last executing test programs:

13.763295594s ago: executing program 2 (id=5236):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYRESHEX=r0, @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRESHEX=r0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500800043000000954b484c28338bba35bdab13e89684d3646b3352d527404966460940566df47681f83e79ed59ef487faf6dcc4acf1d99c3497af58051109365842c94048ba7fe347924cbe6a9dc81dbb66e230f95da3a5c0683c131c817d86befa90e1b56e313c67b4670c32a42ed981a478035c7660b146604cd57a27833"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="38010000100013070000000000000000ac1414bb000000000000000000000000e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000002000000000000000000000000000000003200eb00ac141400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000400000000000000000048000200656362286369706865725f6e756c6c29"], 0x138}}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, 0x0, &(0x7f00000004c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x2)
readv(r5, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)

12.875926565s ago: executing program 2 (id=5252):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21085e, &(0x7f00000001c0)={[{@data_err_ignore}, {@nouid32}, {@minixdf}]}, 0x1, 0x51c, &(0x7f0000000780)="$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")
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000f40)="$eJzs3MFqE18Ux/Hzb/pv0pQ2EURQUA+60c3QxgfQIC2IAaU2RV0IUzvRkDEpM0MlIjYbcetzFJfuBPUFuhE37t0VQXDThTjiTKZN2rSmbdLE9PuBck9y7o+5bdNyUuis3339pFRwjYLpyVBCZUikJhsi6T9V3X/1dSioR6RRTS6P/fhy9s69+zezudz0rOpMdu5KRlUnzr9/+vzNhY/e2PzbiXdxWUs/WP+e+bp2au30+q+5x0VXi66WK56aulCpeOaCbeli0S0Zqrdty3QtLZZdy2nqF+zK0lJVzfLieHLJsVxXzXJVS1ZVvYp6TlXNR2axrIZh6HhSjrfhNvbkV2dnzeyubT/W0ROh60ZbPek42VrrZn71CM4EAAD6zN7zfzjr7z7/5+bDtcPzvwjzf5fUmh79Zf7HQHCcrJms//w2Y/4HAAAAAAAAAAAAAAAAAAAAAOBfsOH7Kd/3U9EafcRFJCEi0eNenxPdccDv/9UeHRcd1vCPewkR+9VyfjkfrmE/W5Ci2GLJpKTkZ/B6qAvrmRu56UkNpOWDvVLPryznYxKP8pF0q/y5E1NhXpvz/0uy8foZScnJ1tfPtMyPyKWLDXlDUvLpoVTElsXgdb2VfzGlev1Wblt+NNgHAAAAAMAgMHTTjvfvQT/YkJCd/TC/j78PbHt/PSxn2rlFJQAAAAAAODS3+qxk2rblHKCIi8gh4oNaxKQvjrGtuCYifXCMoyoSIhI+oweJf9uMt5Xy29gzLCI9/7Lso+j1byYAAAAAnbY19O8j9PllF08EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDx0+79wKL9O1pRY494w+ViR/4JAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH3kdwAAAP//R8IgDA==")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
kcmp(0x0, 0x0, 0x0, r0, r0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
syz_clone(0x80, &(0x7f0000000000), 0x0, 0xfffffffffffffffd, 0x0, 0x0)
socket$inet6(0xa, 0x805, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x800000, &(0x7f0000000000), 0x1, 0x4ec, &(0x7f0000000140)="$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")
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
write$char_usb(r1, &(0x7f00000008c0)='-0', 0x2)
open(&(0x7f0000000000)='./bus\x00', 0x16d43e, 0x0)

12.434500106s ago: executing program 2 (id=5255):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0x200000, 0x0)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x2, &(0x7f0000000280)=[{0x3, 0x7, 0xff, 0xb}, {0xf485, 0xd9, 0xd, 0x1}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000de00"/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
unshare(0x2040400)
r2 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001e000000000000ea04850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
unshare(0x2000400)
fsmount(r2, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
read$rfkill(0xffffffffffffffff, &(0x7f0000000040), 0x8)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_inet6_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000300))
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d40)={{r7}, &(0x7f0000000cc0), &(0x7f0000000d00)='%-5lx  \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000004c0)='neigh_create\x00', r4, 0x0, 0x20000000000}, 0x18)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x520, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x580)
setregid(0xffffffffffffffff, 0x0)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r9, 0x84, 0x7b, &(0x7f00000001c0)={0x0, 0x1ed2}, 0x8)

12.149821122s ago: executing program 2 (id=5262):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0x8, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000500000019723cfc87", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0b00000007000000010001000300000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000036f8a0ae449b49d4594b0e00"/39], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c2000000080045000038000000000021907800000000ffffffff0500fa90780a010101470000000000000000000000ac1e0001ac14140086060000000000"], 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)

12.098266286s ago: executing program 2 (id=5265):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21085e, &(0x7f00000001c0)={[{@data_err_ignore}, {@nouid32}, {@minixdf}]}, 0x1, 0x51c, &(0x7f0000000780)="$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")
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000f40)="$eJzs3MFqE18Ux/Hzb/pv0pQ2EURQUA+60c3QxgfQIC2IAaU2RV0IUzvRkDEpM0MlIjYbcetzFJfuBPUFuhE37t0VQXDThTjiTKZN2rSmbdLE9PuBck9y7o+5bdNyUuis3339pFRwjYLpyVBCZUikJhsi6T9V3X/1dSioR6RRTS6P/fhy9s69+zezudz0rOpMdu5KRlUnzr9/+vzNhY/e2PzbiXdxWUs/WP+e+bp2au30+q+5x0VXi66WK56aulCpeOaCbeli0S0Zqrdty3QtLZZdy2nqF+zK0lJVzfLieHLJsVxXzXJVS1ZVvYp6TlXNR2axrIZh6HhSjrfhNvbkV2dnzeyubT/W0ROh60ZbPek42VrrZn71CM4EAAD6zN7zfzjr7z7/5+bDtcPzvwjzf5fUmh79Zf7HQHCcrJms//w2Y/4HAAAAAAAAAAAAAAAAAAAAAOBfsOH7Kd/3U9EafcRFJCEi0eNenxPdccDv/9UeHRcd1vCPewkR+9VyfjkfrmE/W5Ci2GLJpKTkZ/B6qAvrmRu56UkNpOWDvVLPryznYxKP8pF0q/y5E1NhXpvz/0uy8foZScnJ1tfPtMyPyKWLDXlDUvLpoVTElsXgdb2VfzGlev1Wblt+NNgHAAAAAMAgMHTTjvfvQT/YkJCd/TC/j78PbHt/PSxn2rlFJQAAAAAAODS3+qxk2rblHKCIi8gh4oNaxKQvjrGtuCYifXCMoyoSIhI+oweJf9uMt5Xy29gzLCI9/7Lso+j1byYAAAAAnbY19O8j9PllF08EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDx0+79wKL9O1pRY494w+ViR/4JAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH3kdwAAAP//R8IgDA==")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
kcmp(0x0, 0x0, 0x0, r0, r0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x58}}, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
syz_clone(0x80, &(0x7f0000000000), 0x0, 0xfffffffffffffffd, 0x0, 0x0)
socket$inet6(0xa, 0x805, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x800000, &(0x7f0000000000), 0x1, 0x4ec, &(0x7f0000000140)="$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")
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
write$char_usb(r1, &(0x7f00000008c0)='-0', 0x2)
open(&(0x7f0000000000)='./bus\x00', 0x16d43e, 0x0)

11.894721585s ago: executing program 2 (id=5268):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
fchdir(r1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000500)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f00000002c0)=@gcm_128={{0x304}, "f0a0dcdc915dbb83", "0d60b5dc2671203701ac9c1c60e682c3", "b61ddc61", "d1db1f0ab6aa62f1"}, 0x28)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_GET(r4, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, r5, 0x1, 0x0, 0x0, {0x54}}, 0x14}}, 0x0)

11.113245967s ago: executing program 4 (id=5284):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000280)=@o_path={0x0, r0}, 0x18)

10.964092951s ago: executing program 4 (id=5285):
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000002640)=""/4096, 0x1000}, {&(0x7f0000000600)=""/235, 0xeb}, {&(0x7f0000000540)=""/167, 0xa7}], 0x3}, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r1, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000140)={0x16f, @time={0x0, 0x7cf}, 0x0, {}, 0x0, 0x0, 0x9})
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000180)={0x8, &(0x7f0000000100)=[{0x4, 0xe, 0x40, 0x2aef48ce}, {0xb, 0x4, 0xf8, 0x56fe}, {0x0, 0x2, 0x1, 0x7}, {0x5, 0x39, 0x40, 0xfff}, {0x7, 0x20, 0x0, 0xfade}, {0xfff, 0x1, 0x8, 0x5af}, {0x4, 0x7, 0x3, 0x98d}, {0xf800, 0xc, 0x5, 0x4}]})
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@dioread_nolock}]}, 0x3, 0x4de, &(0x7f0000000c40)="$eJzs3E1oXNUeAPD/nUma9Ot1Xl9f32utmlrFYDFp02q7EKSi4EJBrKAuQ5KW2rSRJgVbqkxB6lIK7sWlWxdu1U0RV4LbuhSkUKSbtoI4cmfunZlMZ5ImmWSM+f1gMufcr3POPffcOfeczASwYQ2lf5Ja+GZE7IiIQusGQ7W3e3euTNy/c2UiypXKyd+S6m5303gmO0xszSLDhYjCx0ljRZPZS5fPjk9PT13I4qNz594fnb10+dkzg9mS48ePHjl87Pmx55ZeqDbppeW6u/ejmX17Xn33+usTffnyPLXmcnTLUAy1y0rVU91OrMe2N4WTvh5mhCVJr/+0uvqr7X9HFGOhyiuvYc6A1VapVCoDnVeXK62uPrAEWLeS6HUOgN7IP+jT59/81a4jsGl1uh89d/tE7QEoLfe97BXxeHVhPg7S3/J8201DEfFO+ffP01es0jgEAECzb0/kPcGW/l+pNjPyx8UbL6bv/8rmUEoR8e+I2BkR/4mIXRHx34jYHRH/i4j/txy/GBGVBdIfaonX069PQhVudamobaX9vxeyua1G/29eBkrFLLY9Iu8wTx3Kzslw9A+cOjM9dXiBNL57+adPO61r7v+lrzT9vC+Y5eNWX8sA3eT43PiyC9zi9tWIvX2t5U/6IpL6TEASEXsiYu8SjltqCp955st99Uj//O0WL39Vpe08WhfmmSpfRDxdq/9yzKv/RorJvPnJc+Onp05PnR+rz0+ODsb01KHR9Co41DaNH3689kan9Bct/9e/tO7yyrFvTmYta+XS+t/SdP1HPn/bKH8piUjq87WzS0/j2s+fdHymWe71vyl5qxrOn0s/GJ+bu3A4YlPy2oPLxxr75vH0Pcq18g8faN/+d2b7pGfikYhIL+JHI+KxqD0hpnnfHxFPRMSBBcr//UtPvrf88q+utPyTLfe/Ws3Pq//GfH2nQJLNDbZZVTy7/+b9DjePh6v/o9XQcLak/f0vmXeL6JTT/NMuXfLnis8eAAAArA+FiNjWNJa0LQqFkZHaGNCu2FKYnpmdO3hq5uL5yXRdRCn6C/lIV208uD/Jxz9LTfGxlviRbNz4s+LmanxkYmZ6sqclB7ZW23xSGIl4u9jU/lO/dmeIGfg7830t2LgWav9pJ3739TXMDLCmHv7z/8aHq5oRYM01tf9O3/AvL+P/voB1wPM/0LD4D/24Z8D6V9GWYUNbUvs/6EcA4Z+kL96shws9zQmw1vT/YUNa9Hv9KwpUBtqvGowHN47BhQ9YjOVlY3ObtHoSSHtWPUl983L2yn9NoeM2UVjaAQeiO3V6aoVno3xh9vTurl/8lex/5btdg1+tSTttF+jJ7QgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDr/goAAP//aUHglQ==")
r3 = open(&(0x7f0000000040)='./file2\x00', 0x141042, 0x0)
fallocate(r3, 0x3, 0x4, 0x2328)
lchown(&(0x7f0000000540)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0)
getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, 0x0, &(0x7f0000000240))
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)

10.581453996s ago: executing program 4 (id=5288):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f0000000940)={0x0, 0x0, 0x0, 0xffffffff, 0x81, 0x0, 0x9, 0x14, 0x1, "4f4e97d337c094b0f676bbacb112de8e62e180b9720feaa226dee74b08d0e8b585b49d96ef4dabb28e5ab7be7727b6cf7a681f00307f69f1ac5a11a714b44149", "102ee43402f1965520e153845bc7fc37a346c382b57a8c868d63c7a21f1e0957517c4249be5f881ba18037368342c468fdfc3aa9a56ed6a7cf17f22f90b6b8f7", "cc0d63a37d3eb4200ae3aa7107608a3f23c114e564c7615a99f1ebbffd981e51", [0xfff, 0x101]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000000590000000000f500000010", @ANYRES32=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYRES64], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffc, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)

10.476335666s ago: executing program 4 (id=5289):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000600)='sys_enter\x00', r1}, 0x10)
io_submit(0x0, 0x6, &(0x7f0000001900)=[&(0x7f00000014c0)={0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffffffffffff, &(0x7f0000001400)="5d406374bc25d12c3c3831f450175f19d4627ee9049ffc1372d21673ab4a1255d203dbab38732657ef8fd3df17daa0312f6874b8c3877d3a680440c192c0a03eec085e92813c154777a339d14c7e26a9ffafe6a4c9b8c8cb0e0a2d37a99f27198f603c2890c21e46844cde9676e6684eb0c7d0a3f8d8bfea5f7bc7665dd5309b03127145517c9e8b4fda7106c7cf574b6992eee33acb389bda9d3c2b9b504dfaac14f4f27ace89cbeee6b9d5b385beac73", 0xb1, 0x5e14, 0x0, 0x1}, &(0x7f0000001580)={0x0, 0x0, 0x0, 0x0, 0x3dea, 0xffffffffffffffff, &(0x7f0000001500)="5e58e7226211268e840f2881eb5267779edacfaeba1cdd41e48e3a5ca3e0738b0705637561adadb0e96a1d96d60e85371d6394e012f4c7658a39c776a57b9a9129db0ed26260b0decc962936f6b645169ce4c508cf561ce0", 0x58, 0x2}, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x5, 0xfff8, 0xffffffffffffffff, &(0x7f00000015c0)="b8ed71ddf4baa4f587db0e199fafb1f70278c591b15922c6cf0008ab7f674961261be3242aa4a969cb83a71828af0daf69a48e08fc4cf79eca57ded9999ab1cec589eb2e1f4d7b0b445192cb876dd9a69f25adbd56c4cf41479348eb4e748523f3f5fdb689", 0x65, 0x3, 0x0, 0x7}, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x7, 0x0, 0xffffffffffffffff, &(0x7f0000001680)="2608eb5fb1e832a741f7ee78edf92b10267ef01349d4efb92c977f558c4df90acea9ca9bf2f90926d1138c8c7050484e26ce751035f3eb04091717d8dcd3223b", 0x40, 0xfffffffffffeffff}, &(0x7f0000001800)={0x0, 0x0, 0x0, 0x1, 0x101, 0xffffffffffffffff, &(0x7f0000001700)="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", 0xfa, 0x9, 0x0, 0x6}, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x3, 0x7, 0xffffffffffffffff, &(0x7f0000001840)="fe71261ac07553902d5a104f7e8143d5019b2d3c7cce", 0x16, 0x0, 0x0, 0x1}])

10.451406388s ago: executing program 4 (id=5290):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21085e, &(0x7f00000001c0)={[{@data_err_ignore}, {@nouid32}, {@minixdf}]}, 0x1, 0x51c, &(0x7f0000000780)="$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")
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000f40)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
kcmp(0x0, 0x0, 0x0, r0, r0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x58}}, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
syz_clone(0x80, &(0x7f0000000000), 0x0, 0xfffffffffffffffd, 0x0, 0x0)
socket$inet6(0xa, 0x805, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x800000, &(0x7f0000000000), 0x1, 0x4ec, &(0x7f0000000140)="$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")
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
write$char_usb(r1, &(0x7f00000008c0)='-0', 0x2)
open(&(0x7f0000000000)='./bus\x00', 0x16d43e, 0x0)

10.258841246s ago: executing program 4 (id=5294):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000340)=@newlink={0x34, 0x10, 0xd, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x4}}}]}, 0x34}}, 0x2400c084)

6.259073924s ago: executing program 1 (id=5325):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={0x0, r0}, 0x18)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x200000d, 0x2010, r1, 0xf60cb000)
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000740)=ANY=[@ANYBLOB="38000000c767be074cc6eda7586c19c1a176836f842fe0e49799f75b75e9d881faf9f49de4659e2a", @ANYRES16=0x0, @ANYBLOB="01000000000000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c6572300000"], 0x38}}, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x1c, 0x0, 0x1, 0x70bd29, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}}, 0x20000000)
r2 = syz_open_procfs(0x0, &(0x7f0000000540)='net/ip6_mr_cache\x00')
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x40000, 0x30}, 0xc)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000400)={0x0, 0x3}, 0x8)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000000840)='z', 0x1, 0x0, 0x0, 0x0)
sendto$inet6(r3, &(0x7f0000000280)="aa", 0x1, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000080), 0x0)
r4 = socket(0x2, 0x80805, 0x0)
r5 = socket$inet(0x2, 0x3, 0x86)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r3, 0x8983, &(0x7f00000001c0)={0x2, 'veth1_virt_wifi\x00', {0x1}, 0x200})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000007c0)=ANY=[@ANYRES64=r3, @ANYRES64=r1, @ANYRES64=r4], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1900000004000000080000000600000000000000", @ANYRES32, @ANYBLOB="000000000200000000000000f8db394b8d0000f0", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r3], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r6}, &(0x7f0000000800), &(0x7f0000000840)=r7}, 0x20)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r8, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, 0x0, &(0x7f0000000040))
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000580), 0x20)
sendto$inet6(r3, &(0x7f0000000040)="93", 0x34000, 0x0, 0x0, 0x44)

6.019767716s ago: executing program 1 (id=5327):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYRES8, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000e9cd3193b75f00000000000000000000000000210000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="d35fb147000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf0300000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70400000800000085000000950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0xfdef)
r2 = add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$search(0xa, r2, 0x0, &(0x7f0000000100)={'syz', 0x0}, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000280)='./bus\x00', 0x0, &(0x7f0000001080), 0x1, 0x504, &(0x7f0000001180)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x40a01, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
write$tun(r3, 0x0, 0xffe)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
sysinfo(&(0x7f0000000280)=""/178)
open(0x0, 0x64842, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
close(r6)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r7, &(0x7f0000000500)=[{{&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='p\x00\x00\x00\x00\x00\x00\x00v'], 0x70}}], 0x1, 0x2000c044)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r10], 0x20}}, 0x4000000)

5.8638201s ago: executing program 1 (id=5329):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x200480, &(0x7f0000000c40)={[{@quota}, {@init_itable_val={'init_itable', 0x3d, 0x2000006}}, {@quota}, {@commit={'commit', 0x3d, 0x5}}, {@dax_always}, {@nogrpid}], [{@subj_type}, {@flag='dirsync'}]}, 0x1, 0x79f, &(0x7f00000017c0)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180100001c0000000000000000100000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcbc, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000800)="d800000018007b29e00212ba0d8105040a601800fe0f040b067c55a1bc0009001e0006990600000004000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ccd40dd601edef3d93452a92307ff0ff0e97031e9f05e9f16e9cb500"/216, 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000300)={0x2, &(0x7f0000000340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}, {0x5, 0xe, 0x9, 0x2}]})
timer_create(0x1, 0x0, &(0x7f0000000080)=<r2=>0x0)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000000), 0x7, 0x4ce, &(0x7f0000000740)="$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")
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x20, &(0x7f0000000040)=0x2, 0xf6)
timer_delete(r2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xb8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x3, 0xffffffffffffffff, 0x0)
timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f00000002c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000002c0)='rpm_return_int\x00', r5}, 0x10)
syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x3ff, 0x0, &(0x7f0000000340), 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0})
socket$unix(0x1, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x1f, 0xd52, 0x1, 0x8, 0x6, r4, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

4.285502416s ago: executing program 3 (id=5332):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0x200000, 0x0)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x2, &(0x7f0000000280)=[{0x3, 0x7, 0xff, 0xb}, {0xf485, 0xd9, 0xd, 0x1}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000de00"/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
unshare(0x2040400)
r2 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001e000000000000ea04850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
unshare(0x2000400)
fsmount(r2, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
read$rfkill(0xffffffffffffffff, &(0x7f0000000040), 0x8)
r5 = syz_open_dev$sg(0x0, 0x0, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_inet6_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000300))
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d40)={{r7}, &(0x7f0000000cc0), &(0x7f0000000d00)='%-5lx  \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000004c0)='neigh_create\x00', r4, 0x0, 0x20000000000}, 0x18)
r8 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x520, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x580)
setregid(0xffffffffffffffff, 0x0)
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r9, 0x84, 0x7b, &(0x7f00000001c0)={0x0, 0x1ed2}, 0x8)

4.167307096s ago: executing program 3 (id=5333):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00000000000000001f00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$TCSETSW2(0xffffffffffffffff, 0x541e, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="b4050000200080006110600000000000c60000000000000095000000000000009f332460916e6e893f1eeb0b723043c47c896ce0bce66a245ad99b817fd98cd824498949714ffaac8a6fb6db714e4b94bdae214fa68a0557eb3c5c2683a4b6fc89398f2b9000f224891060017cfa6fa26fa7a34700458c60897d4a6148a1c11428607c40de60beac671e8e8fdecb03598aa623fa71f31bf0f871ab5c2ff88afc6002084e5b52710aee410e3e554d090d95983826fb8579c1fb47d2c5553d2ccb5fc5b51fe6b174ebd9907dcff414ed00000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0xe, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r1, r0, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r1, &(0x7f0000000140), &(0x7f0000000040)=@tcp6=r2}, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0x541b, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
close_range(r4, 0xffffffffffffffff, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000680)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000dee0b81afa79a60857003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173702d3e959efc71f665c4d75cf2458e3546c1c576da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb490000000000000000000085d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c84b7632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d7194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564ac3b72d1c891df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa16509945ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f975a0e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eada765e7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92678044870dbd6db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0d00"/3301], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
r7 = io_uring_setup(0x1691, &(0x7f0000000400)={0x0, 0x631d, 0x1000, 0x2, 0x2d8})
io_uring_register$IORING_REGISTER_BUFFERS2(r7, 0xf, &(0x7f0000002700)={0x119f, 0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000480)=""/264, 0xf9}, {&(0x7f00000015c0)=""/4096, 0x400400}, {&(0x7f0000002a00)=""/88, 0x8}], 0x0}, 0x20)

4.016961781s ago: executing program 1 (id=5334):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc2001}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000001600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYRESOCT=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f0000000000)={0x18, 0x0, {0x2, @empty, 'veth1_to_batadv\x00'}}, 0x1e)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r5}, &(0x7f0000000080), &(0x7f0000000180)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x80000)
connect$pppoe(r4, &(0x7f0000000140)={0x18, 0x0, {0x0, @local, 'bond_slave_0\x00'}}, 0x1e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r3}, 0x10)
get_mempolicy(0x0, 0x0, 0x80000001000000, &(0x7f00000a9000/0x1000)=nil, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRES16=r1], 0x48)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$VT_RESIZE(r8, 0x5609, &(0x7f0000000080)={0x9, 0x843, 0x401})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYRES64=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r9}, 0x10)
r10 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
ioctl$LOOP_SET_CAPACITY(r10, 0x4c07)
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)

3.972630465s ago: executing program 3 (id=5335):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000008c0)='./file0\x00', 0x0, &(0x7f00000000c0), 0x1, 0x4ef, &(0x7f00000003c0)="$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")
lsetxattr$security_selinux(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100), &(0x7f0000000000)='system_u:object_r:apt_var_lib_t:s0\x00', 0x62, 0x0)

3.80010766s ago: executing program 3 (id=5336):
readv(0xffffffffffffffff, 0x0, 0x0)

3.776902453s ago: executing program 1 (id=5337):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21085e, &(0x7f00000001c0)={[{@data_err_ignore}, {@nouid32}, {@minixdf}]}, 0x1, 0x51c, &(0x7f0000000780)="$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")
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000f40)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
kcmp(0x0, 0x0, 0x0, r0, r0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB], 0x58}}, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
syz_clone(0x80, &(0x7f0000000000), 0x0, 0xfffffffffffffffd, 0x0, 0x0)
socket$inet6(0xa, 0x805, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x800000, &(0x7f0000000000), 0x1, 0x4ec, &(0x7f0000000140)="$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")
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
write$char_usb(r1, &(0x7f00000008c0)='-0', 0x2)
open(&(0x7f0000000000)='./bus\x00', 0x16d43e, 0x0)

3.571838082s ago: executing program 1 (id=5338):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r3, &(0x7f0000000080), 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r4 = fcntl$dupfd(r3, 0x0, r3)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0)
sendmsg$WG_CMD_GET_DEVICE(r4, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000002fc0)=ANY=[], 0x2b08}}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000380)=@gcm_256={{0x303}, "5ef40e7ab852acb6", "582f7cccfda6a677c372675d88becd932053048ac5a438b0e48fdb55bdc83053", "52c227d6", "c6425ec4f2e476d5"}, 0x38)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r4)

3.101516165s ago: executing program 0 (id=5341):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0x200000, 0x0)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f00000002c0)={0x2, &(0x7f0000000280)=[{0x3, 0x7, 0xff, 0xb}, {0xf485, 0xd9, 0xd, 0x1}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000de00"/21], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
unshare(0x2040400)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
unshare(0x2000400)
fsmount(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
read$rfkill(0xffffffffffffffff, &(0x7f0000000040), 0x8)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_inet6_tcp_SIOCOUTQ(r5, 0x5411, &(0x7f0000000300))
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d40)={{r6}, &(0x7f0000000cc0), &(0x7f0000000d00)='%-5lx  \x00'}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000004c0)='neigh_create\x00', r3, 0x0, 0x20000000000}, 0x18)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x520, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x580)
setregid(0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000001c0)={0x0, 0x1ed2}, 0x8)

2.906995773s ago: executing program 0 (id=5342):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x2, 0x0, 0x80000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mq_notify(0xffffffffffffffff, 0x0)

1.652327678s ago: executing program 3 (id=5344):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r1 = gettid()
process_vm_writev(r1, 0x0, 0x0, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x1}], 0x1, 0x0)

1.572599086s ago: executing program 0 (id=5345):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x200480, &(0x7f0000000c40)={[{@quota}, {@init_itable_val={'init_itable', 0x3d, 0x2000006}}, {@quota}, {@commit={'commit', 0x3d, 0x5}}, {@dax_always}, {@nogrpid}], [{@subj_type}, {@flag='dirsync'}]}, 0x1, 0x79f, &(0x7f00000017c0)="$eJzs3ctrXNUfAPDvnbyatL9fIghaQQgIGiidmBpbBRcVFyJYKOjaNkymoWaSKZlJaULEFhHcCCouBN107aPu3PrY6n/hQlpqTYsVFxK5k5l22sykkzQzE8znAydzzn3knO+c+zgz9zI3gD1rNP2TiTgYER8lEcPV6UlE9FVyvRHH15e7vbqSS1MSa2tv3Egqy9xaXclF3Tqp/dXC4xHx4/sRhzIb6y0tLc9OFQr5hWp5vDx3bry0tHz47NzUTH4mP390YnLyyLHnjx3duVj//GX5wLWPX33mm+N/v/fYlQ9/SuJ4HKjOq49jp4zGaPU96Uvfwnu8stOVdVnS7QawLemu2bO+l8fBGI6eSq6JwU62DABol3cjYg0A2GOSbZz/n3znxnA72gIAdELte4Bbqyu5WuruNxKddf3liNi3Hn/t+ub6nN7qNbt9leugQ7eSe66MJBExsgP1j0bEF9+99VWaotoPrqUBnXDxUkScHhndePxPNtyzsFXPbjZzbaDyMnrf5L12/oFu+j4d/7zQaPyXuTP+iQbjn4EG++52PHj/z1zdgWqaSsd/L9Xd23a7Lv6qkZ5q6X+VMV9fcuZsIZ8e2/4fEWPRN5CWJyqLNh65jd3852az+uvHf3988vaXaf3p690lMld7B+5dZ3qqPPWwcddcvxTxRG+j+JM7/Z80Gf+ebLGO11784PNm89L403hraWP87bV2OeLphv1/ty+TTe9PHK9sDuO1jaKBb3/9bKjZ3VP1/Z+mtP7aZ4FOSPt/aPP4R5L6+zVLW6/j58vDPzSb9+D4G2///cmblXx/ddqFqXJ5YSKiP3l94/Qjd9etlWvLp/GPPdV4/1+vtvH2n34mPN1i/L3Xfv96+/G3Vxr/9Jb6f+uZK7dne5rV31r/T1ZyY9UprRz/Wm3gw7x3AAAAAAAAAAAAAAAAAAAAAAAAANCqTEQciCSTvZPPZLLZ9Wd4PxpDmUKxVD50prg4Px2VZ2WPRF+m9lOXw3W/hzpR/T38WvnIfeXnIuKRiPh0YLBSzuaKheluBw8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAVfubPP8/9dtAt1sHALTNvm43AADouPvP/2tdagcA0Dlb+/w/2LZ2AACd4/t/ANh7Wj7/n25vOwCAzmn5/N/X3nYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwn3XyxIk0rf21upJLy9PnlxZni+cPT+dLs9m5xVw2V1w4l50pFmcK+WyuONf0H11cfykUi+cmY37xwng5XyqPl5aWT80VF+fLp87OTc3kT+X76lbpb3t0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANCa0tLy7FShkF+Q2TQzuDuasWsyvbErmiHTtkz9UWKwewcoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgF3u3wAAAP//Ke4pUA==")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180100001c0000000000000000100000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcbc, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000800)="d800000018007b29e00212ba0d8105040a601800fe0f040b067c55a1bc0009001e0006990600000004000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ccd40dd601edef3d93452a92307ff0ff0e97031e9f05e9f16e9cb500"/216, 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000300)={0x2, &(0x7f0000000340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}, {0x5, 0xe, 0x9, 0x2}]})
timer_create(0x1, 0x0, &(0x7f0000000080)=<r2=>0x0)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000000), 0x7, 0x4ce, &(0x7f0000000740)="$eJzs3E9sFFUcAODfbFtaoMiKiIKoi2hsNLZQUDiYGIwmHjQx4kGPTVsIUqihNRFCZEkMHg2Jd+PRqwev6s14MvGKRxNDQgwXwNOY2Z1tt9vdpX+2Xdt+X7Ld92be7Js3b97Mm/e6G8CWVcr+JBGDEXErInZHRKExQan6dv/u1fEHd6+ORzlNT/+TZJvFvSyeS/L3nXlkqBBR+DKZX1Fn5vKV82NTU5OX8vjI7IVPR2YuX3nl3IWxs5NnJy+Onjx5/NjRE6+Nvrr8QjXJLyvXvQNfTB/c/87HN98b760tH8jf68vRKaUoNduVihc6nVmX7aoLJ73tUr6x9jvDkmXnf1ZdfZX2vzt6om3lAZtImqZpf+vV5bTR9UVLgA0riW7vAdAdtRt99vxbezXrCGxbm+5H1905VX0Aysp9P39FPFtZWBsH6Wt4vu2kUkR8VP732+wVazQOAQBQ7+dTtZ5gQ/+vGLGvLt0j+RxKMSIejYg9EfFYROyNiMejmvaJiHiy4fN7IiJtk3+pIb64/1O4vboStpf1/17P57bm+39RPwtW7MljuyJqHebJI/kxGYq+/jPnpiaPtsnjl7f++LrVuvr+X/bK8q/1BfP9uN3bMEA3MTY7tuICN7hzPeJAb2P5k96IZG4mIImI/RFxYBmfW6wLn3vp+4Nzkb6F6R5e/oq06TxaB6Yq0u8iXqzWfzkW1P98jkn7+cmRgZiaPDKSnQVHmubx2+833m+V/0PL/+NfjZu8feKn03nLWr2s/nfUnf9Rm7+dL38xiUjm5mtnlp/HjT+/avlMs9Lzf1vyYSVcey79fGx29tLRiG3Ju4uXj85vW4tn71Guln/ocPP2vyffJjsST0VEdhI/HRHPRPUJsRTptUMR8VxEHG5T/l/ffP6TlZd/bWXln2h6/VtQ//Pz9a0CSbmausmqnvOHbj1ocfFYWv0fr4SG8iXNr3/JgktEmz1dEFjt8QMAAICNoBARg3VjSYNRKAwPV8eA9saOwtT0zOzLZ6Y/uzhR/Y5AMfoKtZGu6nhwX1Ib/yzWxUcb4sfyceNverZX4sPj01MTXS05sLPS5pPC8Ny1oNr+M393ZogZ+D/zlR/Yuh7W/vfdXKcdAdad+z9sXXXtv9wiSdl/ysDmtJT7v7FA2Jyatf9rlb+tfr7KMwNsBuny23Kb3wsCNprltH/3fdhceuODuXChq3sCrDf3dNiSlvQl+RUH0v7mqwZiceIYaP+BPbGy3djeJK+uBLKeVVdy376SrWojvy3TRGF5H9gfnanTM6s/LGf3dfzkT/P5sU7X4A/r0k6bBdpfN0YH1+6aBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0En/BQAA//+NHdx3")
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x20, &(0x7f0000000040)=0x2, 0xf6)
timer_delete(r2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xb8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x3, 0xffffffffffffffff, 0x0)
timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f00000002c0)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000002c0)='rpm_return_int\x00', r5}, 0x10)
syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r6, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
ioctl$USBDEVFS_SUBMITURB(r6, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x3ff, 0x0, &(0x7f0000000340), 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0})
socket$unix(0x1, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x1f, 0xd52, 0x1, 0x8, 0x6, r4, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

1.460896096s ago: executing program 3 (id=5346):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x50a, &(0x7f0000000200)="$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")
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000a00)={&(0x7f0000000940)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x4, [@union={0x0, 0x2, 0x0, 0x5, 0x1, 0xe0000000, [{0x1, 0x2, 0x8}, {0xe, 0x4, 0x5f45c446}]}]}, {0x0, [0x5f, 0x2e]}}, &(0x7f0000000980)=""/125, 0x40, 0x7d, 0x0, 0x2, 0x0, @void, @value}, 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000ae5affffb702400005000000b7030000000000008500000073"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
unshare(0x60400)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0)

1.085353561s ago: executing program 0 (id=5347):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x5, 0x2, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)

688.444957ms ago: executing program 0 (id=5348):
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000004, 0x0, 0x0)
unshare(0x46060480)
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x0, @loopback}, @in={0x2, 0x0, @dev}], 0x30)

0s ago: executing program 0 (id=5349):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000009c0)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1}, 0x18)
sendmsg$can_j1939(r2, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000007c0), r3)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r3, &(0x7f00000008c0)={0xfffffffffffffffd, 0x0, &(0x7f0000000880)={&(0x7f0000000800)={0x24, r4, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0x2c}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x64010102}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x80)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r6=>0x0})
r7 = socket$unix(0x1, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r8=>0x0})
r9 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r9, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r9, &(0x7f0000000200)={&(0x7f0000000340)={0x1d, r8, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r7, @ANYBLOB="3bf81bb9f9"], 0x20000600}}, 0x0)
sendmsg$can_bcm(r9, &(0x7f0000000080)={&(0x7f0000000340)={0x1d, r6, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bind$can_j1939(r0, &(0x7f0000000200)={0x1d, r1, 0x0, {0x0, 0x0, 0x3}}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', r1, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
sendmsg$can_j1939(r0, &(0x7f0000000740)={&(0x7f0000000540)={0x1d, 0x0, 0x0, {0x2, 0x1, 0x4}, 0x2}, 0x18, &(0x7f00000005c0)={&(0x7f0000000580)="0e031594a4f833666d3952", 0xb}, 0x1, 0x0, 0x0, 0x20004090}, 0x20008000)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r10}, 0xe)
r11 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r11, 0x8933, &(0x7f0000000000)={'vcan0\x00'})

kernel console output (not intermixed with test programs):

.963194][T18149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  292.973418][T18149] Call Trace:
[  292.976706][T18149]  <TASK>
[  292.979678][T18149]  dump_stack_lvl+0xf2/0x150
[  292.987531][T18149]  dump_stack+0x15/0x20
[  292.991861][T18149]  should_fail_ex+0x223/0x230
[  292.996637][T18149]  ? __alloc_skb+0x10b/0x310
[  293.001315][T18149]  should_failslab+0x8f/0xb0
[  293.006040][T18149]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  293.011972][T18149]  __alloc_skb+0x10b/0x310
[  293.016515][T18149]  ? bpf_trace_run3+0x12b/0x1d0
[  293.021416][T18149]  netlink_dump+0x162/0x760
[  293.025954][T18149]  netlink_recvmsg+0x427/0x780
[  293.030803][T18149]  ? __pfx_netlink_recvmsg+0x10/0x10
[  293.036115][T18149]  sock_recvmsg+0x13f/0x170
[  293.040667][T18149]  ____sys_recvmsg+0xf9/0x280
[  293.045376][T18149]  do_recvmmsg+0x2df/0x710
[  293.049858][T18149]  __x64_sys_recvmmsg+0xe2/0x170
[  293.054846][T18149]  x64_sys_call+0x26e3/0x2d60
[  293.059553][T18149]  do_syscall_64+0xc9/0x1c0
[  293.064090][T18149]  ? clear_bhb_loop+0x55/0xb0
[  293.068984][T18149]  ? clear_bhb_loop+0x55/0xb0
[  293.073806][T18149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.079757][T18149] RIP: 0033:0x7fcdfb0bdef9
[  293.084302][T18149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.103974][T18149] RSP: 002b:00007fcdf9cf5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  293.112534][T18149] RAX: ffffffffffffffda RBX: 00007fcdfb276130 RCX: 00007fcdfb0bdef9
[  293.120512][T18149] RDX: 0000000000000002 RSI: 0000000020000a40 RDI: 0000000000000006
[  293.128633][T18149] RBP: 00007fcdf9cf5090 R08: 0000000000000000 R09: 0000000000000000
[  293.136616][T18149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.144651][T18149] R13: 0000000000000000 R14: 00007fcdfb276130 R15: 00007fff63cf9e38
[  293.152669][T18149]  </TASK>
[  293.182108][T18151] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4883'.
[  293.240183][T14761] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.799420][T18167] tipc: Started in network mode
[  314.804333][T18167] tipc: Node identity :, cluster identity 4711
[  317.671388][ T3375] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  317.681967][ T3375] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.781047][T17990] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.792167][T15676] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.810526][ T3375] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  317.824381][ T3375] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.890828][ T3375] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  317.901167][ T3375] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.972072][ T3375] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  317.982535][ T3375] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  318.134821][ T3375] bridge_slave_1: left allmulticast mode
[  318.140522][ T3375] bridge_slave_1: left promiscuous mode
[  318.146297][ T3375] bridge0: port 2(bridge_slave_1) entered disabled state
[  318.154170][ T3375] bridge_slave_0: left allmulticast mode
[  318.159857][ T3375] bridge_slave_0: left promiscuous mode
[  318.165538][ T3375] bridge0: port 1(bridge_slave_0) entered disabled state
[  318.260264][ T3375] @ (unregistering): (slave bond_slave_0): Releasing backup interface
[  318.270326][ T3375] @ (unregistering): (slave bond_slave_1): Releasing backup interface
[  318.279857][ T3375] @ (unregistering): Released all slaves
[  318.313777][ T3375] hsr_slave_0: left promiscuous mode
[  318.319440][ T3375] hsr_slave_1: left promiscuous mode
[  318.325058][ T3375] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  318.332475][ T3375] batman_adv: batadv0: Removing interface: batadv_slave_0
[  318.340140][ T3375] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  318.347574][ T3375] batman_adv: batadv0: Removing interface: batadv_slave_1
[  318.355404][ T3375] batman_adv: batadv0: Interface deactivated: veth1_macvtap
[  318.362818][ T3375] batman_adv: batadv0: Removing interface: veth1_macvtap
[  318.371517][ T3375] veth0_macvtap: left promiscuous mode
[  318.426845][ T3375] team0 (unregistering): Port device team_slave_1 removed
[  318.437846][ T3375] team0 (unregistering): Port device team_slave_0 removed
[  318.482423][T18177] chnl_net:caif_netlink_parms(): no params data found
[  318.555836][T18185] chnl_net:caif_netlink_parms(): no params data found
[  318.594611][T18186] chnl_net:caif_netlink_parms(): no params data found
[  318.614071][T18179] chnl_net:caif_netlink_parms(): no params data found
[  318.622655][T18177] bridge0: port 1(bridge_slave_0) entered blocking state
[  318.629815][T18177] bridge0: port 1(bridge_slave_0) entered disabled state
[  318.636976][T18177] bridge_slave_0: entered allmulticast mode
[  318.643421][T18177] bridge_slave_0: entered promiscuous mode
[  318.652365][T18177] bridge0: port 2(bridge_slave_1) entered blocking state
[  318.659485][T18177] bridge0: port 2(bridge_slave_1) entered disabled state
[  318.666619][T18177] bridge_slave_1: entered allmulticast mode
[  318.673126][T18177] bridge_slave_1: entered promiscuous mode
[  318.715414][T18182] chnl_net:caif_netlink_parms(): no params data found
[  318.730925][T18177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  318.746839][T18185] bridge0: port 1(bridge_slave_0) entered blocking state
[  318.754054][T18185] bridge0: port 1(bridge_slave_0) entered disabled state
[  318.761214][T18185] bridge_slave_0: entered allmulticast mode
[  318.767761][T18185] bridge_slave_0: entered promiscuous mode
[  318.783842][T18177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  318.803048][T18185] bridge0: port 2(bridge_slave_1) entered blocking state
[  318.810161][T18185] bridge0: port 2(bridge_slave_1) entered disabled state
[  318.818250][T18185] bridge_slave_1: entered allmulticast mode
[  318.824811][T18185] bridge_slave_1: entered promiscuous mode
[  318.897745][T18177] team0: Port device team_slave_0 added
[  318.913580][T18186] bridge0: port 1(bridge_slave_0) entered blocking state
[  318.920796][T18186] bridge0: port 1(bridge_slave_0) entered disabled state
[  318.928129][T18186] bridge_slave_0: entered allmulticast mode
[  318.934618][T18186] bridge_slave_0: entered promiscuous mode
[  318.944538][T18177] team0: Port device team_slave_1 added
[  318.955267][T18179] bridge0: port 1(bridge_slave_0) entered blocking state
[  318.962423][T18179] bridge0: port 1(bridge_slave_0) entered disabled state
[  318.969624][T18179] bridge_slave_0: entered allmulticast mode
[  318.976160][T18179] bridge_slave_0: entered promiscuous mode
[  318.984545][T18185] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  318.993688][T18179] bridge0: port 2(bridge_slave_1) entered blocking state
[  319.000907][T18179] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.008145][T18179] bridge_slave_1: entered allmulticast mode
[  319.014559][T18179] bridge_slave_1: entered promiscuous mode
[  319.020764][T18186] bridge0: port 2(bridge_slave_1) entered blocking state
[  319.028248][T18186] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.035460][T18186] bridge_slave_1: entered allmulticast mode
[  319.043414][T18186] bridge_slave_1: entered promiscuous mode
[  319.066369][T18185] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  319.090808][T18182] bridge0: port 1(bridge_slave_0) entered blocking state
[  319.098042][T18182] bridge0: port 1(bridge_slave_0) entered disabled state
[  319.105317][T18182] bridge_slave_0: entered allmulticast mode
[  319.111911][T18182] bridge_slave_0: entered promiscuous mode
[  319.118602][T18182] bridge0: port 2(bridge_slave_1) entered blocking state
[  319.125836][T18182] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.133068][T18182] bridge_slave_1: entered allmulticast mode
[  319.141119][T18182] bridge_slave_1: entered promiscuous mode
[  319.152483][T18177] batman_adv: batadv0: Adding interface: batadv_slave_0
[  319.159467][T18177] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.185542][T18177] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  319.196799][T18177] batman_adv: batadv0: Adding interface: batadv_slave_1
[  319.203842][T18177] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.229870][T18177] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  319.251452][T18179] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  319.273865][T18182] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  319.286154][T18185] team0: Port device team_slave_0 added
[  319.293036][T18185] team0: Port device team_slave_1 added
[  319.300058][T18179] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  319.311317][T18186] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  319.322260][T18186] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  319.337390][T18182] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  319.367333][T18186] team0: Port device team_slave_0 added
[  319.391645][ T3375] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  319.408539][T18186] team0: Port device team_slave_1 added
[  319.416220][T18177] hsr_slave_0: entered promiscuous mode
[  319.422424][T18177] hsr_slave_1: entered promiscuous mode
[  319.428394][T18177] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  319.435952][T18177] Cannot create hsr debugfs directory
[  319.447111][T18179] team0: Port device team_slave_0 added
[  319.453918][T18179] team0: Port device team_slave_1 added
[  319.459938][T18185] batman_adv: batadv0: Adding interface: batadv_slave_0
[  319.466883][T18185] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.492927][T18185] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  319.516868][ T3375] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  319.534609][T18182] team0: Port device team_slave_0 added
[  319.545452][T18185] batman_adv: batadv0: Adding interface: batadv_slave_1
[  319.552497][T18185] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.578460][T18185] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  319.592056][T18186] batman_adv: batadv0: Adding interface: batadv_slave_0
[  319.599041][T18186] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.625107][T18186] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  319.636345][T18186] batman_adv: batadv0: Adding interface: batadv_slave_1
[  319.643456][T18186] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.669491][T18186] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  319.681259][T18182] team0: Port device team_slave_1 added
[  319.693633][T18179] batman_adv: batadv0: Adding interface: batadv_slave_0
[  319.700739][T18179] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.726677][T18179] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  319.740088][ T3375] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  319.775415][T18179] batman_adv: batadv0: Adding interface: batadv_slave_1
[  319.782444][T18179] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.808431][T18179] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  319.829817][T18182] batman_adv: batadv0: Adding interface: batadv_slave_0
[  319.836766][T18182] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.862787][T18182] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  319.883543][ T3375] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  319.923607][T18182] batman_adv: batadv0: Adding interface: batadv_slave_1
[  319.930809][T18182] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.956801][T18182] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  319.971990][T18185] hsr_slave_0: entered promiscuous mode
[  319.979020][T18185] hsr_slave_1: entered promiscuous mode
[  319.984997][T18185] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  319.992624][T18185] Cannot create hsr debugfs directory
[  320.011717][T18179] hsr_slave_0: entered promiscuous mode
[  320.017907][T18179] hsr_slave_1: entered promiscuous mode
[  320.023872][T18179] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  320.031454][T18179] Cannot create hsr debugfs directory
[  320.039192][T18186] hsr_slave_0: entered promiscuous mode
[  320.045308][T18186] hsr_slave_1: entered promiscuous mode
[  320.051245][T18186] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  320.058864][T18186] Cannot create hsr debugfs directory
[  320.155312][T18182] hsr_slave_0: entered promiscuous mode
[  320.161456][T18182] hsr_slave_1: entered promiscuous mode
[  320.167408][T18182] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  320.175032][T18182] Cannot create hsr debugfs directory
[  320.185967][ T3375] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.251008][ T3375] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.291548][ T3375] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.410859][ T3375] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.482858][ T3375] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  320.493256][ T3375] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.523339][T18177] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  320.532153][T18177] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  320.541453][T18177] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  320.550140][T18177] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  320.561833][ T3375] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  320.572181][ T3375] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.611535][T18177] 8021q: adding VLAN 0 to HW filter on device bond0
[  320.627351][T18177] 8021q: adding VLAN 0 to HW filter on device team0
[  320.636960][  T109] bridge0: port 1(bridge_slave_0) entered blocking state
[  320.644138][  T109] bridge0: port 1(bridge_slave_0) entered forwarding state
[  320.661732][ T3375] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  320.672081][ T3375] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.684970][  T109] bridge0: port 2(bridge_slave_1) entered blocking state
[  320.692033][  T109] bridge0: port 2(bridge_slave_1) entered forwarding state
[  320.749254][T18177] 8021q: adding VLAN 0 to HW filter on device batadv0
[  320.759683][ T3375] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  320.769985][ T3375] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.836122][ T3375] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  320.856656][T18177] veth0_vlan: entered promiscuous mode
[  320.865157][T18177] veth1_vlan: entered promiscuous mode
[  320.881011][T18177] veth0_macvtap: entered promiscuous mode
[  320.888713][T18177] veth1_macvtap: entered promiscuous mode
[  320.902520][T18177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  320.913029][T18177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.922908][T18177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  320.933943][T18177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.943780][T18177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  320.954267][T18177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.964122][T18177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  320.974632][T18177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.985343][T18177] batman_adv: batadv0: Interface activated: batadv_slave_0
[  321.004114][ T3375] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.016472][T18177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  321.026957][T18177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  321.036976][T18177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  321.047513][T18177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  321.057524][T18177] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  321.067995][T18177] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  321.079375][T18177] batman_adv: batadv0: Interface activated: batadv_slave_1
[  321.091976][ T3375] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.108475][T18185] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  321.119612][T18177] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  321.128504][T18177] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  321.137190][T18177] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  321.146090][T18177] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  321.159052][ T3375] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.170222][T18185] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  321.179600][T18185] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  321.190447][T18185] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  321.231680][   T29] kauditd_printk_skb: 2497 callbacks suppressed
[  321.231715][   T29] audit: type=1326 audit(2000000028.050:118670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18263 comm="syz.0.4888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.249734][T18185] 8021q: adding VLAN 0 to HW filter on device bond0
[  321.268891][   T29] audit: type=1326 audit(2000000028.080:118671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18263 comm="syz.0.4888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.280369][T18185] 8021q: adding VLAN 0 to HW filter on device team0
[  321.292648][   T29] audit: type=1326 audit(2000000028.080:118672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18263 comm="syz.0.4888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.307376][ T5603] bridge0: port 1(bridge_slave_0) entered blocking state
[  321.322995][   T29] audit: type=1326 audit(2000000028.080:118673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18263 comm="syz.0.4888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.329842][ T5603] bridge0: port 1(bridge_slave_0) entered forwarding state
[  321.353515][   T29] audit: type=1326 audit(2000000028.080:118674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18263 comm="syz.0.4888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.384602][   T29] audit: type=1326 audit(2000000028.080:118675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18263 comm="syz.0.4888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.387815][T18185] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  321.411181][   T29] audit: type=1326 audit(2000000028.180:118676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18263 comm="syz.0.4888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.418677][T18185] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  321.452824][   T29] audit: type=1326 audit(2000000028.180:118677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18263 comm="syz.0.4888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.482439][ T5603] bridge0: port 2(bridge_slave_1) entered blocking state
[  321.489518][ T5603] bridge0: port 2(bridge_slave_1) entered forwarding state
[  321.507685][   T29] audit: type=1326 audit(2000000028.320:118678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18265 comm="syz.0.4893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.532480][ T3375] bridge_slave_1: left allmulticast mode
[  321.538306][ T3375] bridge_slave_1: left promiscuous mode
[  321.544102][ T3375] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.548842][   T29] audit: type=1326 audit(2000000028.340:118679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18265 comm="syz.0.4893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  321.577321][ T3375] bridge_slave_0: left allmulticast mode
[  321.583037][ T3375] bridge_slave_0: left promiscuous mode
[  321.588705][ T3375] bridge0: port 1(bridge_slave_0) entered disabled state
[  321.596794][ T3375] bridge_slave_1: left allmulticast mode
[  321.602535][ T3375] bridge_slave_1: left promiscuous mode
[  321.608375][ T3375] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.615959][ T3375] bridge_slave_0: left allmulticast mode
[  321.621742][ T3375] bridge_slave_0: left promiscuous mode
[  321.627512][ T3375] bridge0: port 1(bridge_slave_0) entered disabled state
[  321.638198][ T3375] bridge_slave_1: left allmulticast mode
[  321.643927][ T3375] bridge_slave_1: left promiscuous mode
[  321.649879][ T3375] bridge0: port 2(bridge_slave_1) entered disabled state
[  321.660141][ T3375] bridge_slave_0: left allmulticast mode
[  321.665906][ T3375] bridge_slave_0: left promiscuous mode
[  321.671695][ T3375] bridge0: port 1(bridge_slave_0) entered disabled state
[  321.909194][ T3375] @ (unregistering): (slave bridge0): Releasing backup interface
[  322.000058][ T3375] @ (unregistering): (slave bond_slave_0): Releasing backup interface
[  322.010495][ T3375] @ (unregistering): (slave bond_slave_1): Releasing backup interface
[  322.020307][ T3375] @ (unregistering): Released all slaves
[  322.029604][ T3375] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  322.040166][ T3375] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  322.050413][ T3375] bond0 (unregistering): Released all slaves
[  322.059569][ T3375] @ (unregistering): (slave bond_slave_0): Releasing backup interface
[  322.069434][ T3375] @ (unregistering): (slave bond_slave_1): Releasing backup interface
[  322.079204][ T3375] @ (unregistering): Released all slaves
[  322.087827][ T3375] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  322.097891][ T3375] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  322.108884][ T3375] bond0 (unregistering): Released all slaves
[  322.153146][T18185] 8021q: adding VLAN 0 to HW filter on device batadv0
[  322.164148][ T3375] tipc: Left network mode
[  322.176390][ T3375] hsr_slave_0: left promiscuous mode
[  322.182756][ T3375] hsr_slave_1: left promiscuous mode
[  322.186670][T18279] netlink: 72 bytes leftover after parsing attributes in process `syz.0.4897'.
[  322.199270][ T3375] hsr_slave_0: left promiscuous mode
[  322.205109][ T3375] hsr_slave_1: left promiscuous mode
[  322.213016][ T3375] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  322.220513][ T3375] batman_adv: batadv0: Removing interface: batadv_slave_0
[  322.238634][ T3375] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  322.246045][ T3375] batman_adv: batadv0: Removing interface: batadv_slave_1
[  322.260262][ T3375] hsr_slave_0: left promiscuous mode
[  322.266774][ T3375] hsr_slave_1: left promiscuous mode
[  322.273292][ T3375] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  322.280823][ T3375] batman_adv: batadv0: Removing interface: batadv_slave_0
[  322.292603][ T3375] hsr_slave_0: left promiscuous mode
[  322.304524][ T3375] hsr_slave_1: left promiscuous mode
[  322.312830][ T3375] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  322.320316][ T3375] batman_adv: batadv0: Removing interface: batadv_slave_0
[  322.329162][ T3375] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  322.336598][ T3375] batman_adv: batadv0: Removing interface: batadv_slave_1
[  322.352610][ T3375] veth1_macvtap: left promiscuous mode
[  322.358131][ T3375] veth0_macvtap: left promiscuous mode
[  322.363697][ T3375] veth1_vlan: left promiscuous mode
[  322.368990][ T3375] veth0_vlan: left promiscuous mode
[  322.379353][ T3375] veth1_macvtap: left promiscuous mode
[  322.384843][ T3375] veth0_macvtap: left promiscuous mode
[  322.390447][ T3375] veth1_vlan: left promiscuous mode
[  322.395674][ T3375] veth0_vlan: left promiscuous mode
[  322.405985][ T3375] veth1_macvtap: left promiscuous mode
[  322.411486][ T3375] veth0_macvtap: left promiscuous mode
[  322.417026][ T3375] veth1_vlan: left promiscuous mode
[  322.422325][ T3375] veth0_vlan: left promiscuous mode
[  322.433073][ T3375] veth1_macvtap: left promiscuous mode
[  322.438676][ T3375] veth0_macvtap: left promiscuous mode
[  322.444214][ T3375] veth1_vlan: left promiscuous mode
[  322.449510][ T3375] veth0_vlan: left promiscuous mode
[  322.677483][ T3375] team0 (unregistering): Port device team_slave_1 removed
[  322.688235][ T3375] team0 (unregistering): Port device team_slave_0 removed
[  322.753427][ T3375] team0 (unregistering): Port device team_slave_1 removed
[  322.763595][ T3375] team0 (unregistering): Port device team_slave_0 removed
[  322.827679][ T3375] team0 (unregistering): Port device team_slave_1 removed
[  322.838678][ T3375] team0 (unregistering): Port device team_slave_0 removed
[  322.903672][ T3375] team0 (unregistering): Port device team_slave_1 removed
[  322.913585][ T3375] team0 (unregistering): Port device team_slave_0 removed
[  322.984936][T18186] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  322.993916][T18186] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  323.002996][T18186] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  323.014075][T18186] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  323.039901][T18185] veth0_vlan: entered promiscuous mode
[  323.061161][T18185] veth1_vlan: entered promiscuous mode
[  323.087336][T18292] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  323.098091][T18292] syzkaller0: entered promiscuous mode
[  323.103685][T18292] syzkaller0: entered allmulticast mode
[  323.120855][T18185] veth0_macvtap: entered promiscuous mode
[  323.128195][T18185] veth1_macvtap: entered promiscuous mode
[  323.147162][T18186] 8021q: adding VLAN 0 to HW filter on device bond0
[  323.155406][T18185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.165963][T18185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.175856][T18185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.186357][T18185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.197098][T18185] batman_adv: batadv0: Interface activated: batadv_slave_0
[  323.216862][T18185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.227426][T18185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.237300][T18185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.247749][T18185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.258512][T18185] batman_adv: batadv0: Interface activated: batadv_slave_1
[  323.272191][T18185] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  323.281051][T18185] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  323.289765][T18185] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  323.298981][T18185] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  323.310646][T18186] 8021q: adding VLAN 0 to HW filter on device team0
[  323.326211][  T109] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.333373][  T109] bridge0: port 1(bridge_slave_0) entered forwarding state
[  323.351403][  T109] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.358498][  T109] bridge0: port 2(bridge_slave_1) entered forwarding state
[  323.392223][T18179] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  323.414252][T18179] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  323.424025][T18179] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  323.433378][T18179] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  323.476908][T18186] 8021q: adding VLAN 0 to HW filter on device batadv0
[  323.497752][T18179] 8021q: adding VLAN 0 to HW filter on device bond0
[  323.513042][T18179] 8021q: adding VLAN 0 to HW filter on device team0
[  323.523164][ T5603] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.530266][ T5603] bridge0: port 1(bridge_slave_0) entered forwarding state
[  323.542980][ T5603] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.550148][ T5603] bridge0: port 2(bridge_slave_1) entered forwarding state
[  323.631948][T18179] 8021q: adding VLAN 0 to HW filter on device batadv0
[  323.657839][T18186] veth0_vlan: entered promiscuous mode
[  323.666287][T18186] veth1_vlan: entered promiscuous mode
[  323.686744][T18186] veth0_macvtap: entered promiscuous mode
[  323.696173][T18186] veth1_macvtap: entered promiscuous mode
[  323.716928][T18186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.727529][T18186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.737437][T18186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.748187][T18186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.758057][T18186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.768538][T18186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.780382][T18186] batman_adv: batadv0: Interface activated: batadv_slave_0
[  323.791214][T18182] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  323.802574][T18182] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  323.811617][T18182] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  323.821177][T18186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.831699][T18186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.841655][T18186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.852200][T18186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.862181][T18186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.872716][T18186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.883440][T18186] batman_adv: batadv0: Interface activated: batadv_slave_1
[  323.895354][T18182] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  323.906720][T18186] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  323.915553][T18186] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  323.924381][T18186] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  323.933153][T18186] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  323.952844][T18179] veth0_vlan: entered promiscuous mode
[  323.974944][T18179] veth1_vlan: entered promiscuous mode
[  324.010335][T18179] veth0_macvtap: entered promiscuous mode
[  324.022956][T18325] loop1: detected capacity change from 0 to 512
[  324.031564][T18182] 8021q: adding VLAN 0 to HW filter on device bond0
[  324.053048][T18179] veth1_macvtap: entered promiscuous mode
[  324.061350][T18182] 8021q: adding VLAN 0 to HW filter on device team0
[  324.069120][T18325] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.081886][T18325] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  324.096698][T18179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.107346][T18179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.111455][T18331] loop4: detected capacity change from 0 to 512
[  324.117241][T18179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.133977][T18179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.143874][T18179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.154505][T18179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.164389][T18179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.174942][T18179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.185484][T18179] batman_adv: batadv0: Interface activated: batadv_slave_0
[  324.199556][T18179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.210033][T18179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.220037][T18179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.230485][T18179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.240330][T18179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.250840][T18179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.251216][T18331] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.260649][T18179] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.260669][T18179] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.263047][T18179] batman_adv: batadv0: Interface activated: batadv_slave_1
[  324.276084][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.291020][T18182] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  324.319048][T18331] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  324.320228][T18182] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  324.346087][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  324.353272][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  324.362013][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  324.369119][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  324.394954][T18179] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  324.403968][T18335] syz.1.4901[18335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  324.404132][T18179] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  324.404150][T18335] syz.1.4901[18335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  324.415658][T18179] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  324.430231][T18335] syz.1.4901[18335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  324.435808][T18179] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  324.468256][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.531100][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  324.556810][T18182] 8021q: adding VLAN 0 to HW filter on device batadv0
[  324.594980][T18349] loop1: detected capacity change from 0 to 512
[  324.639860][T18349] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.675457][T18349] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  324.701683][T18182] veth0_vlan: entered promiscuous mode
[  324.716670][T18182] veth1_vlan: entered promiscuous mode
[  324.731743][T18182] veth0_macvtap: entered promiscuous mode
[  324.741886][T18182] veth1_macvtap: entered promiscuous mode
[  324.771920][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.782426][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.792355][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.803029][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.813798][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.824321][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.834141][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.844743][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.854698][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  324.866885][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.878268][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.881335][T18182] batman_adv: batadv0: Interface activated: batadv_slave_0
[  324.896134][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.906697][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.916641][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.927134][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.936960][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.947411][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.957313][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.967740][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.977679][T18182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.987454][T18360] loop1: detected capacity change from 0 to 512
[  324.988181][T18182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.005594][T18182] batman_adv: batadv0: Interface activated: batadv_slave_1
[  325.024296][T18182] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  325.024323][T18360] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.033161][T18182] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  325.048426][T18360] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  325.054222][T18182] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  325.054253][T18182] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  325.103303][T18360] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.4905: corrupted inode contents
[  325.127582][T18360] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.4905: mark_inode_dirty error
[  325.140648][T18360] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.4905: corrupted inode contents
[  325.151710][T18367] loop3: detected capacity change from 0 to 512
[  325.161666][T18367] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.4891: corrupted in-inode xattr: invalid ea_ino
[  325.162117][T18360] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.4905: mark_inode_dirty error
[  325.188257][T18367] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.4891: couldn't read orphan inode 15 (err -117)
[  325.201098][T18367] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.214751][T18367] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.4891: invalid indirect mapped block 234881024 (level 0)
[  325.237202][T18182] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.290427][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.347743][T18382] loop1: detected capacity change from 0 to 2048
[  325.371888][T18384] loop4: detected capacity change from 0 to 512
[  325.381122][T18382] EXT4-fs: dax option not supported
[  325.401870][T18384] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.418130][T18384] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  325.431663][T18382] loop1: detected capacity change from 0 to 512
[  325.471383][T18382] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.4908: bg 0: block 5: invalid block bitmap
[  325.537664][T18382] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  325.562023][T18390] loop2: detected capacity change from 0 to 512
[  325.581835][T18382] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.4908: invalid indirect mapped block 3 (level 2)
[  325.599639][T18390] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.610171][T18382] EXT4-fs (loop1): 1 orphan inode deleted
[  325.617826][T18382] EXT4-fs (loop1): 1 truncate cleaned up
[  325.623690][T18390] ext4 filesystem being mounted at /2/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  325.664908][T18382] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.757488][T18390] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #19: comm syz.2.4910: corrupted inode contents
[  325.773314][T18390] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #19: comm syz.2.4910: mark_inode_dirty error
[  325.832630][T18390] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #19: comm syz.2.4910: corrupted inode contents
[  325.862286][T18390] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3005: inode #19: comm syz.2.4910: mark_inode_dirty error
[  325.875574][T18390] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3008: inode #19: comm syz.2.4910: mark inode dirty (error -117)
[  325.880801][T18396] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  325.896967][T18390] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -117)
[  325.935860][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.963932][T18179] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.991343][T18394] coredump: 12(syz.4.4909): Error writing out the process memory
[  325.999272][T18394] coredump: 12(syz.4.4909): written to core: VMAs: 31, size 91258880; core: 185118 bytes, pos 765952
[  326.063040][T18407] loop1: detected capacity change from 0 to 512
[  326.081172][T18407] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.093804][T18407] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  326.166272][T18412] block device autoloading is deprecated and will be removed.
[  326.174744][T18412] syz.3.4916: attempt to access beyond end of device
[  326.174744][T18412] md34: rw=2048, sector=0, nr_sectors = 8 limit=0
[  326.216579][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  326.244762][   T29] kauditd_printk_skb: 1025 callbacks suppressed
[  326.244777][   T29] audit: type=1326 audit(2000000000.460:119705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18401 comm="syz.0.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.274787][   T29] audit: type=1326 audit(2000000000.460:119706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18401 comm="syz.0.4914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.383810][T18416] coredump: 19(syz.1.4915): Error writing out the process memory
[  326.391828][T18416] coredump: 19(syz.1.4915): written to core: VMAs: 31, size 91258880; core: 185118 bytes, pos 765952
[  326.434043][   T29] audit: type=1326 audit(2000000000.650:119707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18422 comm="syz.0.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.462059][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.465213][   T29] audit: type=1326 audit(2000000000.650:119708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18422 comm="syz.0.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.494967][   T29] audit: type=1326 audit(2000000000.650:119709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18422 comm="syz.0.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.518789][   T29] audit: type=1326 audit(2000000000.650:119710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18422 comm="syz.0.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.542658][   T29] audit: type=1326 audit(2000000000.650:119711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18422 comm="syz.0.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.566409][   T29] audit: type=1326 audit(2000000000.650:119712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18422 comm="syz.0.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.590514][   T29] audit: type=1326 audit(2000000000.650:119713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18422 comm="syz.0.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.614500][   T29] audit: type=1326 audit(2000000000.650:119714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18422 comm="syz.0.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  326.938052][T18434] 9pnet_virtio: no channels available for device 127.0.0.1
[  326.945535][T18434] SELinux:  Context system_u:object_r:cert_t:s0 is not valid (left unmapped).
[  327.001940][T18438] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4926'.
[  327.228741][T18428] Cannot find set identified by id 0 to match
[  327.248377][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.293929][T18446] Cannot find set identified by id 0 to match
[  327.325607][T18452] loop4: detected capacity change from 0 to 512
[  327.349861][T18452] EXT4-fs (loop4): orphan cleanup on readonly fs
[  327.356817][T18452] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4930: bg 0: block 248: padding at end of block bitmap is not set
[  327.381656][T18452] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.4930: Failed to acquire dquot type 1
[  327.394739][T18452] EXT4-fs (loop4): 1 truncate cleaned up
[  327.401284][T18452] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  327.449754][T18452] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  327.494924][T18452] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  327.542155][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.861253][T18473] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  327.871879][T18473] syzkaller0: entered promiscuous mode
[  327.877393][T18473] syzkaller0: entered allmulticast mode
[  328.141583][T18486] FAULT_INJECTION: forcing a failure.
[  328.141583][T18486] name failslab, interval 1, probability 0, space 0, times 0
[  328.154343][T18486] CPU: 1 UID: 0 PID: 18486 Comm: syz.2.4940 Tainted: G        W          6.11.0-syzkaller-08481-g88264981f208 #0
[  328.166252][T18486] Tainted: [W]=WARN
[  328.170057][T18486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  328.180142][T18486] Call Trace:
[  328.183432][T18486]  <TASK>
[  328.186414][T18486]  dump_stack_lvl+0xf2/0x150
[  328.191180][T18486]  dump_stack+0x15/0x20
[  328.195349][T18486]  should_fail_ex+0x223/0x230
[  328.200123][T18486]  ? shmem_alloc_inode+0x34/0x50
[  328.205115][T18486]  should_failslab+0x8f/0xb0
[  328.210720][T18486]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[  328.216596][T18486]  shmem_alloc_inode+0x34/0x50
[  328.221383][T18486]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  328.226876][T18486]  alloc_inode+0x3c/0x160
[  328.231278][T18486]  new_inode+0x1e/0x100
[  328.235467][T18486]  shmem_get_inode+0x24e/0x710
[  328.240327][T18486]  __shmem_file_setup+0x127/0x1f0
[  328.245475][T18486]  shmem_file_setup+0x3b/0x50
[  328.250167][T18486]  __se_sys_memfd_create+0x31d/0x5c0
[  328.255548][T18486]  __x64_sys_memfd_create+0x31/0x40
[  328.260776][T18486]  x64_sys_call+0x2891/0x2d60
[  328.265481][T18486]  do_syscall_64+0xc9/0x1c0
[  328.270049][T18486]  ? clear_bhb_loop+0x55/0xb0
[  328.274815][T18486]  ? clear_bhb_loop+0x55/0xb0
[  328.279563][T18486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.285514][T18486] RIP: 0033:0x7f92d2d1def9
[  328.289936][T18486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.309653][T18486] RSP: 002b:00007f92d194ee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  328.318071][T18486] RAX: ffffffffffffffda RBX: 000000000000044a RCX: 00007f92d2d1def9
[  328.326091][T18486] RDX: 00007f92d194eef0 RSI: 0000000000000000 RDI: 00007f92d2d91369
[  328.334094][T18486] RBP: 0000000020000400 R08: 00007f92d194ebb7 R09: 00007f92d194ee40
[  328.342079][T18486] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200001c0
[  328.350058][T18486] R13: 00007f92d194eef0 R14: 00007f92d194eeb0 R15: 0000000020000bc0
[  328.358109][T18486]  </TASK>
[  328.839551][T18500] loop2: detected capacity change from 0 to 512
[  328.865228][T18500] EXT4-fs (loop2): orphan cleanup on readonly fs
[  328.873477][T18500] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4947: bg 0: block 248: padding at end of block bitmap is not set
[  328.889291][T18500] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.4947: Failed to acquire dquot type 1
[  328.903841][T18507] netlink: 72 bytes leftover after parsing attributes in process `syz.1.4949'.
[  328.910476][T18500] EXT4-fs (loop2): 1 truncate cleaned up
[  328.933447][T18500] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  328.986209][T18500] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  329.029612][T18500] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  329.049758][T18518] Cannot find set identified by id 0 to match
[  329.071535][T18179] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.265482][T18532] loop2: detected capacity change from 0 to 2048
[  329.274774][T18532] EXT4-fs: dax option not supported
[  329.290760][T18532] loop2: detected capacity change from 0 to 512
[  329.312171][T18532] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.4959: bg 0: block 5: invalid block bitmap
[  329.340847][T18532] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  329.369927][T18532] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.4959: invalid indirect mapped block 3 (level 2)
[  329.390565][T18532] EXT4-fs (loop2): 1 orphan inode deleted
[  329.396418][T18532] EXT4-fs (loop2): 1 truncate cleaned up
[  329.409632][T18532] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  329.479923][T18179] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.556432][T18543] loop3: detected capacity change from 0 to 512
[  329.590130][T18543] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  329.612341][T18543] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  329.687702][T18182] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.807072][T18550] loop1: detected capacity change from 0 to 512
[  329.820893][T18550] EXT4-fs (loop1): orphan cleanup on readonly fs
[  329.841598][T18550] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.4965: bg 0: block 248: padding at end of block bitmap is not set
[  329.866994][T18555] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  329.876825][T18550] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.4965: Failed to acquire dquot type 1
[  329.899497][T18555] syzkaller0: entered promiscuous mode
[  329.904998][T18555] syzkaller0: entered allmulticast mode
[  329.917210][T18550] EXT4-fs (loop1): 1 truncate cleaned up
[  329.925682][T18550] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  329.961146][T18550] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  329.979706][T18550] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  330.112708][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.206990][T18541] Cannot find set identified by id 0 to match
[  330.214783][T18534] syz.0.4960 (18534) used greatest stack depth: 6256 bytes left
[  330.287945][T18570] loop1: detected capacity change from 0 to 512
[  330.310414][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  330.332047][T18570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.355636][T18577] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4975'.
[  330.369336][T18570] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  330.650512][T18594] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  330.663750][T18594] syzkaller0: entered promiscuous mode
[  330.669370][T18594] syzkaller0: entered allmulticast mode
[  330.720415][T18537] coredump: 64(syz.0.4960): written to core: VMAs: 31, size 91258880; core: 62116638 bytes, pos 91267072
[  330.749336][T18590] coredump: 44(syz.1.4974): Error writing out the process memory
[  330.757212][T18590] coredump: 44(syz.1.4974): written to core: VMAs: 31, size 89161728; core: 185118 bytes, pos 765952
[  330.812552][T18600] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4981'.
[  330.827288][T18600] erspan0: entered promiscuous mode
[  330.834064][T18600] macvtap1: entered promiscuous mode
[  330.839545][T18600] macvtap1: entered allmulticast mode
[  330.844974][T18600] erspan0: entered allmulticast mode
[  330.865220][T18602] loop4: detected capacity change from 0 to 2048
[  330.874904][T18602] EXT4-fs: dax option not supported
[  330.883157][T18600] erspan0: left allmulticast mode
[  330.888290][T18600] erspan0: left promiscuous mode
[  331.046648][T18608] loop3: detected capacity change from 0 to 128
[  331.051725][T18602] loop4: detected capacity change from 0 to 512
[  331.054985][T18608] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  331.089967][T18600] serio: Serial port ptm0
[  331.245180][T18602] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.4982: bg 0: block 5: invalid block bitmap
[  331.259361][T18602] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  331.408655][T18602] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.4982: invalid indirect mapped block 3 (level 2)
[  331.426725][T18602] EXT4-fs (loop4): 1 orphan inode deleted
[  331.432607][T18602] EXT4-fs (loop4): 1 truncate cleaned up
[  331.447255][T18602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.529478][   T29] kauditd_printk_skb: 2832 callbacks suppressed
[  331.529562][   T29] audit: type=1326 audit(2000000002.060:122541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f467e2cc890 code=0x7ffc0000
[  331.559817][   T29] audit: type=1326 audit(2000000002.060:122542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f467e2ccc77 code=0x7ffc0000
[  331.583407][   T29] audit: type=1326 audit(2000000002.060:122543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f467e2cc890 code=0x7ffc0000
[  331.607155][   T29] audit: type=1326 audit(2000000002.060:122544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  331.630887][   T29] audit: type=1326 audit(2000000002.060:122545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  331.654586][   T29] audit: type=1326 audit(2000000002.060:122546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  331.678390][   T29] audit: type=1326 audit(2000000002.060:122547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  331.702053][   T29] audit: type=1326 audit(2000000002.060:122548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  331.725935][   T29] audit: type=1326 audit(2000000002.060:122549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  331.735775][T18570] syz.1.4974 (18570) used greatest stack depth: 6232 bytes left
[  331.749507][   T29] audit: type=1326 audit(2000000002.060:122550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18601 comm="syz.4.4982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  331.809501][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.824046][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.853509][T18623] loop4: detected capacity change from 0 to 512
[  331.857582][T18625] Cannot find set identified by id 0 to match
[  331.871358][T18623] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.889936][T18623] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  331.932761][T18631] loop1: detected capacity change from 0 to 512
[  331.964320][T18634] loop2: detected capacity change from 0 to 512
[  331.985564][T18631] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.998613][T18631] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.010491][T18634] EXT4-fs (loop2): orphan cleanup on readonly fs
[  332.018028][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.037577][T18634] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4993: bg 0: block 248: padding at end of block bitmap is not set
[  332.072048][T18647] loop4: detected capacity change from 0 to 512
[  332.085607][T18634] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.4993: Failed to acquire dquot type 1
[  332.118932][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.130310][T18634] EXT4-fs (loop2): 1 truncate cleaned up
[  332.137517][T18647] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.152409][T18634] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  332.152741][T18647] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.200023][T18634] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  332.223796][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.237599][T18661] Cannot find set identified by id 0 to match
[  332.255775][T18634] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  332.291136][T18179] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.296442][T18669] loop3: detected capacity change from 0 to 512
[  332.311323][T18668] Cannot find set identified by id 0 to match
[  332.342039][T18669] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.344398][T18673] loop4: detected capacity change from 0 to 512
[  332.355501][T18669] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.385972][T18669] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.5005: corrupted inode contents
[  332.403787][T18669] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.5005: mark_inode_dirty error
[  332.405187][T18673] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.429817][T18669] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.5005: corrupted inode contents
[  332.438028][T18683] loop1: detected capacity change from 0 to 512
[  332.442174][T18669] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.5005: mark_inode_dirty error
[  332.459388][T18673] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.481570][T18683] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.494799][T18683] ext4 filesystem being mounted at /20/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  332.507521][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.542029][T18692] Cannot find set identified by id 0 to match
[  332.564901][T18182] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.597447][T18700] loop3: detected capacity change from 0 to 512
[  332.629715][T18700] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.646534][T18700] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.661397][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  332.681146][T18700] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.5017: corrupted inode contents
[  332.694246][T18700] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.5017: mark_inode_dirty error
[  332.706257][T18700] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.5017: corrupted inode contents
[  332.719428][T18713] FAULT_INJECTION: forcing a failure.
[  332.719428][T18713] name failslab, interval 1, probability 0, space 0, times 0
[  332.719548][T18700] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.5017: mark_inode_dirty error
[  332.732106][T18713] CPU: 0 UID: 0 PID: 18713 Comm: syz.4.5023 Tainted: G        W          6.11.0-syzkaller-08481-g88264981f208 #0
[  332.755170][T18713] Tainted: [W]=WARN
[  332.758983][T18713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  332.769057][T18713] Call Trace:
[  332.772336][T18713]  <TASK>
[  332.775323][T18713]  dump_stack_lvl+0xf2/0x150
[  332.779959][T18713]  dump_stack+0x15/0x20
[  332.784117][T18713]  should_fail_ex+0x223/0x230
[  332.788863][T18713]  ? audit_log_start+0x34c/0x6b0
[  332.793814][T18713]  should_failslab+0x8f/0xb0
[  332.798413][T18713]  kmem_cache_alloc_noprof+0x4c/0x290
[  332.803854][T18713]  audit_log_start+0x34c/0x6b0
[  332.808674][T18713]  audit_seccomp+0x4b/0x130
[  332.813186][T18713]  __seccomp_filter+0x6fa/0x1180
[  332.818139][T18713]  ? proc_fail_nth_write+0x12a/0x150
[  332.823591][T18713]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  332.829290][T18713]  ? vfs_write+0x580/0x910
[  332.833772][T18713]  ? __fget_files+0x1d4/0x210
[  332.838601][T18713]  __secure_computing+0x9f/0x1c0
[  332.843571][T18713]  syscall_trace_enter+0xd1/0x1f0
[  332.848614][T18713]  ? fpregs_assert_state_consistent+0x83/0xa0
[  332.854781][T18713]  do_syscall_64+0xaa/0x1c0
[  332.859295][T18713]  ? clear_bhb_loop+0x55/0xb0
[  332.864047][T18713]  ? clear_bhb_loop+0x55/0xb0
[  332.868836][T18713]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  332.874781][T18713] RIP: 0033:0x7f467e2cdef9
[  332.879225][T18713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  332.898904][T18713] RSP: 002b:00007f467cf47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000046
[  332.907328][T18713] RAX: ffffffffffffffda RBX: 00007f467e485f80 RCX: 00007f467e2cdef9
[  332.915401][T18713] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  332.923466][T18713] RBP: 00007f467cf47090 R08: 0000000000002000 R09: 0000000000000000
[  332.931489][T18713] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  332.939461][T18713] R13: 0000000000000000 R14: 00007f467e485f80 R15: 00007ffc6badcf68
[  332.947518][T18713]  </TASK>
[  332.971491][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.001870][T18721] loop1: detected capacity change from 0 to 2048
[  333.008846][T18721] EXT4-fs: dax option not supported
[  333.022664][T18721] loop1: detected capacity change from 0 to 512
[  333.031484][T18721] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.5026: bg 0: block 5: invalid block bitmap
[  333.044792][T18721] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  333.054704][T18721] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.5026: invalid indirect mapped block 3 (level 2)
[  333.054902][T18182] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.070741][T18721] EXT4-fs (loop1): 1 orphan inode deleted
[  333.082959][T18721] EXT4-fs (loop1): 1 truncate cleaned up
[  333.108326][T18721] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.142064][T18730] veth1_macvtap: left promiscuous mode
[  333.147574][T18730] macsec0: entered allmulticast mode
[  333.155830][T18730] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check.
[  333.180066][T18735] Cannot find set identified by id 0 to match
[  333.209604][T18737] loop3: detected capacity change from 0 to 512
[  333.225720][T18737] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5034: corrupted in-inode xattr: invalid ea_ino
[  333.240436][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.240788][T18737] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.5034: couldn't read orphan inode 15 (err -117)
[  333.262933][T18737] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.277868][T18737] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5034: invalid indirect mapped block 234881024 (level 0)
[  333.310280][T18182] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.344976][T18750] serio: Serial port ptm0
[  333.520489][T18760] loop1: detected capacity change from 0 to 128
[  333.529884][T18760] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  333.932933][T18768] Cannot find set identified by id 0 to match
[  334.064045][T18772] loop4: detected capacity change from 0 to 2048
[  334.070993][T18772] EXT4-fs: dax option not supported
[  334.098691][T18776] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5048'.
[  334.104172][T18772] loop4: detected capacity change from 0 to 512
[  334.107694][T18776] netlink: 56 bytes leftover after parsing attributes in process `syz.0.5048'.
[  334.127563][T18772] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5046: bg 0: block 5: invalid block bitmap
[  334.154087][T18772] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  334.190195][T18781] loop3: detected capacity change from 0 to 512
[  334.197296][T18772] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5046: invalid indirect mapped block 3 (level 2)
[  334.212539][T18772] EXT4-fs (loop4): 1 orphan inode deleted
[  334.218354][T18772] EXT4-fs (loop4): 1 truncate cleaned up
[  334.224395][T18772] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.239950][T18781] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5050: corrupted in-inode xattr: invalid ea_ino
[  334.253913][T18781] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.5050: couldn't read orphan inode 15 (err -117)
[  334.267956][T18781] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.284977][T18781] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5050: invalid indirect mapped block 234881024 (level 0)
[  334.325358][T18182] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.393702][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.467462][T18800] loop4: detected capacity change from 0 to 512
[  334.476738][T18800] EXT4-fs (loop4): orphan cleanup on readonly fs
[  334.483824][T18802] bond1: entered promiscuous mode
[  334.485940][T18800] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5058: bg 0: block 248: padding at end of block bitmap is not set
[  334.488933][T18802] bond1: entered allmulticast mode
[  334.504873][T18800] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.5058: Failed to acquire dquot type 1
[  334.512786][T18802] 8021q: adding VLAN 0 to HW filter on device bond1
[  334.526068][T18800] EXT4-fs (loop4): 1 truncate cleaned up
[  334.534748][T18800] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  334.550781][T18802] bond1 (unregistering): Released all slaves
[  334.561351][T18800] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  334.578388][T18800] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  334.599759][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.617698][T18811] Cannot find set identified by id 0 to match
[  334.637331][T18813] loop4: detected capacity change from 0 to 512
[  334.670992][T18813] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.683959][T18813] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  334.697435][T18819] FAULT_INJECTION: forcing a failure.
[  334.697435][T18819] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  334.710732][T18819] CPU: 1 UID: 0 PID: 18819 Comm: syz.0.5064 Tainted: G        W          6.11.0-syzkaller-08481-g88264981f208 #0
[  334.722658][T18819] Tainted: [W]=WARN
[  334.726478][T18819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  334.736539][T18819] Call Trace:
[  334.739822][T18819]  <TASK>
[  334.742765][T18819]  dump_stack_lvl+0xf2/0x150
[  334.747475][T18819]  dump_stack+0x15/0x20
[  334.751636][T18819]  should_fail_ex+0x223/0x230
[  334.756330][T18819]  should_fail+0xb/0x10
[  334.760513][T18819]  should_fail_usercopy+0x1a/0x20
[  334.765554][T18819]  _copy_from_user+0x1e/0xd0
[  334.770166][T18819]  __sys_bpf+0x14e/0x7a0
[  334.774510][T18819]  __x64_sys_bpf+0x43/0x50
[  334.778944][T18819]  x64_sys_call+0x2625/0x2d60
[  334.783649][T18819]  do_syscall_64+0xc9/0x1c0
[  334.788255][T18819]  ? clear_bhb_loop+0x55/0xb0
[  334.792946][T18819]  ? clear_bhb_loop+0x55/0xb0
[  334.797649][T18819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.803639][T18819] RIP: 0033:0x7fec3e2ddef9
[  334.808068][T18819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.827804][T18819] RSP: 002b:00007fec3cf51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  334.836309][T18819] RAX: ffffffffffffffda RBX: 00007fec3e495f80 RCX: 00007fec3e2ddef9
[  334.844311][T18819] RDX: 0000000000000048 RSI: 0000000020000840 RDI: 0000000000000000
[  334.852287][T18819] RBP: 00007fec3cf51090 R08: 0000000000000000 R09: 0000000000000000
[  334.860255][T18819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.868250][T18819] R13: 0000000000000000 R14: 00007fec3e495f80 R15: 00007ffeff527828
[  334.876299][T18819]  </TASK>
[  334.882750][T18813] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.5060: corrupted inode contents
[  334.894758][T18813] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #2: comm syz.4.5060: mark_inode_dirty error
[  334.907460][T18813] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.5060: corrupted inode contents
[  334.922142][T18813] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.5060: mark_inode_dirty error
[  334.944766][T18826] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5065'.
[  334.975319][T18832] loop3: detected capacity change from 0 to 128
[  335.020693][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.043636][T18839] loop4: detected capacity change from 0 to 512
[  335.060827][T18839] EXT4-fs (loop4): orphan cleanup on readonly fs
[  335.063717][T18832] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5069'.
[  335.070320][T18839] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5071: bg 0: block 248: padding at end of block bitmap is not set
[  335.081111][T18832] syz_tun: entered promiscuous mode
[  335.095595][T18832] macsec1: entered promiscuous mode
[  335.096113][T18839] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.5071: Failed to acquire dquot type 1
[  335.113359][T18839] EXT4-fs (loop4): 1 truncate cleaned up
[  335.113369][T18832] syz_tun: left promiscuous mode
[  335.125561][T18839] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  335.131532][T18837] 9pnet_fd: Insufficient options for proto=fd
[  335.155023][T18839] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  335.160861][T18843] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  335.165006][T18837] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5069'.
[  335.174174][T18839] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  335.308764][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.333172][T18851] loop4: detected capacity change from 0 to 2048
[  335.339972][T18851] EXT4-fs: dax option not supported
[  335.364343][T18851] loop4: detected capacity change from 0 to 512
[  335.373179][T18851] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5076: bg 0: block 5: invalid block bitmap
[  335.376238][T18853] loop3: detected capacity change from 0 to 512
[  335.388916][T18851] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  335.400877][T18851] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5076: invalid indirect mapped block 3 (level 2)
[  335.405727][T18853] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5077: corrupted in-inode xattr: invalid ea_ino
[  335.415879][T18851] EXT4-fs (loop4): 1 orphan inode deleted
[  335.431281][T18853] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.5077: couldn't read orphan inode 15 (err -117)
[  335.433324][T18851] EXT4-fs (loop4): 1 truncate cleaned up
[  335.465989][T18853] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5077: invalid indirect mapped block 234881024 (level 0)
[  335.501690][T18861] 9pnet_fd: Insufficient options for proto=fd
[  335.511067][T18861] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5080'.
[  335.533190][T18861] gretap0: entered promiscuous mode
[  335.611277][T18874] loop2: detected capacity change from 0 to 512
[  335.649979][T18874] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.683760][T18874] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.5086: corrupted inode contents
[  335.731273][T18874] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz.2.5086: mark_inode_dirty error
[  335.777237][T18874] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.5086: corrupted inode contents
[  335.835711][T18874] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.5086: mark_inode_dirty error
[  335.935230][T18902] loop2: detected capacity change from 0 to 512
[  335.945012][T18904] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5099'.
[  335.974111][T18902] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.5097: corrupted in-inode xattr: invalid ea_ino
[  335.993304][T18902] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.5097: couldn't read orphan inode 15 (err -117)
[  336.043689][T18918] loop1: detected capacity change from 0 to 512
[  336.053170][T18902] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.5097: invalid indirect mapped block 234881024 (level 0)
[  336.084927][T18918] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.5102: corrupted in-inode xattr: invalid ea_ino
[  336.108088][T18918] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.5102: couldn't read orphan inode 15 (err -117)
[  336.124878][T18918] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.5102: invalid indirect mapped block 234881024 (level 0)
[  336.265322][T18947] loop2: detected capacity change from 0 to 512
[  336.284205][T18947] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.5115: corrupted in-inode xattr: invalid ea_ino
[  336.293752][T18950] loop1: detected capacity change from 0 to 512
[  336.298150][T18947] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.5115: couldn't read orphan inode 15 (err -117)
[  336.316558][T18950] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.5116: corrupted in-inode xattr: invalid ea_ino
[  336.328180][T18947] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.5115: invalid indirect mapped block 234881024 (level 0)
[  336.344516][T18950] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.5116: couldn't read orphan inode 15 (err -117)
[  336.378934][T18950] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.5116: invalid indirect mapped block 234881024 (level 0)
[  336.443508][T18958] 9pnet_fd: Insufficient options for proto=fd
[  336.578303][   T29] kauditd_printk_skb: 2397 callbacks suppressed
[  336.578317][   T29] audit: type=1326 audit(2000000000.710:124940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.609028][   T29] audit: type=1326 audit(2000000000.710:124941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.630509][T18972] 9pnet_fd: Insufficient options for proto=fd
[  336.632858][   T29] audit: type=1326 audit(2000000000.710:124942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.662641][   T29] audit: type=1326 audit(2000000000.710:124943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.665265][T18976] FAULT_INJECTION: forcing a failure.
[  336.665265][T18976] name failslab, interval 1, probability 0, space 0, times 0
[  336.686399][   T29] audit: type=1326 audit(2000000000.710:124944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.699094][T18976] CPU: 1 UID: 0 PID: 18976 Comm: syz.4.5127 Tainted: G        W          6.11.0-syzkaller-08481-g88264981f208 #0
[  336.722959][   T29] audit: type=1326 audit(2000000000.710:124945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.734776][T18976] Tainted: [W]=WARN
[  336.734786][T18976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  336.734802][T18976] Call Trace:
[  336.758407][   T29] audit: type=1326 audit(2000000000.710:124946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.762179][T18976]  <TASK>
[  336.762193][T18976]  dump_stack_lvl+0xf2/0x150
[  336.772274][   T29] audit: type=1326 audit(2000000000.710:124947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.775517][T18976]  dump_stack+0x15/0x20
[  336.799064][   T29] audit: type=1326 audit(2000000000.710:124948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.801944][T18976]  should_fail_ex+0x223/0x230
[  336.806535][   T29] audit: type=1326 audit(2000000000.710:124949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18973 comm="syz.4.5126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f467e2cdef9 code=0x7ffc0000
[  336.830206][T18976]  ? __se_sys_mount+0xf7/0x2d0
[  336.830246][T18976]  should_failslab+0x8f/0xb0
[  336.830271][T18976]  __kmalloc_cache_noprof+0x4b/0x2a0
[  336.901119][T18976]  __se_sys_mount+0xf7/0x2d0
[  336.905753][T18976]  ? fput+0x14e/0x190
[  336.909740][T18976]  ? ksys_write+0x178/0x1b0
[  336.914269][T18976]  __x64_sys_mount+0x67/0x80
[  336.918866][T18976]  x64_sys_call+0x203e/0x2d60
[  336.923685][T18976]  do_syscall_64+0xc9/0x1c0
[  336.928196][T18976]  ? clear_bhb_loop+0x55/0xb0
[  336.932885][T18976]  ? clear_bhb_loop+0x55/0xb0
[  336.937575][T18976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.943518][T18976] RIP: 0033:0x7f467e2cdef9
[  336.947940][T18976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.959607][T18978] loop3: detected capacity change from 0 to 512
[  336.967624][T18976] RSP: 002b:00007f467cf47038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  336.967656][T18976] RAX: ffffffffffffffda RBX: 00007f467e485f80 RCX: 00007f467e2cdef9
[  336.987596][T18978] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5128: corrupted in-inode xattr: invalid ea_ino
[  336.990417][T18976] RDX: 0000000020000180 RSI: 0000000020000140 RDI: 0000000000000000
[  337.005610][T18978] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.5128: couldn't read orphan inode 15 (err -117)
[  337.011709][T18976] RBP: 00007f467cf47090 R08: 0000000020000200 R09: 0000000000000000
[  337.011747][T18976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  337.011763][T18976] R13: 0000000000000000 R14: 00007f467e485f80 R15: 00007ffc6badcf68
[  337.011787][T18976]  </TASK>
[  337.062749][T18978] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5128: invalid indirect mapped block 234881024 (level 0)
[  337.078310][T18983] loop2: detected capacity change from 0 to 512
[  337.089054][T18983] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.5130: corrupted in-inode xattr: invalid ea_ino
[  337.104719][T18983] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.5130: couldn't read orphan inode 15 (err -117)
[  337.118604][T18983] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.5130: invalid indirect mapped block 234881024 (level 0)
[  337.350760][T19003] loop2: detected capacity change from 0 to 512
[  337.370576][T19008] loop1: detected capacity change from 0 to 512
[  337.390985][T19003] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.420060][T19008] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.508436][T19019] loop1: detected capacity change from 0 to 512
[  337.528567][T19019] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.5142: corrupted in-inode xattr: invalid ea_ino
[  337.543003][T19019] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.5142: couldn't read orphan inode 15 (err -117)
[  337.568886][T19019] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.5142: invalid indirect mapped block 234881024 (level 0)
[  337.711987][T19050] loop2: detected capacity change from 0 to 512
[  337.744689][T19050] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.800112][T19056] loop2: detected capacity change from 0 to 512
[  337.865016][T19056] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  337.972198][T19061] loop4: detected capacity change from 0 to 512
[  337.992186][T19061] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.114091][T19065] loop2: detected capacity change from 0 to 512
[  338.141127][T19067] loop3: detected capacity change from 0 to 512
[  338.163038][T19067] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.5157: corrupted in-inode xattr: invalid ea_ino
[  338.185378][T19065] EXT4-fs (loop2): orphan cleanup on readonly fs
[  338.202241][T19065] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5156: bg 0: block 248: padding at end of block bitmap is not set
[  338.225721][T19067] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.5157: couldn't read orphan inode 15 (err -117)
[  338.263280][T19067] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.5157: invalid indirect mapped block 234881024 (level 0)
[  338.283232][T19065] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.5156: Failed to acquire dquot type 1
[  338.301998][T19065] EXT4-fs (loop2): 1 truncate cleaned up
[  338.337793][T19065] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  338.389541][T19065] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  338.454028][T19080] loop2: detected capacity change from 0 to 2048
[  338.476222][T19080] EXT4-fs: dax option not supported
[  338.524400][T19080] loop2: detected capacity change from 0 to 512
[  338.550285][T19080] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.5161: bg 0: block 5: invalid block bitmap
[  338.578282][T19080] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  338.618195][T19080] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.5161: invalid indirect mapped block 3 (level 2)
[  338.654077][T19080] EXT4-fs (loop2): 1 orphan inode deleted
[  338.659909][T19080] EXT4-fs (loop2): 1 truncate cleaned up
[  338.876822][T19092] Cannot find set identified by id 0 to match
[  338.884398][T19094] Cannot find set identified by id 0 to match
[  338.940962][T19106] loop3: detected capacity change from 0 to 512
[  338.958347][T19106] EXT4-fs (loop3): orphan cleanup on readonly fs
[  338.968436][T19106] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5172: bg 0: block 248: padding at end of block bitmap is not set
[  338.985938][T19106] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm syz.3.5172: Failed to acquire dquot type 1
[  339.011512][T19106] EXT4-fs (loop3): 1 truncate cleaned up
[  339.113225][T19116] loop4: detected capacity change from 0 to 2048
[  339.124260][T19106] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  339.150122][T19116] EXT4-fs: dax option not supported
[  339.166155][T19106] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  339.195369][T19116] loop4: detected capacity change from 0 to 512
[  339.223259][T19052] coredump: 196(syz.0.5151): written to core: VMAs: 31, size 89161728; core: 60023582 bytes, pos 89169920
[  339.235643][T19116] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5176: bg 0: block 5: invalid block bitmap
[  339.296412][T19116] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  339.324502][T19116] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5176: invalid indirect mapped block 3 (level 2)
[  339.393185][T19116] EXT4-fs (loop4): 1 orphan inode deleted
[  339.399046][T19116] EXT4-fs (loop4): 1 truncate cleaned up
[  339.624124][T19168] loop4: detected capacity change from 0 to 2048
[  339.632858][T19168] EXT4-fs: dax option not supported
[  339.673469][T19168] loop4: detected capacity change from 0 to 512
[  339.691765][T19168] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5196: bg 0: block 5: invalid block bitmap
[  339.704576][T19168] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  339.720206][T19168] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5196: invalid indirect mapped block 3 (level 2)
[  339.748329][T19168] EXT4-fs (loop4): 1 orphan inode deleted
[  339.754224][T19168] EXT4-fs (loop4): 1 truncate cleaned up
[  339.959645][T19193] loop4: detected capacity change from 0 to 2048
[  339.992741][T19193] EXT4-fs: dax option not supported
[  340.040069][T19193] loop4: detected capacity change from 0 to 512
[  340.058459][T19193] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5207: bg 0: block 5: invalid block bitmap
[  340.064823][T19203] loop1: detected capacity change from 0 to 512
[  340.077478][T19193] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  340.086885][T19193] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5207: invalid indirect mapped block 3 (level 2)
[  340.093218][T19203] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.5212: corrupted in-inode xattr: invalid ea_ino
[  340.112034][T19193] EXT4-fs (loop4): 1 orphan inode deleted
[  340.119238][T19193] EXT4-fs (loop4): 1 truncate cleaned up
[  340.126681][T19203] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.5212: couldn't read orphan inode 15 (err -117)
[  340.149716][T19203] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.5212: invalid indirect mapped block 234881024 (level 0)
[  340.311363][T19227] loop1: detected capacity change from 0 to 512
[  340.318683][T19229] Invalid ELF section header size
[  340.327781][T19229] block device autoloading is deprecated and will be removed.
[  340.335561][T19229] syz.4.5224: attempt to access beyond end of device
[  340.335561][T19229] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  340.350499][T19227] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.416188][T19237] loop2: detected capacity change from 0 to 512
[  340.461240][T19237] ext4 filesystem being mounted at /57/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.517129][T19237] loop2: detected capacity change from 0 to 136
[  340.528256][T19250] loop1: detected capacity change from 0 to 2048
[  340.541204][T19250] EXT4-fs: dax option not supported
[  340.565763][T19250] loop1: detected capacity change from 0 to 512
[  340.600661][T19250] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.5230: bg 0: block 5: invalid block bitmap
[  340.629537][T19256] syzkaller0: entered promiscuous mode
[  340.635072][T19256] syzkaller0: entered allmulticast mode
[  340.646866][T19250] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  340.675216][T19250] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.5230: invalid indirect mapped block 3 (level 2)
[  340.683370][T19264] serio: Serial port ptm0
[  340.690490][T19250] EXT4-fs (loop1): 1 orphan inode deleted
[  340.698995][T19250] EXT4-fs (loop1): 1 truncate cleaned up
[  340.814110][T19270] loop1: detected capacity change from 0 to 512
[  340.872980][T19270] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.990524][T19285] loop3: detected capacity change from 0 to 512
[  341.010012][T19285] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.052745][T19234] coredump: 240(syz.0.5225): written to core: VMAs: 29, size 89030656; core: 60015278 bytes, pos 89038848
[  341.119812][T19295] loop4: detected capacity change from 0 to 512
[  341.143421][T19297] loop1: detected capacity change from 0 to 2048
[  341.159272][T19297] EXT4-fs: dax option not supported
[  341.217652][T19297] loop1: detected capacity change from 0 to 512
[  341.237079][T19295] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.249868][T19297] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.5248: bg 0: block 5: invalid block bitmap
[  341.268125][T19297] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  341.282575][T19297] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.5248: invalid indirect mapped block 3 (level 2)
[  341.317601][T19297] EXT4-fs (loop1): 1 orphan inode deleted
[  341.323648][T19297] EXT4-fs (loop1): 1 truncate cleaned up
[  341.607202][T19310] loop2: detected capacity change from 0 to 512
[  341.681507][T19310] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.692939][   T29] kauditd_printk_skb: 2676 callbacks suppressed
[  341.692956][   T29] audit: type=1326 audit(2000000000.290:127622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.725485][   T29] audit: type=1326 audit(2000000000.320:127623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.749192][   T29] audit: type=1326 audit(2000000000.320:127624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.773075][   T29] audit: type=1326 audit(2000000000.320:127625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.774302][   T29] audit: type=1326 audit(2000000000.350:127626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.821642][   T29] audit: type=1326 audit(2000000000.350:127627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.845491][   T29] audit: type=1326 audit(2000000000.350:127628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.869186][   T29] audit: type=1326 audit(2000000000.350:127629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.892929][   T29] audit: type=1326 audit(2000000000.350:127630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.916831][   T29] audit: type=1326 audit(2000000000.350:127631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19314 comm="syz.1.5251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f790d1edef9 code=0x7ffc0000
[  341.920608][T19317] coredump: 166(syz.2.5252): Error writing out the process memory
[  341.948406][T19317] coredump: 166(syz.2.5252): written to core: VMAs: 29, size 89030656; core: 185006 bytes, pos 643072
[  342.034853][T19325] FAULT_INJECTION: forcing a failure.
[  342.034853][T19325] name failslab, interval 1, probability 0, space 0, times 0
[  342.047646][T19325] CPU: 1 UID: 0 PID: 19325 Comm: syz.4.5253 Tainted: G        W          6.11.0-syzkaller-08481-g88264981f208 #0
[  342.059575][T19325] Tainted: [W]=WARN
[  342.063383][T19325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  342.073450][T19325] Call Trace:
[  342.076804][T19325]  <TASK>
[  342.079743][T19325]  dump_stack_lvl+0xf2/0x150
[  342.084351][T19325]  dump_stack+0x15/0x20
[  342.088583][T19325]  should_fail_ex+0x223/0x230
[  342.093278][T19325]  ? resv_map_alloc+0x32/0x190
[  342.098134][T19325]  should_failslab+0x8f/0xb0
[  342.102741][T19325]  __kmalloc_cache_noprof+0x4b/0x2a0
[  342.108138][T19325]  resv_map_alloc+0x32/0x190
[  342.112765][T19325]  hugetlbfs_get_inode+0x6e/0x2b0
[  342.117809][T19325]  hugetlb_file_setup+0x188/0x3c0
[  342.122907][T19325]  ksys_mmap_pgoff+0x172/0x330
[  342.127685][T19325]  x64_sys_call+0x1884/0x2d60
[  342.132434][T19325]  do_syscall_64+0xc9/0x1c0
[  342.136966][T19325]  ? clear_bhb_loop+0x55/0xb0
[  342.141656][T19325]  ? clear_bhb_loop+0x55/0xb0
[  342.146399][T19325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.152318][T19325] RIP: 0033:0x7f467e2cdef9
[  342.156784][T19325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.176460][T19325] RSP: 002b:00007f467cf47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  342.184936][T19325] RAX: ffffffffffffffda RBX: 00007f467e485f80 RCX: 00007f467e2cdef9
[  342.192911][T19325] RDX: 0000000002000008 RSI: 0000000000ff5000 RDI: 0000000020000000
[  342.200923][T19325] RBP: 00007f467cf47090 R08: ffffffffffffffff R09: 0000000078e2c000
[  342.208950][T19325] R10: 000200000005c831 R11: 0000000000000246 R12: 0000000000000001
[  342.217021][T19325] R13: 0000000000000000 R14: 00007f467e485f80 R15: 00007ffc6badcf68
[  342.225049][T19325]  </TASK>
[  342.232573][T19324] loop3: detected capacity change from 0 to 512
[  342.262040][T19324] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  342.265391][T19331] Cannot find set identified by id 0 to match
[  342.356030][T19344] loop4: detected capacity change from 0 to 2048
[  342.363332][T19344] EXT4-fs: dax option not supported
[  342.374218][T19348] loop2: detected capacity change from 0 to 512
[  342.389814][T19344] loop4: detected capacity change from 0 to 512
[  342.402630][T19344] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5263: bg 0: block 5: invalid block bitmap
[  342.429055][T19348] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  342.446264][T19344] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  342.475533][T19276] coredump: 251(syz.0.5240): written to core: VMAs: 29, size 89030656; core: 60015278 bytes, pos 89038848
[  342.477206][T19344] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5263: invalid indirect mapped block 3 (level 2)
[  342.519559][T19344] EXT4-fs (loop4): 1 orphan inode deleted
[  342.525371][T19344] EXT4-fs (loop4): 1 truncate cleaned up
[  342.562547][T18179] EXT4-fs error (device loop2): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /64/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  342.596464][T19358] loop3: detected capacity change from 0 to 1024
[  342.616099][T19358] EXT4-fs: Ignoring removed bh option
[  342.689235][T19358] FAULT_INJECTION: forcing a failure.
[  342.689235][T19358] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.702375][T19358] CPU: 0 UID: 0 PID: 19358 Comm: syz.3.5269 Tainted: G        W          6.11.0-syzkaller-08481-g88264981f208 #0
[  342.714408][T19358] Tainted: [W]=WARN
[  342.718253][T19358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  342.728409][T19358] Call Trace:
[  342.731700][T19358]  <TASK>
[  342.734833][T19358]  dump_stack_lvl+0xf2/0x150
[  342.739480][T19358]  dump_stack+0x15/0x20
[  342.743710][T19358]  should_fail_ex+0x223/0x230
[  342.748478][T19358]  should_fail+0xb/0x10
[  342.752745][T19358]  should_fail_usercopy+0x1a/0x20
[  342.757852][T19358]  _copy_from_user+0x1e/0xd0
[  342.762519][T19358]  copy_msghdr_from_user+0x54/0x2a0
[  342.767818][T19358]  __sys_sendmsg+0x171/0x270
[  342.772448][T19358]  __x64_sys_sendmsg+0x46/0x50
[  342.777238][T19358]  x64_sys_call+0x2689/0x2d60
[  342.781946][T19358]  do_syscall_64+0xc9/0x1c0
[  342.786548][T19358]  ? clear_bhb_loop+0x55/0xb0
[  342.791283][T19358]  ? clear_bhb_loop+0x55/0xb0
[  342.796086][T19358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.802054][T19358] RIP: 0033:0x7fb9a263def9
[  342.806489][T19358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.821233][T19366] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  342.826188][T19358] RSP: 002b:00007fb9a12b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  342.841614][T19358] RAX: ffffffffffffffda RBX: 00007fb9a27f5f80 RCX: 00007fb9a263def9
[  342.849647][T19358] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[  342.857643][T19358] RBP: 00007fb9a12b1090 R08: 0000000000000000 R09: 0000000000000000
[  342.865627][T19358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.873632][T19358] R13: 0000000000000000 R14: 00007fb9a27f5f80 R15: 00007ffdeb853238
[  342.881664][T19358]  </TASK>
[  342.891900][T19362] sd 0:0:1:0: device reset
[  342.911550][T19366] netlink: 'syz.0.5272': attribute type 39 has an invalid length.
[  342.939995][T19352] coredump: 173(syz.2.5265): Error writing out the process memory
[  342.947912][T19352] coredump: 173(syz.2.5265): written to core: VMAs: 29, size 89030656; core: 201390 bytes, pos 659456
[  343.004418][T19369] Cannot find set identified by id 0 to match
[  343.061694][T19377] loop4: detected capacity change from 0 to 512
[  343.100273][T19377] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  343.180673][T19388] serio: Serial port ptm0
[  343.254211][T19392] loop1: detected capacity change from 0 to 2048
[  343.288646][T19392] EXT4-fs: dax option not supported
[  343.326973][T19392] loop1: detected capacity change from 0 to 512
[  343.356437][T19392] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.5282: bg 0: block 5: invalid block bitmap
[  343.392984][T19392] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  343.429370][T19392] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.5282: invalid indirect mapped block 3 (level 2)
[  343.449536][T19392] EXT4-fs (loop1): 1 orphan inode deleted
[  343.455351][T19392] EXT4-fs (loop1): 1 truncate cleaned up
[  343.517453][T19401] loop4: detected capacity change from 0 to 512
[  343.556845][T19401] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.5285: invalid block
[  343.583358][T19404] loop1: detected capacity change from 0 to 512
[  343.599654][T19401] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5285: invalid indirect mapped block 4294967295 (level 1)
[  343.629615][T19401] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5285: invalid indirect mapped block 4294967295 (level 1)
[  343.655031][T19404] ext4 filesystem being mounted at /69/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  343.675532][T19401] EXT4-fs (loop4): 2 truncates cleaned up
[  343.707001][T19401] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5285: bg 0: block 5: invalid block bitmap
[  343.739483][T19401] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  343.778062][T19410] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.5285'.
[  343.803408][T19412] loop1: detected capacity change from 0 to 512
[  343.818781][T19400] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.5285'.
[  343.841364][T19412] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  343.900722][T19412] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.5287: corrupted inode contents
[  343.942842][T19412] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.5287: mark_inode_dirty error
[  343.973261][T19412] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.5287: corrupted inode contents
[  344.005308][T19383] coredump: 271(syz.0.5279): written to core: VMAs: 29, size 89030656; core: 60015278 bytes, pos 89038848
[  344.024853][T19412] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.5287: mark_inode_dirty error
[  344.030883][T19420] loop4: detected capacity change from 0 to 512
[  344.062509][T19422] loop3: detected capacity change from 0 to 2048
[  344.091197][T19420] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  344.108297][T19422] EXT4-fs: dax option not supported
[  344.141500][T19422] loop3: detected capacity change from 0 to 512
[  344.170477][T19422] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.5291: bg 0: block 5: invalid block bitmap
[  344.200442][T18186] EXT4-fs error (device loop4): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /67/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  344.572736][T19422] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  344.659074][T19422] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.5291: invalid indirect mapped block 3 (level 2)
[  344.685391][T19439] Cannot find set identified by id 0 to match
[  344.696301][T19422] EXT4-fs (loop3): 1 orphan inode deleted
[  344.702109][T19422] EXT4-fs (loop3): 1 truncate cleaned up
[  344.890777][T19445] Cannot find set identified by id 0 to match
[  344.995707][T19447] loop3: detected capacity change from 0 to 1024
[  345.059222][T19451] serio: Serial port ptm0
[  345.414593][T19428] coredump: 158(syz.4.5290): Error writing out the process memory
[  345.422490][T19428] coredump: 158(syz.4.5290): written to core: VMAs: 29, size 89030656; core: 201390 bytes, pos 659456
[  345.989719][T19489] loop1: detected capacity change from 0 to 512
[  346.031134][T19489] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  346.400408][T19500] loop1: detected capacity change from 0 to 512
[  346.472941][T19500] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  346.772498][   T29] kauditd_printk_skb: 1435 callbacks suppressed
[  346.772512][   T29] audit: type=1326 audit(2000000001.220:129067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  346.839371][   T29] audit: type=1326 audit(2000000001.250:129068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  346.863247][   T29] audit: type=1326 audit(2000000001.260:129069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  346.886906][   T29] audit: type=1326 audit(2000000001.260:129070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  346.910640][   T29] audit: type=1326 audit(2000000001.260:129071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  346.934353][   T29] audit: type=1326 audit(2000000001.260:129072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  346.958047][   T29] audit: type=1326 audit(2000000001.260:129073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  346.981963][   T29] audit: type=1326 audit(2000000001.260:129074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  347.005745][   T29] audit: type=1326 audit(2000000001.260:129075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  347.029430][   T29] audit: type=1326 audit(2000000001.260:129076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19510 comm="syz.0.5320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fec3e2ddf33 code=0x7ffc0000
[  347.243361][T19514] loop3: detected capacity change from 0 to 512
[  347.850596][T19514] EXT4-fs mount: 88 callbacks suppressed
[  347.850618][T19514] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.071532][T19514] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  348.196772][T18182] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.342175][T19527] syzkaller0: entered promiscuous mode
[  348.347712][T19527] syzkaller0: entered allmulticast mode
[  348.452260][T19532] loop1: detected capacity change from 0 to 512
[  348.493198][T19532] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.516131][T19532] ext4 filesystem being mounted at /79/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  348.589994][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.932017][T19541] loop3: detected capacity change from 0 to 512
[  349.946937][T19542] loop1: detected capacity change from 0 to 2048
[  349.998020][T19542] EXT4-fs: dax option not supported
[  350.058400][T19542] loop1: detected capacity change from 0 to 512
[  350.089453][T19542] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.5329: bg 0: block 5: invalid block bitmap
[  350.143116][T19542] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  350.190973][T19542] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.5329: invalid indirect mapped block 3 (level 2)
[  350.216271][T19557] Cannot find set identified by id 0 to match
[  350.237047][T19542] EXT4-fs (loop1): 1 orphan inode deleted
[  350.242834][T19542] EXT4-fs (loop1): 1 truncate cleaned up
[  350.286425][T19542] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.466104][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.506470][T19561] loop3: detected capacity change from 0 to 512
[  350.549784][T19561] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.591607][T19561] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  350.660348][T18182] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.697431][T19567] loop1: detected capacity change from 0 to 512
[  350.729860][T19567] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.775500][T19567] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  350.890636][T18185] EXT4-fs error (device loop1): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /82/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  351.420182][T19577] Cannot find set identified by id 0 to match
[  352.651740][T19575] coredump: 339(syz.0.5340): written to core: VMAs: 29, size 89030656; core: 60015278 bytes, pos 89038848
[  352.812682][   T29] kauditd_printk_skb: 659 callbacks suppressed
[  352.812696][   T29] audit: type=1326 audit(2000000001.670:129736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19583 comm="syz.3.5344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a263def9 code=0x7ffc0000
[  352.846466][   T29] audit: type=1326 audit(2000000001.700:129737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19583 comm="syz.3.5344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fb9a263def9 code=0x7ffc0000
[  352.870201][   T29] audit: type=1326 audit(2000000001.700:129738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19583 comm="syz.3.5344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a263def9 code=0x7ffc0000
[  352.894074][   T29] audit: type=1326 audit(2000000001.700:129739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19583 comm="syz.3.5344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a263def9 code=0x7ffc0000
[  352.918278][   T29] audit: type=1326 audit(2000000001.700:129740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19583 comm="syz.3.5344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7fb9a263def9 code=0x7ffc0000
[  352.942437][   T29] audit: type=1326 audit(2000000001.700:129741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19583 comm="syz.3.5344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a263def9 code=0x7ffc0000
[  352.966139][   T29] audit: type=1326 audit(2000000001.710:129742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19583 comm="syz.3.5344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a263def9 code=0x7ffc0000
[  352.994948][T18179] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.006592][  T109] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  353.044176][T19591] loop3: detected capacity change from 0 to 512
[  353.068839][   T29] audit: type=1326 audit(2000000001.930:129743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19589 comm="syz.0.5345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  353.109345][  T109] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  353.138308][   T29] audit: type=1326 audit(2000000001.960:129744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19589 comm="syz.0.5345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  353.162118][   T29] audit: type=1326 audit(2000000001.960:129745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19589 comm="syz.0.5345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec3e2ddef9 code=0x7ffc0000
[  353.186442][T19591] EXT4-fs (loop3): orphan cleanup on readonly fs
[  353.199540][  T109] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  353.230477][T19591] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5346: bg 0: block 248: padding at end of block bitmap is not set
[  353.279627][T19591] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm syz.3.5346: Failed to acquire dquot type 1
[  353.338988][T19591] EXT4-fs (loop3): 1 truncate cleaned up
[  353.408452][T19570] coredump: 206(syz.1.5337): Error writing out the process memory
[  353.416408][T19570] coredump: 206(syz.1.5337): written to core: VMAs: 29, size 91127808; core: 201390 bytes, pos 659456
[  353.556021][  T109] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  353.639945][  T109] bridge_slave_1: left allmulticast mode
[  353.645615][  T109] bridge_slave_1: left promiscuous mode
[  353.651300][  T109] bridge0: port 2(bridge_slave_1) entered disabled state
[  353.679575][  T109] bridge_slave_0: left allmulticast mode
[  353.685329][  T109] bridge_slave_0: left promiscuous mode
[  353.691019][  T109] bridge0: port 1(bridge_slave_0) entered disabled state
[  353.889922][  T109] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  353.909828][  T109] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  353.930135][  T109] bond0 (unregistering): Released all slaves
[  353.944677][T19584] chnl_net:caif_netlink_parms(): no params data found
[  354.013157][  T109] hsr_slave_0: left promiscuous mode
[  354.021252][  T109] hsr_slave_1: left promiscuous mode
[  354.026966][  T109] batman_adv: batadv0: Removing interface: batadv_slave_0
[  354.034670][  T109] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  354.042150][  T109] batman_adv: batadv0: Removing interface: batadv_slave_1
[  354.053732][  T109] veth0_macvtap: left promiscuous mode
[  354.059440][  T109] veth1_vlan: left promiscuous mode
[  354.064673][  T109] veth0_vlan: left promiscuous mode
[  354.256529][  T109] team0 (unregistering): Port device team_slave_1 removed
[  354.280112][  T109] team0 (unregistering): Port device team_slave_0 removed
[  354.406037][T19584] bridge0: port 1(bridge_slave_0) entered blocking state
[  354.413206][T19584] bridge0: port 1(bridge_slave_0) entered disabled state
[  354.455397][T19584] bridge_slave_0: entered allmulticast mode
[  354.487800][T19584] bridge_slave_0: entered promiscuous mode
[  354.496473][T19591] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  354.656635][T19584] bridge0: port 2(bridge_slave_1) entered blocking state
[  354.664696][T19584] bridge0: port 2(bridge_slave_1) entered disabled state
[  354.694802][    C0] ==================================================================
[  354.702908][    C0] BUG: KCSAN: data-race in can_send / can_send
[  354.709099][    C0] 
[  354.711429][    C0] read-write to 0xffff888113a45190 of 8 bytes by interrupt on cpu 1:
[  354.719500][    C0]  can_send+0x562/0x5d0
[  354.723675][    C0]  j1939_send_one+0x1a9/0x1e0
[  354.728378][    C0]  j1939_tp_txtimer+0xcab/0x1a70
[  354.733348][    C0]  __hrtimer_run_queues+0x20d/0x5e0
[  354.738575][    C0]  hrtimer_run_softirq+0xe4/0x2c0
[  354.743632][    C0]  handle_softirqs+0xbf/0x280
[  354.748344][    C0]  do_softirq+0x5e/0x90
[  354.752528][    C0]  __local_bh_enable_ip+0x6e/0x70
[  354.757578][    C0]  _raw_spin_unlock_bh+0x36/0x40
[  354.762543][    C0]  batadv_nc_purge_paths+0x220/0x270
[  354.767852][    C0]  batadv_nc_worker+0x402/0xad0
[  354.772712][    C0]  process_scheduled_works+0x483/0x9a0
[  354.778205][    C0]  worker_thread+0x51d/0x6f0
[  354.782819][    C0]  kthread+0x1d1/0x210
[  354.786907][    C0]  ret_from_fork+0x4b/0x60
[  354.791349][    C0]  ret_from_fork_asm+0x1a/0x30
[  354.796143][    C0] 
[  354.798468][    C0] read-write to 0xffff888113a45190 of 8 bytes by interrupt on cpu 0:
[  354.806565][    C0]  can_send+0x562/0x5d0
[  354.810747][    C0]  bcm_can_tx+0x314/0x420
[  354.815113][    C0]  bcm_tx_timeout_handler+0xdb/0x260
[  354.820421][    C0]  __hrtimer_run_queues+0x20d/0x5e0
[  354.825768][    C0]  hrtimer_run_softirq+0xe4/0x2c0
[  354.830834][    C0]  handle_softirqs+0xbf/0x280
[  354.835527][    C0]  irq_exit_rcu+0x3e/0x90
[  354.839872][    C0]  sysvec_apic_timer_interrupt+0x73/0x80
[  354.845520][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  354.851504][    C0]  __sanitizer_cov_trace_pc+0x8/0x70
[  354.856797][    C0]  do_wp_page+0x168a/0x2340
[  354.861318][    C0]  handle_mm_fault+0xc47/0x2a80
[  354.866185][    C0]  exc_page_fault+0x3b9/0x650
[  354.870874][    C0]  asm_exc_page_fault+0x26/0x30
[  354.875730][    C0] 
[  354.878055][    C0] value changed: 0x000000000000296b -> 0x000000000000296e
[  354.885167][    C0] 
[  354.887488][    C0] Reported by Kernel Concurrency Sanitizer on:
[  354.893641][    C0] CPU: 0 UID: 0 PID: 19588 Comm: syz.3.5346 Tainted: G        W          6.11.0-syzkaller-08481-g88264981f208 #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  354.905550][    C0] Tainted: [W]=WARN
[  354.909360][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  354.919417][    C0] ==================================================================
[  354.928187][T19584] bridge_slave_1: entered allmulticast mode
[  354.934933][T19584] bridge_slave_1: entered promiscuous mode
[  355.036850][T18185] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.140122][T18186] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.282028][T19588] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.343750][ T5295] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.401058][ T5295] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.470650][ T5295] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.527826][    C1] vcan0: j1939_tp_rxtimer: 0xffff888115574e00: rx timeout, send abort
[  355.539878][ T5295] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.623143][ T5295] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.660958][ T5295] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.720865][ T5295] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.770944][ T5295] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.832231][ T5295] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.871188][ T5295] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  355.931658][ T5295] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.011262][ T5295] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.036050][    C1] vcan0: j1939_tp_rxtimer: 0xffff888115574e00: abort rx timeout. Force session deactivation
[  356.080507][ T5295] bridge_slave_1: left allmulticast mode
[  356.086233][ T5295] bridge_slave_1: left promiscuous mode
[  356.091884][ T5295] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.100111][ T5295] bridge_slave_0: left allmulticast mode
[  356.105753][ T5295] bridge_slave_0: left promiscuous mode
[  356.111562][ T5295] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.119588][ T5295] bridge_slave_1: left allmulticast mode
[  356.125223][ T5295] bridge_slave_1: left promiscuous mode
[  356.130919][ T5295] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.138706][ T5295] bridge_slave_0: left allmulticast mode
[  356.144340][ T5295] bridge_slave_0: left promiscuous mode
[  356.150067][ T5295] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.158167][ T5295] bridge_slave_1: left allmulticast mode
[  356.163910][ T5295] bridge_slave_1: left promiscuous mode
[  356.169627][ T5295] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.177264][ T5295] bridge_slave_0: left allmulticast mode
[  356.182954][ T5295] bridge_slave_0: left promiscuous mode
[  356.188700][ T5295] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.196594][ T5295] bridge_slave_1: left allmulticast mode
[  356.202271][ T5295] bridge_slave_1: left promiscuous mode
[  356.208081][ T5295] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.215772][ T5295] bridge_slave_0: left allmulticast mode
[  356.221485][ T5295] bridge_slave_0: left promiscuous mode
[  356.227105][ T5295] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.600428][ T5295] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  356.611094][ T5295] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  356.621419][ T5295] bond0 (unregistering): Released all slaves
[  356.630750][ T5295] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  356.640909][ T5295] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  356.651302][ T5295] bond0 (unregistering): Released all slaves
[  356.659671][ T5295] bond0 (unregistering): Released all slaves
[  356.668954][ T5295] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  356.679093][ T5295] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  356.689237][ T5295] bond0 (unregistering): Released all slaves
[  356.759069][ T5295] hsr_slave_0: left promiscuous mode
[  356.764642][ T5295] hsr_slave_1: left promiscuous mode
[  356.770391][ T5295] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  356.777785][ T5295] batman_adv: batadv0: Removing interface: batadv_slave_0
[  356.785705][ T5295] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  356.793125][ T5295] batman_adv: batadv0: Removing interface: batadv_slave_1
[  356.802463][ T5295] hsr_slave_0: left promiscuous mode
[  356.808217][ T5295] hsr_slave_1: left promiscuous mode
[  356.813952][ T5295] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  356.821412][ T5295] batman_adv: batadv0: Removing interface: batadv_slave_0
[  356.829286][ T5295] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  356.836679][ T5295] batman_adv: batadv0: Removing interface: batadv_slave_1
[  356.845982][ T5295] hsr_slave_0: left promiscuous mode
[  356.851656][ T5295] hsr_slave_1: left promiscuous mode
[  356.857375][ T5295] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  356.864800][ T5295] batman_adv: batadv0: Removing interface: batadv_slave_0
[  356.872811][ T5295] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  356.880258][ T5295] batman_adv: batadv0: Removing interface: batadv_slave_1
[  356.892607][ T5295] veth1_macvtap: left promiscuous mode
[  356.898186][ T5295] veth0_macvtap: left promiscuous mode
[  356.903675][ T5295] veth1_vlan: left promiscuous mode
[  356.908986][ T5295] veth0_vlan: left promiscuous mode
[  356.914644][ T5295] veth1_macvtap: left promiscuous mode
[  356.920157][ T5295] veth0_macvtap: left promiscuous mode
[  356.925652][ T5295] veth1_vlan: left promiscuous mode
[  356.930899][ T5295] veth0_vlan: left promiscuous mode
[  356.936574][ T5295] veth1_macvtap: left promiscuous mode
[  356.942101][ T5295] veth0_macvtap: left promiscuous mode
[  356.947677][ T5295] veth1_vlan: left promiscuous mode
[  356.952922][ T5295] veth0_vlan: left promiscuous mode
[  357.122086][ T5295] team0 (unregistering): Port device team_slave_1 removed
[  357.132138][ T5295] team0 (unregistering): Port device team_slave_0 removed
[  357.193583][ T5295] team0 (unregistering): Port device team_slave_1 removed
[  357.203776][ T5295] team0 (unregistering): Port device team_slave_0 removed
[  357.285040][ T5295] team0 (unregistering): Port device team_slave_1 removed
[  357.295143][ T5295] team0 (unregistering): Port device team_slave_0 removed