last executing test programs:

11.654446375s ago: executing program 1 (id=391):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRES32=r0, @ANYRESOCT, @ANYRES32=r0, @ANYRES64=r0], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r1)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r2}, {}, {0x15, 0x0, 0x0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

11.59209853s ago: executing program 1 (id=392):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nomblk_io_submit}, {@minixdf}]}, 0x2, 0x4fa, &(0x7f0000000ac0)="$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")
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r1, &(0x7f0000000000)="fa", 0xfffffdef)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r2, &(0x7f0000000200), 0xf000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x4, &(0x7f00000001c0)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x90, &(0x7f0000000100)=""/144}, 0x90)
open(&(0x7f0000000080)='./bus\x00', 0x143c62, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000180)={0x0, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88)
mount(&(0x7f0000000240), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
sendmsg$NFT_BATCH(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0xb98}}, 0x0)

10.703812572s ago: executing program 1 (id=395):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4)
setsockopt$inet_int(r0, 0x0, 0xa, &(0x7f0000000040)=0x3, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
rt_sigpending(0x0, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = gettid()
tkill(r3, 0x0)
fcntl$setownex(r2, 0xf, &(0x7f0000000140)={0x1})
r4 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_group_source_req(r4, 0x29, 0x0, 0x0, 0x0)
quotactl_fd$Q_GETFMT(r1, 0xffffffff80000400, 0x0, &(0x7f0000000180))
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a1281)
r6 = socket$inet(0xa, 0x0, 0x84)
ioctl$int_in(r6, 0x0, &(0x7f0000000280))
recvmmsg(0xffffffffffffffff, &(0x7f0000004a00), 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x5}, 0x0, 0x20, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0})
ioctl$USBDEVFS_FREE_STREAMS(r5, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
r7 = open(&(0x7f0000000080)='./bus\x00', 0x145842, 0x0)
fallocate(r7, 0x10, 0x9, 0xceec)
clock_gettime(0x0, &(0x7f0000000800))
mq_timedreceive(r7, 0x0, 0x0, 0x0, 0x0)
lseek(r7, 0x0, 0x4)
ioctl$USBDEVFS_SETCONFIGURATION(r5, 0x5522, 0x0)
ioctl$USBDEVFS_RELEASEINTERFACE(r5, 0x5522, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)

10.35475655s ago: executing program 1 (id=397):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000004000001d8500000007000000440000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="5400000010000104000000000200000000000000", @ANYRES32=r3, @ANYBLOB="000000000000000034001280110001006272696467655f736c617665000000001c000580050021000000000006001f0000000000080022"], 0x54}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'bridge_slave_1\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="24000000190000022bbd7000ffdbdf251d01060008000500f9fcffb408000a00", @ANYRES32=r3, @ANYBLOB="8a95cfb147ca7dcdb50963dd21e8428e32280ecc3a1c455ae782f562c7389d0d02931809fac67aee6a6331bd9c176dec2ae762"], 0x24}}, 0x20004010)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c)
listen(r6, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f00000002c0)=0x7, 0x4)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r7, 0x1, 0xf, &(0x7f0000000000)=0x5, 0x4)
bind$inet6(r7, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4}, 0x1c)
listen(r7, 0x0)
r8 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000017f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120c00014001080c00bdad01409bbc7a46e39a8285dcdf12176679df069163ce955fed0009d78f0a947ee2b49e33538afaeb2713f450ebd010a20ff27fff", 0x89}], 0x1}, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f00000001c0), 0x1, 0x76a, &(0x7f0000000fc0)="$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")
r9 = socket(0x15, 0x5, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
getsockopt(r9, 0x200000000114, 0x8, 0x0, &(0x7f0000000000))
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r10 = inotify_init()
inotify_add_watch(r10, &(0x7f0000000140)='./file0\x00', 0x510008ca)
sendmsg$NFQNL_MSG_VERDICT_BATCH(0xffffffffffffffff, 0x0, 0x0)

9.878188959s ago: executing program 1 (id=399):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000000)=ANY=[@ANYRES16, @ANYRES32=r0, @ANYRESOCT, @ANYRES32=r0, @ANYRES64=r0], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r1)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r2}, {}, {0x15, 0x0, 0x0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

9.74149814s ago: executing program 1 (id=400):
mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x300000b)
ptrace(0x10, 0x1)
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, <r1=>0x0})
ptrace$peekuser(0x3, r1, 0x6)
r2 = getpgid(r1)
ioperm(0x0, 0x5, 0x6)
prctl$PR_SET_IO_FLUSHER(0x41, 0x1)
prctl$PR_SET_IO_FLUSHER(0x41, 0x0)
ptrace$setsig(0x4203, r2, 0x7fffffff, &(0x7f00000000c0))
ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, 0x0)
ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, 0x0)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, 0x0)
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000001940)={0x0, 0x0, {0x0, @struct={0x1, 0xe2}, 0x0, 0x1, 0x0, 0x65f4, 0x0, 0x8000000000000001, 0x410, @usage=0x9, 0x3, 0x9, [0x0, 0x0, 0x8, 0x20, 0x6, 0xffffffffffffffff]}, {0x401, @usage=0x1f, 0x0, 0x1, 0x100000001, 0x0, 0x0, 0x0, 0x40, @usage=0x5, 0x40, 0x0, [0x0, 0x3ff, 0x30, 0x1, 0x4]}, {0x6fd9, @usage=0x9, 0x0, 0x7fff, 0x5cc, 0x3, 0x7, 0x101, 0x2, @struct={0x2, 0x5}, 0x5, 0x0, [0xce6, 0x800, 0x51, 0x7ff, 0x9, 0xfffffffffffff345]}, {0x401, 0x4, 0x46}})
syz_emit_ethernet(0x8c, &(0x7f0000000080)={@local, @link_local, @void, {@ipv6={0x86dd, @tipc_packet={0x8, 0x6, '$==', 0x56, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private0={0xfc, 0x0, '\x00', 0x1}, {[@routing={0x2d, 0x2, 0x2, 0x7, 0x0, [@remote]}, @hopopts={0x0, 0x0, '\x00', [@generic, @enc_lim={0x4, 0x1, 0x4}]}], @payload_named={{{{{0x2e, 0x0, 0x0, 0x1, 0x1, 0xa, 0x3, 0x2, 0x7, 0x0, 0x2, 0xc, 0x0, 0x2, 0xff81, 0x3, 0x3, 0x4e21, 0x4e24}}}}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}}}}}, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x6)
syz_open_procfs(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x10, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x48}, [@ldst={0x3, 0x0, 0x3, 0xa}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x8, 0xc3, &(0x7f0000000400)=""/198, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffff52}, 0x37)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004140)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@rights={{0x10}}, @cred={{0x1c}}], 0x30}}], 0x1, 0x0)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000004100)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1400000000000000290000003400ffffffff000000000000"], 0x18}}], 0x230, 0x0)

1.637210467s ago: executing program 4 (id=500):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x3, 0x0)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
r2 = open(0x0, 0x0, 0x0)
openat$cgroup_procs(r2, 0x0, 0x2, 0x0)
writev(0xffffffffffffffff, &(0x7f00000001c0), 0x0) (async)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8}, 0x0)
openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index, 0x0, 0x0}) (async)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
connect$unix(0xffffffffffffffff, &(0x7f00000003c0)=@file={0x0, './file0/file0\x00'}, 0x6e) (async)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0004}]})
getrusage(0xffffffffffffffff, &(0x7f0000000680)) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'vlan1\x00', <r3=>0x0}) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020100000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a32000000001400000011001f"], 0x7c}}, 0x0) (async)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x4)
r6 = dup(r4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x6, 0x0, r5, 0x7fffffff, '\x00', r3, r6, 0x3, 0x5}, 0x48) (async)
r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r7, 0xc018937d, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1, {0x4}}, './file0\x00'}) (async)
bind$packet(r1, &(0x7f0000000240)={0x11, 0x0, r3}, 0x14) (async)
getsockname$packet(r1, &(0x7f00000022c0)={0x11, 0x0, <r8=>0x0}, &(0x7f0000000000)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="4400000010000104000000000000000000000000c84c447c39370e7d49145d6000bbdf9c23a7b607a6b46e096367fffeed33e07508d9efe4f48daae5874473dd6c349d7fcc6e13b33dbfa2ece69bba158b26f164d028bc6b8eb7c3c8a4ed28210056e6ebc1ff", @ANYRES32=0x0, @ANYBLOB="9101000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r8, @ANYBLOB], 0x44}}, 0x0)

1.637069017s ago: executing program 4 (id=501):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000007000000000000004b64ffeca500000050000000260000008f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
syz_read_part_table(0x593, &(0x7f00000005c0)="$eJzs0r1LK2kUB+A3A5c0e4lcLli4hWCwigqx0CIpRGJIY0RcsbAWLLQQLCwkEq39+AcUv0BsxD6lGEEUYiUpxXpBsUmVZdfZxmplUdnleZrhPefMHF5+E/hPi8Lv7XY7EUJoJ9//9m+nhbFS98TI5FQIiTAbQij8+stfnUQ88fdXz+NzOT6XktnG/vXo82nHTc9dPX0Yxf1aFMJaCGHh4Sj1b+/G/99Z/jK1vrFU3FzJz98XVx8H5/oKXVuFxZ2hg1xlujM3E/9Ytehz9qcbw8e37fLT7vf+b/VGK3sVz2USH7Ofr/U2/72f1Wa1Nd57sjyQ+dG8qGzHub/IHwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+GBn+cvU+sZScXMlP39fXH0cnOsrdG0VFneGDnKV6c7cTPQ6V4s+Z3+6MXx82y4/7X7v/1ZvtLJX8Vwm8TH7+Vpv89/7WW1WW+O9J8sDmR/Ni8p2nPuL/AEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAf6gwVuqeGJmcCiERZkMIo1HH0Z/1dvK1n4jnzuNnOa6XktnG/vXo82nHTc9dPX04EddrUQhrIYSFh6PUp1+Gd/sjAAD///tch0s=") (fail_nth: 22)

1.428261725s ago: executing program 4 (id=502):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000440)={'team0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x58}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
pipe2$9p(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a1281)
ioctl$USBDEVFS_FREE_STREAMS(r3, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
ioctl$USBDEVFS_FORBID_SUSPEND(r3, 0x5521)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)

1.35662603s ago: executing program 0 (id=505):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
readv(r0, &(0x7f0000000c40)=[{&(0x7f0000000440)=""/194, 0xfffffdef}], 0x1) (fail_nth: 8)
vmsplice(r1, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)

987.13078ms ago: executing program 2 (id=506):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdir(0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000180)='./file1\x00', 0x4080, &(0x7f0000000040)=ANY=[], 0x3, 0x7c4, &(0x7f00000006c0)="$eJzs3U9oHOfZAPBn9Em2o/D5C/k+8hnjOGM7BZs6yu4qUSpySDerkTzJalfsropNKYmJ5WAsJyEhpPGhqS9JW1pKTz2muYZcemsptNBD21OhOfTSQyGQU0lLC6WlFFx2dtf6u5JsS3H+/H6L952deead950dz7Oz2pkJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACCS2kypVE6injcWz6bD1WZazfktpg/q+8WaYovlRiTdf3HgQBzqjTr0fyuT7+s+HY8jvVdH4kC3OBBX777vnsf/d3RkMP8WDbpVx4ZPGlv9Ion4ZrdRl88vLy+9vAcN+Rh952f9gQM7nuWf17vPc1kjbzfz+epclubtZjo9NVV6+MxsO53N61n7XLuTzae1VlbtNFvpydqptDw9PZlmE+eai425mWo9G4x87KFKqTSVPjWxkFVb7Wbj4acm2rUzeb2eN+aKmErptejGPNbdEJ/OO2knq86n6cVLy0uT2zW1G1ReM2b/mg3nyIP3fPjqB3+7tNTdIIdVkvQ3zEq5XKmUpx6dfvSxUmm0UqqsHVFaJ25ExEhEN2JPNlo+RSKu/8/u7cDhNoz083/UI49GLMbZSCONkeJ55TEWtZiJVjRjvvv692Prpm/I/194+M+/3Wq5q/P/IMsfWpl8OIr8f7T36uiw/L+hFXv5aLzXa83qca/E63E1Lsf5WI7lWIqXb6Xmfetr3cPHyO7WNxdZNCKPdjQjj/moFmPS/pg0pmMqpqIUz8SZmI12pDEbedQji3aci3Z0Iiu2qFq0IotqdKIZrUjjZNTiVKRRjumYjslII4uJOBfNWIxGzMVMVItaLsalYr1PrmvXfd949qfP/+7Dt7vDN4LKW3Qk6X6Y6wb9dYugDen+JvL/IEL+/6w50N9n7TR+F/fecHuuF/l/9E43AwAAANhDSfHtexIRY3F/MTSb17Ov3ulmAQAAALuo+F3zkW4x1h26P5Lu8X9pk8j3P/a2AQAAALsjKc6xSyJiPB7oDQ1Ol9rsSwAAAADgU6j4+//RbjEe8UYxwvE/AAAAfMZ8a9g19j/Y17/Gbnthf/Lzv0SrNZZcWzj7YHKl2o2rXvmv3nz94is3auzMHk4O9ispiqnRq3cnETFay44kg6tf/nt/r/yoeD68cgHCYdf6T7ZpQGzdgOJVfDeO9WKOXeiVFwZTeksZn83r2UStWX+8nPS/HOm8+sKlr0fR/W835g8mcfHS8tLEcy8uXyjacq1by7Ur/cvDJ4O5dtCW6/01EPdv3uOx4kSM/nLHe8stre7/SG/2ka37n6xe5ptxvBdzfLxXjq/t/4HuMssTj5ejWj040snOdl69vqr3/VaUN+v5TbwLb8aJXsyJkyd6xSatqKxpxQsbW1FZ3YqdrYsdt+LtY2+c/fuvmkk2uV0rJm+zFQB3ysXiqj8rWeiuIgv963pPN6Gty7t3Dea8mb3cxZVPGYP5V+W60diQ3dNbye5vxslezMne54nRw5vkldIme/SXLr306/4e/ZF3f/ijrx39zY9vPbu9G6d6Mf0i7v3lkBzb7fP31mXVd7pzvDN0ue16JYmx7oTi5kNx9aFLV84/v/T80guVyuRU6ZFS6dFKjBUfFfrFkJbKPACfb9vfY2fbiOSRbY6q773xk4KJeC5ejOW4EKeLsw0i4oHNax1f9TOE09sctY6vusPL6W2OLVdiK+tj959IYkjs5Ko19v8/KIp/7N17AgB77fg2efhG/n/tv/tzbMz/p7c57l6by0/1bpw7ODqO4bl8M1/a4/UBAJ8HWeujZLzzVtJq5QvPlKeny9XOmSxtNWtPp618Zi5L80Yna9XOVBtzWbrQanaatcFXxzNZO20vLiw0W510ttlKF5rt/Gxx5/e0f+v3djZfbXTyWnuhnlXbWVprNjrVWiedydu1dGHxyXrePpO1ipnbC1ktn81r1U7ebKTt5mKrlk2kaTvLVgXmM1mjk8/m2ViaN9KFVj5fbV2LiPrifJbOZO1aK1/oNHsVDpaVN2abrfmi2omN3f/Tx72+AeCT4JXXr14+v7y89PKtDfxhJ8F3uo8AwFqyNAAAAAAAAAAAAAAAfPJtPF2vO/amTgQci1s+ffCV/XE7Zx9+9ga++F7vbdmNCm+nnrvWvKf7+hvLnV8/Nz3w7BNPXB4W8+Qbh878MYvYvp7N/6dsdqrrWwcj9v3k+70xXx4SnIzuck/fj530YsPA9WSLmDu2SwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAof4TAAD///vCWDA=")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0) (fail_nth: 3)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
personality(0x0)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)

980.65337ms ago: executing program 0 (id=507):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000001080), 0x1, 0x4e2, &(0x7f0000000b80)="$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")
ioperm(0x0, 0x0, 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vxcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f0000000000)={0x1d, r1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)

875.776129ms ago: executing program 0 (id=508):
r0 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r0, &(0x7f00000003c0)={0x10, 0x0, 0x25dfdbf9, 0x10140}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000030701080000000000000000000000002f3f15d761ecb99d89e63ba9f3485c3106193e1961eaaa895d14694ecb181da0cb854d24e442e82b264e"], 0x14}}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r0)
utimensat(0xffffffffffffff9c, 0x0, &(0x7f00000002c0)={{0x0, 0x3fffffff}}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_aout(r1, &(0x7f00000002c0)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r1, 0x0)
r2 = socket$kcm(0x29, 0x5, 0x0)
getsockopt$kcm_KCM_RECV_DISABLE(r2, 0x119, 0x1, 0x0, 0x20000007)
syz_genetlink_get_family_id$devlink(&(0x7f00000004c0), r0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f00000000c0)='cgroup.max.depth\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x60000000000, 0x12)
r5 = openat$sysfs(0xffffff9c, &(0x7f0000000180)='/sys/kernel/address_bits', 0x210002, 0x102)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000680)=ANY=[@ANYRES16=r3, @ANYRESDEC=0x0, @ANYRESDEC=r5], 0x9c}, 0x1, 0x0, 0x0, 0x4004001}, 0x4004004)
sendmsg$L2TP_CMD_SESSION_GET(r5, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRES16=r7, @ANYBLOB="20002dbd7000ffdbdf25080000000c0010007e9b0000000000001400080076657468305f746f5f7465616d0000000500220000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x4008040}, 0x8000)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_SNDMTU(r8, 0x112, 0xc, 0x0, &(0x7f0000000040))
r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r10 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r10, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(r10, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$inet_tcp_TCP_MD5SIG(r10, 0x6, 0xe, &(0x7f0000000a40)={@in6={{0xa, 0x4e20, 0x40, @empty, 0x3}}, 0x0, 0x0, 0x3, 0x0, "34dbd84f05363827e94f6ae0c9302fa7c6a231639120f6c0172f31cd2feb187a5d8402c807000000b5eb62001f58d77d360ae1114806d379e567caa04adc96306c5300"}, 0xd8)

852.122561ms ago: executing program 4 (id=510):
socket$tipc(0x1e, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x48}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
mount(&(0x7f0000000140)=@loop={'/dev/loop', 0x0}, &(0x7f00000002c0)='./file0\x00', &(0x7f00000003c0)='jffs2\x00', 0x18, &(0x7f0000000400)='cpuset')
listen(0xffffffffffffffff, 0xb)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @mcast2, 0x28}, 0x1c)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)

707.555203ms ago: executing program 4 (id=511):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000002080)={0xf, {"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", 0x104d}}, 0x1006)
openat(r1, &(0x7f000000c380)='./file0\x00', 0x1d5046, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r2, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@ipv6_getaddrlabel={0x2c, 0x1a, 0x1, 0x0, 0x0, {0xa, 0x0, 0x80}, [@IFAL_LABEL={0x8, 0x2, 0x1}, @IFAL_LABEL={0x8}]}, 0x2c}}, 0x0)
socket$inet6(0xa, 0x80803, 0x88)
r3 = socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(r3, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e000000020013000200000000000000ff0800ed05000600200000000a00060000000000000500e50000070000001ffeff0001000003f1dc7f7c6e870200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="020a00000200000000ac39a2d0000000"], 0x10}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r4)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, r5, 0x44d7cc91675747ab, 0x0, 0x0, {0x26}}, 0x14}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x400008a, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)

621.163559ms ago: executing program 4 (id=512):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_setup(0x2cdb, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000400)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x34, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0xff44}})
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket(0x0, 0x2, 0x0)
setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
sendto(r2, &(0x7f0000000480)="937f6752001af4c55a840e040be56f649ebc5f833a940b0efdb45a256ec84edd", 0x20, 0xc804, &(0x7f00000004c0)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e21, @local}, 0x1, 0x2, 0x4}}, 0x80)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=@migrate={0x50, 0x21, 0x1, 0x0, 0x0, {{@in6=@private1, @in=@loopback}}}, 0x50}}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r5)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r7, &(0x7f0000000080), 0x10)
sendmsg$can_bcm(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000008c0)=ANY=[@ANYBLOB="0500"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="00000000010000000000000000000000f8ca44b8874fdf8a302640d3c280a507e4319e182a0c2864aed55f6f61da30a0cb685c859573803952abda8e7b009d115cba0d3b"], 0x48}}, 0x0)
sendmsg$can_bcm(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={0x5, 0x0, 0x0, {}, {}, {0x0, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "311922a9cb6c3ced"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x7, 0x0, 0x0, {}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "b68c52d2be3c0d90"}}, 0x48}}, 0x0)
pipe(&(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
write(r9, &(0x7f0000000340), 0x11000)
ppoll(&(0x7f0000000200)=[{r9}], 0x1, 0x0, 0x0, 0x0)
vmsplice(r8, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
eventfd2(0x80000001, 0x0)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000007300000000000000"], &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000200)='mm_page_free\x00', r11}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
close_range(r10, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x1}, 0x48)

620.55812ms ago: executing program 2 (id=513):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000640)="2e00000010008188e6b62aa73772cc9f1ba1f848430000000002800000129400"/46, 0x2e}], 0x1}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x357, &(0x7f0000000180)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_aout(r1, &(0x7f00000002c0)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r1, 0x0)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r2, 0x10d, 0xdb, 0x0, &(0x7f00000000c0))
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0xb00000000065808, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010008000100000000000000000a2c000000060a0000000000ffffffff000000000018000480140001800c00010062697477697303000000000000000000110001000000000000004a000000000aa1ae7a872671b7ed281566927c7a273754b26a8fbe19d75ccfc6d0c05bd1e046273812c8377f7c585a9d22ee9da1f14d39bed0862a30f5db4abc41c8c6cd096da7d6bec1a722cdf7e838d1a4bc026402a15fb802482fcc71740413ba5ef480ebeb793c30e5536eedf38462adb64948b3623c9e76c80c002cea9a9df9a5c8aa16677b1b2a8b9fb2d21d859e71232b854b60a00d459aaf11c370b8ea85e05e31420f18b6d2e8b006711cfcef546c6eceede03e91442a14c7e6757a211c10544ace3c40f09a9a911a05fde462a2402a8b90a1e1f206c9ec5b562bd137cf1b572cb4dc472cb04fb1c96749592b360b9a8cc26ec4"], 0x54}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x17, 0xc, &(0x7f0000000140)=ANY=[@ANYRES64=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_user\x00', 0x26e1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(0xffffffffffffffff, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000280), 0x3, 0x44d, &(0x7f0000000a40)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = socket$xdp(0x2c, 0x3, 0x0)
r5 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xfffffffffffffff6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0xf6150000, 0x1000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

610.563891ms ago: executing program 0 (id=516):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x5)
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x9})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r3, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}}], 0x1, 0x0, 0x0) (fail_nth: 3)
sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16, @ANYBLOB="03"], 0x18}}, 0x0)

498.71771ms ago: executing program 3 (id=517):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000002c0)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xfc, 0x572, &(0x7f0000003780)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x12, r0, 0x0)
ftruncate(r0, 0x4)
msgsnd(0x0, &(0x7f00000000c0)=ANY=[], 0x8, 0x0)

498.52244ms ago: executing program 2 (id=518):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000001080), 0x1, 0x4e2, &(0x7f0000000b80)="$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")
ioperm(0x0, 0x0, 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
bind$can_raw(r0, &(0x7f0000000000), 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)

380.42541ms ago: executing program 3 (id=519):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000002c0)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xfc, 0x572, &(0x7f0000003780)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x12, r0, 0x0)
r1 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r3)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000300), 0x0)
ftruncate(r0, 0x4)
msgsnd(0x0, &(0x7f00000000c0)=ANY=[], 0x8, 0x0)

357.297721ms ago: executing program 0 (id=520):
r0 = openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000a40)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl0\x00', <r1=>0x0, 0x4, 0x4, 0x7f, 0x7ff, 0x2a, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8000, 0x7f66, 0x5}})
sendmsg$xdp(r0, &(0x7f00000007c0)={&(0x7f0000000340)={0x2c, 0xc, r1, 0x33}, 0x10, &(0x7f0000000480)=[{&(0x7f0000000380)="9589fba648a8ac1babe82123c7a7167b41425a2e6834c0fa128c5ff64142745a0ab2e520920537fda2916d4dea04a431f542d037411ed5d8b0b76b2f4aa86f6dd70319f3c4222b9970ba8ea53272bce87885e057885ae242f840bcee34f430a15374a995423a36f9dbf08f6a40b93350d5bf4abd1b3e634a24e2613213907305b9e3ef0f46b6ea800fb80298", 0x8c}, {&(0x7f0000000500)="3cce13d6a4eb48d6ac4ccf46f5399e15ddf977e44176eb1dbb4d4aeafbd3e8608224be2d0c0b491759e27fecdd847adae395f71def6ece40c611ac8489aa2dee8ba31e7fc36ecab1ba59a960fec60ba00d033ff716ae5fa0e42fdf54e44b103a24b8d5f93b2d2c73438b28878cee2e39cfec57f16ebce46831f5d0584aafc9d1dbc9581c45ae786f9fea5404aa68d06f6f5c24e7abc5de5a8beab3f87dd26ec928cd2def4cb30330222ddb8d77f0ad98383c72e13395451d74a1e0e100b762a6b009ff402df9024b19a59cc4a9a6ff", 0xcf}, {&(0x7f0000000600)="b2ece0b106085ba596504426888ef688875f8ef45756c189f2f9ecbe149d4df0b9c21f96b180235f426d1e86f81d394ef952b9fb4ff3fc4a262da0c73da8e74c8b9f13fc2d38d2d54ac6ec55c3ca0934e729186e8bc95a2ffb81e5a3ae93379df3d0c966fd47f2b7bfe85ff9ad3719a71330df3231e8e76fb48016b783e5c0af9eb471e1f05dcd6d4c95a218540e7641bae7244a6d469a90708cac1b", 0x9c}, {&(0x7f00000006c0)="c887cbe90650452ae9830697368f294ef9830d1212e6fa984841c5d1cf102eba0f93bd20ed3e8161a617de8297ad02be09e20a710beefd3de06c1265e74056674e2cadc3a9a64f88765125b4a482de00385d50a746d5a04e485fb8870cccee3c3905a589d6a61ef602c6bf8c50bd7b4bc1f7e1551571001ae7058c91879be298a96da7f1932b54f953f63fe3f16246928fc0f1033e6b8a31daca72b7c7f666f43d68ed17dc27e963b7d9cb5f138326216d2ce3286edf6f30139239fbe085651e7edd7c6c52a584a44bbf65c19ed7ff69f7e8b1ec08ca486cd519f2fcef6db2f0fc972377951db1f79f724d5a6287", 0xee}], 0x4, 0x0, 0x0, 0x20000000}, 0x20000010)
socket$netlink(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x200002, &(0x7f0000000000)={[{@noblock_validity}, {@dioread_nolock}, {@noinit_itable}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2c}, 0x84, 0x452, &(0x7f0000000480)="$eJzs20tvG1UUAOAz46bvklDKow/AUBARj6RJC3TBBgRSN0hIsCjLkKZVqdugJki0qmhAqCxRfwGwROIXsIINAlYgtrBHSBXqhsICDRp7nBrHDnbs1Gn9fdIk986Mfc/xzLXvzLUDGFrl/E8SsTMifomI0YgoNe9Qrv27cf3S7F/XL80mkWWv/5HkD4s/r1+are+aFP93FJXxNCL9KIn9LdpduHDxzEylMne+qE8unn1ncuHCxWdOn505NXdq7tz00aNHDk89/9z0s33Jc1ce67735w/sPfbm1Vdnj1996/sv83h3Ftsb86gZ67nNcpSXX5Nmj/f87BvLroZysmmAgdCVvK/nh2uk2v9HoxQ3D95ovPLhQIMD1lWWZdmWFWuXRwBLGXAHS2LQEQCDUf+gz69/68stHH4M3LUXaxdAed43iqW2ZVOkxT4jTde3/VSOiONLf3+aL9HyPgQAQH99nY9/nm41/kvjvob97irmhsYi4u6I2B0R90TEnoi4N6K67/0R8UCX7Zeb6ivHPz9tW1NiHcrHfy8Uc1v/Hf/VR38xVipqu6r5jyQnT1fmDhWvyXiMbMnrU6u08c3LP3/Sblvj+C9f8vbrY8Eijt83Nd2gOzGzONNLzo2ufVC9B3h5Zf7J8kxAEhF7I2LfGp5/a0ScfvKLA+22/3/+q+jDPFP2ecQTteO/FE351yWrz09Obo3K3KHJ+lmx0g8/XnmtXfs95d8H+fHf3vL8X85/LGmcr13ovo0rv37c9ppmref/5uSNanlzse69mcXF81MRm5Olleunbz62Xq/vn+c/frB1/98d8c9nxeP2R0R+Ej8YEQ9FxMNF7I9ExKMRcXCV/L976bG3157/+srzP9HV8e++UDrz7Vft2u/s+B+plsaLNZ28/3UaYC+vHQAAANwu0up34JN0YrmcphMTte/w74ntaWV+YfGpk/PvnjtR+678WIyk9Ttdow33Q6eKe8P1+nRT/XD1vnGWZdm2an1idr6yXnPqQGd2tOn/ud9Kg44OWHddzaO1+0UbcFvye00YXvo/DC/9H4aX/g/Dq1X/vxxxYwChALeYz38YXvo/DC/9H4aX/g9DqZff9a9W2H1svZ75TiuUNkYYXRci3RBhrK2QbowwaoUtEdHpzpfjVgU26HcmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/vg3AAD//zLQ7Dk=")
r2 = gettid()
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r3, &(0x7f0000000240)=""/203, 0xcb)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000080)={0x335, @time})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000600)={0x0, 0x0, 0x0, 'queue0\x00'})
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r3, 0xc04c5349, &(0x7f0000000400))
tkill(r2, 0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = socket(0x11, 0x800000003, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="340000001c0073fc000000000000000007000003", @ANYRES32=r6, @ANYBLOB="020000e209000200bbbbb3bbbbbb00e60c000e80050001001f000000"], 0x34}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r7 = syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x22004006, &(0x7f00000010c0)={[{@jqfmt_vfsold}, {@nouid32}, {@nobh}, {@bsdgroups}, {@block_validity}, {@grpjquota, 0x22}], [], 0x2}, 0xc4, 0x484, &(0x7f0000001140)="$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")
statx(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x0, 0x2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r8=>0x0, <r9=>0x0})
fstat(r7, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, <r10=>0x0})
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x10010, &(0x7f0000000900)=ANY=[@ANYBLOB='mode=00000000000000000000004,mode=00000000000000000002536,mpol=local,huge=within_size,ro,fowner<', @ANYRESDEC=r8, @ANYRESHEX=r9, @ANYRESDEC=r10, @ANYBLOB=',\x00'])
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000080)='cpu\t&0a\t\t\xb65\t\x00\x00\x7f\xff\xff\xff\x9f\x14\xd3\x8bl\x92:\xf2\xff\x1c\x1d\xa8\xc5Qa\xd0\xf6\x14\x98\x04\xaa\f\xf9\xeapI\x15\xf2L\x93\t\x86\xe8\xd8\x04\x14\xd8L\xaa\xcfM\x9e\xc8\b\xbd\x9d\x99\xc9\x02P\x99Ow\xdb0\xa1utw\xae\x99\x1e\x91\xd7\x83\x18\xa6\xbfp\xe5\x9f\xc9\xe4[{\xff\x90\xde\x1c\t\xbc[\x89\x16\xa5\x12\x14\xce\xaf!\x06\x13\'\x9a\x1eH\xfc\x93\xde\x83\xfb\xc9\xf5x\xefc\xf0\x87E\xca\xa6BRi\xb0U\xc1&W(N\xe06rT\xe0\xe2\xe9\xb9\xaf@\x11-c(2a\xb7B9B\x1f\x12\xf9,/\x8f\x92\x00\x11}\xbc:D\xdb\x92\x80=mel\xea\xdd\xa0\xe9d\t\xa6\x19\x84.hWe\x9at\xbc\xc3\xceA\xb4\xca8\xed\xb9^e\xf2`\xa4\xf7E\xc9\x01\xf7\x00\xf3\xadnn\x9b\x17\x98\xe4Q\x17<\x92\xb2\xa9%\xe7\x83\xf7\xef\xc9\f8R\xa0\x00C\xa0x\x91~XAs*{\xda\xb0BC\xad\xf6\xca\xe72\xb32h\xe1\xb0\xf3-\xd0W\x04\xf6\xfe\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\bq\a\x00\x00\x00h\x1dMD\x99#\xe2\x98{\xeb\x88\r`t<LM\xf8\x89\xe7\xf3T#%H\x9e\xd7\n?\xaf\x99j\x03A/\xb6S\xf1\xa3YR\xbf\x9f\\\n\x8a\x1ds\xb6g\x90\xf2\xb9\xcdl\xb8\xccv^6\x80\x16D\xbc\n`\xa1z^\xe0\"s\xd3\xb8\x1d\x16\xd9\xf5r\x8b\xaf\xae-\xbe>6\xdd\xc1\xa1\xf7\xaa\xe7\xf2\t\x13~\xf28\xd2\x0ey\xa4\xd9\x1ds\xa6\xaa\xfa\xd1T\xf3\xda\x85\x18n?\xb1\xf21G\x12\x17\xe6\xa9\x8f\x16\x7f\x00\x00\x00\x04&]K\xef@n_\xb5@\x94\x90\x84\xdf\x97d`9\xe3[\x97\xcd\xcbQ8\xbd|v\x8c')
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x2)

230.976891ms ago: executing program 3 (id=521):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x74, 0x0)
r1 = dup(r0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

198.778914ms ago: executing program 2 (id=522):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x3, 0x420000)
ioctl$LOOP_CLR_FD(r0, 0x4c01)
openat(0xffffffffffffff9c, 0x0, 0x14b042, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0))
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000d00)='sched_switch\x00'}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000001740)=@raw={'raw\x00', 0x8, 0x3, 0x4b8, 0x0, 0xa, 0x148, 0x0, 0x60, 0x420, 0x2a8, 0x2a8, 0x420, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x358, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x8601, 0x6, './file0\x00'}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, 0x40, 0xc, [0x15, 0x12, 0x35, 0x18, 0xd, 0xf, 0x1c, 0x11, 0x3f, 0x19, 0x1d, 0x1a, 0x36, 0x32, 0x2b, 0x3c], 0x2, 0x80000000, 0x101}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'dummy0\x00', 'veth0_to_team\x00', {}, {}, 0x0, 0x0, 0x22}, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@unspec=@mark={{0x30}, {0x4, 0x3, 0x1}}]}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x518)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000680)=@raw={'raw\x00', 0x3c1, 0x3, 0x5f0, 0x0, 0xffffff80, 0x178, 0x3b8, 0x178, 0x520, 0x22b, 0x258, 0x520, 0x258, 0x2034, 0x0, {[{{@uncond, 0x1d, 0x398, 0x3b8, 0x340, {0x1e0002a8, 0x7203000000000000}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x1a, 0x64, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}]}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "e22e50439abb066265e088a63e13552b8b2fec412753ac647d17d2ebca69d17a9722bd2f5be411676d5993fb4cc74168209fb9f43b63bab2a88206d7dd8158d916b865d0f713f772c59ad6e6b572e9a6c498fb6459888a281e8c071a9a7229f9fe02cb8e9ba7637a2591a5367c770c87034734be6eda195ce135517efa85da52"}}]}, @unspec=@NOTRACK={0x20}}, {{@ipv6={@loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1_to_bridge\x00', 'geneve1\x00'}, 0x0, 0x100, 0x168, 0x0, {}, [@common=@ah={{0x30}}, @common=@ipv6header={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x650)
pipe2(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x4080)
r7 = open(&(0x7f0000000280)='.\x00', 0x6420c0, 0x0)
flistxattr(r7, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000003c0)={'sit0\x00', &(0x7f0000001000)={'syztnl1\x00', <r8=>0x0, 0x80, 0x80, 0x2, 0xb7c, {{0x32, 0x4, 0x1, 0x15, 0xc8, 0x66, 0x0, 0xc, 0x29, 0x0, @private=0xa010102, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_prespec={0x44, 0x24, 0x9b, 0x3, 0x3, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x9}, {@local, 0x3}, {@local, 0x1}, {@local}]}, @lsrr={0x83, 0x27, 0x3f, [@remote, @dev={0xac, 0x14, 0x14, 0x3c}, @remote, @broadcast, @remote, @loopback, @remote, @dev={0xac, 0x14, 0x14, 0x36}, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @generic={0x86, 0x8, "e593b57c6166"}, @ssrr={0x89, 0xb, 0x5a, [@loopback, @broadcast]}, @lsrr={0x83, 0x13, 0x90, [@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, @empty, @remote]}, @generic={0x7, 0x10, "6c4aa2f153e8ca01093d15c1ea4d"}, @lsrr={0x83, 0x2b, 0x6a, [@multicast1, @multicast1, @multicast2, @remote, @remote, @remote, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x12}, @multicast1, @rand_addr=0x64010102]}, @ssrr={0x89, 0x7, 0x2b, [@multicast1]}]}}}}})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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")
ppoll(&(0x7f0000000400)=[{r3, 0x90ea}, {0xffffffffffffffff, 0x8001}, {r2, 0x2100}, {r5, 0x20}, {r4, 0x2018}, {0xffffffffffffffff, 0x2000}], 0x6, &(0x7f0000000600), &(0x7f0000000640)={[0x2]}, 0x8)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuset.effective_mems\x00', 0x275a, 0x0)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r10, 0xc028660f, &(0x7f0000000040)={0x0, r9})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x1a, &(0x7f0000000f00)=ANY=[@ANYBLOB="9c540800fcffffff18110000", @ANYRES32=r6, @ANYBLOB="0000000022000000b7020000000000008500000086000000c314c0fff0ffffff18520000020000000000000000861101000000c835ffff00000000180000000200000000000000acbb0000185b00000c0000000000000000000000b7080000000000007b8af8ff00000000b7080000070000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018", @ANYRES32=r7, @ANYBLOB="0000000000000000b70500000800000085000000a5000000", @ANYRES16=r9, @ANYRES16=r5], &(0x7f0000000180)='syzkaller\x00', 0x1, 0xd3, &(0x7f00000001c0)=""/211, 0x41100, 0x41, '\x00', r8, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000440)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000000480)={0x3, 0x1, 0x1, 0x3}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f00000004c0)=[{0x5, 0x1, 0x9, 0x3b79201c3ba47873}, {0x0, 0x1, 0x10, 0xc}, {0x0, 0x2, 0xc, 0x9}, {0x3, 0x2, 0xb, 0x1}, {0x1, 0x5, 0x1, 0x8}, {0x0, 0x2, 0x0, 0x7}], 0x10, 0x3}, 0x90)

115.511251ms ago: executing program 3 (id=523):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f0000000a80)=ANY=[@ANYBLOB="180000000000002000000000ff000000850000000f000000850000000500000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='ext4_other_inode_update_time\x00', r0}, 0xfffffffffffffe95)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a)
write(r1, &(0x7f0000000000)="240000001200ffffffff00000000040180000000000000000000000008000f0040000000", 0x24)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='net/udp\x00')
writev(r2, &(0x7f0000000780)=[{&(0x7f00000004c0)='4', 0x1}], 0x1)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value, &(0x7f0000000100)=0x8)

56.349635ms ago: executing program 2 (id=524):
socket$inet_tcp(0x2, 0x1, 0x0)
pipe(&(0x7f0000000780))
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149)
socket$inet6_sctp(0xa, 0x1, 0x84)

56.191446ms ago: executing program 3 (id=525):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x2, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r0}, {}, {0x15, 0x0, 0x0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

54.796485ms ago: executing program 3 (id=526):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x90)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'gre0\x00'})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000080))
r1 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x0, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb502000008000000b70300000000000085000000"], &(0x7f0000000300)='GPL\x00'}, 0x90)
pread64(0xffffffffffffffff, &(0x7f0000000080)=""/237, 0xed, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000000)='./file0\x00', 0x40c040, &(0x7f0000000740), 0x3e, 0x507, &(0x7f0000000080)="$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")
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r2, 0x40505330, &(0x7f0000000680)={{}, {0xe}, 0x0, 0x0, 0xff})
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000003c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r4}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
mkdir(&(0x7f0000000100)='./file0\x00', 0x175)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r5, 0xc018937e, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x2}}, './file0\x00'})
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000), 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000080)={0x5, 0x40, 0xfa00, {{0xa, 0x0, 0x8001, @empty}, {0xa, 0x0, 0x0, @empty}}}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f00000024c0)=ANY=[@ANYBLOB="050000000000000069113200000000008510000002000000850000000500000095000000000000009500c4050000000077d8f3b423cdac8d80000000000000102be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f68a7d06d753507866907dc6751dfb265a0e3ccae669e173a649c1cfd6587d452d6453559c3421eed73d5661cfe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff050011bbecc2f4e6779af2551ce935b0f327cb3f011a7d0660d1a13ed38ae89d24e1cebfba2f87925bfacba83109751fe6c0541cd027edd68149ee99eebc677d6dd4aed4af7500d7900a820b63278f4e92895614cd50cbe43a1ed2526814bcf11887d8dc91dd6f469f9740bf3a73b100000000000009d27d753a3066a096e9e086cea20e0000b6670c3df2660900000000000000447c106a08893ed20fa7a050fbbef9e326e827e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada127414d0b2877ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000000000000000000000000000000000000000000000000000000000000000000005233226ee7b4de17ff24000c52f4ebf1c893bb97734a83584898eccb26f3b789cfc4cd985fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4e48f35530a0af4aac9d07713f05de969c38331973d55a17690b6f7f9ccbe44b138efc20a546d3d5227e23b03f2a834391ad24fe7d9b20cfde6c25a3836978d2efa286a87f7a32417f1b825a16857aa54a859989d893ad4bf9180ca85ed3ee19843e13f642af0c90f8fca010812ccb3758ec9afe9f8db501b4061f60f06e8410c96edd9701a64657d500744a7184bc5828b2f978f2f9eeb3983c4ac41b154eebfe64d2c2ef1816cb11565679eb6640b32a49fd991811dfb258713624a757a6cc4fff48a27dab16ebbd8405a1abd85e0e946b9fe8e1dfa80eddb3ed496aa46b5eea7c7119f09e2d9d48a1d7367611d7c68cd1cd02074d6e38074230517d2d4424de5897bd110e6294bcfe98000bfa6e9919b956fa369d5e652e6cbe58d52990e65c6b7aac9553ca7d273d7a43e536be2f212f8788c2d1b3929f466c1ef408b2a8e71029a65f2a2f21f710acfd1b9f9ce56114a69e6f9e2861a8a56d9d604a56e2dbcd2fbe9cb4db180a145785f94b27a380dffa612eee33056cd0824374f1bf2f89de1bb4fa70d6c8000000001342faa8040807c0276b5ac9647e7491c1e21cd5bfdce4ddcc1b7f50a4a51d87fb0000000000000000000000000050b5d4375adcef4b0365e0a910a1d3ff536f18efaa6d163fbeb8c92072153d8d10f30884b8b15bf441a42935eaaef2d9a277a83fb74c00a041d97fb2f23223cc784be3f11f9992225ab0edbe92b25c5c41905583108a4b68984338a916d3ea05ecca45f99beecf56341075ed4387159b563501166f7a8abcbcd38c5852ef7f624ca8a2f91a17304a92919f66bc72534c0e197679796a667d987abea7a09d263988539b0d89bef76cac0f3d3ea4a139e108a4bdc148695a7518e425dba2b8acaa1ef7c736c88cea7c93bbc366ec3d8a5897a5e40442772784ffe1808e6335edb6fe1125c548698fcd02c74945ab7dffa618ff39fb89b633b74b5572d41dbac30051f5b263ed9a5a590d45c6eb37a059f9117a9923b4f8e78bba39b6801d2a57bea49bfe546c765d8a52a6bec46a26c022f7508ddd6c7e6161ba51408ba085fb506fd53173d1bf33d3a633568888bfc657f524a156dd54bcb16355c9a4200a7afcadff35f7e97ce8f63aa4f5686dbfab1d13128cde60a40a5721b281ee2d8f4e81c2673e159dd4d8cc11211865a9063b85dab4dc66898ff30b1116aed68403133e79abfbb29cdda78328755c282ff47ce9cbbae753da77a38a5b931cee09c8ebf7974862266f6ee2c3e19833869ba4ef05a99d851aa52d721ee9166e11e50da5ca162823d0c8f89cadac1b1d8bf9134408383104f4a20279fc249b1bfdab79878013773945056304a93179d0d3d6425eede4762b417c1ee8029af2d0b81f6aa2df229dcdaca1e97b184e267690ddd5b90999ef19b5b41d72afdd704c926d9c4a72f2886f73a9e71e5df7403ef6d965e60c938b856edfab81af093f650341de767e3b53fd000000002f764fd240d9fb6eaf864db2b58069eded19fcc4a229c72ee14d424f3d388e3c9d5af2e49f374f7915ee31a3e6c5a0ecfc4e8468d0f2955726d30eedaafc0a251335961796c1e9c2d674509c9eb1062cbe6f68a0323330edbd5224ad7b003e91d8b89e2552cb35c39d2b81addf19be15f455d592dc67f8eb0c631ca7b24d972f5fbb462367738832b7b19663f8cc2ca56e49bad4bd791a8277dfe2261265679b383ab4455fcd02d4686c4fa30d05a53b8e3a228947a16e9329bc9ce25659ad305b1f849128a573aa6fc639de8245067893278df9e1e60a5acdfea4d60415a1beafc4476bd5eaf3d55f05279b63fff168419ad0415bcc3c94f36a9ad19c8bad110eae5dac5bbd9ff33a2e0fb32b9ed37f6193fccb131d45e244479cb123140e0a3ddc39b5546f1e9534133894d95b5de60dbbbcd2936a56a8d42c275385319d11ad49ffd786d187c63a1b2f32d216655ab774d07092044fa526bbd9e7d810421d186e985edcdcd39ec406fb21f94abe57fbdd63d223778a0fd81c17ac2249eb17f1b6e81688e205b657140a77519bcc5f5e7934b724b6f80d065eaa55d017f5b4900c038cd9adbf0ed8e2b05ee372be51147728438c9f980f38293cbb470f722a2b303f9f5ca59ec778733b77a07c97f7faa345d1ac0a37da7649cc4b6ab82e9d1cd2e0834b05b51679d5081504038ca0ef0ff01dc554548f86cd1e3eeaee4564f9345d1112ae364ed7ad4511a82fb82b0e9569ca901337058c534f891bcdc81f8756306f9223f556"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x468, &(0x7f00000004c0)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
socket$netlink(0x10, 0x3, 0x0)

289.01µs ago: executing program 0 (id=527):
ioctl$TIOCGICOUNT(0xffffffffffffffff, 0x545d, 0x0)
getgroups(0x27, &(0x7f0000002540))
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x3, &(0x7f00000001c0)={&(0x7f0000000040)={0x2c, r1, 0x1, 0x2c, 0x0, {0x27}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)

0s ago: executing program 2 (id=528):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$kcm(0xa, 0x0, 0x11)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d00000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x900, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x74, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x44, 0x2, {{}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_RATE={0x14, 0xd}, @TCA_NETEM_CORRUPT={0xc, 0x2}]}}}]}, 0x74}}, 0x0)

kernel console output (not intermixed with test programs):

5027][ T5264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.050746][ T5264] R13: 000000000000000b R14: 00007fdf4c8d2f60 R15: 00007ffe2c921a98
[   78.059515][ T5264]  </TASK>
[   78.067017][   T50] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.081703][ T4923] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.102787][ T5025] veth1_vlan: entered promiscuous mode
[   78.132610][ T5027] 8021q: adding VLAN 0 to HW filter on device team0
[   78.153832][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.162113][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.162964][ T5291] loop2: detected capacity change from 0 to 1024
[   78.187896][ T5291] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   78.199885][ T5291] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   78.210547][ T5291] EXT4-fs (loop2): orphan cleanup on readonly fs
[   78.218134][ T5291] EXT4-fs error (device loop2): __ext4_get_inode_loc:4357: comm syz.2.300: Invalid inode table block 0 in block_group 0
[   78.219675][   T50] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.233000][ T5291] EXT4-fs (loop2): Remounting filesystem read-only
[   78.250140][ T5291] Quota error (device loop2): write_blk: dquota write failed
[   78.259669][ T5291] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   78.271119][ T5291] EXT4-fs (loop2): 1 truncate cleaned up
[   78.272424][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.286087][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.296807][ T5291] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   78.301333][ T5025] veth0_macvtap: entered promiscuous mode
[   78.312201][ T5291] SELinux: (dev loop2, type ext4) getxattr errno 5
[   78.325242][ T5291] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.340117][ T5025] veth1_macvtap: entered promiscuous mode
[   78.359599][ T5025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.370902][ T5025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.383932][ T5025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.396801][ T5025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.407218][ T5025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.418636][ T5025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.431100][ T5025] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.441717][ T5291] loop2: detected capacity change from 0 to 164
[   78.464739][   T50] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.505077][ T5027] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.518366][ T5025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.530008][ T5025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.541105][ T5025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.552020][ T5025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.561971][ T5025] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.572601][ T5025] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.583776][ T5025] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.596951][   T50] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.612038][ T5245] chnl_net:caif_netlink_parms(): no params data found
[   78.624085][ T5025] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.633448][ T5025] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.642527][ T5025] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.652159][ T5025] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.718975][ T5305] FAULT_INJECTION: forcing a failure.
[   78.718975][ T5305] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.732704][ T5305] CPU: 1 PID: 5305 Comm: syz.2.302 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   78.743901][ T5305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   78.754747][ T5305] Call Trace:
[   78.758115][ T5305]  <TASK>
[   78.761694][ T5305]  dump_stack_lvl+0xf2/0x150
[   78.766340][ T5305]  dump_stack+0x15/0x20
[   78.771303][ T5305]  should_fail_ex+0x229/0x230
[   78.776641][ T5305]  should_fail+0xb/0x10
[   78.781117][ T5305]  should_fail_usercopy+0x1a/0x20
[   78.786347][ T5305]  _copy_from_user+0x1e/0xd0
[   78.791451][ T5305]  copy_msghdr_from_user+0x54/0x2a0
[   78.796900][ T5305]  __sys_sendmsg+0x17d/0x280
[   78.801649][ T5305]  __x64_sys_sendmsg+0x46/0x50
[   78.807496][ T5305]  x64_sys_call+0xb25/0x2d70
[   78.812794][ T5305]  do_syscall_64+0xc9/0x1c0
[   78.817621][ T5305]  ? clear_bhb_loop+0x55/0xb0
[   78.822687][ T5305]  ? clear_bhb_loop+0x55/0xb0
[   78.827890][ T5305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.833936][ T5305] RIP: 0033:0x7fdf4c744bd9
[   78.839039][ T5305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.860415][ T5305] RSP: 002b:00007fdf4b9c6048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.869805][ T5305] RAX: ffffffffffffffda RBX: 00007fdf4c8d2f60 RCX: 00007fdf4c744bd9
[   78.879331][ T5305] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000000000004
[   78.894960][ T5305] RBP: 00007fdf4b9c60a0 R08: 0000000000000000 R09: 0000000000000000
[   78.903723][ T5305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.914066][ T5305] R13: 000000000000000b R14: 00007fdf4c8d2f60 R15: 00007ffe2c921a98
[   78.923376][ T5305]  </TASK>
[   78.934408][ T5027] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.959112][ T5245] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.966508][ T5245] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.982135][ T5245] bridge_slave_0: entered allmulticast mode
[   78.983732][ T5308] 9pnet_fd: Insufficient options for proto=fd
[   78.991355][ T5245] bridge_slave_0: entered promiscuous mode
[   79.011551][ T5245] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.019527][ T5245] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.030758][ T5245] bridge_slave_1: entered allmulticast mode
[   79.038134][ T5245] bridge_slave_1: entered promiscuous mode
[   79.061054][   T29] audit: type=1400 audit(1720489524.083:392): avc:  denied  { lock } for  pid=5316 comm="syz.2.304" path="socket:[16567]" dev="sockfs" ino=16567 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[   79.094090][   T50] bridge_slave_1: left allmulticast mode
[   79.100880][   T50] bridge_slave_1: left promiscuous mode
[   79.107154][   T50] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.122796][   T50] bridge_slave_0: left allmulticast mode
[   79.131627][   T50] bridge_slave_0: left promiscuous mode
[   79.139112][   T50] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.242717][   T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   79.255287][   T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   79.266588][   T50] bond0 (unregistering): Released all slaves
[   79.294122][ T5245] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.312292][ T5245] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.347377][ T5245] team0: Port device team_slave_0 added
[   79.355068][ T5245] team0: Port device team_slave_1 added
[   79.394601][   T50] hsr_slave_0: left promiscuous mode
[   79.403733][   T50] hsr_slave_1: left promiscuous mode
[   79.409961][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   79.417996][   T50] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.429049][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   79.436896][   T50] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.447840][   T50] veth1_macvtap: left promiscuous mode
[   79.454690][   T50] veth0_macvtap: left promiscuous mode
[   79.461150][   T50] veth1_vlan: left promiscuous mode
[   79.466951][   T50] veth0_vlan: left promiscuous mode
[   79.559600][   T50] team0 (unregistering): Port device team_slave_1 removed
[   79.576388][   T50] team0 (unregistering): Port device team_slave_0 removed
[   79.622228][ T5245] batman_adv: batadv0: Adding interface: batadv_slave_0
[   79.630131][ T5245] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.659778][ T5245] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   79.684020][ T5245] batman_adv: batadv0: Adding interface: batadv_slave_1
[   79.692447][ T5245] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.719907][ T5245] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   79.762848][ T5027] veth0_vlan: entered promiscuous mode
[   79.772510][ T5245] hsr_slave_0: entered promiscuous mode
[   79.778652][ T5245] hsr_slave_1: entered promiscuous mode
[   79.786023][ T5245] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   79.794300][ T5245] Cannot create hsr debugfs directory
[   79.811414][ T5027] veth1_vlan: entered promiscuous mode
[   79.944532][ T5027] veth0_macvtap: entered promiscuous mode
[   79.968675][ T5027] veth1_macvtap: entered promiscuous mode
[   80.003548][ T5027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.014416][ T5027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.024907][ T5027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.035822][ T5027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.045924][ T5027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.057106][ T5027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.069594][ T5027] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.079286][ T5027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.090385][ T5027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.100689][ T5027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.112864][ T5027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.122769][ T5027] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.134156][ T5027] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.145777][ T5027] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.156407][ T5347] chnl_net:caif_netlink_parms(): no params data found
[   80.175655][ T5027] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.185076][ T5027] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.194231][ T5027] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.203299][ T5027] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.264368][ T1522] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.325675][ T5347] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.332854][ T5347] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.340727][ T5347] bridge_slave_0: entered allmulticast mode
[   80.347961][ T5347] bridge_slave_0: entered promiscuous mode
[   80.362743][ T1522] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.377190][ T5347] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.385798][ T5347] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.386050][   T29] audit: type=1326 audit(1720489525.398:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5393 comm="syz.4.283" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f729a15cbd9 code=0x0
[   80.405599][ T5347] bridge_slave_1: entered allmulticast mode
[   80.423659][ T5347] bridge_slave_1: entered promiscuous mode
[   80.444015][ T5347] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.460050][ T1522] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.475164][ T5347] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.485208][ T5396] netlink: 48 bytes leftover after parsing attributes in process `syz.4.283'.
[   80.520989][ T1522] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.539354][ T5347] team0: Port device team_slave_0 added
[   80.545889][ T5245] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   80.556879][ T5347] team0: Port device team_slave_1 added
[   80.569077][ T5245] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   80.585660][ T5245] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   80.595698][ T5347] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.603371][ T5347] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.632281][ T5347] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.645815][ T5347] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.652807][ T5347] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.681192][ T5347] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.692567][ T5245] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   80.761163][ T5347] hsr_slave_0: entered promiscuous mode
[   80.767683][ T5347] hsr_slave_1: entered promiscuous mode
[   80.774207][ T5347] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   80.782694][ T5347] Cannot create hsr debugfs directory
[   80.795259][ T1522] bridge_slave_1: left allmulticast mode
[   80.801488][ T1522] bridge_slave_1: left promiscuous mode
[   80.808123][ T1522] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.816969][ T1522] bridge_slave_0: left allmulticast mode
[   80.822748][ T1522] bridge_slave_0: left promiscuous mode
[   80.829001][ T1522] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.939676][ T1522] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   80.951188][ T1522] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   80.963407][ T1522] bond0 (unregistering): Released all slaves
[   80.997940][ T5446] loop2: detected capacity change from 0 to 1024
[   81.021580][ T5446] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   81.044937][ T5446] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   81.057077][ T5446] EXT4-fs (loop2): orphan cleanup on readonly fs
[   81.075390][ T5245] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.084788][ T5446] EXT4-fs error (device loop2): __ext4_get_inode_loc:4357: comm syz.2.308: Invalid inode table block 0 in block_group 0
[   81.102296][ T5446] EXT4-fs (loop2): Remounting filesystem read-only
[   81.109120][ T5446] Quota error (device loop2): write_blk: dquota write failed
[   81.117976][ T5446] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   81.142497][ T1522] hsr_slave_0: left promiscuous mode
[   81.148833][ T5446] EXT4-fs (loop2): 1 truncate cleaned up
[   81.154998][ T1522] hsr_slave_1: left promiscuous mode
[   81.163755][ T5446] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   81.177923][ T5446] SELinux: (dev loop2, type ext4) getxattr errno 5
[   81.185009][ T1522] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.192717][ T1522] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.197543][ T5446] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.212746][ T1522] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.220495][ T1522] batman_adv: batadv0: Removing interface: batadv_slave_1
[   81.237653][ T1522] veth1_macvtap: left promiscuous mode
[   81.243408][ T1522] veth0_macvtap: left promiscuous mode
[   81.249250][ T1522] veth1_vlan: left promiscuous mode
[   81.254934][ T1522] veth0_vlan: left promiscuous mode
[   81.271597][ T5468] loop4: detected capacity change from 0 to 512
[   81.279838][ T5468] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   81.293237][ T5468] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[   81.304139][ T5468] EXT4-fs (loop4): group descriptors corrupted!
[   81.324390][ T5446] loop2: detected capacity change from 0 to 164
[   81.414331][ T1522] team0 (unregistering): Port device team_slave_1 removed
[   81.425957][ T1522] team0 (unregistering): Port device team_slave_0 removed
[   81.500452][ T5245] 8021q: adding VLAN 0 to HW filter on device team0
[   81.512953][ T3159] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.520162][ T3159] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.654576][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.661759][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.766366][ T5245] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   81.776885][ T5245] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   81.972004][ T5245] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.021952][ T5494] 9pnet_fd: Insufficient options for proto=fd
[   82.065217][   T29] audit: type=1400 audit(1720489527.072:394): avc:  denied  { write } for  pid=5503 comm="syz.2.313" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   82.086587][ T5347] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   82.117320][ T5347] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   82.144629][ T5347] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   82.154410][ T5347] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   82.194984][ T5510] loop2: detected capacity change from 0 to 512
[   82.218095][ T5245] veth0_vlan: entered promiscuous mode
[   82.224001][   T29] audit: type=1400 audit(1720489527.232:395): avc:  denied  { lock } for  pid=5514 comm="syz.4.315" path="socket:[17102]" dev="sockfs" ino=17102 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   82.229718][ T5245] veth1_vlan: entered promiscuous mode
[   82.276012][ T5510] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13
[   82.287383][ T5245] veth0_macvtap: entered promiscuous mode
[   82.296427][ T5245] veth1_macvtap: entered promiscuous mode
[   82.304075][ T5510] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.314: invalid indirect mapped block 2683928664 (level 1)
[   82.321578][ T5347] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.335746][ T5347] 8021q: adding VLAN 0 to HW filter on device team0
[   82.347696][ T5245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.358282][ T5245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.362215][ T5510] EXT4-fs (loop2): 1 truncate cleaned up
[   82.371029][ T5245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.388725][ T5245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.399690][ T5245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.406413][ T5510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.410709][ T5245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.436366][ T5245] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.445240][ T5245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.456640][ T5245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.468068][ T5245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.479619][ T5245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.490265][ T5245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.501566][ T5245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.514002][ T5245] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.533546][ T3163] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.540755][ T3163] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.559362][ T3163] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.567193][ T3163] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.578281][ T5245] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.588610][ T5245] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.598455][ T5245] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.609486][ T5245] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.645865][ T5347] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   82.658141][ T5347] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   82.681932][ T5510] tmpfs: Unsupported parameter 'huge'
[   82.717491][ T4923] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.729349][ T5552] loop0: detected capacity change from 0 to 512
[   82.737258][ T5552] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   82.746685][ T5552] EXT4-fs (loop0): invalid journal inode
[   82.754624][ T5552] EXT4-fs (loop0): can't get journal size
[   82.757734][ T5347] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.763533][ T5552] EXT4-fs (loop0): 1 truncate cleaned up
[   82.778546][ T5552] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.806282][   T29] audit: type=1326 audit(1720489527.810:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5556 comm="syz.2.317" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdf4c744bd9 code=0x0
[   82.834060][   T29] audit: type=1400 audit(1720489527.840:397): avc:  denied  { remove_name } for  pid=5551 comm="syz.0.298" name="control" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   82.857027][   T29] audit: type=1400 audit(1720489527.840:398): avc:  denied  { rmdir } for  pid=5551 comm="syz.0.298" name="control" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   82.857222][ T5347] veth0_vlan: entered promiscuous mode
[   82.892473][ T5347] veth1_vlan: entered promiscuous mode
[   82.901962][ T5245] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.912507][ T5347] veth0_macvtap: entered promiscuous mode
[   82.922374][ T5347] veth1_macvtap: entered promiscuous mode
[   82.934634][ T5347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.945682][ T5347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.957124][ T5347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.957228][ T5562] netlink: 48 bytes leftover after parsing attributes in process `syz.2.317'.
[   82.968490][ T5347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.968506][ T5347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.005152][ T5347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.015897][ T5347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.026879][ T5347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.039045][ T5347] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.059358][ T5347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.070060][ T5347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.071121][ T5564] loop0: detected capacity change from 0 to 1024
[   83.080487][ T5347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.098997][ T5347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.109078][ T5347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.111189][ T5564] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   83.120708][ T5347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.133862][ T5564] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   83.143078][ T5347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.162709][ T5347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.163080][ T5564] EXT4-fs (loop0): orphan cleanup on readonly fs
[   83.176105][ T5347] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.182203][ T5564] EXT4-fs error (device loop0): __ext4_get_inode_loc:4357: comm syz.0.318: Invalid inode table block 0 in block_group 0
[   83.190385][ T5347] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.213339][ T5347] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.219887][ T5564] EXT4-fs (loop0): Remounting filesystem read-only
[   83.223705][ T5347] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.231587][ T5564] Quota error (device loop0): write_blk: dquota write failed
[   83.241956][ T5347] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.250681][ T5564] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   83.253010][ T5564] EXT4-fs (loop0): 1 truncate cleaned up
[   83.277148][ T5564] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   83.290960][ T5564] SELinux: (dev loop0, type ext4) getxattr errno 5
[   83.299856][ T5564] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.359623][ T5564] loop0: detected capacity change from 0 to 164
[   83.402560][ T5570] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   83.519554][ T5575] FAULT_INJECTION: forcing a failure.
[   83.519554][ T5575] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.533044][ T5575] CPU: 0 PID: 5575 Comm: syz.0.320 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   83.543746][ T5575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   83.553968][ T5575] Call Trace:
[   83.557975][ T5575]  <TASK>
[   83.560964][ T5575]  dump_stack_lvl+0xf2/0x150
[   83.565754][ T5575]  dump_stack+0x15/0x20
[   83.570042][ T5575]  should_fail_ex+0x229/0x230
[   83.575623][ T5575]  should_fail+0xb/0x10
[   83.579817][ T5575]  should_fail_usercopy+0x1a/0x20
[   83.585105][ T5575]  _copy_from_user+0x1e/0xd0
[   83.590353][ T5575]  copy_msghdr_from_user+0x54/0x2a0
[   83.595658][ T5575]  do_recvmmsg+0x290/0x720
[   83.600728][ T5575]  __x64_sys_recvmmsg+0xe2/0x170
[   83.605991][ T5575]  x64_sys_call+0x271d/0x2d70
[   83.610763][ T5575]  do_syscall_64+0xc9/0x1c0
[   83.615463][ T5575]  ? clear_bhb_loop+0x55/0xb0
[   83.620288][ T5575]  ? clear_bhb_loop+0x55/0xb0
[   83.626466][ T5575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.632489][ T5575] RIP: 0033:0x7ffa0ef95bd9
[   83.637033][ T5575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.657110][ T5575] RSP: 002b:00007ffa0e217048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   83.665563][ T5575] RAX: ffffffffffffffda RBX: 00007ffa0f123f60 RCX: 00007ffa0ef95bd9
[   83.673560][ T5575] RDX: 0000000000000001 RSI: 0000000020000b40 RDI: 0000000000000004
[   83.681767][ T5575] RBP: 00007ffa0e2170a0 R08: 0000000000000000 R09: 0000000000000000
[   83.689924][ T5575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   83.698857][ T5575] R13: 000000000000000b R14: 00007ffa0f123f60 R15: 00007ffcfe1dd2f8
[   83.706960][ T5575]  </TASK>
[   83.738963][ T5582] loop0: detected capacity change from 0 to 256
[   83.757653][ T5584] loop2: detected capacity change from 0 to 512
[   83.764650][ T5584] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   83.775555][ T5584] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[   83.785014][ T5585] 9pnet_fd: Insufficient options for proto=fd
[   83.785796][ T5584] EXT4-fs (loop2): group descriptors corrupted!
[   83.820069][   T29] audit: type=1400 audit(1720489528.816:399): avc:  denied  { append } for  pid=5586 comm="syz.1.324" name="qrtr-tun" dev="devtmpfs" ino=233 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   83.881390][ T5589] team0: entered promiscuous mode
[   83.886764][ T5589] team_slave_0: entered promiscuous mode
[   83.892783][ T5589] team_slave_1: entered promiscuous mode
[   83.980830][ T5588] team0: left promiscuous mode
[   83.985830][ T5588] team_slave_0: left promiscuous mode
[   83.992514][ T5588] team_slave_1: left promiscuous mode
[   84.032980][ T5593] loop1: detected capacity change from 0 to 512
[   84.043063][ T5593] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[   84.043215][ T5593] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.326: invalid indirect mapped block 2683928664 (level 1)
[   84.043416][ T5593] EXT4-fs (loop1): 1 truncate cleaned up
[   84.043906][ T5593] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.269391][ T5593] tmpfs: Unsupported parameter 'huge'
[   84.353052][ T5347] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.772004][ T5615] loop2: detected capacity change from 0 to 512
[   84.780734][ T5615] EXT4-fs (loop2): inodes count not valid: 5 vs 32
[   84.837360][ T5618] loop2: detected capacity change from 0 to 512
[   84.844484][ T5618] EXT4-fs: Ignoring removed mblk_io_submit option
[   84.858910][ T5618] EXT4-fs error (device loop2): __ext4_iget:4906: inode #11: block 1: comm syz.2.332: invalid block
[   84.872136][ T5618] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz.2.332: couldn't read orphan inode 11 (err -117)
[   84.887503][ T5618] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.223668][ T4923] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.382696][ T5624] 9pnet_fd: Insufficient options for proto=fd
[   85.389439][ T5625] netlink: 48 bytes leftover after parsing attributes in process `syz.2.333'.
[   85.609389][ T5630] team0: entered promiscuous mode
[   85.616883][ T5630] team_slave_0: entered promiscuous mode
[   85.623236][ T5630] team_slave_1: entered promiscuous mode
[   85.685357][ T5629] team0: left promiscuous mode
[   85.690385][ T5629] team_slave_0: left promiscuous mode
[   85.696356][ T5629] team_slave_1: left promiscuous mode
[   85.757536][ T5635] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   85.987106][ T5638] loop0: detected capacity change from 0 to 512
[   85.997426][ T5638] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   86.009906][ T5638] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[   86.020004][ T5638] EXT4-fs (loop0): group descriptors corrupted!
[   86.201564][ T5643] netlink: 'syz.2.341': attribute type 6 has an invalid length.
[   87.209821][   T29] kauditd_printk_skb: 12 callbacks suppressed
[   87.209836][   T29] audit: type=1326 audit(1720489532.197:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5648 comm="syz.1.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24a4b8ebd9 code=0x7ffc0000
[   87.239977][   T29] audit: type=1326 audit(1720489532.197:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5648 comm="syz.1.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24a4b8ebd9 code=0x7ffc0000
[   87.258953][ T5651] 9pnet_fd: Insufficient options for proto=fd
[   87.270832][   T29] audit: type=1400 audit(1720489532.197:414): avc:  denied  { read } for  pid=5644 comm="syz.4.342" path="socket:[18075]" dev="sockfs" ino=18075 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   87.275039][ T5649] loop1: detected capacity change from 0 to 512
[   87.296252][   T29] audit: type=1326 audit(1720489532.247:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5648 comm="syz.1.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f24a4b8ebd9 code=0x7ffc0000
[   87.296291][   T29] audit: type=1326 audit(1720489532.247:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5648 comm="syz.1.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24a4b8ebd9 code=0x7ffc0000
[   87.296323][   T29] audit: type=1326 audit(1720489532.247:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5648 comm="syz.1.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24a4b8ebd9 code=0x7ffc0000
[   87.296415][   T29] audit: type=1326 audit(1720489532.247:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5648 comm="syz.1.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f24a4b8ebd9 code=0x7ffc0000
[   87.306032][   T29] audit: type=1326 audit(1720489532.267:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5648 comm="syz.1.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24a4b8ebd9 code=0x7ffc0000
[   87.329748][ T5659] team0: entered promiscuous mode
[   87.356954][   T29] audit: type=1326 audit(1720489532.267:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5648 comm="syz.1.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f24a4b8ebd9 code=0x7ffc0000
[   87.356993][   T29] audit: type=1326 audit(1720489532.267:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5648 comm="syz.1.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f24a4b8ec13 code=0x7ffc0000
[   87.494883][ T5662] loop0: detected capacity change from 0 to 256
[   87.496872][ T5659] team_slave_0: entered promiscuous mode
[   87.507212][ T5662] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   87.510777][ T5659] team_slave_1: entered promiscuous mode
[   87.526659][ T5662] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   87.543394][ T5649] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.557011][ T5649] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.584252][ T5666] loop4: detected capacity change from 0 to 256
[   87.593975][ T5666] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   87.594367][ T5649] dummy0: entered promiscuous mode
[   87.615090][ T5658] team0: left promiscuous mode
[   87.620746][ T5658] team_slave_0: left promiscuous mode
[   87.626470][ T5658] team_slave_1: left promiscuous mode
[   87.632593][ T5648] dummy0: left promiscuous mode
[   87.697717][ T5347] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.753535][ T5680] loop2: detected capacity change from 0 to 512
[   87.762644][ T5680] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   87.773760][ T5680] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[   87.783856][ T5680] EXT4-fs (loop2): group descriptors corrupted!
[   87.787228][ T5683] loop1: detected capacity change from 0 to 512
[   87.798585][ T5683] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[   87.806932][ T5683] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.352: invalid indirect mapped block 2683928664 (level 1)
[   87.821263][ T5683] EXT4-fs (loop1): 1 truncate cleaned up
[   87.827615][ T5683] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.849791][ T5685] netlink: 48 bytes leftover after parsing attributes in process `syz.0.351'.
[   88.102234][ T1656] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.136168][ T5683] tmpfs: Unsupported parameter 'huge'
[   88.166457][ T1656] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.185112][ T5347] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.234684][ T1656] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.303979][ T1656] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.413281][ T1656] bridge_slave_1: left allmulticast mode
[   88.419084][ T1656] bridge_slave_1: left promiscuous mode
[   88.424808][ T1656] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.472641][ T1656] bridge_slave_0: left allmulticast mode
[   88.478506][ T1656] bridge_slave_0: left promiscuous mode
[   88.484801][ T1656] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.669356][ T1656] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   88.683361][ T5707] loop0: detected capacity change from 0 to 512
[   88.695633][ T1656] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   88.711799][ T5707] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.712328][ T1656] bond0 (unregistering): Released all slaves
[   88.736994][ T5707] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.755261][ T5716] loop2: detected capacity change from 0 to 256
[   88.780640][ T5716] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   88.803468][ T5707] dummy0: entered promiscuous mode
[   88.814019][ T5705] dummy0: left promiscuous mode
[   88.842805][ T1656] hsr_slave_0: left promiscuous mode
[   88.849286][ T1656] hsr_slave_1: left promiscuous mode
[   88.855792][ T1656] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   88.864656][ T1656] batman_adv: batadv0: Removing interface: batadv_slave_0
[   88.874083][ T1656] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   88.883512][ T1656] batman_adv: batadv0: Removing interface: batadv_slave_1
[   88.892624][ T5245] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.905389][ T1656] veth1_macvtap: left promiscuous mode
[   88.911245][ T1656] veth0_macvtap: left promiscuous mode
[   88.917044][ T1656] veth1_vlan: left promiscuous mode
[   88.922647][ T1656] veth0_vlan: left promiscuous mode
[   89.020308][ T1656] team0 (unregistering): Port device team_slave_1 removed
[   89.031379][ T1656] team0 (unregistering): Port device team_slave_0 removed
[   89.139814][ T5693] chnl_net:caif_netlink_parms(): no params data found
[   89.162858][ T5737] netlink: 48 bytes leftover after parsing attributes in process `syz.0.369'.
[   89.180315][ T5693] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.188673][ T5693] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.196396][ T5693] bridge_slave_0: entered allmulticast mode
[   89.203195][ T5693] bridge_slave_0: entered promiscuous mode
[   89.210732][ T5693] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.218626][ T5693] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.225924][ T5693] bridge_slave_1: entered allmulticast mode
[   89.233046][ T5693] bridge_slave_1: entered promiscuous mode
[   89.251423][ T5693] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.298898][ T5693] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.329512][ T5693] team0: Port device team_slave_0 added
[   89.337994][ T5693] team0: Port device team_slave_1 added
[   89.357925][ T5693] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.366212][ T5693] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.394575][ T5693] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.408013][ T5693] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.415845][ T5693] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.445522][ T5693] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.480399][ T5693] hsr_slave_0: entered promiscuous mode
[   89.487055][ T5693] hsr_slave_1: entered promiscuous mode
[   89.493240][ T5693] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   89.501263][ T5693] Cannot create hsr debugfs directory
[   89.633893][ T5741] chnl_net:caif_netlink_parms(): no params data found
[   89.691457][ T5741] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.699160][ T5741] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.707934][ T5741] bridge_slave_0: entered allmulticast mode
[   89.715273][ T5741] bridge_slave_0: entered promiscuous mode
[   89.722441][ T5741] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.729764][ T5741] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.739697][ T5741] bridge_slave_1: entered allmulticast mode
[   89.747275][ T5741] bridge_slave_1: entered promiscuous mode
[   89.751263][ T5771] loop1: detected capacity change from 0 to 256
[   89.785819][ T1656] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.801711][ T5741] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.815763][ T5741] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.846628][ T5741] team0: Port device team_slave_0 added
[   89.849678][ T5775] loop1: detected capacity change from 0 to 512
[   89.865281][ T5741] team0: Port device team_slave_1 added
[   89.881954][ T5777] loop0: detected capacity change from 0 to 2048
[   89.886385][ T5775] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.901363][ T5775] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.924509][ T5777] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.938880][ T1656] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.941000][ T5777] capability: warning: `syz.0.378' uses 32-bit capabilities (legacy support in use)
[   89.963493][ T5777] nfs: Unknown parameter '…'
[   89.966686][ T5775] dummy0: entered promiscuous mode
[   89.986988][ T5245] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.002624][ T5774] dummy0: left promiscuous mode
[   90.011851][ T1656] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.028159][ T5741] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.035229][ T5741] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.061250][ T5741] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.083722][ T5741] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.091057][ T5741] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.117299][ T5741] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.146814][ T5347] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.149518][ T1656] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.169669][ T5790] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[   90.173327][ T5789] IPVS: stopping master sync thread 5790 ...
[   90.187568][ T5758] chnl_net:caif_netlink_parms(): no params data found
[   90.201393][ T5741] hsr_slave_0: entered promiscuous mode
[   90.207719][ T5741] hsr_slave_1: entered promiscuous mode
[   90.213756][ T5741] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   90.221313][ T5741] Cannot create hsr debugfs directory
[   90.259513][ T5693] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   90.288130][ T5693] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   90.310157][ T5693] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   90.338866][ T5693] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   90.347839][ T5801] netlink: 40 bytes leftover after parsing attributes in process `syz.1.384'.
[   90.357245][ T5758] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.364807][ T5758] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.365402][ T5758] bridge_slave_0: entered allmulticast mode
[   90.380402][ T5758] bridge_slave_0: entered promiscuous mode
[   90.381629][ T5758] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.381685][ T5758] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.381933][ T5758] bridge_slave_1: entered allmulticast mode
[   90.382488][ T5758] bridge_slave_1: entered promiscuous mode
[   90.387970][ T1656] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.446467][ T1656] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.474078][ T5758] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.491058][ T5758] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.517989][ T1656] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.535877][ T5811] netlink: 24 bytes leftover after parsing attributes in process `syz.1.388'.
[   90.546094][ T5758] team0: Port device team_slave_0 added
[   90.555339][ T5758] team0: Port device team_slave_1 added
[   90.580325][ T1656] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.598763][ T5758] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.606221][ T5758] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.632977][ T5758] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.648805][ T5758] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.655927][ T5758] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.684865][ T5758] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.724294][ T5817] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[   90.726403][ T5816] IPVS: stopping master sync thread 5817 ...
[   90.744055][ T5758] hsr_slave_0: entered promiscuous mode
[   90.750639][ T5758] hsr_slave_1: entered promiscuous mode
[   90.757793][ T5758] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   90.765492][ T5758] Cannot create hsr debugfs directory
[   90.775450][ T5693] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.825581][ T5693] 8021q: adding VLAN 0 to HW filter on device team0
[   90.833359][ T1656] bridge_slave_1: left allmulticast mode
[   90.839342][ T1656] bridge_slave_1: left promiscuous mode
[   90.845365][ T1656] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.853651][ T1656] bridge_slave_0: left allmulticast mode
[   90.859478][ T1656] bridge_slave_0: left promiscuous mode
[   90.865311][ T1656] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.876211][ T1656] bridge_slave_1: left allmulticast mode
[   90.882010][ T1656] bridge_slave_1: left promiscuous mode
[   90.888177][ T1656] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.897093][ T1656] bridge_slave_0: left allmulticast mode
[   90.903079][ T1656] bridge_slave_0: left promiscuous mode
[   90.909003][ T1656] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.097812][ T1656] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   91.110615][ T1656] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   91.124637][ T1656] bond0 (unregistering): Released all slaves
[   91.135298][ T1656] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   91.147232][ T1656] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   91.158702][ T1656] bond0 (unregistering): Released all slaves
[   91.184480][  T908] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.192262][  T908] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.212395][ T2750] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.219878][ T2750] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.249924][ T5823] loop1: detected capacity change from 0 to 512
[   91.260808][ T5823] EXT4-fs: Ignoring removed nomblk_io_submit option
[   91.291714][ T5823] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.308207][ T5823] ext4 filesystem being mounted at /24/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   91.343144][ T5741] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   91.386165][ T5741] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   91.404163][ T1656] hsr_slave_0: left promiscuous mode
[   91.416216][ T1656] hsr_slave_1: left promiscuous mode
[   91.431710][ T1656] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   91.440442][ T1656] batman_adv: batadv0: Removing interface: batadv_slave_0
[   91.453880][ T5832] FAULT_INJECTION: forcing a failure.
[   91.453880][ T5832] name failslab, interval 1, probability 0, space 0, times 0
[   91.467387][ T5832] CPU: 1 PID: 5832 Comm: syz.0.393 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   91.479723][ T5832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   91.493670][ T5832] Call Trace:
[   91.497273][ T5832]  <TASK>
[   91.500368][ T5832]  dump_stack_lvl+0xf2/0x150
[   91.505155][ T5832]  dump_stack+0x15/0x20
[   91.509963][ T5832]  should_fail_ex+0x229/0x230
[   91.515754][ T5832]  ? ___neigh_create+0x4dd/0x1100
[   91.521598][ T5832]  __should_failslab+0x92/0xa0
[   91.526903][ T5832]  should_failslab+0x9/0x20
[   91.531975][ T5832]  __kmalloc_noprof+0xa5/0x370
[   91.536776][ T5832]  ___neigh_create+0x4dd/0x1100
[   91.541712][ T5832]  ? ipt_do_table+0x16f/0xab0
[   91.546426][ T5832]  ? netlbl_enabled+0x25/0x40
[   91.551681][ T5832]  ? selinux_ip_postroute+0x1f4/0xb20
[   91.558564][ T5832]  __neigh_create+0x54/0x70
[   91.564615][ T5832]  ip_neigh_gw4+0x135/0x170
[   91.569252][ T5832]  ip_finish_output2+0x84f/0x8b0
[   91.574765][ T5832]  ? nf_confirm+0x657/0x900
[   91.579556][ T5832]  ? nf_nat_ipv4_out+0x28a/0x2f0
[   91.584714][ T5832]  ip_finish_output+0x11a/0x2a0
[   91.592211][ T5832]  ip_mc_output+0x269/0x350
[   91.597084][ T5832]  ? __pfx_ip_finish_output+0x10/0x10
[   91.602881][ T5832]  ? __pfx_ip_mc_output+0x10/0x10
[   91.608339][ T5832]  ip_send_skb+0x12f/0x140
[   91.613550][ T5832]  udp_send_skb+0x6dd/0xa10
[   91.619270][ T5832]  udp_sendmsg+0x1257/0x12f0
[   91.624449][ T5832]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   91.630286][ T5832]  ? __pfx_udp_sendmsg+0x10/0x10
[   91.635479][ T5832]  inet_sendmsg+0xaf/0xd0
[   91.639967][ T5832]  __sock_sendmsg+0x102/0x180
[   91.645707][ T5832]  ____sys_sendmsg+0x312/0x410
[   91.650644][ T5832]  __sys_sendmmsg+0x269/0x500
[   91.655527][ T5832]  __x64_sys_sendmmsg+0x57/0x70
[   91.661981][ T5832]  x64_sys_call+0xa87/0x2d70
[   91.667375][ T5832]  do_syscall_64+0xc9/0x1c0
[   91.672251][ T5832]  ? clear_bhb_loop+0x55/0xb0
[   91.677336][ T5832]  ? clear_bhb_loop+0x55/0xb0
[   91.682621][ T5832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.688925][ T5832] RIP: 0033:0x7ffa0ef95bd9
[   91.693484][ T5832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.714582][ T5832] RSP: 002b:00007ffa0e217048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   91.723638][ T5832] RAX: ffffffffffffffda RBX: 00007ffa0f123f60 RCX: 00007ffa0ef95bd9
[   91.734243][ T5832] RDX: 0000000000000001 RSI: 0000000020004d00 RDI: 0000000000000003
[   91.742858][ T5832] RBP: 00007ffa0e2170a0 R08: 0000000000000000 R09: 0000000000000000
[   91.750868][ T5832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.759659][ T5832] R13: 000000000000000b R14: 00007ffa0f123f60 R15: 00007ffcfe1dd2f8
[   91.768434][ T5832]  </TASK>
[   91.780063][ T1656] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   91.789998][ T1656] batman_adv: batadv0: Removing interface: batadv_slave_1
[   91.807697][ T1656] hsr_slave_0: left promiscuous mode
[   91.814042][ T1656] hsr_slave_1: left promiscuous mode
[   91.820589][ T1656] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   91.828475][ T1656] batman_adv: batadv0: Removing interface: batadv_slave_0
[   91.838944][ T1656] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   91.846433][ T1656] batman_adv: batadv0: Removing interface: batadv_slave_1
[   91.861346][ T1656] veth1_macvtap: left promiscuous mode
[   91.867317][ T1656] veth0_macvtap: left promiscuous mode
[   91.873567][ T1656] veth1_vlan: left promiscuous mode
[   91.880277][ T1656] veth0_vlan: left promiscuous mode
[   91.892891][ T5836] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   91.893948][ T1656] veth1_macvtap: left promiscuous mode
[   91.908896][ T1656] veth0_macvtap: left promiscuous mode
[   91.914699][ T1656] veth1_vlan: left promiscuous mode
[   91.920271][ T1656] veth0_vlan: left promiscuous mode
[   92.104132][ T1656] team0 (unregistering): Port device team_slave_1 removed
[   92.118501][ T1656] team0 (unregistering): Port device team_slave_0 removed
[   92.128893][ T5347] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.195467][ T1656] team0 (unregistering): Port device team_slave_1 removed
[   92.210596][ T1656] team0 (unregistering): Port device team_slave_0 removed
[   92.227230][ T5839] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   92.258282][ T5741] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   92.267322][ T5741] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   92.298287][ T5693] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.325859][ T5741] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.345357][ T5741] 8021q: adding VLAN 0 to HW filter on device team0
[   92.365144][ T2750] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.373087][ T2750] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.384723][ T2750] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.391866][ T2750] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.417582][ T5741] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   92.428278][ T5741] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   92.485040][ T5855] FAULT_INJECTION: forcing a failure.
[   92.485040][ T5855] name failslab, interval 1, probability 0, space 0, times 0
[   92.498595][ T5855] CPU: 0 PID: 5855 Comm: syz.0.396 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   92.508990][ T5855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   92.520654][ T5855] Call Trace:
[   92.523955][ T5855]  <TASK>
[   92.527017][ T5855]  dump_stack_lvl+0xf2/0x150
[   92.532021][ T5855]  dump_stack+0x15/0x20
[   92.536576][ T5855]  should_fail_ex+0x229/0x230
[   92.537605][ T5857] loop1: detected capacity change from 0 to 2048
[   92.541334][ T5855]  ? dst_alloc+0xc0/0x100
[   92.552543][ T5855]  __should_failslab+0x92/0xa0
[   92.558046][ T5855]  should_failslab+0x9/0x20
[   92.562666][ T5855]  kmem_cache_alloc_noprof+0x4c/0x290
[   92.568993][ T5855]  dst_alloc+0xc0/0x100
[   92.573489][ T5855]  ? ip_vs_dh_schedule+0x2/0x150
[   92.578569][ T5855]  ip_route_output_key_hash_rcu+0xb90/0x12d0
[   92.584742][ T5855]  ip_route_output_key_hash+0x7b/0xb0
[   92.590172][ T5855]  dccp_v4_connect+0x409/0x810
[   92.595395][ T5855]  __inet_stream_connect+0x162/0x790
[   92.600721][ T5855]  ? _raw_spin_unlock_bh+0x36/0x40
[   92.606382][ T5855]  ? release_sock+0x117/0x150
[   92.611784][ T5855]  ? _raw_spin_unlock_bh+0x36/0x40
[   92.618194][ T5855]  ? lock_sock_nested+0x10f/0x140
[   92.623298][ T5855]  ? selinux_netlbl_socket_connect+0xea/0x100
[   92.630004][ T5855]  inet_stream_connect+0x48/0x70
[   92.635427][ T5855]  ? __pfx_inet_stream_connect+0x10/0x10
[   92.641748][ T5855]  __sys_connect+0x1a9/0x1c0
[   92.647121][ T5855]  __x64_sys_connect+0x41/0x50
[   92.651942][ T5855]  x64_sys_call+0x2961/0x2d70
[   92.656796][ T5855]  do_syscall_64+0xc9/0x1c0
[   92.661338][ T5855]  ? clear_bhb_loop+0x55/0xb0
[   92.667087][ T5855]  ? clear_bhb_loop+0x55/0xb0
[   92.672146][ T5855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.678114][ T5855] RIP: 0033:0x7ffa0ef95bd9
[   92.682994][ T5855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.705340][ T5855] RSP: 002b:00007ffa0e217048 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   92.715348][ T5855] RAX: ffffffffffffffda RBX: 00007ffa0f123f60 RCX: 00007ffa0ef95bd9
[   92.724123][ T5855] RDX: 0000000000000010 RSI: 0000000020e5c000 RDI: 0000000000000004
[   92.733435][ T5855] RBP: 00007ffa0e2170a0 R08: 0000000000000000 R09: 0000000000000000
[   92.741756][ T5855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.750880][ T5855] R13: 000000000000000b R14: 00007ffa0f123f60 R15: 00007ffcfe1dd2f8
[   92.759088][ T5855]  </TASK>
[   92.801375][ T5857] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.808132][ T5758] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   92.825630][ T5758] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   92.829406][   T29] kauditd_printk_skb: 259 callbacks suppressed
[   92.829424][   T29] audit: type=1400 audit(1720489537.814:681): avc:  denied  { getopt } for  pid=5856 comm="syz.1.397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   92.873354][   T29] audit: type=1400 audit(1720489537.854:682): avc:  denied  { watch } for  pid=5856 comm="syz.1.397" path="/26/file0/file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   92.874759][ T5693] veth0_vlan: entered promiscuous mode
[   92.905985][   T29] audit: type=1326 audit(1720489537.884:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.0.398" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffa0ef95bd9 code=0x0
[   92.907347][ T5758] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   92.955914][ T5347] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.956332][ T5741] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.976731][ T5758] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   92.991768][ T5693] veth1_vlan: entered promiscuous mode
[   93.007342][ T5870] netlink: 48 bytes leftover after parsing attributes in process `syz.0.398'.
[   93.050858][ T5693] veth0_macvtap: entered promiscuous mode
[   93.060810][ T5693] veth1_macvtap: entered promiscuous mode
[   93.092036][ T5693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.105524][ T5693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.117954][ T5693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.129383][ T5693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.141847][ T5693] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.160944][ T5693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.174231][ T5693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.185579][ T5693] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.198499][ T5693] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.212032][ T5693] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.224022][ T5758] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.235937][ T5693] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.245455][ T5693] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.254795][ T5693] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.264028][ T5693] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.280554][ T5758] 8021q: adding VLAN 0 to HW filter on device team0
[   93.298182][ T5741] veth0_vlan: entered promiscuous mode
[   93.323512][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.332040][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.341948][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.349414][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.366650][ T5741] veth1_vlan: entered promiscuous mode
[   93.426093][ T5741] veth0_macvtap: entered promiscuous mode
[   93.435941][ T5884] loop4: detected capacity change from 0 to 512
[   93.446202][ T5741] veth1_macvtap: entered promiscuous mode
[   93.448106][ T5884] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   93.458563][ T5741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.463802][ T5884] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[   93.474148][ T5741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.474173][ T5741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.474193][ T5741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.474211][ T5741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.474226][ T5741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.477694][ T5741] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.484814][ T5884] EXT4-fs (loop4): group descriptors corrupted!
[   93.503764][ T5741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.561906][ T5741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.571740][ T5741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.582244][ T5741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.592191][ T5741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.602648][ T5741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.613831][ T5741] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.624299][ T5741] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.633239][ T5741] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.642166][ T5741] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.653946][ T5741] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.676085][ T5758] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.771095][   T29] audit: type=1400 audit(1720489538.752:684): avc:  denied  { bind } for  pid=5894 comm="syz.3.370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   93.803463][   T29] audit: type=1326 audit(1720489538.782:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5900 comm="syz.0.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0ef95bd9 code=0x7ffc0000
[   93.805437][ T5758] veth0_vlan: entered promiscuous mode
[   93.826993][   T29] audit: type=1326 audit(1720489538.782:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5900 comm="syz.0.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0ef95bd9 code=0x7ffc0000
[   93.838814][ T5758] veth1_vlan: entered promiscuous mode
[   93.879360][ T5758] veth0_macvtap: entered promiscuous mode
[   93.889396][ T5758] veth1_macvtap: entered promiscuous mode
[   93.904581][ T5758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.915171][ T5758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.925128][ T5758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.935637][ T5758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.945492][ T5758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.956027][ T5758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.965919][ T5758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.976613][ T5758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.991130][   T29] audit: type=1326 audit(1720489538.832:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5900 comm="syz.0.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7ffa0ef95bd9 code=0x7ffc0000
[   94.014479][   T29] audit: type=1326 audit(1720489538.832:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5900 comm="syz.0.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0ef95bd9 code=0x7ffc0000
[   94.037735][   T29] audit: type=1326 audit(1720489538.832:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5900 comm="syz.0.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa0ef95bd9 code=0x7ffc0000
[   94.061069][   T29] audit: type=1326 audit(1720489538.832:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5900 comm="syz.0.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7ffa0ef95bd9 code=0x7ffc0000
[   94.095194][ T5903] loop0: detected capacity change from 0 to 512
[   94.106548][ T5758] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.135916][ T5903] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.152369][ T5758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.162984][ T5758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.172851][ T5758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.174364][ T5903] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.183296][ T5758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.183316][ T5758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.183333][ T5758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.183373][ T5758] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.183393][ T5758] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.186327][ T5758] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.257261][ T5758] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.266104][ T5758] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.274878][ T5758] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.283613][ T5758] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.335544][ T5907] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   94.358343][ T5245] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.388961][ T5916] team0: entered promiscuous mode
[   94.394120][ T5916] team_slave_0: entered promiscuous mode
[   94.399887][ T5916] team_slave_1: entered promiscuous mode
[   94.411216][ T5918] loop2: detected capacity change from 0 to 512
[   94.418819][ T5918] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (3832!=33349)
[   94.435576][ T5918] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[   94.444338][ T5918] System zones: 1-12
[   94.447348][ T5926] loop0: detected capacity change from 0 to 512
[   94.448470][ T5918] EXT4-fs (loop2): orphan cleanup on readonly fs
[   94.461511][ T5918] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.408: Inode bitmap for bg 0 marked uninitialized
[   94.477122][ T5915] team0: left promiscuous mode
[   94.477328][ T5926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.482417][ T5915] team_slave_0: left promiscuous mode
[   94.497549][ T5926] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.502938][ T5915] team_slave_1: left promiscuous mode
[   94.524116][ T5918] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   94.548160][ T5918] EXT4-fs error (device loop2): __ext4_remount:6503: comm syz.2.408: Abort forced by user
[   94.554819][ T5931] loop4: detected capacity change from 0 to 512
[   94.564713][ T5918] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[   94.581806][ T5245] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.586258][ T5918] EXT4-fs warning (device loop2): dx_probe:892: inode #2: comm syz.2.408: dx entry: limit 0 != root limit 125
[   94.606092][ T5918] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz.2.408: Corrupt directory, running e2fsck is recommended
[   94.609208][ T5933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.412'.
[   94.620341][ T5918] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 5: comm syz.2.408: path /1/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   94.660947][ T5931] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.680308][ T5931] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.695032][ T5758] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.731310][ T5944] FAULT_INJECTION: forcing a failure.
[   94.731310][ T5944] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   94.748430][ T5944] CPU: 1 PID: 5944 Comm: syz.0.415 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   94.759013][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   94.770463][ T5944] Call Trace:
[   94.773771][ T5944]  <TASK>
[   94.776780][ T5944]  dump_stack_lvl+0xf2/0x150
[   94.781746][ T5944]  dump_stack+0x15/0x20
[   94.786295][ T5944]  should_fail_ex+0x229/0x230
[   94.791719][ T5944]  should_fail+0xb/0x10
[   94.796328][ T5944]  should_fail_usercopy+0x1a/0x20
[   94.801627][ T5944]  _copy_to_user+0x1e/0xa0
[   94.806358][ T5944]  simple_read_from_buffer+0xa0/0x110
[   94.812501][ T5944]  proc_fail_nth_read+0xfc/0x140
[   94.817626][ T5944]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   94.823993][ T5944]  vfs_read+0x1a2/0x6e0
[   94.828469][ T5944]  ? __rcu_read_unlock+0x4e/0x70
[   94.834682][ T5944]  ? __fget_files+0x1da/0x210
[   94.840623][ T5944]  ksys_read+0xeb/0x1b0
[   94.845096][ T5944]  __x64_sys_read+0x42/0x50
[   94.850226][ T5944]  x64_sys_call+0x27e5/0x2d70
[   94.855335][ T5944]  do_syscall_64+0xc9/0x1c0
[   94.860458][ T5944]  ? clear_bhb_loop+0x55/0xb0
[   94.865733][ T5944]  ? clear_bhb_loop+0x55/0xb0
[   94.871470][ T5944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.878452][ T5944] RIP: 0033:0x7ffa0ef946bc
[   94.882908][ T5944] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[   94.904236][ T5944] RSP: 002b:00007ffa0e217040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   94.913116][ T5944] RAX: ffffffffffffffda RBX: 00007ffa0f123f60 RCX: 00007ffa0ef946bc
[   94.922163][ T5944] RDX: 000000000000000f RSI: 00007ffa0e2170b0 RDI: 0000000000000005
[   94.930579][ T5944] RBP: 00007ffa0e2170a0 R08: 0000000000000000 R09: 0000000000000000
[   94.938912][ T5944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.948064][ T5944] R13: 000000000000000b R14: 00007ffa0f123f60 R15: 00007ffcfe1dd2f8
[   94.956867][ T5944]  </TASK>
[   94.977438][ T5693] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.061443][ T5953] loop0: detected capacity change from 0 to 512
[   95.126885][ T5953] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.187336][ T5962] loop4: detected capacity change from 0 to 256
[   95.213116][ T5953] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.231019][ T5964] loop3: detected capacity change from 0 to 128
[   95.241687][ T5964] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   95.280933][ T5964] ext4 filesystem being mounted at /6/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   95.352963][ T5741] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   95.366692][ T5245] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.433437][ T5969] loop3: detected capacity change from 0 to 512
[   95.434621][ T5970] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   95.457670][ T5969] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.472215][ T5969] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.509945][ T5741] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.563076][ T5979] loop3: detected capacity change from 0 to 1024
[   95.575612][ T5979] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.641517][ T5741] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.668612][ T5983] loop0: detected capacity change from 0 to 256
[   95.678754][ T5983] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   95.817041][ T5993] 
@ÿ: renamed from veth0_vlan (while UP)
[   95.839039][ T5987] dns_resolver: Unsupported content type (1)
[   96.074954][ T1656] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.118240][ T6002] netlink: 132 bytes leftover after parsing attributes in process `syz.3.432'.
[   96.141686][    C0] hrtimer: interrupt took 21842 ns
[   96.150351][ T1656] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.215726][ T6004] FAULT_INJECTION: forcing a failure.
[   96.215726][ T6004] name failslab, interval 1, probability 0, space 0, times 0
[   96.228766][ T6004] CPU: 1 PID: 6004 Comm: syz.3.433 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   96.238807][ T6004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   96.248870][ T6004] Call Trace:
[   96.252153][ T6004]  <TASK>
[   96.255087][ T6004]  dump_stack_lvl+0xf2/0x150
[   96.259703][ T6004]  dump_stack+0x15/0x20
[   96.263969][ T6004]  should_fail_ex+0x229/0x230
[   96.268739][ T6004]  ? cond_policydb_dup+0xa0/0x710
[   96.273776][ T6004]  __should_failslab+0x92/0xa0
[   96.278546][ T6004]  should_failslab+0x9/0x20
[   96.283065][ T6004]  __kmalloc_noprof+0xa5/0x370
[   96.288091][ T6004]  cond_policydb_dup+0xa0/0x710
[   96.293053][ T6004]  ? should_failslab+0x9/0x20
[   96.297752][ T6004]  ? kmalloc_node_track_caller_noprof+0x17e/0x380
[   96.304234][ T6004]  security_set_bools+0xa8/0x350
[   96.309267][ T6004]  ? sel_commit_bools_write+0x16a/0x260
[   96.314891][ T6004]  sel_commit_bools_write+0x1e4/0x260
[   96.320278][ T6004]  vfs_writev+0x402/0x880
[   96.324696][ T6004]  ? __pfx_sel_commit_bools_write+0x10/0x10
[   96.330607][ T6004]  ? mutex_lock+0xd/0x40
[   96.334930][ T6004]  do_writev+0xf8/0x220
[   96.339178][ T6004]  __x64_sys_writev+0x45/0x50
[   96.343869][ T6004]  x64_sys_call+0x1ee2/0x2d70
[   96.348639][ T6004]  do_syscall_64+0xc9/0x1c0
[   96.353229][ T6004]  ? clear_bhb_loop+0x55/0xb0
[   96.357920][ T6004]  ? clear_bhb_loop+0x55/0xb0
[   96.362620][ T6004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.368525][ T6004] RIP: 0033:0x7fda4c83abd9
[   96.373264][ T6004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.392962][ T6004] RSP: 002b:00007fda4babc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   96.401439][ T6004] RAX: ffffffffffffffda RBX: 00007fda4c9c8f60 RCX: 00007fda4c83abd9
[   96.409419][ T6004] RDX: 0000000000000001 RSI: 00000000200025c0 RDI: 0000000000000006
[   96.417392][ T6004] RBP: 00007fda4babc0a0 R08: 0000000000000000 R09: 0000000000000000
[   96.425553][ T6004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.433584][ T6004] R13: 000000000000000b R14: 00007fda4c9c8f60 R15: 00007ffc3d7c74b8
[   96.441568][ T6004]  </TASK>
[   96.475645][ T1656] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.587984][ T6014] FAULT_INJECTION: forcing a failure.
[   96.587984][ T6014] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.601085][ T6014] CPU: 0 PID: 6014 Comm: syz.3.435 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   96.611143][ T6014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   96.621304][ T6014] Call Trace:
[   96.624593][ T6014]  <TASK>
[   96.627539][ T6014]  dump_stack_lvl+0xf2/0x150
[   96.632222][ T6014]  dump_stack+0x15/0x20
[   96.636431][ T6014]  should_fail_ex+0x229/0x230
[   96.641191][ T6014]  should_fail+0xb/0x10
[   96.645379][ T6014]  should_fail_usercopy+0x1a/0x20
[   96.650423][ T6014]  _copy_to_user+0x1e/0xa0
[   96.654933][ T6014]  simple_read_from_buffer+0xa0/0x110
[   96.660383][ T6014]  proc_fail_nth_read+0xfc/0x140
[   96.665345][ T6014]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   96.670949][ T6014]  vfs_read+0x1a2/0x6e0
[   96.675134][ T6014]  ? __rcu_read_unlock+0x4e/0x70
[   96.680153][ T6014]  ? __fget_files+0x1da/0x210
[   96.684902][ T6014]  ksys_read+0xeb/0x1b0
[   96.689085][ T6014]  __x64_sys_read+0x42/0x50
[   96.693622][ T6014]  x64_sys_call+0x27e5/0x2d70
[   96.698337][ T6014]  do_syscall_64+0xc9/0x1c0
[   96.702952][ T6014]  ? clear_bhb_loop+0x55/0xb0
[   96.707706][ T6014]  ? clear_bhb_loop+0x55/0xb0
[   96.712428][ T6014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.718419][ T6014] RIP: 0033:0x7fda4c8396bc
[   96.722858][ T6014] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[   96.742519][ T6014] RSP: 002b:00007fda4ba9b040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   96.751004][ T6014] RAX: ffffffffffffffda RBX: 00007fda4c9c9038 RCX: 00007fda4c8396bc
[   96.757254][ T6016] 9pnet_fd: Insufficient options for proto=fd
[   96.758967][ T6014] RDX: 000000000000000f RSI: 00007fda4ba9b0b0 RDI: 0000000000000004
[   96.758986][ T6014] RBP: 00007fda4ba9b0a0 R08: 0000000000000000 R09: 0000000000000000
[   96.781063][ T6014] R10: 0000000020000480 R11: 0000000000000246 R12: 0000000000000001
[   96.789068][ T6014] R13: 000000000000006e R14: 00007fda4c9c9038 R15: 00007ffc3d7c74b8
[   96.797079][ T6014]  </TASK>
[   96.805987][ T1656] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.964045][ T6025] 
@ÿ: renamed from veth0_vlan (while UP)
[   97.090484][ T6025] dns_resolver: Unsupported content type (1)
[   97.108278][ T1656] bridge_slave_1: left allmulticast mode
[   97.116562][ T1656] bridge_slave_1: left promiscuous mode
[   97.123923][ T1656] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.145446][ T1656] bridge_slave_0: left allmulticast mode
[   97.153154][ T1656] bridge_slave_0: left promiscuous mode
[   97.159537][ T1656] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.271359][ T1656] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   97.287859][ T1656] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   97.304360][ T1656] bond0 (unregistering): Released all slaves
[   97.370422][ T6008] chnl_net:caif_netlink_parms(): no params data found
[   97.437104][ T6042] team0: entered promiscuous mode
[   97.443058][ T6037] loop4: detected capacity change from 0 to 512
[   97.447053][ T6037] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   97.449590][ T6042] team_slave_0: entered promiscuous mode
[   97.462991][ T6037] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   97.480003][ T6042] team_slave_1: entered promiscuous mode
[   97.487658][ T6008] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.495924][ T6008] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.499676][ T6037] EXT4-fs (loop4): 1 truncate cleaned up
[   97.503640][ T6008] bridge_slave_0: entered allmulticast mode
[   97.515881][ T6008] bridge_slave_0: entered promiscuous mode
[   97.518980][ T6037] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.523298][ T6008] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.542272][ T6008] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.559445][ T6008] bridge_slave_1: entered allmulticast mode
[   97.566766][ T6008] bridge_slave_1: entered promiscuous mode
[   97.578937][ T1656] hsr_slave_0: left promiscuous mode
[   97.585994][ T1656] hsr_slave_1: left promiscuous mode
[   97.592724][ T1656] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   97.600465][ T1656] batman_adv: batadv0: Removing interface: batadv_slave_0
[   97.614793][ T1656] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   97.622947][ T1656] batman_adv: batadv0: Removing interface: batadv_slave_1
[   97.634361][ T1656] veth1_macvtap: left promiscuous mode
[   97.640676][ T1656] veth0_macvtap: left promiscuous mode
[   97.647001][ T1656] veth1_vlan: left promiscuous mode
[   97.652955][ T1656] veth0_vlan: left promiscuous mode
[   97.741860][ T5693] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.762427][ T1656] team0 (unregistering): Port device team_slave_1 removed
[   97.777137][ T1656] team0 (unregistering): Port device team_slave_0 removed
[   97.830805][ T6064] team0: Port device syz_tun added
[   97.859278][   T29] kauditd_printk_skb: 122 callbacks suppressed
[   97.859362][   T29] audit: type=1400 audit(1720489542.835:813): avc:  denied  { relabelfrom } for  pid=6063 comm="syz.3.447" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   97.861366][ T6081] 9pnet: Could not find request transport: fd0x0000000000000003
[   97.866584][   T29] audit: type=1400 audit(1720489542.835:814): avc:  denied  { relabelto } for  pid=6063 comm="syz.3.447" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   97.933210][ T6041] team0: left promiscuous mode
[   97.938384][ T6041] team_slave_0: left promiscuous mode
[   97.944614][ T6041] team_slave_1: left promiscuous mode
[   97.953787][ T6008] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   97.965543][ T6008] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.002614][ T6088] team0: entered promiscuous mode
[   98.008027][ T6088] team_slave_0: entered promiscuous mode
[   98.015167][ T6088] team_slave_1: entered promiscuous mode
[   98.024483][ T6008] team0: Port device team_slave_0 added
[   98.033497][ T6008] team0: Port device team_slave_1 added
[   98.066594][ T6008] batman_adv: batadv0: Adding interface: batadv_slave_0
[   98.077287][ T6008] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.103644][   T29] audit: type=1400 audit(1720489543.055:815): avc:  denied  { create } for  pid=6094 comm="syz.2.455" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   98.110417][ T6008] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   98.149883][ T6095] capability: warning: `syz.2.455' uses deprecated v2 capabilities in a way that may be insecure
[   98.150699][   T29] audit: type=1400 audit(1720489543.125:816): avc:  denied  { read } for  pid=6094 comm="syz.2.455" name="file2" dev="tmpfs" ino=73 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   98.189918][   T29] audit: type=1400 audit(1720489543.125:817): avc:  denied  { open } for  pid=6094 comm="syz.2.455" path="/11/file2" dev="tmpfs" ino=73 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   98.197239][ T6008] batman_adv: batadv0: Adding interface: batadv_slave_1
[   98.224542][ T6008] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.254014][ T6008] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   98.268862][   T29] audit: type=1400 audit(1720489543.165:818): avc:  denied  { ioctl } for  pid=6094 comm="syz.2.455" path="/11/file2" dev="tmpfs" ino=73 ioctlcmd=0x4c02 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   98.299375][   T29] audit: type=1400 audit(1720489543.184:819): avc:  denied  { unlink } for  pid=5758 comm="syz-executor" name="file2" dev="tmpfs" ino=73 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   98.332428][ T6100] FAULT_INJECTION: forcing a failure.
[   98.332428][ T6100] name failslab, interval 1, probability 0, space 0, times 0
[   98.346279][ T6100] CPU: 0 PID: 6100 Comm: syz.3.457 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   98.356727][ T6100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   98.368274][ T6100] Call Trace:
[   98.371826][ T6100]  <TASK>
[   98.374824][ T6100]  dump_stack_lvl+0xf2/0x150
[   98.379801][ T6100]  dump_stack+0x15/0x20
[   98.385647][ T6100]  should_fail_ex+0x229/0x230
[   98.390739][ T6100]  ? nla_strdup+0x7a/0xc0
[   98.395593][ T6100]  __should_failslab+0x92/0xa0
[   98.400933][ T6100]  should_failslab+0x9/0x20
[   98.405893][ T6100]  __kmalloc_noprof+0xa5/0x370
[   98.411024][ T6100]  nla_strdup+0x7a/0xc0
[   98.413536][ T6104] 9pnet: Could not find request transport: fd0x0000000000000003
[   98.415505][ T6100]  nf_tables_newchain+0x10f5/0x1710
[   98.429077][ T6100]  nfnetlink_rcv+0xb1d/0x15b0
[   98.433883][ T6100]  netlink_unicast+0x58d/0x660
[   98.439074][ T6100]  netlink_sendmsg+0x5ca/0x6e0
[   98.444062][ T6100]  ? __pfx_netlink_sendmsg+0x10/0x10
[   98.450476][ T6100]  __sock_sendmsg+0x140/0x180
[   98.455441][ T6100]  ____sys_sendmsg+0x312/0x410
[   98.460502][ T6100]  __sys_sendmsg+0x1e9/0x280
[   98.465257][ T6100]  __x64_sys_sendmsg+0x46/0x50
[   98.470331][ T6100]  x64_sys_call+0xb25/0x2d70
[   98.475408][ T6100]  do_syscall_64+0xc9/0x1c0
[   98.479985][ T6100]  ? clear_bhb_loop+0x55/0xb0
[   98.484709][ T6100]  ? clear_bhb_loop+0x55/0xb0
[   98.489442][ T6100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.495458][ T6100] RIP: 0033:0x7fda4c83abd9
[   98.499878][ T6100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.519498][ T6100] RSP: 002b:00007fda4babc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.527916][ T6100] RAX: ffffffffffffffda RBX: 00007fda4c9c8f60 RCX: 00007fda4c83abd9
[   98.535960][ T6100] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000000000003
[   98.543958][ T6100] RBP: 00007fda4babc0a0 R08: 0000000000000000 R09: 0000000000000000
[   98.552000][ T6100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   98.560011][ T6100] R13: 000000000000000b R14: 00007fda4c9c8f60 R15: 00007ffc3d7c74b8
[   98.568003][ T6100]  </TASK>
[   98.576807][ T6008] hsr_slave_0: entered promiscuous mode
[   98.583522][ T6008] hsr_slave_1: entered promiscuous mode
[   98.589983][ T6107] team0: entered promiscuous mode
[   98.595130][ T6107] team_slave_0: entered promiscuous mode
[   98.600963][ T6107] team_slave_1: entered promiscuous mode
[   98.613451][ T6087] team0: left promiscuous mode
[   98.618265][ T6087] team_slave_0: left promiscuous mode
[   98.624032][ T6087] team_slave_1: left promiscuous mode
[   98.643525][ T6106] team0: left promiscuous mode
[   98.648380][ T6106] team_slave_0: left promiscuous mode
[   98.653964][ T6106] team_slave_1: left promiscuous mode
[   98.668588][ T6118] skb len=10633 headroom=136 headlen=10633 tailroom=5295
[   98.668588][ T6118] mac=(160,-24) mac_len=24 net=(136,20) trans=156
[   98.668588][ T6118] shinfo(txflags=0 nr_frags=0 gso(size=0 type=0 segs=0))
[   98.668588][ T6118] csum(0x350e2a11 start=10769 offset=13582 ip_summed=3 complete_sw=0 valid=0 level=0)
[   98.668588][ T6118] hash(0x0 sw=0 l4=0) proto=0x0800 pkttype=0 iif=0
[   98.668588][ T6118] priority=0x0 mark=0x0 alloc_cpu=0 vlan_all=0x0
[   98.668588][ T6118] encapsulation=1 inner(proto=0x0008, mac=160, net=160, trans=212)
[   98.718607][ T6118] dev name=veth0 feat=0x000061164fdd19e9
[   98.724277][ T6118] skb linear:   00000000: 45 02 29 89 12 d7 00 00 0f 2f cf 3d ac 14 14 18
[   98.732875][ T6118] skb linear:   00000010: e0 00 00 03 00 00 08 00 bd 0b 29 71 10 82 0c 52
[   98.736542][ T6117] loop4: detected capacity change from 0 to 1024
[   98.741448][ T6118] skb linear:   00000020: 0f 06 ea a4 fd fe 4b 88 94 30 eb b5 29 97 e3 6e
[   98.741465][ T6118] skb linear:   00000030: 03 9b 1c 59 88 25 f8 01 00 e3 c0 63 76 c3 30 76
[   98.741482][ T6118] skb linear:   00000040: a1 67 d5 14 fa 57 0a 44 02 61 a6 7a 34 a0 76 05
[   98.741498][ T6118] skb linear:   00000050: c9 3a 19 49 46 bc 62 83 f4 00 00 00 25 60 00 00
[   98.741548][ T6118] skb linear:   00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   98.741564][ T6118] skb linear:   00000070: 00 00 00 00 00 00 34 00 00 00 10 00 01 04 00 00
[   98.741660][ T6118] skb linear:   00000080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   98.741677][ T6118] skb linear:   00000090: 00 00 00 00 00 00 14 00 12 80 09 00 01 00 76 6c
[   98.741695][ T6118] skb linear:   000000a0: 61 6e 00 00 00 00 04 00 02 80 00 00 00 00 00 00
[   98.776039][ T6117] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.782194][ T6118] skb linear:   000000b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   98.782219][ T6118] skb linear:   000000c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   98.853848][ T6118] skb linear:   000000d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   98.862356][ T6118] skb linear:   000000e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   98.870881][ T6118] skb linear:   000000f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   98.879533][ T6118] skb linear:   00000100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   98.888047][ T6118] ------------[ cut here ]------------
[   98.893505][ T6118] offset (10633) >= skb_headlen() (10633)
[   98.899990][ T6118] WARNING: CPU: 0 PID: 6118 at net/core/dev.c:3325 skb_checksum_help+0x3bd/0x450
[   98.909136][ T6118] Modules linked in:
[   98.913059][ T6118] CPU: 0 PID: 6118 Comm: syz.3.463 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   98.923045][ T6118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   98.933130][ T6118] RIP: 0010:skb_checksum_help+0x3bd/0x450
[   98.938909][ T6118] Code: d9 39 60 fd 41 8b 5d 00 48 8b 6c 24 08 48 89 ef e8 c8 39 60 fd 2b 5d 00 48 c7 c7 04 5d e1 85 44 89 e6 89 da e8 d4 dc 2a fd 90 <0f> 0b 90 90 bb ea ff ff ff e9 c3 fe ff ff e8 20 b3 48 fd 48 c7 c7
[   98.958548][ T6118] RSP: 0018:ffffc9000110f410 EFLAGS: 00010246
[   98.964628][ T6118] RAX: 38f00b152280a300 RBX: 0000000000002989 RCX: 0000000000040000
[   98.972660][ T6118] RDX: ffffc90003161000 RSI: 000000000003ffff RDI: 0000000000040000
[   98.980672][ T6118] RBP: ffff8881042a7774 R08: ffffffff8110fbd7 R09: 0000000000000000
[   98.988773][ T6118] R10: 0001ffffffffffff R11: ffff88811322a100 R12: 0000000000002989
[   98.996759][ T6118] R13: ffff8881042a7770 R14: ffff8881042a7700 R15: 0000000000000000
[   99.004770][ T6118] FS:  00007fda4babc6c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
[   99.013710][ T6118] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   99.020314][ T6118] CR2: 000000002000e000 CR3: 000000010ec9a000 CR4: 00000000003506f0
[   99.028287][ T6118] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   99.036294][ T6118] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[   99.044308][ T6118] Call Trace:
[   99.047632][ T6118]  <TASK>
[   99.050584][ T6118]  ? __warn+0x13c/0x350
[   99.054762][ T6118]  ? report_bug+0x315/0x420
[   99.059328][ T6118]  ? skb_checksum_help+0x3bd/0x450
[   99.064673][ T6118]  ? handle_bug+0x3e/0x70
[   99.069103][ T6118]  ? exc_invalid_op+0x1a/0x50
[   99.073880][ T6118]  ? asm_exc_invalid_op+0x1a/0x20
[   99.078939][ T6118]  ? __warn_printk+0x167/0x1b0
[   99.083733][ T6118]  ? skb_checksum_help+0x3bd/0x450
[   99.088914][ T6118]  ? nf_conntrack_double_lock+0x109/0x1c0
[   99.094654][ T6118]  ip_do_fragment+0xdb/0xd00
[   99.099254][ T6118]  ? __nf_conntrack_confirm+0x8d/0x11c0
[   99.104820][ T6118]  ? __pfx_ip_finish_output2+0x10/0x10
[   99.110347][ T6118]  ip_fragment+0xd2/0x140
[   99.114705][ T6118]  ip_finish_output+0x223/0x2a0
[   99.119570][ T6118]  ip_output+0xab/0x170
[   99.123732][ T6118]  ? __pfx_ip_finish_output+0x10/0x10
[   99.129145][ T6118]  ? __pfx_ip_output+0x10/0x10
[   99.133935][ T6118]  ip_local_out+0xab/0xd0
[   99.138272][ T6118]  iptunnel_xmit+0x33f/0x460
[   99.142988][ T6118]  ip_tunnel_xmit+0x1685/0x1740
[   99.147856][ T6118]  ipgre_xmit+0x5f4/0x6d0
[   99.152234][ T6118]  dev_hard_start_xmit+0x119/0x3f0
[   99.157352][ T6118]  __dev_queue_xmit+0xf83/0x1e50
[   99.162328][ T6118]  ? __dev_queue_xmit+0x161/0x1e50
[   99.167512][ T6118]  packet_xmit+0x4b/0x1e0
[   99.171881][ T6118]  packet_sendmsg+0x2ae1/0x3320
[   99.176747][ T6118]  ? selinux_socket_sendmsg+0x182/0x1b0
[   99.182399][ T6118]  ? __pfx_packet_sendmsg+0x10/0x10
[   99.187599][ T6118]  __sock_sendmsg+0x140/0x180
[   99.192348][ T6118]  ____sys_sendmsg+0x312/0x410
[   99.197240][ T6118]  __sys_sendmsg+0x1e9/0x280
[   99.201850][ T6118]  ? futex_wait+0x18e/0x1c0
[   99.206378][ T6118]  __x64_sys_sendmsg+0x46/0x50
[   99.211206][ T6118]  x64_sys_call+0xb25/0x2d70
[   99.215922][ T6118]  do_syscall_64+0xc9/0x1c0
[   99.220450][ T6118]  ? clear_bhb_loop+0x55/0xb0
[   99.225144][ T6118]  ? clear_bhb_loop+0x55/0xb0
[   99.230008][ T6118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.235928][ T6118] RIP: 0033:0x7fda4c83abd9
[   99.240349][ T6118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.260201][ T6118] RSP: 002b:00007fda4babc048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   99.268686][ T6118] RAX: ffffffffffffffda RBX: 00007fda4c9c8f60 RCX: 00007fda4c83abd9
[   99.276735][ T6118] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000006
[   99.284721][ T6118] RBP: 00007fda4c8a9e60 R08: 0000000000000000 R09: 0000000000000000
[   99.292707][ T6118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   99.300714][ T6118] R13: 000000000000000b R14: 00007fda4c9c8f60 R15: 00007ffc3d7c74b8
[   99.308694][ T6118]  </TASK>
[   99.311722][ T6118] ---[ end trace 0000000000000000 ]---
[   99.326551][ T5693] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.327196][ T6120] team0: entered promiscuous mode
[   99.340807][ T6120] team_slave_0: entered promiscuous mode
[   99.346561][ T6120] team_slave_1: entered promiscuous mode
[   99.359961][ T6119] team0: left promiscuous mode
[   99.364800][ T6119] team_slave_0: left promiscuous mode
[   99.370327][ T6119] team_slave_1: left promiscuous mode
[   99.401951][ T6132] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   99.438441][ T6134] loop3: detected capacity change from 0 to 128
[   99.452373][ T6138] dummy0: entered promiscuous mode
[   99.504657][ T6140] loop2: detected capacity change from 0 to 512
[   99.514512][ T6142] FAULT_INJECTION: forcing a failure.
[   99.514512][ T6142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   99.527748][ T6142] CPU: 1 PID: 6142 Comm: syz.3.472 Tainted: G        W          6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[   99.529927][ T6140] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.539207][ T6142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   99.539224][ T6142] Call Trace:
[   99.539233][ T6142]  <TASK>
[   99.539242][ T6142]  dump_stack_lvl+0xf2/0x150
[   99.551973][ T6140] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.561768][ T6142]  dump_stack+0x15/0x20
[   99.567540][ T6140] EXT4-fs error (device loop2): ext4_do_update_inode:5075: inode #2: comm syz.2.468: corrupted inode contents
[   99.567982][ T6142]  should_fail_ex+0x229/0x230
[   99.568021][ T6142]  should_fail+0xb/0x10
[   99.568053][ T6142]  should_fail_usercopy+0x1a/0x20
[   99.572880][ T6140] EXT4-fs error (device loop2): ext4_dirty_inode:5935: inode #2: comm syz.2.468: mark_inode_dirty error
[   99.582945][ T6142]  _copy_from_user+0x1e/0xd0
[   99.582998][ T6142]  kstrtouint_from_user+0x76/0xe0
[   99.587843][ T6140] EXT4-fs error (device loop2): ext4_do_update_inode:5075: inode #2: comm syz.2.468: corrupted inode contents
[   99.598753][ T6142]  proc_fail_nth_write+0x4f/0x160
[   99.598797][ T6142]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   99.598835][ T6142]  vfs_write+0x28b/0x900
[   99.598869][ T6142]  ? __fget_files+0x1da/0x210
[   99.598901][ T6142]  ksys_write+0xeb/0x1b0
[   99.598931][ T6142]  __x64_sys_write+0x42/0x50
[   99.598959][ T6142]  x64_sys_call+0x27ef/0x2d70
[   99.598991][ T6142]  do_syscall_64+0xc9/0x1c0
[   99.599021][ T6142]  ? clear_bhb_loop+0x55/0xb0
[   99.599049][ T6142]  ? clear_bhb_loop+0x55/0xb0
[   99.599077][ T6142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.599105][ T6142] RIP: 0033:0x7fda4c83975f
[   99.599124][ T6142] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[   99.599145][ T6142] RSP: 002b:00007fda4babc040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   99.599168][ T6142] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fda4c83975f
[   99.599182][ T6142] RDX: 0000000000000001 RSI: 00007fda4babc0b0 RDI: 0000000000000009
[   99.599197][ T6142] RBP: 00007fda4babc0a0 R08: 0000000000000000 R09: 0000000000000000
[   99.599210][ T6142] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   99.599225][ T6142] R13: 000000000000000b R14: 00007fda4c9c8f60 R15: 00007ffc3d7c74b8
[   99.599245][ T6142]  </TASK>
[   99.775311][ T6140] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.468: mark_inode_dirty error
[   99.788151][ T6137] dummy0: left promiscuous mode
[   99.800042][ T5758] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.845374][ T6008] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   99.859844][ T6008] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   99.878844][ T6008] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   99.902721][ T6008] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   99.994253][ T6160] netlink: 'syz.3.477': attribute type 12 has an invalid length.
[  100.002057][ T6160] netlink: 'syz.3.477': attribute type 29 has an invalid length.
[  100.009851][ T6160] netlink: 'syz.3.477': attribute type 2 has an invalid length.
[  100.017540][ T6160] netlink: 'syz.3.477': attribute type 2 has an invalid length.
[  100.025206][ T6160] netlink: 'syz.3.477': attribute type 1 has an invalid length.
[  100.032956][ T6160] netlink: 'syz.3.477': attribute type 37 has an invalid length.
[  100.040914][ T6160] netlink: 'syz.3.477': attribute type 2 has an invalid length.
[  100.048608][ T6160] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.073684][ T6008] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.091162][ T6008] 8021q: adding VLAN 0 to HW filter on device team0
[  100.105089][ T3159] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.112251][ T3159] bridge0: port 1(bridge_slave_0) entered forwarding state
[  100.122687][   T29] audit: type=1400 audit(1720489545.082:820): avc:  denied  { write } for  pid=6158 comm="syz.3.477" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  100.128349][ T6175] loop4: detected capacity change from 0 to 256
[  100.144627][ T6160] loop3: detected capacity change from 0 to 512
[  100.153166][ T6175] FAT-fs (loop4): bogus logical sector size 8
[  100.161402][ T6175] FAT-fs (loop4): Can't find a valid FAT filesystem
[  100.174504][ T6008] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  100.185354][ T6008] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  100.196411][ T6160] EXT4-fs (loop3): Can't support bigalloc feature without extents feature
[  100.196411][ T6160] 
[  100.199732][ T3159] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.207216][ T6160] EXT4-fs (loop3): Skipping orphan cleanup due to unknown ROCOMPAT features
[  100.214200][ T3159] bridge0: port 2(bridge_slave_1) entered forwarding state
[  100.223983][ T6160] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  100.252904][ T6175] Cannot find del_set index 0 as target
[  100.259698][ T5741] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.273166][ T6178] vlan2: entered promiscuous mode
[  100.285289][   T29] audit: type=1400 audit(1720489545.251:821): avc:  denied  { read } for  pid=6180 comm="syz.4.484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  100.316085][ T6186] loop3: detected capacity change from 0 to 512
[  100.321457][ T6008] 8021q: adding VLAN 0 to HW filter on device batadv0
[  100.333523][ T6186] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.374109][ T6186] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.390869][ T6194] netlink: 8 bytes leftover after parsing attributes in process `syz.4.484'.
[  100.399797][   T29] audit: type=1400 audit(1720489545.351:822): avc:  denied  { ioctl } for  pid=6180 comm="syz.4.484" path="socket:[21060]" dev="sockfs" ino=21060 ioctlcmd=0x5450 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  100.488306][ T6008] veth0_vlan: entered promiscuous mode
[  100.494405][ T5741] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.496972][ T6008] veth1_vlan: entered promiscuous mode
[  100.519889][ T6008] veth0_macvtap: entered promiscuous mode
[  100.527519][ T6008] veth1_macvtap: entered promiscuous mode
[  100.546549][ T6008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  100.557072][ T6008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  100.567492][ T6008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  100.578078][ T6008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  100.588117][ T6008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  100.598747][ T6008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  100.608754][ T6008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  100.619271][ T6008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  100.631913][ T6008] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.643952][ T6008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  100.654453][ T6008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  100.664347][ T6008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  100.674823][ T6008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  100.684811][ T6008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  100.695275][ T6008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  100.705217][ T6008] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  100.715749][ T6008] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  100.727174][ T6008] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.737065][ T6008] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.746087][ T6008] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.754855][ T6008] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.760108][ T6210] loop3: detected capacity change from 0 to 2048
[  100.763592][ T6008] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.840894][ T6215] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  100.885074][ T6220] sctp: [Deprecated]: syz.0.492 (pid 6220) Use of int in max_burst socket option.
[  100.885074][ T6220] Use struct sctp_assoc_value instead
[  100.947474][ T6231] loop2: detected capacity change from 0 to 512
[  100.964126][ T6231] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.977115][ T6231] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.998674][ T6234] netlink: 36 bytes leftover after parsing attributes in process `syz.0.496'.
[  101.022164][ T5758] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.053301][ T6241] loop3: detected capacity change from 0 to 512
[  101.072888][ T6241] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13
[  101.081251][ T6241] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.499: invalid indirect mapped block 2683928664 (level 1)
[  101.098059][ T6241] EXT4-fs (loop3): 1 truncate cleaned up
[  101.104498][ T6241] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.177936][ T6252] FAULT_INJECTION: forcing a failure.
[  101.177936][ T6252] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  101.191231][ T6252] CPU: 1 PID: 6252 Comm: syz.4.501 Tainted: G        W          6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  101.202758][ T6252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  101.212914][ T6252] Call Trace:
[  101.216271][ T6252]  <TASK>
[  101.219280][ T6252]  dump_stack_lvl+0xf2/0x150
[  101.223928][ T6252]  dump_stack+0x15/0x20
[  101.228103][ T6252]  should_fail_ex+0x229/0x230
[  101.232971][ T6252]  __should_fail_alloc_page+0xfd/0x110
[  101.238456][ T6252]  __alloc_pages_noprof+0x109/0x360
[  101.243685][ T6252]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  101.249082][ T6252]  shmem_get_folio_gfp+0x3e4/0xb70
[  101.254280][ T6252]  shmem_write_begin+0xa0/0x1c0
[  101.259222][ T6252]  generic_perform_write+0x1d5/0x410
[  101.264569][ T6252]  ? __pfx_shmem_write_end+0x10/0x10
[  101.269893][ T6252]  shmem_file_write_iter+0xc8/0xf0
[  101.275025][ T6252]  vfs_write+0x78f/0x900
[  101.279283][ T6252]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  101.285107][ T6252]  ksys_write+0xeb/0x1b0
[  101.289470][ T6252]  __x64_sys_write+0x42/0x50
[  101.294083][ T6252]  x64_sys_call+0x27ef/0x2d70
[  101.298785][ T6252]  do_syscall_64+0xc9/0x1c0
[  101.303569][ T6252]  ? clear_bhb_loop+0x55/0xb0
[  101.308293][ T6252]  ? clear_bhb_loop+0x55/0xb0
[  101.312998][ T6252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.318924][ T6252] RIP: 0033:0x7feed3bcb75f
[  101.323349][ T6252] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  101.342987][ T6252] RSP: 002b:00007feed2e4dd50 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  101.351411][ T6252] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007feed3bcb75f
[  101.359440][ T6252] RDX: 0000000000100000 RSI: 00007feecaa2e000 RDI: 0000000000000006
[  101.367430][ T6252] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000058d
[  101.375415][ T6252] R10: 00000000000003f4 R11: 0000000000000293 R12: 0000000000000006
[  101.383395][ T6252] R13: 00007feed2e4ddfc R14: 00007feed2e4de00 R15: 00007feecaa2e000
[  101.391379][ T6252]  </TASK>
[  101.413051][ T6257] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  101.499397][ T6262] FAULT_INJECTION: forcing a failure.
[  101.499397][ T6262] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  101.512713][ T6262] CPU: 1 PID: 6262 Comm: syz.0.505 Tainted: G        W          6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  101.524196][ T6262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  101.534260][ T6262] Call Trace:
[  101.537590][ T6262]  <TASK>
[  101.540534][ T6262]  dump_stack_lvl+0xf2/0x150
[  101.545210][ T6262]  dump_stack+0x15/0x20
[  101.549470][ T6262]  should_fail_ex+0x229/0x230
[  101.554176][ T6262]  __should_fail_alloc_page+0xfd/0x110
[  101.559663][ T6262]  __alloc_pages_noprof+0x109/0x360
[  101.564935][ T6262]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  101.570328][ T6262]  vma_alloc_folio_noprof+0x176/0x2d0
[  101.575801][ T6262]  do_wp_page+0x62b/0x22b0
[  101.580242][ T6262]  ? __rcu_read_lock+0x36/0x50
[  101.585102][ T6262]  handle_mm_fault+0xb9b/0x2a80
[  101.589975][ T6262]  exc_page_fault+0x296/0x650
[  101.594743][ T6262]  asm_exc_page_fault+0x26/0x30
[  101.599607][ T6262] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  101.605484][ T6262] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  101.625109][ T6262] RSP: 0018:ffffc9000122fae0 EFLAGS: 00050206
[  101.631189][ T6262] RAX: ffff8881044e8a80 RBX: 0000000020003340 RCX: 0000000000000340
[  101.639213][ T6262] RDX: 0000000000000000 RSI: ffff8880083b0cc0 RDI: 0000000020004000
[  101.647211][ T6262] RBP: ffffc9000122fda8 R08: 0000000080000000 R09: 0000000000000000
[  101.655312][ T6262] R10: 00018880083b0000 R11: 00018880083b0fff R12: 0000000000001000
[  101.663302][ T6262] R13: 0000000020004340 R14: ffffc9000122fdb8 R15: ffff8880083b0000
[  101.671295][ T6262]  _copy_to_iter+0x137/0xaf0
[  101.675979][ T6262]  ? _raw_spin_unlock+0x26/0x50
[  101.680859][ T6262]  ? finish_task_switch+0xb5/0x2b0
[  101.686036][ T6262]  ? __schedule+0x5e8/0x940
[  101.690550][ T6262]  copy_page_to_iter+0x171/0x2b0
[  101.695572][ T6262]  pipe_read+0x29b/0x890
[  101.699875][ T6262]  ? __pfx_autoremove_wake_function+0x10/0x10
[  101.705964][ T6262]  do_iter_readv_writev+0x339/0x3e0
[  101.711244][ T6262]  vfs_readv+0x1e5/0x660
[  101.715569][ T6262]  do_readv+0xf8/0x220
[  101.719734][ T6262]  __x64_sys_readv+0x45/0x50
[  101.724338][ T6262]  x64_sys_call+0x2beb/0x2d70
[  101.729026][ T6262]  do_syscall_64+0xc9/0x1c0
[  101.733563][ T6262]  ? clear_bhb_loop+0x55/0xb0
[  101.738252][ T6262]  ? clear_bhb_loop+0x55/0xb0
[  101.742941][ T6262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.748848][ T6262] RIP: 0033:0x7fe88c90abd9
[  101.753355][ T6262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.773014][ T6262] RSP: 002b:00007fe88bb8c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  101.781459][ T6262] RAX: ffffffffffffffda RBX: 00007fe88ca98f60 RCX: 00007fe88c90abd9
[  101.789538][ T6262] RDX: 0000000000000001 RSI: 0000000020000c40 RDI: 0000000000000004
[  101.797515][ T6262] RBP: 00007fe88bb8c0a0 R08: 0000000000000000 R09: 0000000000000000
[  101.805622][ T6262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.813655][ T6262] R13: 000000000000000b R14: 00007fe88ca98f60 R15: 00007ffe08f34d28
[  101.821636][ T6262]  </TASK>
[  101.835351][ T6241] tmpfs: Unsupported parameter 'huge'
[  101.853062][ T6272] loop2: detected capacity change from 0 to 764
[  101.859173][ T6274] loop0: detected capacity change from 0 to 512
[  101.868672][ T6272] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  101.878276][ T6272] FAULT_INJECTION: forcing a failure.
[  101.878276][ T6272] name failslab, interval 1, probability 0, space 0, times 0
[  101.879057][ T6274] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.890924][ T6272] CPU: 0 PID: 6272 Comm: syz.2.506 Tainted: G        W          6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  101.890955][ T6272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  101.890975][ T6272] Call Trace:
[  101.890983][ T6272]  <TASK>
[  101.890992][ T6272]  dump_stack_lvl+0xf2/0x150
[  101.904103][ T6274] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.914834][ T6272]  dump_stack+0x15/0x20
[  101.914933][ T6272]  should_fail_ex+0x229/0x230
[  101.955193][ T6272]  ? alloc_empty_file+0xd0/0x310
[  101.960163][ T6272]  __should_failslab+0x92/0xa0
[  101.964967][ T6272]  should_failslab+0x9/0x20
[  101.969527][ T6272]  kmem_cache_alloc_noprof+0x4c/0x290
[  101.974960][ T6272]  ? mntput+0x49/0x70
[  101.979052][ T6272]  alloc_empty_file+0xd0/0x310
[  101.983953][ T6272]  path_openat+0x6a/0x1fa0
[  101.988396][ T6272]  ? _parse_integer_limit+0x167/0x180
[  101.994032][ T6272]  ? _parse_integer+0x27/0x30
[  101.999698][ T6272]  ? kstrtoull+0x110/0x140
[  102.004308][ T6272]  ? kstrtouint+0x77/0xc0
[  102.004341][ T6272]  do_filp_open+0xf7/0x200
[  102.004439][ T6272]  do_sys_openat2+0xab/0x120
[  102.017750][ T6272]  __x64_sys_openat+0xf3/0x120
[  102.017819][ T6272]  x64_sys_call+0x1057/0x2d70
[  102.017866][ T6272]  do_syscall_64+0xc9/0x1c0
[  102.017902][ T6272]  ? clear_bhb_loop+0x55/0xb0
[  102.036485][ T6272]  ? clear_bhb_loop+0x55/0xb0
[  102.036521][ T6272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.047127][ T6272] RIP: 0033:0x7f1814089bd9
[  102.047146][ T6272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.047170][ T6272] RSP: 002b:00007f181330b048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  102.080110][ T6272] RAX: ffffffffffffffda RBX: 00007f1814217f60 RCX: 00007f1814089bd9
[  102.080195][ T6272] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffffffffffffff9c
[  102.096148][ T6272] RBP: 00007f181330b0a0 R08: 0000000000000000 R09: 0000000000000000
[  102.096225][ T6272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.096241][ T6272] R13: 000000000000000b R14: 00007f1814217f60 R15: 00007ffda697a0f8
[  102.120372][ T6272]  </TASK>
[  102.124760][ T5741] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.134531][ T6008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.219626][ T6295] netlink: 14 bytes leftover after parsing attributes in process `syz.2.513'.
[  102.228658][ T6295] netdevsim netdevsim2 netdevsim1: entered allmulticast mode
[  102.236369][ T6298] FAULT_INJECTION: forcing a failure.
[  102.236369][ T6298] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.237895][ T6295] loop2: detected capacity change from 0 to 128
[  102.249651][ T6298] CPU: 0 PID: 6298 Comm: syz.0.516 Tainted: G        W          6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  102.270053][ T6298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  102.280192][ T6298] Call Trace:
[  102.283486][ T6298]  <TASK>
[  102.286483][ T6298]  dump_stack_lvl+0xf2/0x150
[  102.289140][ T6303] loop3: detected capacity change from 0 to 1024
[  102.291097][ T6298]  dump_stack+0x15/0x20
[  102.301601][ T6298]  should_fail_ex+0x229/0x230
[  102.305767][ T6303] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.306311][ T6298]  should_fail+0xb/0x10
[  102.322523][ T6298]  should_fail_usercopy+0x1a/0x20
[  102.327706][ T6298]  _copy_from_user+0x1e/0xd0
[  102.332335][ T6298]  copy_msghdr_from_user+0x54/0x2a0
[  102.337639][ T6298]  do_recvmmsg+0x290/0x720
[  102.342082][ T6298]  __x64_sys_recvmmsg+0xe2/0x170
[  102.347064][ T6298]  x64_sys_call+0x271d/0x2d70
[  102.351838][ T6298]  do_syscall_64+0xc9/0x1c0
[  102.356360][ T6298]  ? clear_bhb_loop+0x55/0xb0
[  102.361051][ T6298]  ? clear_bhb_loop+0x55/0xb0
[  102.365738][ T6298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.371686][ T6298] RIP: 0033:0x7fe88c90abd9
[  102.376117][ T6298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.395819][ T6298] RSP: 002b:00007fe88bb8c048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  102.404244][ T6298] RAX: ffffffffffffffda RBX: 00007fe88ca98f60 RCX: 00007fe88c90abd9
[  102.412274][ T6298] RDX: 0000000000000001 RSI: 0000000020000b40 RDI: 0000000000000004
[  102.420252][ T6298] RBP: 00007fe88bb8c0a0 R08: 0000000000000000 R09: 0000000000000000
[  102.428293][ T6298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.436266][ T6298] R13: 000000000000000b R14: 00007fe88ca98f60 R15: 00007ffe08f34d28
[  102.444248][ T6298]  </TASK>
[  102.458635][ T5741] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.477500][ T6309] loop0: detected capacity change from 0 to 512
[  102.485529][ T6309] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[  102.493071][ T6312] loop2: detected capacity change from 0 to 512
[  102.493937][ T6309] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.520: invalid indirect mapped block 2683928664 (level 1)
[  102.516388][ T6309] EXT4-fs (loop0): 1 truncate cleaned up
[  102.522419][ T6309] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.540026][ T6312] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.547660][ T6316] loop3: detected capacity change from 0 to 1024
[  102.553048][ T6312] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.576274][ T6316] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.599344][ T5741] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.630185][ T5758] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.697656][ T6322] 9pnet: Could not find request transport: fd0x0000000000000004
[  102.697697][ T6325] loop2: detected capacity change from 0 to 512
[  102.716021][ T6325] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.728628][ T6325] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.731417][ T6330] netlink: 4 bytes leftover after parsing attributes in process `syz.3.523'.
[  102.758918][ T5758] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.768166][ T6309] tmpfs: Unsupported parameter 'huge'
[  102.783395][ T6008] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.783752][ T6335] loop3: detected capacity change from 0 to 512
[  102.800656][ T6335] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  102.809785][ T6335] EXT4-fs (loop3): Couldn't mount because of unsupported optional features (fffc1829)
[  102.819508][ T6335] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  102.843641][ T6338] ==================================================================
[  102.851753][ T6338] BUG: KCSAN: data-race in exit_mm / mm_update_next_owner
[  102.858879][ T6338] 
[  102.861200][ T6338] write to 0xffff8881153d6800 of 8 bytes by task 6339 on cpu 1:
[  102.868833][ T6338]  exit_mm+0x9c/0x190
[  102.872827][ T6338]  do_exit+0x556/0x1710
[  102.877012][ T6338]  do_group_exit+0x102/0x150
[  102.881609][ T6338]  get_signal+0xf2f/0x1080
[  102.886032][ T6338]  arch_do_signal_or_restart+0x95/0x4b0
[  102.891580][ T6338]  syscall_exit_to_user_mode+0x59/0x130
[  102.897131][ T6338]  do_syscall_64+0xd6/0x1c0
[  102.901645][ T6338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.907543][ T6338] 
[  102.909872][ T6338] read to 0xffff8881153d6800 of 8 bytes by task 6338 on cpu 0:
[  102.917420][ T6338]  mm_update_next_owner+0x1c9/0x450
[  102.922710][ T6338]  exit_mm+0xdc/0x190
[  102.926696][ T6338]  do_exit+0x556/0x1710
[  102.930853][ T6338]  do_group_exit+0x142/0x150
[  102.935545][ T6338]  __x64_sys_exit_group+0x1f/0x20
[  102.940669][ T6338]  x64_sys_call+0x27f9/0x2d70
[  102.945356][ T6338]  do_syscall_64+0xc9/0x1c0
[  102.949953][ T6338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.955853][ T6338] 
[  102.958176][ T6338] value changed: 0xffff8881153f24c0 -> 0x0000000000000000
[  102.965742][ T6338] 
[  102.968390][ T6338] Reported by Kernel Concurrency Sanitizer on:
[  102.974738][ T6338] CPU: 0 PID: 6338 Comm: syz.2.528 Tainted: G        W          6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  102.986299][ T6338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  102.997507][ T6338] ==================================================================
[  103.030567][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  103.030582][   T29] audit: type=1400 audit(1720489547.988:828): avc:  denied  { read } for  pid=6334 comm="syz.3.526" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  103.061810][   T29] audit: type=1400 audit(1720489547.988:829): avc:  denied  { open } for  pid=6334 comm="syz.3.526" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  103.088214][   T29] audit: type=1400 audit(1720489548.008:830): avc:  denied  { ioctl } for  pid=6334 comm="syz.3.526" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  103.094540][ T6335] loop3: detected capacity change from 0 to 512
[  103.124690][ T6335] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  103.134077][ T6335] EXT4-fs (loop3): invalid journal inode
[  103.140145][ T6335] EXT4-fs (loop3): can't get journal size
[  103.147006][ T6335] EXT4-fs (loop3): 1 truncate cleaned up
[  103.153751][ T6335] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.174904][ T5741] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.