=1326 audit(1725955667.019:5555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  447.161688][   T29] audit: type=1326 audit(1725955667.019:5556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  447.185222][   T29] audit: type=1326 audit(1725955667.019:5557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  447.208740][   T29] audit: type=1326 audit(1725955667.019:5558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  447.232264][   T29] audit: type=1326 audit(1725955667.019:5559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17776 comm="syz.3.4290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e5c9ddef9 code=0x7ffc0000
[  447.261335][   T40] hsr_slave_0: left promiscuous mode
[  447.267244][   T40] hsr_slave_1: left promiscuous mode
[  447.273078][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  447.280588][   T40] batman_adv: batadv0: Removing interface: batadv_slave_0
[  447.288119][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  447.295679][   T40] batman_adv: batadv0: Removing interface: batadv_slave_1
[  447.305355][   T40] veth1_macvtap: left promiscuous mode
[  447.310627][T17782] loop1: detected capacity change from 0 to 2048
[  447.310867][   T40] veth0_macvtap: left promiscuous mode
[  447.322689][   T40] veth1_vlan: left promiscuous mode
[  447.328051][   T40] veth0_vlan: left promiscuous mode
[  447.454767][   T40] team0 (unregistering): Port device team_slave_1 removed
[  447.468050][   T40] team0 (unregistering): Port device team_slave_0 removed
[  447.498906][T17793] loop3: detected capacity change from 0 to 512
[  447.518604][T17793] ext4 filesystem being mounted at /120/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  447.546619][T17758] hsr_slave_0: entered promiscuous mode
[  447.549855][T17797] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4296'.
[  447.562723][T17758] hsr_slave_1: entered promiscuous mode
[  447.569077][T17758] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  447.577015][T17758] Cannot create hsr debugfs directory
[  447.624856][T17806] loop1: detected capacity change from 0 to 1024
[  447.640438][T17806] EXT4-fs: Mount option(s) incompatible with ext2
[  447.879409][T17813] loop1: detected capacity change from 0 to 1024
[  447.887409][T17813] EXT4-fs: Ignoring removed nomblk_io_submit option
[  447.895128][T17813] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  447.914803][T17813] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c09c, mo2=0003]
[  447.919791][T17758] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  447.922948][T17813] System zones: 0-1, 3-36
[  447.936007][T17758] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  447.957451][T17758] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  447.979645][T17758] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  448.030920][T17758] 8021q: adding VLAN 0 to HW filter on device bond0
[  448.048152][T17758] 8021q: adding VLAN 0 to HW filter on device team0
[  448.060445][T14300] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.067557][T14300] bridge0: port 1(bridge_slave_0) entered forwarding state
[  448.076382][T14300] bridge0: port 2(bridge_slave_1) entered blocking state
[  448.083458][T14300] bridge0: port 2(bridge_slave_1) entered forwarding state
[  448.143091][T17758] 8021q: adding VLAN 0 to HW filter on device batadv0
[  448.203309][T17758] veth0_vlan: entered promiscuous mode
[  448.216202][T17758] veth1_vlan: entered promiscuous mode
[  448.231456][T17758] veth0_macvtap: entered promiscuous mode
[  448.239355][T17758] veth1_macvtap: entered promiscuous mode
[  448.249937][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.260527][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.270403][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.281175][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.291248][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.301835][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.311709][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.322144][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.329079][T17828] loop4: detected capacity change from 0 to 1024
[  448.331961][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.348745][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.358583][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.369094][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.381436][T17758] batman_adv: batadv0: Interface activated: batadv_slave_0
[  448.394389][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.404961][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.414850][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.425332][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.435279][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.445989][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.455893][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.466412][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.476312][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.486944][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.496769][T17758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.507365][T17758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.519472][T17758] batman_adv: batadv0: Interface activated: batadv_slave_1
[  448.534791][T17758] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  448.543573][T17758] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  448.552298][T17758] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  448.561035][T17758] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  448.632731][T17835] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  448.641751][T17835] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  449.785158][T17865] loop1: detected capacity change from 0 to 512
[  449.797047][T17865] ext4 filesystem being mounted at /147/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  450.078844][T17891] loop1: detected capacity change from 0 to 1024
[  450.357771][T17895] netlink: 256 bytes leftover after parsing attributes in process `syz.4.4324'.
[  450.625678][T17910] netlink: 'syz.4.4329': attribute type 29 has an invalid length.
[  450.633518][T17910] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4329'.
[  450.643576][T17910] netlink: 'syz.4.4329': attribute type 29 has an invalid length.
[  450.651410][T17910] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4329'.
[  450.663049][T17910] tipc: Started in network mode
[  450.667970][T17910] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  450.678424][T17910] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  450.686760][T17910] tipc: Enabled bearer <udp:syz1>, priority 10
[  450.822094][T17915] loop1: detected capacity change from 0 to 1024
[  450.829916][T17915] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  450.841121][T17915] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (30349!=20869)
[  450.851384][T17915] EXT4-fs (loop1): invalid journal inode
[  450.857107][T17915] EXT4-fs (loop1): can't get journal size
[  451.530246][T17931] FAULT_INJECTION: forcing a failure.
[  451.530246][T17931] name failslab, interval 1, probability 0, space 0, times 0
[  451.543197][T17931] CPU: 0 UID: 0 PID: 17931 Comm: syz.4.4337 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  451.555472][T17931] Tainted: [W]=WARN
[  451.559274][T17931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  451.569432][T17931] Call Trace:
[  451.572723][T17931]  <TASK>
[  451.575635][T17931]  dump_stack_lvl+0xf2/0x150
[  451.580317][T17931]  dump_stack+0x15/0x20
[  451.584611][T17931]  should_fail_ex+0x229/0x230
[  451.589289][T17931]  ? getname_flags+0x81/0x3b0
[  451.594037][T17931]  should_failslab+0x8f/0xb0
[  451.598713][T17931]  kmem_cache_alloc_noprof+0x4c/0x290
[  451.604132][T17931]  getname_flags+0x81/0x3b0
[  451.608621][T17931]  user_path_at+0x26/0x110
[  451.613017][T17931]  __se_sys_fspick+0x9f/0x260
[  451.617703][T17931]  __x64_sys_fspick+0x43/0x50
[  451.622390][T17931]  x64_sys_call+0x2386/0x2d60
[  451.627049][T17931]  do_syscall_64+0xc9/0x1c0
[  451.631532][T17931]  ? clear_bhb_loop+0x55/0xb0
[  451.636218][T17931]  ? clear_bhb_loop+0x55/0xb0
[  451.640889][T17931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.646835][T17931] RIP: 0033:0x7fd892c6def9
[  451.651305][T17931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.670932][T17931] RSP: 002b:00007fd8918e1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b1
[  451.679392][T17931] RAX: ffffffffffffffda RBX: 00007fd892e25f80 RCX: 00007fd892c6def9
[  451.687431][T17931] RDX: 0000000000000001 RSI: 0000000020000200 RDI: ffffffffffffffff
[  451.695461][T17931] RBP: 00007fd8918e1090 R08: 0000000000000000 R09: 0000000000000000
[  451.703448][T17931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  451.711448][T17931] R13: 0000000000000000 R14: 00007fd892e25f80 R15: 00007ffc7d594758
[  451.719403][T17931]  </TASK>
[  451.726649][    T9] tipc: Node number set to 1
[  451.837983][T17945] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  451.846212][T17945] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  451.946420][T17951] loop4: detected capacity change from 0 to 128
[  451.953038][T17951] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  451.965266][T17951] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  451.985811][   T40] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  452.042301][T17972] FAULT_INJECTION: forcing a failure.
[  452.042301][T17972] name failslab, interval 1, probability 0, space 0, times 0
[  452.055110][T17972] CPU: 0 UID: 0 PID: 17972 Comm: syz.1.4356 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  452.067354][T17972] Tainted: [W]=WARN
[  452.071197][T17972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  452.081286][T17972] Call Trace:
[  452.084562][T17972]  <TASK>
[  452.087493][T17972]  dump_stack_lvl+0xf2/0x150
[  452.092140][T17972]  dump_stack+0x15/0x20
[  452.096294][T17972]  should_fail_ex+0x229/0x230
[  452.100974][T17972]  ? getname_flags+0x81/0x3b0
[  452.105655][T17972]  should_failslab+0x8f/0xb0
[  452.110400][T17972]  kmem_cache_alloc_noprof+0x4c/0x290
[  452.115778][T17972]  getname_flags+0x81/0x3b0
[  452.120306][T17972]  getname+0x17/0x20
[  452.124207][T17972]  do_sys_openat2+0x67/0x120
[  452.128841][T17972]  __x64_sys_openat+0xf3/0x120
[  452.133661][T17972]  x64_sys_call+0x1025/0x2d60
[  452.138343][T17972]  do_syscall_64+0xc9/0x1c0
[  452.142846][T17972]  ? clear_bhb_loop+0x55/0xb0
[  452.147530][T17972]  ? clear_bhb_loop+0x55/0xb0
[  452.152204][T17972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.158102][T17972] RIP: 0033:0x7f5260f2c890
[  452.162508][T17972] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  452.182183][T17972] RSP: 002b:00007f525fba6b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  452.190597][T17972] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5260f2c890
[  452.198562][T17972] RDX: 0000000000000000 RSI: 00007f525fba6c10 RDI: 00000000ffffff9c
[  452.206596][T17972] RBP: 00007f525fba6c10 R08: 0000000000000000 R09: 0000000000000000
[  452.214636][T17972] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  452.222593][T17972] R13: 0000000000000000 R14: 00007f52610e5f80 R15: 00007ffebb42eb88
[  452.230691][T17972]  </TASK>
[  452.242028][   T29] kauditd_printk_skb: 103 callbacks suppressed
[  452.242041][   T29] audit: type=1326 audit(1725955672.269:5663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.4.4355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.271771][   T29] audit: type=1326 audit(1725955672.269:5664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.4.4355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.295788][   T29] audit: type=1326 audit(1725955672.269:5665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.4.4355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.296763][T17976] 9pnet_fd: Insufficient options for proto=fd
[  452.319356][   T29] audit: type=1326 audit(1725955672.269:5666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.4.4355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.349183][   T29] audit: type=1326 audit(1725955672.269:5667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.4.4355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.372760][   T29] audit: type=1326 audit(1725955672.269:5668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.4.4355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.396629][   T29] audit: type=1326 audit(1725955672.269:5669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17969 comm="syz.4.4355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.463666][T17987] loop1: detected capacity change from 0 to 512
[  452.475430][T17987] ext4 filesystem being mounted at /173/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  452.476571][T17989] loop4: detected capacity change from 0 to 128
[  452.492505][T17989] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  452.504508][T17989] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  452.521915][   T28] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  452.583078][T18001] loop4: detected capacity change from 0 to 512
[  452.584101][T18003] 9pnet_fd: Insufficient options for proto=fd
[  452.589900][T18001] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  452.607207][T18001] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec018, mo2=0002]
[  452.615153][T18001] System zones: 1-12
[  452.619737][T18001] EXT4-fs (loop4): 1 truncate cleaned up
[  452.629529][   T29] audit: type=1326 audit(1725955672.659:5670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.4367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.653198][   T29] audit: type=1326 audit(1725955672.659:5671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.4367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.676853][   T29] audit: type=1326 audit(1725955672.659:5672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.4367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7fd892c6def9 code=0x7ffc0000
[  452.703138][T16919] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  452.725010][T16919] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  452.745107][T16919] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  452.770096][T16919] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  452.790097][T16919] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  452.811907][T16919] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  452.831834][T16919] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  452.853713][T16919] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  452.873711][T16919] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  452.895564][T16919] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  453.228962][   T28] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  453.277137][   T28] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  453.327211][   T28] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  453.377023][   T28] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  453.398808][T18009] chnl_net:caif_netlink_parms(): no params data found
[  453.430582][T18009] bridge0: port 1(bridge_slave_0) entered blocking state
[  453.437827][T18009] bridge0: port 1(bridge_slave_0) entered disabled state
[  453.445937][T18009] bridge_slave_0: entered allmulticast mode
[  453.452335][T18009] bridge_slave_0: entered promiscuous mode
[  453.465612][T18009] bridge0: port 2(bridge_slave_1) entered blocking state
[  453.472692][T18009] bridge0: port 2(bridge_slave_1) entered disabled state
[  453.480833][T18009] bridge_slave_1: entered allmulticast mode
[  453.487513][T18009] bridge_slave_1: entered promiscuous mode
[  453.495935][T18026] 9pnet_fd: Insufficient options for proto=fd
[  453.504170][   T28] bridge_slave_1: left allmulticast mode
[  453.509810][   T28] bridge_slave_1: left promiscuous mode
[  453.515541][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  453.523127][   T28] bridge_slave_0: left allmulticast mode
[  453.528819][   T28] bridge_slave_0: left promiscuous mode
[  453.534551][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  453.686411][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  453.696912][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  453.706769][   T28] bond0 (unregistering): Released all slaves
[  453.720966][T18009] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  453.731328][T18009] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  453.741736][T18041] loop1: detected capacity change from 0 to 2048
[  453.753400][T18009] team0: Port device team_slave_0 added
[  453.760146][T18009] team0: Port device team_slave_1 added
[  453.765959][   T28] tipc: Disabling bearer <udp:syz1>
[  453.771196][   T28] tipc: Left network mode
[  453.783115][T18009] batman_adv: batadv0: Adding interface: batadv_slave_0
[  453.790309][T18009] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  453.816283][T18009] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  453.830345][T18009] batman_adv: batadv0: Adding interface: batadv_slave_1
[  453.837378][T18009] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  453.863376][T18009] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  453.879046][   T28] hsr_slave_0: left promiscuous mode
[  453.885042][   T28] hsr_slave_1: left promiscuous mode
[  453.890746][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  453.898205][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  453.906777][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  453.914250][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  453.923743][   T28] veth1_macvtap: left promiscuous mode
[  453.929263][   T28] veth0_macvtap: left promiscuous mode
[  453.934789][   T28] veth1_vlan: left promiscuous mode
[  453.940002][   T28] veth0_vlan: left promiscuous mode
[  454.016543][   T28] team0 (unregistering): Port device team_slave_1 removed
[  454.026969][   T28] team0 (unregistering): Port device team_slave_0 removed
[  454.066457][T18050] FAULT_INJECTION: forcing a failure.
[  454.066457][T18050] name failslab, interval 1, probability 0, space 0, times 0
[  454.079114][T18050] CPU: 1 UID: 0 PID: 18050 Comm: syz.1.4384 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  454.091338][T18050] Tainted: [W]=WARN
[  454.095121][T18050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  454.105177][T18050] Call Trace:
[  454.108436][T18050]  <TASK>
[  454.111427][T18050]  dump_stack_lvl+0xf2/0x150
[  454.116086][T18050]  dump_stack+0x15/0x20
[  454.120284][T18050]  should_fail_ex+0x229/0x230
[  454.124944][T18050]  ? __alloc_skb+0x10b/0x310
[  454.129568][T18050]  should_failslab+0x8f/0xb0
[  454.134151][T18050]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  454.139960][T18050]  __alloc_skb+0x10b/0x310
[  454.144442][T18050]  inet_netconf_notify_devconf+0x15a/0x210
[  454.150228][T18050]  inetdev_event+0x63d/0xb10
[  454.154868][T18050]  ? cfg802154_netdev_notifier_call+0xa8/0x560
[  454.161013][T18050]  ? __pfx_arp_netdev_event+0x10/0x10
[  454.166413][T18050]  ? __pfx_inetdev_event+0x10/0x10
[  454.171534][T18050]  raw_notifier_call_chain+0x6f/0x1d0
[  454.176915][T18050]  ? up_write+0x30/0xf0
[  454.181056][T18050]  ? mutex_is_locked+0xd/0x20
[  454.185721][T18050]  call_netdevice_notifiers_info+0xae/0x100
[  454.191672][T18050]  unregister_netdevice_many_notify+0x834/0x1110
[  454.198041][T18050]  ? _raw_spin_unlock+0x26/0x50
[  454.202898][T18050]  ? __mutex_lock+0x221/0x8e0
[  454.207559][T18050]  unregister_netdevice_queue+0x1f4/0x220
[  454.213271][T18050]  unregister_netdev+0x1c/0x30
[  454.218057][T18050]  slip_close+0xe5/0x100
[  454.222356][T18050]  ? __pfx_slip_close+0x10/0x10
[  454.227207][T18050]  tty_ldisc_close+0x77/0xa0
[  454.231803][T18050]  tty_set_ldisc+0x1e2/0x3b0
[  454.236398][T18050]  tiocsetd+0x52/0x60
[  454.240370][T18050]  tty_ioctl+0xaa0/0xbe0
[  454.244599][T18050]  ? __pfx_tty_ioctl+0x10/0x10
[  454.249397][T18050]  __se_sys_ioctl+0xd3/0x150
[  454.253972][T18050]  __x64_sys_ioctl+0x43/0x50
[  454.258544][T18050]  x64_sys_call+0x15cc/0x2d60
[  454.263209][T18050]  do_syscall_64+0xc9/0x1c0
[  454.267693][T18050]  ? clear_bhb_loop+0x55/0xb0
[  454.272353][T18050]  ? clear_bhb_loop+0x55/0xb0
[  454.277085][T18050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.282960][T18050] RIP: 0033:0x7f5260f2def9
[  454.287361][T18050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  454.307071][T18050] RSP: 002b:00007f525fb86038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  454.315472][T18050] RAX: ffffffffffffffda RBX: 00007f52610e6058 RCX: 00007f5260f2def9
[  454.323562][T18050] RDX: 0000000020000140 RSI: 0000000000005423 RDI: 0000000000000005
[  454.331575][T18050] RBP: 00007f525fb86090 R08: 0000000000000000 R09: 0000000000000000
[  454.339551][T18050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  454.347500][T18050] R13: 0000000000000001 R14: 00007f52610e6058 R15: 00007ffebb42eb88
[  454.355496][T18050]  </TASK>
[  454.375682][T18009] hsr_slave_0: entered promiscuous mode
[  454.381600][T18009] hsr_slave_1: entered promiscuous mode
[  454.387713][T18009] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  454.395273][T18009] Cannot create hsr debugfs directory
[  454.559320][T18060] loop1: detected capacity change from 0 to 1024
[  454.698189][T18009] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  454.708445][T18009] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  454.717710][T18009] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  454.726729][T18009] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  454.764738][T18009] 8021q: adding VLAN 0 to HW filter on device bond0
[  454.776832][T18009] 8021q: adding VLAN 0 to HW filter on device team0
[  454.789706][T14292] bridge0: port 1(bridge_slave_0) entered blocking state
[  454.796841][T14292] bridge0: port 1(bridge_slave_0) entered forwarding state
[  454.818698][T18009] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  454.829190][T18009] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  454.845464][T14292] bridge0: port 2(bridge_slave_1) entered blocking state
[  454.852604][T14292] bridge0: port 2(bridge_slave_1) entered forwarding state
[  454.919173][T18009] 8021q: adding VLAN 0 to HW filter on device batadv0
[  455.054357][T18009] veth0_vlan: entered promiscuous mode
[  455.062753][T18009] veth1_vlan: entered promiscuous mode
[  455.078097][T18009] veth0_macvtap: entered promiscuous mode
[  455.085432][T18009] veth1_macvtap: entered promiscuous mode
[  455.096485][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  455.106981][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.116877][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  455.127383][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.137243][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  455.147699][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.157578][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  455.168041][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.177873][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  455.188293][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.198125][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  455.208645][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.219419][T18009] batman_adv: batadv0: Interface activated: batadv_slave_0
[  455.230200][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  455.240674][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.250536][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  455.260983][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.270833][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  455.281260][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.291097][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  455.301537][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.311438][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  455.322010][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.331897][T18009] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  455.342413][T18009] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  455.355335][T18009] batman_adv: batadv0: Interface activated: batadv_slave_1
[  455.364477][T18009] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  455.373323][T18009] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  455.382186][T18009] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  455.390948][T18009] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  455.978976][T18106] loop1: detected capacity change from 0 to 1024
[  456.241828][T18111] chnl_net:caif_netlink_parms(): no params data found
[  456.287631][T14300] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.363342][T14300] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.402883][T18111] bridge0: port 1(bridge_slave_0) entered blocking state
[  456.410096][T18111] bridge0: port 1(bridge_slave_0) entered disabled state
[  456.443331][T18111] bridge_slave_0: entered allmulticast mode
[  456.465009][T18111] bridge_slave_0: entered promiscuous mode
[  456.473254][T18111] bridge0: port 2(bridge_slave_1) entered blocking state
[  456.480319][T18111] bridge0: port 2(bridge_slave_1) entered disabled state
[  456.503145][T18111] bridge_slave_1: entered allmulticast mode
[  456.516353][T18111] bridge_slave_1: entered promiscuous mode
[  456.532439][T14300] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.572175][T18111] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  456.594608][T18111] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  456.611702][T14300] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.658635][T18111] team0: Port device team_slave_0 added
[  456.670616][T18111] team0: Port device team_slave_1 added
[  456.720250][T18111] batman_adv: batadv0: Adding interface: batadv_slave_0
[  456.727247][T18111] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  456.753375][T18111] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  456.764861][T18111] batman_adv: batadv0: Adding interface: batadv_slave_1
[  456.771951][T18111] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  456.797950][T18111] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  456.835686][T14300] bridge_slave_1: left allmulticast mode
[  456.841359][T14300] bridge_slave_1: left promiscuous mode
[  456.846989][T14300] bridge0: port 2(bridge_slave_1) entered disabled state
[  456.865387][T14300] bridge_slave_0: left allmulticast mode
[  456.871037][T14300] bridge_slave_0: left promiscuous mode
[  456.876826][T14300] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.019157][T14300] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  457.031014][T14300] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  457.041813][T14300] bond0 (unregistering): Released all slaves
[  457.055787][T18111] hsr_slave_0: entered promiscuous mode
[  457.062063][T18111] hsr_slave_1: entered promiscuous mode
[  457.070983][T18111] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  457.078599][T18111] Cannot create hsr debugfs directory
[  457.117142][T18147] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  457.126122][T18147] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  457.138621][T14300] hsr_slave_0: left promiscuous mode
[  457.146205][T14300] hsr_slave_1: left promiscuous mode
[  457.151924][T14300] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  457.159540][T14300] batman_adv: batadv0: Removing interface: batadv_slave_0
[  457.167562][T14300] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  457.175026][T14300] batman_adv: batadv0: Removing interface: batadv_slave_1
[  457.185096][T14300] veth1_macvtap: left promiscuous mode
[  457.190620][T14300] veth0_macvtap: left promiscuous mode
[  457.196241][T14300] veth1_vlan: left promiscuous mode
[  457.201525][T14300] veth0_vlan: left promiscuous mode
[  457.299210][T14300] team0 (unregistering): Port device team_slave_1 removed
[  457.312761][T14300] team0 (unregistering): Port device team_slave_0 removed
[  457.389155][T18155] loop4: detected capacity change from 0 to 1024
[  457.396237][T18155] EXT4-fs: Mount option(s) incompatible with ext2
[  457.469030][   T29] kauditd_printk_skb: 56 callbacks suppressed
[  457.469045][   T29] audit: type=1326 audit(1725955677.499:5729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.501483][   T29] audit: type=1326 audit(1725955677.499:5730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.525062][   T29] audit: type=1326 audit(1725955677.499:5731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.548566][   T29] audit: type=1326 audit(1725955677.499:5732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.572236][   T29] audit: type=1326 audit(1725955677.499:5733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.595829][   T29] audit: type=1326 audit(1725955677.499:5734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.619374][   T29] audit: type=1326 audit(1725955677.499:5735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.642900][   T29] audit: type=1326 audit(1725955677.499:5736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.666368][   T29] audit: type=1326 audit(1725955677.499:5737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.689960][   T29] audit: type=1326 audit(1725955677.499:5738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18154 comm="syz.4.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  457.711535][T18162] loop4: detected capacity change from 0 to 2048
[  457.922025][T18111] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  457.939414][T18111] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  457.951319][T18111] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  457.963650][T18111] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  458.006549][T18111] 8021q: adding VLAN 0 to HW filter on device bond0
[  458.020613][T18111] 8021q: adding VLAN 0 to HW filter on device team0
[  458.030673][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[  458.037836][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[  458.050865][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[  458.057941][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[  458.133075][T18111] 8021q: adding VLAN 0 to HW filter on device batadv0
[  458.211157][T18111] veth0_vlan: entered promiscuous mode
[  458.220713][T18111] veth1_vlan: entered promiscuous mode
[  458.233700][T18111] veth0_macvtap: entered promiscuous mode
[  458.241172][T18111] veth1_macvtap: entered promiscuous mode
[  458.255448][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.265909][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.275809][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.286247][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.292802][T18194] loop4: detected capacity change from 0 to 2048
[  458.296059][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.312941][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.322769][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.333278][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.343135][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.353594][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.363440][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.373865][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.385656][T18111] batman_adv: batadv0: Interface activated: batadv_slave_0
[  458.396376][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.407003][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.416928][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.427609][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.437695][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.448180][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.458011][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.468459][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.478305][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.488778][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.498582][T18111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.508993][T18111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.520463][T18111] batman_adv: batadv0: Interface activated: batadv_slave_1
[  458.530196][T18111] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  458.539015][T18111] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  458.547701][T18111] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  458.556482][T18111] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  458.590572][T18199] loop4: detected capacity change from 0 to 2048
[  458.704707][T18214] loop4: detected capacity change from 0 to 512
[  458.740374][T18214] ext4 filesystem being mounted at /30/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  458.868807][T14292] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.922233][T14292] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.940854][T18215] chnl_net:caif_netlink_parms(): no params data found
[  459.012042][T14292] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.023669][T18215] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.030808][T18215] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.039609][T18215] bridge_slave_0: entered allmulticast mode
[  459.046705][T18215] bridge_slave_0: entered promiscuous mode
[  459.055390][T18227] chnl_net:caif_netlink_parms(): no params data found
[  459.070514][T14292] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.082217][T18215] bridge0: port 2(bridge_slave_1) entered blocking state
[  459.089422][T18215] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.098469][T18215] bridge_slave_1: entered allmulticast mode
[  459.104947][T18215] bridge_slave_1: entered promiscuous mode
[  459.131092][T18215] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  459.163419][T18215] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  459.210343][T18215] team0: Port device team_slave_0 added
[  459.217197][T18215] team0: Port device team_slave_1 added
[  459.225222][T18227] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.232419][T18227] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.242628][T18227] bridge_slave_0: entered allmulticast mode
[  459.249626][T18227] bridge_slave_0: entered promiscuous mode
[  459.258301][T18227] bridge0: port 2(bridge_slave_1) entered blocking state
[  459.265479][T18227] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.272897][T18227] bridge_slave_1: entered allmulticast mode
[  459.281088][T18227] bridge_slave_1: entered promiscuous mode
[  459.310295][T14292] bridge_slave_1: left allmulticast mode
[  459.313055][T18268] loop0: detected capacity change from 0 to 2048
[  459.316072][T14292] bridge_slave_1: left promiscuous mode
[  459.328054][T14292] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.337017][T14292] bridge_slave_0: left allmulticast mode
[  459.342653][T14292] bridge_slave_0: left promiscuous mode
[  459.348361][T14292] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.477994][T14292] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  459.489393][T14292] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  459.517093][T14292] bond0 (unregistering): Released all slaves
[  459.525906][T18215] batman_adv: batadv0: Adding interface: batadv_slave_0
[  459.532870][T18215] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  459.558876][T18215] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  459.574661][T18215] batman_adv: batadv0: Adding interface: batadv_slave_1
[  459.581620][T18215] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  459.607608][T18215] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  459.626784][T18227] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  459.651606][T18227] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  459.666471][T14292] hsr_slave_0: left promiscuous mode
[  459.672079][T14292] hsr_slave_1: left promiscuous mode
[  459.678328][T14292] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  459.685734][T14292] batman_adv: batadv0: Removing interface: batadv_slave_0
[  459.693348][T14292] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  459.701102][T14292] batman_adv: batadv0: Removing interface: batadv_slave_1
[  459.716290][T14292] veth1_macvtap: left promiscuous mode
[  459.721799][T14292] veth0_macvtap: left promiscuous mode
[  459.727422][T14292] veth1_vlan: left promiscuous mode
[  459.732633][T14292] veth0_vlan: left promiscuous mode
[  459.829954][T14292] team0 (unregistering): Port device team_slave_1 removed
[  459.841749][T14292] team0 (unregistering): Port device team_slave_0 removed
[  459.898653][T18281] netlink: 'syz.4.4447': attribute type 10 has an invalid length.
[  459.917918][T18281] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  459.949292][T18227] team0: Port device team_slave_0 added
[  459.959089][T18227] team0: Port device team_slave_1 added
[  459.968107][T18215] hsr_slave_0: entered promiscuous mode
[  459.983734][T18291] loop4: detected capacity change from 0 to 1024
[  459.990976][T18215] hsr_slave_1: entered promiscuous mode
[  459.994600][T18293] loop0: detected capacity change from 0 to 2048
[  459.997432][T18291] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  460.011567][T18215] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  460.012523][T18291] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  460.019247][T18215] Cannot create hsr debugfs directory
[  460.030015][T18291] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[  460.045447][T18291] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  460.060138][T18291] journal_load_superblock: Cannot read journal superblock
[  460.067382][T18291] EXT4-fs (loop4): Could not load journal inode
[  460.080679][T18227] batman_adv: batadv0: Adding interface: batadv_slave_0
[  460.087664][T18227] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.113610][T18227] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  460.126751][T18227] batman_adv: batadv0: Adding interface: batadv_slave_1
[  460.133736][T18227] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.159806][T18227] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  460.182351][T18298] loop0: detected capacity change from 0 to 2048
[  460.216750][T18227] hsr_slave_0: entered promiscuous mode
[  460.222747][T18227] hsr_slave_1: entered promiscuous mode
[  460.228910][T18227] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  460.237258][T18227] Cannot create hsr debugfs directory
[  460.493831][T14292] bridge_slave_1: left allmulticast mode
[  460.499506][T14292] bridge_slave_1: left promiscuous mode
[  460.505383][T14292] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.513729][T14292] bridge_slave_0: left allmulticast mode
[  460.519402][T14292] bridge_slave_0: left promiscuous mode
[  460.525295][T14292] bridge0: port 1(bridge_slave_0) entered disabled state
[  460.616644][T14292] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  460.628501][T14292] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  460.639720][T14292] bond0 (unregistering): Released all slaves
[  460.667129][T18215] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  460.693236][T18227] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  460.703643][T18227] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.727189][T18215] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  460.737763][T14292] hsr_slave_0: left promiscuous mode
[  460.743393][T14292] hsr_slave_1: left promiscuous mode
[  460.751030][T14292] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  460.758766][T14292] batman_adv: batadv0: Removing interface: batadv_slave_0
[  460.768777][T14292] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  460.776367][T14292] batman_adv: batadv0: Removing interface: batadv_slave_1
[  460.786956][T14292] veth1_macvtap: left promiscuous mode
[  460.792508][T14292] veth0_macvtap: left promiscuous mode
[  460.798044][T14292] veth1_vlan: left promiscuous mode
[  460.803287][T14292] veth0_vlan: left promiscuous mode
[  460.898517][T14292] team0 (unregistering): Port device team_slave_1 removed
[  460.910594][T14292] team0 (unregistering): Port device team_slave_0 removed
[  460.954368][T18215] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  460.977253][T18227] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  460.987581][T18227] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  461.001288][T18215] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  461.042498][T18215] 8021q: adding VLAN 0 to HW filter on device bond0
[  461.068247][T18215] 8021q: adding VLAN 0 to HW filter on device team0
[  461.080553][T14289] bridge0: port 1(bridge_slave_0) entered blocking state
[  461.087686][T14289] bridge0: port 1(bridge_slave_0) entered forwarding state
[  461.113248][T18215] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  461.123714][T18215] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  461.148353][T18227] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  461.158746][T18227] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  461.169494][T18321] nfs: Unknown parameter ''
[  461.205997][T18327] loop4: detected capacity change from 0 to 1024
[  461.215113][T14289] bridge0: port 2(bridge_slave_1) entered blocking state
[  461.222286][T14289] bridge0: port 2(bridge_slave_1) entered forwarding state
[  461.232307][T18327] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  461.249007][T18327] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  461.259954][T18327] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[  461.297004][T18227] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  461.307369][T18227] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  461.324766][T18327] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  461.345245][T18327] journal_load_superblock: Cannot read journal superblock
[  461.352408][T18327] EXT4-fs (loop4): Could not load journal inode
[  461.385475][T18215] 8021q: adding VLAN 0 to HW filter on device batadv0
[  461.476596][T18227] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  461.488548][T18215] veth0_vlan: entered promiscuous mode
[  461.498373][T18227] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  461.511755][T18215] veth1_vlan: entered promiscuous mode
[  461.518124][T18227] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  461.548285][T18227] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  461.558522][T18215] veth0_macvtap: entered promiscuous mode
[  461.569820][T18215] veth1_macvtap: entered promiscuous mode
[  461.595604][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.606119][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.615999][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.626593][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.636512][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.646936][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.656760][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.667295][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.677188][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.687674][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.703179][T18215] batman_adv: batadv0: Interface activated: batadv_slave_0
[  461.739594][T18227] 8021q: adding VLAN 0 to HW filter on device bond0
[  461.750274][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.760898][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.770724][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.781162][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.791135][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.801596][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.811536][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.821990][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.831825][T18215] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.842245][T18215] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.857106][T18215] batman_adv: batadv0: Interface activated: batadv_slave_1
[  461.870240][T18227] 8021q: adding VLAN 0 to HW filter on device team0
[  461.890568][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  461.897693][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  461.908277][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  461.915362][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  461.929108][T18215] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  461.937892][T18215] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  461.946677][T18215] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  461.955495][T18215] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  462.022846][T18227] 8021q: adding VLAN 0 to HW filter on device batadv0
[  462.163664][T18227] veth0_vlan: entered promiscuous mode
[  462.190366][T18227] veth1_vlan: entered promiscuous mode
[  462.222341][T18356] loop2: detected capacity change from 0 to 1024
[  462.234837][T18227] veth0_macvtap: entered promiscuous mode
[  462.254780][T18227] veth1_macvtap: entered promiscuous mode
[  462.261307][T18356] EXT4-fs: Mount option(s) incompatible with ext2
[  462.275230][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  462.285867][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.298028][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  462.309174][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.319040][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  462.329515][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.339475][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  462.349898][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.359875][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  462.370383][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.380195][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  462.390735][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.402861][T18227] batman_adv: batadv0: Interface activated: batadv_slave_0
[  462.411115][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.421583][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.431411][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.442002][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.451890][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.462475][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.472333][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.482761][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.492701][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.503207][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.513090][T18227] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.523792][T18227] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.535056][T18227] batman_adv: batadv0: Interface activated: batadv_slave_1
[  462.549039][   T29] kauditd_printk_skb: 32 callbacks suppressed
[  462.549052][   T29] audit: type=1326 audit(1725955682.579:5771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18353 comm="syz.4.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  462.550420][T18227] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  462.573810][   T29] audit: type=1326 audit(1725955682.589:5772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18353 comm="syz.4.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=84 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  462.578676][T18227] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  462.587297][   T29] audit: type=1326 audit(1725955682.589:5773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18353 comm="syz.4.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba0878def9 code=0x7ffc0000
[  462.610633][T18227] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  462.619468][   T29] audit: type=1326 audit(1725955682.589:5774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18355 comm="syz.2.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa07fdadef9 code=0x7ffc0000
[  462.642884][T18227] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  462.651540][   T29] audit: type=1326 audit(1725955682.589:5775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18355 comm="syz.2.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa07fdadef9 code=0x7ffc0000
[  462.707231][   T29] audit: type=1326 audit(1725955682.589:5776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18355 comm="syz.2.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa07fdadef9 code=0x7ffc0000
[  462.730816][   T29] audit: type=1326 audit(1725955682.589:5777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18355 comm="syz.2.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa07fdadef9 code=0x7ffc0000
[  462.754419][   T29] audit: type=1326 audit(1725955682.589:5778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18355 comm="syz.2.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa07fdadef9 code=0x7ffc0000
[  462.756904][T18361] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=30768 sclass=netlink_route_socket pid=18361 comm=syz.0.4465
[  462.777889][   T29] audit: type=1326 audit(1725955682.589:5779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18355 comm="syz.2.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa07fdadef9 code=0x7ffc0000
[  462.777916][   T29] audit: type=1326 audit(1725955682.589:5780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18355 comm="syz.2.4468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa07fdadef9 code=0x7ffc0000
[  462.908009][T18370] loop3: detected capacity change from 0 to 1024
[  462.914913][T18370] EXT4-fs: Ignoring removed i_version option
[  462.945040][T18360] loop0: detected capacity change from 0 to 2048
[  463.028637][T18360] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  463.099535][T18385] loop0: detected capacity change from 0 to 256
[  463.461605][T18396] loop0: detected capacity change from 0 to 1024
[  463.468428][T18396] EXT4-fs: Ignoring removed nomblk_io_submit option
[  463.475697][T18396] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  463.485848][T18396] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c09c, mo2=0003]
[  463.494182][T18396] System zones: 0-1, 3-36
[  463.737339][T18399] FAULT_INJECTION: forcing a failure.
[  463.737339][T18399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  463.750458][T18399] CPU: 0 UID: 0 PID: 18399 Comm: syz.2.4481 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  463.762698][T18399] Tainted: [W]=WARN
[  463.766479][T18399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  463.776572][T18399] Call Trace:
[  463.779851][T18399]  <TASK>
[  463.782796][T18399]  dump_stack_lvl+0xf2/0x150
[  463.787445][T18399]  dump_stack+0x15/0x20
[  463.791629][T18399]  should_fail_ex+0x229/0x230
[  463.796365][T18399]  should_fail+0xb/0x10
[  463.800542][T18399]  should_fail_usercopy+0x1a/0x20
[  463.805555][T18399]  _copy_to_user+0x1e/0xa0
[  463.809960][T18399]  simple_read_from_buffer+0xa0/0x110
[  463.815429][T18399]  proc_fail_nth_read+0xff/0x140
[  463.820436][T18399]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  463.826018][T18399]  vfs_read+0x1a2/0x6e0
[  463.830191][T18399]  ? __rcu_read_unlock+0x4e/0x70
[  463.835212][T18399]  ? __fget_files+0x1da/0x210
[  463.839882][T18399]  ksys_read+0xeb/0x1b0
[  463.844095][T18399]  __x64_sys_read+0x42/0x50
[  463.848606][T18399]  x64_sys_call+0x27d3/0x2d60
[  463.853275][T18399]  do_syscall_64+0xc9/0x1c0
[  463.857807][T18399]  ? clear_bhb_loop+0x55/0xb0
[  463.862479][T18399]  ? clear_bhb_loop+0x55/0xb0
[  463.867139][T18399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  463.873124][T18399] RIP: 0033:0x7fa07fdac93c
[  463.877530][T18399] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  463.897160][T18399] RSP: 002b:00007fa07ea27030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  463.905559][T18399] RAX: ffffffffffffffda RBX: 00007fa07ff65f80 RCX: 00007fa07fdac93c
[  463.913577][T18399] RDX: 000000000000000f RSI: 00007fa07ea270a0 RDI: 0000000000000004
[  463.921535][T18399] RBP: 00007fa07ea27090 R08: 0000000000000000 R09: 0000000000000000
[  463.929493][T18399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  463.937497][T18399] R13: 0000000000000000 R14: 00007fa07ff65f80 R15: 00007ffddfbd4f38
[  463.945472][T18399]  </TASK>
[  463.995442][T18405] loop2: detected capacity change from 0 to 2048
[  464.423170][T18434] loop2: detected capacity change from 0 to 2048
[  464.496689][T18432] loop0: detected capacity change from 0 to 2048
[  464.679416][T18437] loop0: detected capacity change from 0 to 2048
[  464.706755][T18437] EXT4-fs mount: 61 callbacks suppressed
[  464.706826][T18437] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  464.760116][T18111] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  464.849622][T18449] loop2: detected capacity change from 0 to 1024
[  464.877641][T18449] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.248283][T18479] loop0: detected capacity change from 0 to 1024
[  465.255146][T18479] EXT4-fs: Ignoring removed nomblk_io_submit option
[  465.262041][T18479] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  465.271752][T18479] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c09c, mo2=0003]
[  465.279932][T18479] System zones: 0-1, 3-36
[  465.285309][T18479] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.581124][T18215] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.016213][T18111] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.312141][T18502] FAULT_INJECTION: forcing a failure.
[  466.312141][T18502] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  466.325461][T18502] CPU: 1 UID: 0 PID: 18502 Comm: syz.0.4524 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  466.337789][T18502] Tainted: [W]=WARN
[  466.341576][T18502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  466.351651][T18502] Call Trace:
[  466.354920][T18502]  <TASK>
[  466.357861][T18502]  dump_stack_lvl+0xf2/0x150
[  466.362470][T18502]  dump_stack+0x15/0x20
[  466.366630][T18502]  should_fail_ex+0x229/0x230
[  466.371381][T18502]  should_fail_alloc_page+0xfd/0x110
[  466.376691][T18502]  __alloc_pages_noprof+0x109/0x360
[  466.381996][T18502]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  466.387357][T18502]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  466.392713][T18502]  handle_mm_fault+0xdca/0x2a30
[  466.397577][T18502]  exc_page_fault+0x3b9/0x650
[  466.402242][T18502]  asm_exc_page_fault+0x26/0x30
[  466.407099][T18502] RIP: 0033:0x7f865b6cb22b
[  466.411497][T18502] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[  466.431211][T18502] RSP: 002b:00007f865a38ee10 EFLAGS: 00010246
[  466.437393][T18502] RAX: 00007f865a390f30 RBX: 00007f865b8aa620 RCX: 0000000000000000
[  466.445362][T18502] RDX: 00007f865a390f78 RSI: 00007f865b77c900 RDI: 00007f865a38ee30
[  466.453335][T18502] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  466.461405][T18502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  466.469472][T18502] R13: 0000000000000000 R14: 00007f865b8d5f80 R15: 00007ffdf0d4bbc8
[  466.477490][T18502]  </TASK>
[  466.480700][T18502] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  466.515857][T18504] loop0: detected capacity change from 0 to 164
[  466.618609][T18518] loop0: detected capacity change from 0 to 2048
[  466.635350][T18518] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  466.651100][T18518] FAULT_INJECTION: forcing a failure.
[  466.651100][T18518] name failslab, interval 1, probability 0, space 0, times 0
[  466.663840][T18518] CPU: 0 UID: 0 PID: 18518 Comm: syz.0.4532 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  466.665775][T18523] loop2: detected capacity change from 0 to 2048
[  466.676121][T18518] Tainted: [W]=WARN
[  466.676130][T18518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  466.676141][T18518] Call Trace:
[  466.676149][T18518]  <TASK>
[  466.676225][T18518]  dump_stack_lvl+0xf2/0x150
[  466.676253][T18518]  dump_stack+0x15/0x20
[  466.676271][T18518]  should_fail_ex+0x229/0x230
[  466.716298][T18518]  ? __iomap_dio_rw+0x14e/0x1090
[  466.721242][T18518]  should_failslab+0x8f/0xb0
[  466.725890][T18518]  __kmalloc_cache_noprof+0x4b/0x2a0
[  466.731174][T18518]  __iomap_dio_rw+0x14e/0x1090
[  466.735934][T18518]  ? __rcu_read_unlock+0x4e/0x70
[  466.740920][T18518]  ? avc_has_perm+0xd4/0x160
[  466.745770][T18518]  iomap_dio_rw+0x40/0x90
[  466.750097][T18518]  ext4_file_write_iter+0xaa4/0xe30
[  466.755300][T18518]  ? ext4_file_write_iter+0x511/0xe30
[  466.760662][T18518]  do_iter_readv_writev+0x3b0/0x470
[  466.765858][T18518]  vfs_writev+0x2e0/0x880
[  466.770183][T18518]  __se_sys_pwritev2+0x10c/0x1d0
[  466.775114][T18518]  __x64_sys_pwritev2+0x78/0x90
[  466.780004][T18518]  x64_sys_call+0x271f/0x2d60
[  466.784694][T18518]  do_syscall_64+0xc9/0x1c0
[  466.789330][T18518]  ? clear_bhb_loop+0x55/0xb0
[  466.794004][T18518]  ? clear_bhb_loop+0x55/0xb0
[  466.798671][T18518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  466.804628][T18518] RIP: 0033:0x7f865b71def9
[  466.809088][T18518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  466.828689][T18518] RSP: 002b:00007f865a391038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[  466.837093][T18518] RAX: ffffffffffffffda RBX: 00007f865b8d5f80 RCX: 00007f865b71def9
[  466.845135][T18518] RDX: 0000000000000001 RSI: 0000000020000240 RDI: 0000000000000008
[  466.853095][T18518] RBP: 00007f865a391090 R08: 0000000000000000 R09: 0000000000000003
[  466.861051][T18518] R10: 0000000000002000 R11: 0000000000000246 R12: 0000000000000001
[  466.869010][T18518] R13: 0000000000000000 R14: 00007f865b8d5f80 R15: 00007ffdf0d4bbc8
[  466.876974][T18518]  </TASK>
[  466.886819][T18227] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.897234][T18111] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.897749][T18523] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  466.933196][   T28] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  466.962004][T18215] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.068505][T18551] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=30768 sclass=netlink_route_socket pid=18551 comm=syz.0.4543
[  467.130111][T18531] chnl_net:caif_netlink_parms(): no params data found
[  467.214191][T18575] FAULT_INJECTION: forcing a failure.
[  467.214191][T18575] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  467.227403][T18575] CPU: 1 UID: 0 PID: 18575 Comm: syz.0.4551 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  467.239671][T18575] Tainted: [W]=WARN
[  467.243460][T18575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  467.253573][T18575] Call Trace:
[  467.256842][T18575]  <TASK>
[  467.259760][T18575]  dump_stack_lvl+0xf2/0x150
[  467.264343][T18575]  dump_stack+0x15/0x20
[  467.268523][T18575]  should_fail_ex+0x229/0x230
[  467.273244][T18575]  should_fail+0xb/0x10
[  467.277481][T18575]  should_fail_usercopy+0x1a/0x20
[  467.282535][T18575]  _copy_from_user+0x1e/0xd0
[  467.287205][T18575]  __sys_bpf+0x14e/0x7a0
[  467.291444][T18575]  __x64_sys_bpf+0x43/0x50
[  467.295857][T18575]  x64_sys_call+0x2625/0x2d60
[  467.300529][T18575]  do_syscall_64+0xc9/0x1c0
[  467.305089][T18575]  ? clear_bhb_loop+0x55/0xb0
[  467.309750][T18575]  ? clear_bhb_loop+0x55/0xb0
[  467.314442][T18575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  467.320379][T18575] RIP: 0033:0x7f865b71def9
[  467.324839][T18575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  467.344465][T18575] RSP: 002b:00007f865a391038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  467.352865][T18575] RAX: ffffffffffffffda RBX: 00007f865b8d5f80 RCX: 00007f865b71def9
[  467.360823][T18575] RDX: 0000000000000094 RSI: 0000000020000140 RDI: 0000000000000005
[  467.368778][T18575] RBP: 00007f865a391090 R08: 0000000000000000 R09: 0000000000000000
[  467.376737][T18575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  467.384734][T18575] R13: 0000000000000000 R14: 00007f865b8d5f80 R15: 00007ffdf0d4bbc8
[  467.392702][T18575]  </TASK>
[  467.430468][T18531] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.437743][T18531] bridge0: port 1(bridge_slave_0) entered disabled state
[  467.471568][T18531] bridge_slave_0: entered allmulticast mode
[  467.481104][T18531] bridge_slave_0: entered promiscuous mode
[  467.488475][T18531] bridge0: port 2(bridge_slave_1) entered blocking state
[  467.495647][T18531] bridge0: port 2(bridge_slave_1) entered disabled state
[  467.502983][T18531] bridge_slave_1: entered allmulticast mode
[  467.511193][T18531] bridge_slave_1: entered promiscuous mode
[  467.531886][T18589] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  467.543886][T18531] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  467.553071][T18589] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  467.565644][T18531] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  467.586352][T18531] team0: Port device team_slave_0 added
[  467.593037][T18531] team0: Port device team_slave_1 added
[  467.615510][T18531] batman_adv: batadv0: Adding interface: batadv_slave_0
[  467.622509][T18531] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  467.648597][T18531] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  467.667966][T18531] batman_adv: batadv0: Adding interface: batadv_slave_1
[  467.675033][T18531] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  467.700941][T18531] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  467.730517][T18531] hsr_slave_0: entered promiscuous mode
[  467.736714][T18531] hsr_slave_1: entered promiscuous mode
[  467.742631][T18531] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  467.750332][T18531] Cannot create hsr debugfs directory
[  467.755834][T18564] chnl_net:caif_netlink_parms(): no params data found
[  467.800724][T18564] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.807946][T18564] bridge0: port 1(bridge_slave_0) entered disabled state
[  467.815238][T18564] bridge_slave_0: entered allmulticast mode
[  467.821643][T18564] bridge_slave_0: entered promiscuous mode
[  467.830608][T18564] bridge0: port 2(bridge_slave_1) entered blocking state
[  467.837670][T18564] bridge0: port 2(bridge_slave_1) entered disabled state
[  467.844909][T18564] bridge_slave_1: entered allmulticast mode
[  467.851394][T18564] bridge_slave_1: entered promiscuous mode
[  467.877975][T18564] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  467.894959][T18564] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  467.918092][T18564] team0: Port device team_slave_0 added
[  467.926832][T18564] team0: Port device team_slave_1 added
[  467.941237][T18564] batman_adv: batadv0: Adding interface: batadv_slave_0
[  467.948324][T18564] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  467.974494][T18564] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  467.985794][T18564] batman_adv: batadv0: Adding interface: batadv_slave_1
[  467.992780][T18564] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  468.018751][T18564] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  468.049618][T18564] hsr_slave_0: entered promiscuous mode
[  468.055972][T18564] hsr_slave_1: entered promiscuous mode
[  468.061804][T18564] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  468.069372][T18564] Cannot create hsr debugfs directory
[  468.362309][T18606] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=30768 sclass=netlink_route_socket pid=18606 comm=syz.2.4559
[  469.290731][T18613] loop2: detected capacity change from 0 to 512
[  469.299642][T18613] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  469.312016][T18613] EXT4-fs (loop2): orphan cleanup on readonly fs
[  469.319430][T18613] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4562: bg 0: block 248: padding at end of block bitmap is not set
[  469.335616][T18613] __quota_error: 70 callbacks suppressed
[  469.335627][T18613] Quota error (device loop2): write_blk: dquota write failed
[  469.348660][T18613] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  469.358652][T18613] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.4562: Failed to acquire dquot type 1
[  469.372247][T18613] EXT4-fs (loop2): 1 truncate cleaned up
[  469.378676][T18613] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  469.399377][   T29] audit: type=1400 audit(1725955689.429:5851): avc:  denied  { remount } for  pid=18611 comm="syz.2.4562" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  469.403906][T18613] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  469.427562][T18613] EXT4-fs error (device loop2): __ext4_remount:6491: comm syz.2.4562: Abort forced by user
[  469.437712][T18613] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  469.456309][   T28] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.464098][T18613] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  469.477082][T18613] ext4 filesystem being remounted at /41/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  469.493445][T18612] Quota error (device loop2): write_blk: dquota write failed
[  469.501053][T18612] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  469.511020][T18612] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.4562: Failed to acquire dquot type 1
[  469.527702][   T28] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.539138][T18215] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.582718][T18619] loop2: detected capacity change from 0 to 512
[  469.591570][   T28] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.605118][T18619] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  469.617712][T18619] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  469.647213][   T28] bridge_slave_1: left allmulticast mode
[  469.652861][   T28] bridge_slave_1: left promiscuous mode
[  469.658542][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  469.668347][   T28] bridge_slave_0: left allmulticast mode
[  469.674055][   T28] bridge_slave_0: left promiscuous mode
[  469.679629][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  469.687965][T18215] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.726850][T18625] loop2: detected capacity change from 0 to 1024
[  469.733583][T18625] EXT4-fs: Ignoring removed i_version option
[  469.755624][T18625] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  469.806442][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  469.818231][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  469.828905][   T28] bond0 (unregistering): Released all slaves
[  469.976929][   T28] hsr_slave_0: left promiscuous mode
[  469.982620][   T28] hsr_slave_1: left promiscuous mode
[  469.988557][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  469.996063][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  470.003577][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  470.011012][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  470.020351][   T28] veth1_macvtap: left promiscuous mode
[  470.025977][   T28] veth0_macvtap: left promiscuous mode
[  470.031453][   T28] veth1_vlan: left promiscuous mode
[  470.037249][   T28] veth0_vlan: left promiscuous mode
[  470.040456][T18215] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.137536][   T28] team0 (unregistering): Port device team_slave_1 removed
[  470.147732][   T28] team0 (unregistering): Port device team_slave_0 removed
[  470.274005][T18564] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.284903][T18531] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  470.295443][T18531] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  470.303796][T18629] chnl_net:caif_netlink_parms(): no params data found
[  470.312224][T18531] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  470.325202][T18564] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.337717][T18531] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  470.369395][T18629] bridge0: port 1(bridge_slave_0) entered blocking state
[  470.376484][T18629] bridge0: port 1(bridge_slave_0) entered disabled state
[  470.383583][T18629] bridge_slave_0: entered allmulticast mode
[  470.390161][T18629] bridge_slave_0: entered promiscuous mode
[  470.397125][T18629] bridge0: port 2(bridge_slave_1) entered blocking state
[  470.404203][T18629] bridge0: port 2(bridge_slave_1) entered disabled state
[  470.411429][T18629] bridge_slave_1: entered allmulticast mode
[  470.418158][T18629] bridge_slave_1: entered promiscuous mode
[  470.427325][T18564] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.451224][T18629] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  470.462231][T18629] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  470.481034][T18629] team0: Port device team_slave_0 added
[  470.489851][T18629] team0: Port device team_slave_1 added
[  470.520366][T18629] batman_adv: batadv0: Adding interface: batadv_slave_0
[  470.527409][T18629] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  470.553508][T18629] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  470.565305][T18629] batman_adv: batadv0: Adding interface: batadv_slave_1
[  470.572298][T18629] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  470.598357][T18629] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  470.613327][T18564] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.641762][T18629] hsr_slave_0: entered promiscuous mode
[  470.647965][T18629] hsr_slave_1: entered promiscuous mode
[  470.653994][T18629] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  470.661535][T18629] Cannot create hsr debugfs directory
[  470.669778][T18531] 8021q: adding VLAN 0 to HW filter on device bond0
[  470.687240][   T28] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.710968][T18531] 8021q: adding VLAN 0 to HW filter on device team0
[  470.734146][T14292] bridge0: port 1(bridge_slave_0) entered blocking state
[  470.741289][T14292] bridge0: port 1(bridge_slave_0) entered forwarding state
[  470.749659][T18564] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  470.760851][   T28] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.779326][T18564] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  470.788188][T18564] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  470.800220][T14300] bridge0: port 2(bridge_slave_1) entered blocking state
[  470.807290][T14300] bridge0: port 2(bridge_slave_1) entered forwarding state
[  470.815838][T18564] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  470.836836][   T28] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.888275][   T28] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.916642][T18564] 8021q: adding VLAN 0 to HW filter on device bond0
[  470.931351][T18564] 8021q: adding VLAN 0 to HW filter on device team0
[  470.941944][T18531] 8021q: adding VLAN 0 to HW filter on device batadv0
[  470.952146][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[  470.959286][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[  470.967848][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[  470.974976][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[  471.017587][T18564] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  471.029489][   T28] bridge_slave_1: left allmulticast mode
[  471.035292][   T28] bridge_slave_1: left promiscuous mode
[  471.041029][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.050067][   T28] bridge_slave_0: left allmulticast mode
[  471.055793][   T28] bridge_slave_0: left promiscuous mode
[  471.061406][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  471.069399][   T28] bridge_slave_1: left allmulticast mode
[  471.075141][   T28] bridge_slave_1: left promiscuous mode
[  471.080744][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.088572][   T28] bridge_slave_0: left allmulticast mode
[  471.094225][   T28] bridge_slave_0: left promiscuous mode
[  471.099802][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  471.285871][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  471.295906][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  471.306189][   T28] bond0 (unregistering): Released all slaves
[  471.315940][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  471.326058][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  471.336546][   T28] bond0 (unregistering): Released all slaves
[  471.378727][T18531] veth0_vlan: entered promiscuous mode
[  471.387742][T18531] veth1_vlan: entered promiscuous mode
[  471.405480][T18531] veth0_macvtap: entered promiscuous mode
[  471.412842][T18531] veth1_macvtap: entered promiscuous mode
[  471.420260][T18564] 8021q: adding VLAN 0 to HW filter on device batadv0
[  471.435785][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  471.446327][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.456181][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  471.466630][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.476454][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  471.486943][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.496923][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  471.507419][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.517226][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  471.527793][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.537651][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  471.548068][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.559621][T18531] batman_adv: batadv0: Interface activated: batadv_slave_0
[  471.571795][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  471.582307][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.592189][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  471.602663][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.612524][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  471.623073][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.632958][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  471.643453][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.653264][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  471.663697][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.673538][T18531] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  471.684121][T18531] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  471.695513][T18531] batman_adv: batadv0: Interface activated: batadv_slave_1
[  471.705790][T18531] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  471.714761][T18531] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  471.723448][T18531] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  471.732202][T18531] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  471.746935][   T28] hsr_slave_0: left promiscuous mode
[  471.752604][   T28] hsr_slave_1: left promiscuous mode
[  471.758502][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  471.765930][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  471.773644][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  471.781202][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  471.790106][   T28] hsr_slave_0: left promiscuous mode
[  471.795816][   T28] hsr_slave_1: left promiscuous mode
[  471.801359][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  471.809010][   T28] ==================================================================
[  471.817074][   T28] BUG: KCSAN: data-race in batadv_iv_ogm_schedule / batadv_update_min_mtu
[  471.825595][   T28] 
[  471.827914][   T28] write to 0xffff888115914010 of 1 bytes by task 3382 on cpu 1:
[  471.835518][   T28]  batadv_iv_ogm_schedule+0xaa/0x790
[  471.840788][   T28]  batadv_iv_send_outstanding_bat_ogm_packet+0x44c/0x4b0
[  471.847798][   T28]  process_scheduled_works+0x483/0x9a0
[  471.853257][   T28]  worker_thread+0x526/0x6e0
[  471.857833][   T28]  kthread+0x1d1/0x210
[  471.861965][   T28]  ret_from_fork+0x4b/0x60
[  471.866374][   T28]  ret_from_fork_asm+0x1a/0x30
[  471.871121][   T28] 
[  471.873424][   T28] read to 0xffff888115914010 of 1 bytes by task 28 on cpu 0:
[  471.880768][   T28]  batadv_update_min_mtu+0x4b/0x180
[  471.885973][   T28]  batadv_hardif_disable_interface+0xd0/0xa90
[  471.892018][   T28]  batadv_softif_destroy_netlink+0x6d/0x310
[  471.897892][   T28]  default_device_exit_batch+0x596/0x660
[  471.903588][   T28]  cleanup_net+0x4cf/0x840
[  471.907991][   T28]  process_scheduled_works+0x483/0x9a0
[  471.913461][   T28]  worker_thread+0x526/0x6e0
[  471.918040][   T28]  kthread+0x1d1/0x210
[  471.922262][   T28]  ret_from_fork+0x4b/0x60
[  471.926658][   T28]  ret_from_fork_asm+0x1a/0x30
[  471.931405][   T28] 
[  471.933705][   T28] value changed: 0x04 -> 0x03
[  471.938353][   T28] 
[  471.940650][   T28] Reported by Kernel Concurrency Sanitizer on:
[  471.946797][   T28] CPU: 0 UID: 0 PID: 28 Comm: kworker/u8:1 Tainted: G        W          6.11.0-rc7-syzkaller-00017-gbc83b4d1f086 #0
[  471.958941][   T28] Tainted: [W]=WARN
[  471.962720][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  471.972793][   T28] Workqueue: netns cleanup_net
[  471.977540][   T28] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  471.986330][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  471.995425][   T29] audit: type=1400 audit(1725955692.019:5852): avc:  denied  { write } for  pid=3203 comm="syz-executor" path="pipe:[481]" dev="pipefs" ino=481 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  472.024126][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  472.031705][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  472.045556][   T28] veth1_macvtap: left promiscuous mode
[  472.051045][   T28] veth0_macvtap: left promiscuous mode
[  472.056618][   T28] veth1_vlan: left promiscuous mode
[  472.061828][   T28] veth0_vlan: left promiscuous mode
[  472.068043][   T28] veth1_macvtap: left promiscuous mode
[  472.073500][   T28] veth0_macvtap: left promiscuous mode
[  472.079157][   T28] veth1_vlan: left promiscuous mode
[  472.084489][   T28] veth0_vlan: left promiscuous mode
[  472.191914][   T28] team0 (unregistering): Port device team_slave_1 removed
[  472.201891][   T28] team0 (unregistering): Port device team_slave_0 removed
[  472.260274][   T28] team0 (unregistering): Port device team_slave_1 removed
[  472.270597][   T28] team0 (unregistering): Port device team_slave_0 removed
[  473.017745][   T28] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.067063][   T28] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.136773][   T28] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.187234][   T28] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.254457][   T28] bridge_slave_1: left allmulticast mode
[  473.260114][   T28] bridge_slave_1: left promiscuous mode
[  473.265843][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  473.273549][   T28] bridge_slave_0: left allmulticast mode
[  473.279219][   T28] bridge_slave_0: left promiscuous mode
[  473.284973][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  473.293168][   T28] bridge_slave_1: left allmulticast mode
[  473.298928][   T28] bridge_slave_1: left promiscuous mode
[  473.304642][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  473.312155][   T28] bridge_slave_0: left allmulticast mode
[  473.317838][   T28] bridge_slave_0: left promiscuous mode
[  473.323502][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  473.515653][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  473.525929][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  473.535781][   T28] bond0 (unregistering): Released all slaves
[  473.544348][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  473.554334][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  473.563932][   T28] bond0 (unregistering): Released all slaves
[  473.716696][   T28] hsr_slave_0: left promiscuous mode
[  473.722384][   T28] hsr_slave_1: left promiscuous mode
[  473.728061][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  473.735487][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  473.742988][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  473.750410][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  473.759697][   T28] hsr_slave_0: left promiscuous mode
[  473.765461][   T28] hsr_slave_1: left promiscuous mode
[  473.771160][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  473.778654][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  473.787720][   T28] veth1_macvtap: left promiscuous mode
[  473.793215][   T28] veth0_macvtap: left promiscuous mode
[  473.798764][   T28] veth1_vlan: left promiscuous mode
[  473.804106][   T28] veth0_vlan: left promiscuous mode
[  473.876817][   T28] team0 (unregistering): Port device team_slave_1 removed
[  473.888431][   T28] team0 (unregistering): Port device team_slave_0 removed
[  473.944873][   T28] team0 (unregistering): Port device team_slave_1 removed
[  473.954175][   T28] team0 (unregistering): Port device team_slave_0 removed
[  474.557540][   T28] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.216567][   T28] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.286485][   T28] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.356282][   T28] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.624781][   T28] bridge_slave_1: left allmulticast mode
[  476.630454][   T28] bridge_slave_1: left promiscuous mode
[  476.636107][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  476.644107][   T28] bridge_slave_0: left allmulticast mode
[  476.649798][   T28] bridge_slave_0: left promiscuous mode
[  476.655442][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  476.663376][   T28] bridge_slave_1: left allmulticast mode
[  476.669064][   T28] bridge_slave_1: left promiscuous mode
[  476.674974][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  476.682602][   T28] bridge_slave_0: left allmulticast mode
[  476.688319][   T28] bridge_slave_0: left promiscuous mode
[  476.694048][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  476.846128][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  476.856122][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  476.865949][   T28] bond0 (unregistering): Released all slaves
[  476.874825][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  476.884697][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  476.894476][   T28] bond0 (unregistering): Released all slaves
[  477.036130][   T28] hsr_slave_0: left promiscuous mode
[  477.041783][   T28] hsr_slave_1: left promiscuous mode
[  477.047504][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  477.054986][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.062473][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  477.069854][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.078659][   T28] hsr_slave_0: left promiscuous mode
[  477.084253][   T28] hsr_slave_1: left promiscuous mode
[  477.089903][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.097287][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.106594][   T28] veth1_macvtap: left promiscuous mode
[  477.112040][   T28] veth0_macvtap: left promiscuous mode
[  477.117707][   T28] veth1_vlan: left promiscuous mode
[  477.122982][   T28] veth0_vlan: left promiscuous mode
[  477.208395][   T28] team0 (unregistering): Port device team_slave_1 removed
[  477.218443][   T28] team0 (unregistering): Port device team_slave_0 removed
[  477.272443][   T28] team0 (unregistering): Port device team_slave_1 removed
[  477.281827][   T28] team0 (unregistering): Port device team_slave_0 removed