last executing test programs:

7.098562148s ago: executing program 1 (id=4054):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
sendto$inet(r0, &(0x7f0000000300)="ab", 0x34000, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10) (fail_nth: 2)

6.303863236s ago: executing program 1 (id=4068):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$inet(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c00}, 0x0)

4.415377395s ago: executing program 4 (id=4105):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
fchdir(r0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000140)={0x0, <r2=>0x0})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r3 = syz_open_procfs(r2, &(0x7f0000000600)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r3, 0x40086610, &(0x7f0000000180)={@id={0x2, 0xf5, @b}})

2.124396484s ago: executing program 0 (id=4151):
r0 = creat(&(0x7f0000000340)='./file0\x00', 0x0)
close(r0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x7, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480), 0xd}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, r0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000200)={[{@inlinecrypt}, {@nodelalloc}]}, 0x1, 0x4d2, &(0x7f0000001100)="$eJzs3c9vHFcdAPDvjO3Ycd3ahUr8ENBQKgKKsmtvWqvqqVxAqKqEqDhxSI29tox3vZZ3XWqTg/s/IFGJE/wJHJA4IOXEnRvcuIQDUoAIFCMhtGhmx45je22T2DuV9/ORRjNv3ma+35fNvDf7Yu8LYGjdiIjdiLgWER9ExHRxPim2eKe3Za97/Oje4t6je9cjovv+35O8PjsXh/5M5oXimhMR8f3vRPwoOR63vb2zttBo1DeLcrXT3Ki2t3durzYXVuor9fVabX5ufvatO2/WLqytrzZ//fDbq+/+4He//fKDP+x+86dZWlNF3eF2XKRe08cO4mRGI+LdywhWgpGiPdfKToRnkkbEZyLitez+75adDQAwCN3udHSnD5cBgKsuzefAkrRSzAVMRZpWKr05vFdiMm202p1by62t9aXeXNlMjKXLq436bDFXOBNjSVaey4+flGtHynci4uWI+Nn49bxcWWw1lsp88AGAIfbCkfH/X+O98R8AuOImyk4AABg44z8ADB/jPwAMH+M/AAwf4z8ADJ9nHf/HLzgPAGBwfP4HgKHyvffey7buXvH910sfbm+ttT68vVRvr1WaW4uVxdbmRmWl1VrJv7Onedb1Gq3WxtwbsfVRtVNvd6rt7Z27zdbWeudu/r3ed+tjA2kVAHCal1+9/6ckInbfvp5vUazlMJGvWgFcZWnZCQClGSk7AaA0o2UnAJTGZ3zg6SV6f3ysvu+PCH1yOfkAl+/mF06e/w/PBnDlmf+H4WX+H4aX+X8YXt1uYs1/ABgy5viB5Ix6//8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAx03lW5JWirXApyJNK5WIFyNiJsaS5dVGfTYiXoqIP46PjWflubKTBgCeU/rXpFj/6+b061NHa68l/x7P9xHxk1+8//OPFjqdzbns/D8Oznc+Kc7XysgfADjL/ji9P47ve/zo3uL+Nsh8Hn6rt7hoFnev2Ho1ozGa7ydiLCIm/5kU5Z7seWXkAuLvfhwRnz+p/Uk+NzJTrHx6NH4W+8WBxk+fip/mdb199nfx2QvIBYbN/az/eeek+y+NG/n+5Pt/Iu+hnt9+/7d3rP9LD/q/kT79343zxnjj99/tW/dxxBdHT4qfHMRP+sR//Zzx//ylr7zWr677y4ibcXL8w7GqneZGtb29c3u1ubBSX6mv12rzc/Ozb915s1ZdzjrB6v5M9XF/e/vWS6e1f7JP/IlT2//fYgX9s9v/q/988MOvnhL/G187+f1/5ZT42Zj49bND5xYmf9N3+e4s/lKf9p/1/t86Z/wHf9lZOudLAYABaG/vrC00GvVNBwM7yJ7dPgVpOPg/D5K4qAtm/wIu4jqfu8Qml90zAZftyU1fdiYAAAAAAAAAAAAAAEA/g/jFqbLbCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwNX1vwAAAP///U3bTA==")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xa, 0x4, 0x3, 0x8}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_int(r3, 0x0, 0x13, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, 0x0, 0x0)
sendmsg$inet(r3, 0x0, 0x4048000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xe, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="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", @ANYRESHEX=r1, @ANYRESDEC=0x0, @ANYRESDEC, @ANYRESHEX, @ANYRESOCT=r2], &(0x7f00000001c0)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x2b}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmmsg(r5, &(0x7f00000000c0), 0x0, 0x10000, 0x0)
getrlimit(0x4, &(0x7f0000000180))
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sigaltstack(0x0, 0x0)
write$tcp_mem(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x2d, 0x6, 0x3a, 0xfffffffffffffffa, 0x2c}, 0x48)

1.977202065s ago: executing program 1 (id=4069):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = socket$inet6(0xa, 0x4, 0xfffffffe)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x100)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x2, 0xfff, 0x5}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{r1}, &(0x7f0000000340), &(0x7f0000000700)='%pI4   \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000200)=0x4)
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wg2\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x48, 0x24, 0xf0b, 0x70bd2a, 0x0, {0x60, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x18, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x3}, @TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}]}}]}, 0x48}}, 0x44040)
sendmsg$inet(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000004c0)="103446aafa7096bcc2f9c71b405a7d705ac4b078aaf1a9e097feb62ce17406cde465e36354480a53ce55c806a6b7c4c73323b1a971a2f718a3cbecbe29a3dc395f2474e5f6eacf027ed6a14bf6a3263a42f6b29270871cab109977e258aa44110375c14507b038dba133e434ce2d94e7f63414533570d86c0edc663f8ed10587600461ec9fe9ea76160ac7a9c13356d5f9dce078d2d00ee061310fbf64f290eb15d2eb4ea971d3a11fe2035d2239fa92bef4b8d53b61f6783724556cbe1f820f1292c8f3a3dbd912355e05f5ed652a1e25f416ba8febfd16c80d0f7f12b5bf7ff8b3e8a281463cc4f02e204c324292884243897fad16", 0xf6}], 0x1, &(0x7f0000000280)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x8}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}}}, @ip_ttl={{0x14, 0x0, 0x2, 0xa}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x6}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @empty, @initdev={0xac, 0x1e, 0x1, 0x0}}}}], 0x88}, 0x2000c041)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x280809a, &(0x7f0000000f40)=ANY=[], 0xd, 0x2b2, &(0x7f00000006c0)="$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")
r6 = open(&(0x7f0000000080)='./file0\x00', 0x40c5, 0x0)
r7 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
write$9p(r6, &(0x7f0000001400)="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", 0x200)
sendfile(r6, r7, 0x0, 0xe065)

1.950164026s ago: executing program 0 (id=4154):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_mtu(r0, 0x29, 0x17, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000110020850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX])
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x10, 0x1a1381)
ioctl$USBDEVFS_FREE_STREAMS(r3, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
ioctl$USBDEVFS_FREE_STREAMS(r3, 0x8008551d, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x2)

1.793968458s ago: executing program 1 (id=4157):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0x80d, 0x0, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_ACTION={0x6, 0x3, 0x14}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r2, 0x0, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000000104010100a1000000000000002204000500010001000000"], 0x1c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x1bc, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in6=@ipv4={'\x00', '\xff\xff', @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, [@tmpl={0x104, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@dev}, {{@in6=@remote, 0x0, 0x33}, 0x0, @in=@multicast1}, {{@in=@multicast1, 0x0, 0x6c}, 0x0, @in=@local}, {{@in6=@mcast1, 0x0, 0x32}, 0x0, @in6=@private1}]}]}, 0x1bc}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r6, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
ioctl$USBDEVFS_WAIT_FOR_RESUME(r6, 0x5521)
open_by_handle_at(r6, &(0x7f0000000040)=@isofs_parent={0x14, 0x2, {0x4, 0x3, 0x7, 0x7, 0x9, 0x6}}, 0x80)
sendmsg$nl_xfrm(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)=@updsa={0xf0, 0x1a, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @remote}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0xb0}, {@in6=@empty}, @in6=@private2, {}, {}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0)
sendmsg$IPSET_CMD_TEST(r4, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000140)={0x28, 0x9, 0x6, 0x350d27364b276d03, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00'}, 0x10)

1.447746243s ago: executing program 0 (id=4162):
r0 = socket$inet(0x2, 0x3, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) (async)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
bind(r2, &(0x7f0000000000)=@nl=@unspec, 0x80)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r3}, 0x10) (async)
r4 = socket(0x10, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x0)

1.046414053s ago: executing program 0 (id=4164):
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
renameat2(r0, &(0x7f0000000280)='./file1\x00', r0, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

953.68424ms ago: executing program 0 (id=4167):
ioperm(0x2e, 0x7, 0x7)
open$dir(0x0, 0x80040, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1b, 0x0, 0x2, 0xff, 0x0, 0x1, 0x6}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000200), 0x1, 0x545, &(0x7f0000000bc0)="$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")
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
socket$inet6_udp(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000340), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r3, 0x0, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000180))
epoll_pwait(r4, &(0x7f0000001280)=[{}], 0x1, 0xffffffff, 0x0, 0x0)
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000180)='ext4_ext_show_extent\x00', r2}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
rename(&(0x7f0000000300)='./control/file0\x00', 0x0)

947.03767ms ago: executing program 4 (id=4114):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
close(r0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = dup(r0)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r2)
getsockopt$PNPIPE_IFINDEX(r2, 0x113, 0x2, &(0x7f0000000440)=<r4=>0x0, &(0x7f0000000480)=0x4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x20, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x74, r7, 0x0, 0x11203}}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000004c0)={'batadv0\x00', <r8=>0x0})
getsockopt$inet_pktinfo(r2, 0x0, 0x8, 0x0, &(0x7f0000000540))
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r2, &(0x7f0000000700)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)={0xd4, r3, 0x20, 0x70bd29, 0x25dfdbfb, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x80}, 0x20004104)
write$sndseq(r2, &(0x7f0000000300)=[{0x2, 0x5, 0xb, 0x7, @time={0x401, 0xa}, {0xed, 0x6}, {0x1}, @addr={0xa8, 0x7}}, {0x4, 0x9, 0x1a, 0x9, @tick, {0x1, 0x5}, {0x8, 0x7}, @addr={0xff, 0x8}}, {0xa, 0x0, 0x3, 0x42, @tick=0x90f, {0x2, 0x9}, {0xff, 0x53}, @connect={{0xfa, 0x6}, {0x1, 0x2}}}, {0x5, 0x4, 0x12, 0x9, @time={0x9a, 0x1}, {0x81, 0x4e}, {0x0, 0x9}, @quote={{0x7, 0x10}, 0x7f}}, {0x0, 0x0, 0x6, 0x6, @tick=0x9, {0x1, 0x3}, {0xc}, @ext={0xd4, &(0x7f00000001c0)="25705f26af6ac8bdfd005ae5beb5a5d347b268a71225aa392bfe52a2c33f49e2a6ef78373cbb267670fe9c9974598c2c0dd509e65b93efeef4b0d31b78d428694008edf50e0f4c41c7785111c441a4af391bcd660d8554ad827c334e7ea03ac0b82a721205a37144e82e9a807bf299d266d0357cd88e570744242afe4fc7fa0abc658f8fe24d635db73a28bd3baadaecf485ad36773d45b9ab82bfcdecab286cba968d1ce2b905b0479a1f00a126a74e2fd94e38bef0689d61d00860e7a437dbc8c1c31aba92ac95b9a7a99735d3425428c246e0"}}, {0x5, 0x8, 0x2f, 0x5b, @time={0x5080, 0xffffff01}, {0xf, 0x3}, {0xa9, 0xf}, @queue={0xa, {0x4, 0x6}}}, {0xd1, 0x1, 0x2, 0x0, @time={0x100, 0x4}, {0x7, 0x5}, {0x9, 0xb4}, @result={0x237}}, {0x10, 0x7, 0x71, 0x6, @tick, {0xe, 0x8}, {0x10, 0x2}, @addr={0x38, 0x4}}], 0xe0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)

896.795324ms ago: executing program 1 (id=4168):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0xe, &(0x7f0000000140)={[{@dioread_lock}, {@data_journal}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@stripe={'stripe', 0x3d, 0x4}}, {@block_validity}, {@block_validity}]}, 0x3, 0x43b, &(0x7f0000000e00)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000240)='./file0\x00', 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
renameat2(r1, &(0x7f0000000280)='./file1\x00', r1, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

776.644973ms ago: executing program 4 (id=4171):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_mtu(r0, 0x29, 0x17, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000110020850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX])
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x10, 0x1a1381)
ioctl$USBDEVFS_FREE_STREAMS(r3, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
ioctl$USBDEVFS_FREE_STREAMS(r3, 0x8008551d, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x2)

695.843369ms ago: executing program 1 (id=4174):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @dev, 0x7}]}, &(0x7f0000000100)=0x10)

438.325358ms ago: executing program 4 (id=4184):
io_uring_setup(0x1c2c, &(0x7f00000002c0)={0x0, 0x0, 0x200})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
setresuid(0xee01, 0x0, 0x0)
ioprio_set$pid(0x0, 0x0, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
setitimer(0x1, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x21, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x6d0c, &(0x7f0000000340), &(0x7f00000000c0), &(0x7f0000000140))
syz_io_uring_setup(0x1866, &(0x7f00000003c0), 0x0, &(0x7f0000000100))
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xd0, 0x0, 0x4)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x4)
r2 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000ea03010000000000000000000000000a1400000000000a000000000000006c8173be"], 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00'}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r3, &(0x7f00000006c0)=ANY=[@ANYBLOB], 0x78)
socket$rds(0x15, 0x5, 0x0)
connect$pppl2tp(r3, &(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x4, 0x4, 0x0, 0x1, {0xa, 0x4e23, 0xfffffffa, @dev={0xfe, 0x80, '\x00', 0x30}, 0x80000001}}}, 0x3a)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c0000001200010003950000000000000a0900004001"], 0x4c}}, 0x0)

402.249861ms ago: executing program 2 (id=4186):
r0 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000040)=0x7, 0x4)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000180)="08001efbb07d586e", 0x8}], 0x1, 0x0, 0x0, 0x60000000}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000300)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffdc0}]})
socket$nl_route(0x10, 0x3, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
gettid()
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x4, 0x1, 0x1e, 0x2, r1, 0x6, '\x00', 0x0, r1, 0x0, 0x0, 0x3, 0xc}, 0x48)
socket$inet6_sctp(0xa, 0x801, 0x84)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
perf_event_open(0x0, 0x0, 0x2, 0xffffffffffffffff, 0x1)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00')

373.466232ms ago: executing program 2 (id=4187):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2}, 0x8180, 0x7, 0x0, 0x9, 0x0, 0x80000, 0x4, 0x0, 0x0, 0x0, 0xc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x23, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[@ANYRES8], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$SCSI_IOCTL_GET_PCI(r2, 0x5393, &(0x7f0000000000))

327.690086ms ago: executing program 3 (id=4188):
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
renameat2(r0, &(0x7f0000000280)='./file1\x00', r0, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

327.484456ms ago: executing program 3 (id=4189):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0xe, &(0x7f0000000140)={[{@dioread_lock}, {@data_journal}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@stripe={'stripe', 0x3d, 0x4}}, {@block_validity}, {@block_validity}]}, 0x3, 0x43b, &(0x7f0000000e00)="$eJzs3MtvG0UYAPBv10lKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWkUQECpHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZs4jp0Xdlzq30/admZ3nJnPs2PP7mQTQM8azv5JIvZFxO8RMVjLri4wXPvv1tLC1N9LC1NJVCpv/ZVUy91cWpgqihav25tnRtKI9LMkjjSpd+7ylfOT5fLMpTw/Nn/h/bG5y1eePXdh8uzM2ZmLE6dOnTwx/sLzE8+1Jc6sTTcPfzR79NBr71x7Y+r0tXd//jYp4m+Io02G1zv4RKXS5uq6a39dOunrYkPYklJEZN3VXx3/g1GKlc4bjFc/7WrjgI6qVCqVva0PL1aAO1gS3W4B0B3FF312/VtsOzT1uC3ceKl2AZTFfSvfakf6Is3L9Ddc37bTcEScXvznq2yLztyHAABY5fts/vNMs/lfGvfXlbs7Xxsaioh7IuJARNwbEQcj4r6IatkHIuLBLdbfuEiydv6TXt9WYJuUzf9ezNe2Vs//itlfDJXy3P5q/P3JmXPlmeP5ezIS/buy/Pg6dfzwym9ftDpWP//Ltqz+Yi6Yt+N6367Vr5menJ/8LzHXu/FJxOG+ZvEnyysBSUQciojD26zj3FPfHG11rEX8uzb1g9uwzlT5OuLJWv8vRkP8hWT99cmxu6I8c3ysOCvW+uXXq2+2qn/j/u+srP/3ND3/l+MfSurXa+e2XsfVPz5veU2z3fN/IHm7mh7I9304OT9/aTxiIHm91uj6/RMrry3yRfks/pFjzcf/gVh5J45ERHYSPxQRD0fEI3nbH42IxyLi2Drx//Ty4+9tP/7OyuKf3lL/ryQGonFP80Tp/I/frap0aCvxZ/1/spoayfds5vNvM+3a3tkMAAAA/z9pROyLJB1dTqfp6Gjt9+UPxp60PDs3//SZ2Q8uTteeERiK/rS40zVYdz90PL+sL/ITDfkT+X3jL0u7q/nRqdnydLeDhx63t8X4z/xZ6nbrgI7zvBb0LuMfepfxD73L+Ife1WT87+5GO4Cd1+z7/+MutAPYeQ3j37If9JANr//9RUe4Yxnd0LuMf+hJc7tj44fkJSTWJCK9LZoh0aFEtz+ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2uPfAAAA//8SV+Y8")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000240)='./file0\x00', 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
renameat2(r1, &(0x7f0000000280)='./file1\x00', r1, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

326.638476ms ago: executing program 2 (id=4190):
r0 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000040)=0x7, 0x4)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000180)="08001efbb07d586e", 0x8}], 0x1, 0x0, 0x0, 0x60000000}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000300)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffdc0}]})
socket$nl_route(0x10, 0x3, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
gettid()
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x4, 0x1, 0x1e, 0x2, r1, 0x6, '\x00', 0x0, r1, 0x0, 0x0, 0x3, 0xc}, 0x48)
socket$inet6_sctp(0xa, 0x801, 0x84)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000c80), 0xff, 0x23f, &(0x7f0000000540)="$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")
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
perf_event_open(0x0, 0x0, 0x2, 0xffffffffffffffff, 0x1)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00')

272.17001ms ago: executing program 3 (id=4191):
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000300)='./file1\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x5, 0x7f0, &(0x7f0000001900)="$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")
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000002000000000000000002000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300000000000085000000ad000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = getpid()
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000005c0)={r1, 0xffffffffffffffff, 0x30, 0x0, @val=@uprobe_multi={&(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, r2}}, 0x40)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[@ANYBLOB="20000000020000001d"], 0x0)

177.425077ms ago: executing program 2 (id=4192):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="9feb01001800000000000010340000003400000005000000040000000000000ef7ff000000000000030000000000000800000000000000000000000204000000000000000000000a020000000000003000e6937861900d45c2b80b9f38c5348976b68c78aff0847fb7256d9d7ed4950e2385a811a9b87ca828c51fbfc796aed1fd57b2cfa8b7447fc09f6fd9b9482ffe3b8c1af5d3ff5edb2a3ed5d4b42d1cb189a7181546545994c4280eb60b8e43b24a7645fbc374ea3545039fef12382dab7d67bc23e545200b559acd2508d5204537e2bbb41961f4a37a"], 0x0, 0x51}, 0x20)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000180)=0x400000)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = creat(&(0x7f0000000300)='./bus\x00', 0x8)
r5 = socket(0x28, 0x5, 0x0)
r6 = syz_io_uring_setup(0x83f, &(0x7f0000000000)={0x0, 0x9f47}, &(0x7f0000000080), &(0x7f00000000c0))
io_uring_register$IORING_REGISTER_BUFFERS2(r6, 0xf, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)=""/31, 0x1f}], 0x0}, 0x20)
io_uring_register$IORING_REGISTER_BUFFERS2(r6, 0xf, &(0x7f0000000ac0)={0x1, 0x0, 0x0, &(0x7f0000000a40)=[{0x0}], 0x0}, 0x20)
r7 = socket(0x28, 0x5, 0x0)
listen(r7, 0x0)
connect$vsock_stream(r5, &(0x7f0000000080), 0x10)
sendmmsg(r5, &(0x7f0000000100)=[{{0x0, 0x3, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x8080)
r8 = accept4$unix(r7, 0x0, 0x0, 0x0)
recvfrom$unix(r8, &(0x7f00000002c0)=""/241, 0x1ffd4, 0x2, 0x0, 0x0)
close(r4)
open(&(0x7f0000000000)='./bus\x00', 0x16d43e, 0x8b)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1d, 0xe, &(0x7f0000000240)=ANY=[@ANYRESHEX=0x0, @ANYRESHEX, @ANYRES64=r1, @ANYRES16=r2], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x2e, 0x0, 0x41100, 0x41, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r9, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000380)="b9ff03086844268cb89e0ef086dd", 0x0, 0x0, 0x60000000, 0x0, 0xe2, 0x0, &(0x7f0000000040)="a4"}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00'}, 0x10)
io_uring_setup(0x1de0, &(0x7f0000000440))
r10 = openat$cgroup_ro(r9, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r10, &(0x7f00000003c0), 0xfea7)
r11 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r13=>0x0})
sendmsg$nl_route(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5000000010000100"/20, @ANYRES32=r13, @ANYBLOB="0000000000000000300012800b00010065727370616e00002000028004001200050016"], 0x50}}, 0x0)

153.767918ms ago: executing program 3 (id=4193):
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x5, 0x2, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='mm_page_alloc\x00', r4}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r5=>0x0})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
getpeername$packet(r6, 0x0, &(0x7f00000006c0))
sendmsg$BATADV_CMD_SET_HARDIF(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)={0x24, r2, 0x201, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x24}}, 0x0)

98.489523ms ago: executing program 2 (id=4194):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

97.677673ms ago: executing program 2 (id=4195):
pipe(&(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000380)={0xa, 0x14e24}, 0x1c)
connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000680)="ac9e0e521e42a5de6b4140c422f1a74852a3c7553589bd551423c2eb529fcad406c672ab8a2fc87fe343c66a83e0e2940241caec01", 0x35}, {&(0x7f00000000c0)="9b8b0a3d30e44e25", 0x8}, {&(0x7f00000001c0)='@', 0x1}], 0x3}}], 0x1, 0xc8000)
sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0)
splice(r1, 0x0, r0, 0x0, 0x45, 0x0)

69.200355ms ago: executing program 4 (id=4196):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c00}, 0x0)

68.751365ms ago: executing program 4 (id=4197):
r0 = creat(&(0x7f0000000340)='./file0\x00', 0x0)
close(r0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x7, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480), 0xd}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, r0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000200)={[{@inlinecrypt}, {@nodelalloc}]}, 0x1, 0x4d2, &(0x7f0000001100)="$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")
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xa, 0x4, 0x3, 0x8}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_int(r3, 0x0, 0x13, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, 0x0, 0x0)
sendmsg$inet(r3, 0x0, 0x4048000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xe, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="6d589471dc1360258f0efae41fabd28fce6d8068e6467a4f7cdb492795d5b14fd96ce3d522e6bb39be9584701e91f4f98317e80ad1301498ba0a3ab195735b41c28e9b3d7a84671a2efec75ff6993d86519bf42d524031f3c266b2e02c5fc1392df41ae1f17af658608f7cb1fe83dc484121a35db369dfd3e047af191a1a93b16954eaea7f2cdf0f2af723affc25a976a1c35b8775aed139053b7cf746b6aec864979b92519fa6605e203c865cec2103d81e05fbab28e9ccea92f42db68927571a7afc3dd3313e52c8bf706301b2e769ad4accf3f423b924df59bad156bd409c330ed9bd1df46fd29f6461d1ca92a38e144c8805275ecfcad2598cd0458a", @ANYRESHEX=r1, @ANYRESDEC=0x0, @ANYRES16=r1, @ANYRESHEX, @ANYRESOCT=r2], &(0x7f00000001c0)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x2b}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmmsg(r5, &(0x7f00000000c0), 0x0, 0x10000, 0x0)
getrlimit(0x4, &(0x7f0000000180))
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sigaltstack(0x0, 0x0)
write$tcp_mem(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x2d, 0x6, 0x3a, 0xfffffffffffffffa, 0x2c}, 0x48)

62.771325ms ago: executing program 3 (id=4198):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c00}, 0x0)

2.30233ms ago: executing program 0 (id=4199):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001c0081044e81f782db44b9040a1d08030e000000e8fea4a1180015000600142603600e1208000f1000810401a80016000a0001", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, 0x0}, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a5c000000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000300004802c"], 0x84}}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r1, 0x0)
ftruncate(r1, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
getpid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r4 = epoll_create1(0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000140)={0x10000004})
set_mempolicy(0x8001, &(0x7f0000000040)=0x7ff5, 0x80)
mlockall(0x1)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab070004000523"], 0xfe33)

0s ago: executing program 3 (id=4200):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0xe, &(0x7f0000000140)={[{@dioread_lock}, {@data_journal}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@stripe={'stripe', 0x3d, 0x4}}, {@block_validity}, {@block_validity}]}, 0x3, 0x43b, &(0x7f0000000e00)="$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")
r0 = open_tree(0xffffffffffffff9c, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
renameat2(r0, &(0x7f0000000280)='./file1\x00', r0, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

kernel console output (not intermixed with test programs):

 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.740996][T17100] RSP: 002b:00007fc08df37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  360.749413][T17100] RAX: ffffffffffffffda RBX: 00007fc08f455f80 RCX: 00007fc08f2b9eb9
[  360.757405][T17100] RDX: 0000000000000090 RSI: 00000000200007c0 RDI: 0000000000000005
[  360.765432][T17100] RBP: 00007fc08df37090 R08: 0000000000000000 R09: 0000000000000000
[  360.773411][T17100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.781383][T17100] R13: 0000000000000000 R14: 00007fc08f455f80 R15: 00007ffc0a9d4de8
[  360.789364][T17100]  </TASK>
[  360.794810][T17057] EXT4-fs error (device loop0): ext4_wait_block_bitmap:584: comm ext4lazyinit: Cannot read block bitmap - block_group = 0, block_bitmap = 2
[  360.810022][T17057] EXT4-fs (loop0): I/O error while writing superblock
[  360.818338][ T5098] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.829456][T17086] FAULT_INJECTION: forcing a failure.
[  360.829456][T17086] name failslab, interval 1, probability 0, space 0, times 0
[  360.842137][T17086] CPU: 0 UID: 0 PID: 17086 Comm: syz.4.3792 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  360.851012][T17101] loop2: detected capacity change from 0 to 512
[  360.852997][T17086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  360.853011][T17086] Call Trace:
[  360.853018][T17086]  <TASK>
[  360.853026][T17086]  dump_stack_lvl+0xf2/0x150
[  360.859881][T17101] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  360.869274][T17086]  dump_stack+0x15/0x20
[  360.869301][T17086]  should_fail_ex+0x229/0x230
[  360.873668][T17101] EXT4-fs (loop2): 1 truncate cleaned up
[  360.875479][T17086]  ? fat_alloc_inode+0x38/0xc0
[  360.875504][T17086]  should_failslab+0x8f/0xb0
[  360.880431][T17101] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  360.889908][T17086]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[  360.931347][T17086]  fat_alloc_inode+0x38/0xc0
[  360.935926][T17086]  ? __pfx_fat_alloc_inode+0x10/0x10
[  360.941204][T17086]  alloc_inode+0x3c/0x160
[  360.945568][T17086]  new_inode+0x1e/0x100
[  360.949708][T17086]  fat_build_inode+0x156/0x280
[  360.954465][T17086]  vfat_lookup+0x191/0x2d0
[  360.958868][T17086]  __lookup_slow+0x184/0x250
[  360.963478][T17086]  lookup_slow+0x3c/0x60
[  360.967703][T17086]  walk_component+0x1f5/0x230
[  360.972432][T17086]  ? path_lookupat+0xfd/0x2b0
[  360.977142][T17086]  path_lookupat+0x10a/0x2b0
[  360.981811][T17086]  filename_lookup+0x127/0x300
[  360.986563][T17086]  user_path_at+0x3c/0x110
[  360.991040][T17086]  __se_sys_mount+0x248/0x2d0
[  360.995813][T17086]  __x64_sys_mount+0x67/0x80
[  361.000393][T17086]  x64_sys_call+0x203e/0x2d60
[  361.005111][T17086]  do_syscall_64+0xc9/0x1c0
[  361.009596][T17086]  ? clear_bhb_loop+0x55/0xb0
[  361.014256][T17086]  ? clear_bhb_loop+0x55/0xb0
[  361.019050][T17086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.024937][T17086] RIP: 0033:0x7f9fa01a9eb9
[  361.029337][T17086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.048955][T17086] RSP: 002b:00007f9f9ee27038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  361.057348][T17086] RAX: ffffffffffffffda RBX: 00007f9fa0345f80 RCX: 00007f9fa01a9eb9
[  361.065300][T17086] RDX: 0000000020000180 RSI: 0000000020000000 RDI: 0000000000000000
[  361.073253][T17086] RBP: 00007f9f9ee27090 R08: 0000000020001480 R09: 0000000000000000
[  361.081234][T17086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  361.089208][T17086] R13: 0000000000000000 R14: 00007f9fa0345f80 R15: 00007ffc037f52a8
[  361.097245][T17086]  </TASK>
[  361.110583][T16670] EXT4-fs error (device loop0): ext4_get_inode_loc:4574: inode #2: block 4: comm syz-executor: unable to read itable block
[  361.124985][T16670] EXT4-fs (loop0): I/O error while writing superblock
[  361.131762][T16670] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5810: IO failure
[  361.141508][T16670] EXT4-fs (loop0): I/O error while writing superblock
[  361.148443][T16670] EXT4-fs error (device loop0): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[  361.168003][ T5098] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.177335][T16670] EXT4-fs (loop0): I/O error while writing superblock
[  361.186142][T16631] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.208092][  T941] EXT4-fs error (device loop0): __ext4_get_inode_loc_noinmem:4559: inode #2: block 4: comm kworker/u8:4: unable to read itable block
[  361.223500][T17112] loop3: detected capacity change from 0 to 128
[  361.234129][T17117] loop2: detected capacity change from 0 to 764
[  361.241281][  T941] EXT4-fs (loop0): I/O error while writing superblock
[  361.242754][ T5098] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.258800][T17117] rock: directory entry would overflow storage
[  361.268029][T17117] rock: sig=0x4654, size=5, remaining=4
[  361.274250][T17112] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  361.289501][T17112] ext4 filesystem being mounted at /52/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  361.306939][T17117] rock: directory entry would overflow storage
[  361.313168][T17117] rock: sig=0x4f50, size=4, remaining=3
[  361.318774][T17117] iso9660: Corrupted directory entry in block 4 of inode 1792
[  361.350922][ T5098] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.410679][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  361.467833][T17090] chnl_net:caif_netlink_parms(): no params data found
[  361.482328][T16321] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  361.672869][ T5098] bridge_slave_1: left allmulticast mode
[  361.678585][ T5098] bridge_slave_1: left promiscuous mode
[  361.684280][ T5098] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.236859][ T5098] bridge_slave_0: left allmulticast mode
[  362.242617][ T5098] bridge_slave_0: left promiscuous mode
[  362.248355][ T5098] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.357553][ T5098] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  362.369281][ T5098] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  362.379775][ T5098] bond0 (unregistering): Released all slaves
[  362.394082][T17145] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=17145 comm=syz.3.3809
[  362.427728][T17150] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3811'.
[  362.436770][T17150] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  362.444237][T17150] batman_adv: batadv0: Removing interface: batadv_slave_0
[  362.451726][T17150] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  362.459191][T17150] batman_adv: batadv0: Removing interface: batadv_slave_1
[  362.486729][T17090] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.493830][T17090] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.501194][T17090] bridge_slave_0: entered allmulticast mode
[  362.514638][T17090] bridge_slave_0: entered promiscuous mode
[  362.523837][ T5098] hsr_slave_0: left promiscuous mode
[  362.529104][T17158] loop4: detected capacity change from 0 to 764
[  362.535452][ T5098] hsr_slave_1: left promiscuous mode
[  362.540934][T17158] rock: directory entry would overflow storage
[  362.547661][T17158] rock: sig=0x4654, size=5, remaining=4
[  362.554001][ T5098] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  362.561440][ T5098] batman_adv: batadv0: Removing interface: batadv_slave_0
[  362.569189][ T5098] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  362.571100][T17158] rock: directory entry would overflow storage
[  362.576800][ T5098] batman_adv: batadv0: Removing interface: batadv_slave_1
[  362.582731][T17158] rock: sig=0x4f50, size=4, remaining=3
[  362.595439][T17158] iso9660: Corrupted directory entry in block 4 of inode 1792
[  362.607049][ T5098] veth1_macvtap: left promiscuous mode
[  362.612587][ T5098] veth0_macvtap: left promiscuous mode
[  362.618160][ T5098] veth1_vlan: left promiscuous mode
[  362.623435][ T5098] veth0_vlan: left promiscuous mode
[  362.637532][T17164] loop4: detected capacity change from 0 to 256
[  362.649674][T17164] FAT-fs (loop4): Directory bread(block 64) failed
[  362.656938][T17164] FAT-fs (loop4): Directory bread(block 65) failed
[  362.663509][T17164] FAT-fs (loop4): Directory bread(block 66) failed
[  362.670194][T17164] FAT-fs (loop4): Directory bread(block 67) failed
[  362.676747][T17164] FAT-fs (loop4): Directory bread(block 68) failed
[  362.683337][T17164] FAT-fs (loop4): Directory bread(block 69) failed
[  362.689929][T17164] FAT-fs (loop4): Directory bread(block 70) failed
[  362.696485][T17164] FAT-fs (loop4): Directory bread(block 71) failed
[  362.703069][T17164] FAT-fs (loop4): Directory bread(block 72) failed
[  362.709598][T17164] FAT-fs (loop4): Directory bread(block 73) failed
[  362.739621][T17164] 9pnet: Could not find request transport: f0xffffffffffffffff
[  362.748741][ T5098] team0 (unregistering): Port device team_slave_1 removed
[  362.759754][ T5098] team0 (unregistering): Port device team_slave_0 removed
[  362.800168][T17090] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.807339][T17090] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.815095][T17170] loop4: detected capacity change from 0 to 512
[  362.816065][T17090] bridge_slave_1: entered allmulticast mode
[  362.821584][T17170] EXT4-fs: inline encryption not supported
[  362.828043][T17090] bridge_slave_1: entered promiscuous mode
[  362.845586][T17170] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  362.860553][T17170] EXT4-fs (loop4): mount failed
[  362.869324][T17090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  362.881411][T17090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  362.908762][T17090] team0: Port device team_slave_0 added
[  362.915508][T17090] team0: Port device team_slave_1 added
[  362.927375][T17181] FAULT_INJECTION: forcing a failure.
[  362.927375][T17181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  362.935790][T17175] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  362.940530][T17181] CPU: 1 UID: 0 PID: 17181 Comm: syz.4.3821 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  362.958451][T17181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  362.968566][T17181] Call Trace:
[  362.971931][T17181]  <TASK>
[  362.974845][T17181]  dump_stack_lvl+0xf2/0x150
[  362.979494][T17181]  dump_stack+0x15/0x20
[  362.983671][T17181]  should_fail_ex+0x229/0x230
[  362.988334][T17181]  should_fail+0xb/0x10
[  362.992533][T17181]  should_fail_usercopy+0x1a/0x20
[  362.997544][T17181]  _copy_to_user+0x1e/0xa0
[  363.002007][T17181]  simple_read_from_buffer+0xa0/0x110
[  363.007424][T17181]  proc_fail_nth_read+0xff/0x140
[  363.012343][T17181]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.017867][T17181]  vfs_read+0x1a2/0x6e0
[  363.022006][T17181]  ? __rcu_read_unlock+0x4e/0x70
[  363.026997][T17181]  ? __fget_files+0x1da/0x210
[  363.031873][T17181]  ksys_read+0xeb/0x1b0
[  363.036019][T17181]  __x64_sys_read+0x42/0x50
[  363.040579][T17181]  x64_sys_call+0x27d3/0x2d60
[  363.045240][T17181]  do_syscall_64+0xc9/0x1c0
[  363.049764][T17181]  ? clear_bhb_loop+0x55/0xb0
[  363.054497][T17181]  ? clear_bhb_loop+0x55/0xb0
[  363.059232][T17181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.065161][T17181] RIP: 0033:0x7f9fa01a88fc
[  363.069558][T17181] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  363.089200][T17181] RSP: 002b:00007f9f9ee27030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  363.097710][T17181] RAX: ffffffffffffffda RBX: 00007f9fa0345f80 RCX: 00007f9fa01a88fc
[  363.105671][T17181] RDX: 000000000000000f RSI: 00007f9f9ee270a0 RDI: 0000000000000005
[  363.113636][T17181] RBP: 00007f9f9ee27090 R08: 0000000000000000 R09: 0000000000000000
[  363.121590][T17181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.129564][T17181] R13: 0000000000000000 R14: 00007f9fa0345f80 R15: 00007ffc037f52a8
[  363.137526][T17181]  </TASK>
[  363.154921][T17090] batman_adv: batadv0: Adding interface: batadv_slave_0
[  363.162036][T17090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  363.188968][T17090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  363.202787][T17187] FAULT_INJECTION: forcing a failure.
[  363.202787][T17187] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.204795][T17186] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3824'.
[  363.215906][T17187] CPU: 1 UID: 0 PID: 17187 Comm: syz.3.3823 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  363.235644][T17187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  363.245690][T17187] Call Trace:
[  363.249004][T17187]  <TASK>
[  363.251990][T17187]  dump_stack_lvl+0xf2/0x150
[  363.256581][T17187]  dump_stack+0x15/0x20
[  363.260738][T17187]  should_fail_ex+0x229/0x230
[  363.265408][T17187]  should_fail+0xb/0x10
[  363.269617][T17187]  should_fail_usercopy+0x1a/0x20
[  363.274637][T17187]  _copy_to_user+0x1e/0xa0
[  363.279094][T17187]  simple_read_from_buffer+0xa0/0x110
[  363.284460][T17187]  proc_fail_nth_read+0xff/0x140
[  363.289432][T17187]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  363.294969][T17187]  vfs_read+0x1a2/0x6e0
[  363.299158][T17187]  ? __rcu_read_unlock+0x4e/0x70
[  363.304113][T17187]  ? __fget_files+0x1da/0x210
[  363.308835][T17187]  ksys_read+0xeb/0x1b0
[  363.313011][T17187]  __x64_sys_read+0x42/0x50
[  363.317509][T17187]  x64_sys_call+0x27d3/0x2d60
[  363.322194][T17187]  do_syscall_64+0xc9/0x1c0
[  363.326753][T17187]  ? clear_bhb_loop+0x55/0xb0
[  363.331517][T17187]  ? clear_bhb_loop+0x55/0xb0
[  363.336225][T17187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.342121][T17187] RIP: 0033:0x7fc08f2b88fc
[  363.346546][T17187] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  363.366147][T17187] RSP: 002b:00007fc08df37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  363.374550][T17187] RAX: ffffffffffffffda RBX: 00007fc08f455f80 RCX: 00007fc08f2b88fc
[  363.382509][T17187] RDX: 000000000000000f RSI: 00007fc08df370a0 RDI: 0000000000000005
[  363.390472][T17187] RBP: 00007fc08df37090 R08: 0000000000000000 R09: 0000000000000000
[  363.398469][T17187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.406431][T17187] R13: 0000000000000000 R14: 00007fc08f455f80 R15: 00007ffc0a9d4de8
[  363.414400][T17187]  </TASK>
[  363.422686][T17090] batman_adv: batadv0: Adding interface: batadv_slave_1
[  363.429783][T17090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  363.455784][T17090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  363.462807][T17190] loop3: detected capacity change from 0 to 128
[  363.477968][T17190] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  363.490299][T17190] ext4 filesystem being mounted at /59/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  363.502147][T17090] hsr_slave_0: entered promiscuous mode
[  363.508683][T17090] hsr_slave_1: entered promiscuous mode
[  363.515815][T17090] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  363.523456][T17090] Cannot create hsr debugfs directory
[  363.648234][T16321] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  363.725308][T17206] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17206 comm=syz.3.3830
[  363.755941][T17209] 9pnet_fd: Insufficient options for proto=fd
[  363.811383][T17213] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  363.876720][T17219] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3835'.
[  363.890620][   T29] kauditd_printk_skb: 615 callbacks suppressed
[  363.890635][   T29] audit: type=1326 audit(1725309977.630:9847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17220 comm="syz.2.3836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  363.908919][T17223] loop2: detected capacity change from 0 to 128
[  363.920440][   T29] audit: type=1326 audit(1725309977.630:9848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17220 comm="syz.2.3836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  363.930386][T17223] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  363.950061][   T29] audit: type=1326 audit(1725309977.630:9849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17220 comm="syz.2.3836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  363.986151][T17223] ext4 filesystem being mounted at /19/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  364.001832][   T29] audit: type=1326 audit(1725309977.740:9850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.2.3837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  364.008089][T17090] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  364.025405][   T29] audit: type=1326 audit(1725309977.740:9851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.2.3837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  364.055616][   T29] audit: type=1326 audit(1725309977.740:9852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.2.3837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  364.079233][   T29] audit: type=1326 audit(1725309977.740:9853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.2.3837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  364.102741][   T29] audit: type=1326 audit(1725309977.740:9854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.2.3837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  364.126276][   T29] audit: type=1326 audit(1725309977.740:9855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.2.3837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  364.149815][   T29] audit: type=1326 audit(1725309977.740:9856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17222 comm="syz.2.3837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  364.177832][T17090] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  364.200614][T17090] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  364.231264][T17090] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  364.286248][T17234] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17234 comm=syz.4.3840
[  364.331178][T17090] 8021q: adding VLAN 0 to HW filter on device bond0
[  364.353906][T17090] 8021q: adding VLAN 0 to HW filter on device team0
[  364.364447][ T5098] bridge0: port 1(bridge_slave_0) entered blocking state
[  364.371620][ T5098] bridge0: port 1(bridge_slave_0) entered forwarding state
[  364.391554][T17090] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  364.402195][T17090] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  364.414968][ T5098] bridge0: port 2(bridge_slave_1) entered blocking state
[  364.422130][ T5098] bridge0: port 2(bridge_slave_1) entered forwarding state
[  364.502410][T17090] 8021q: adding VLAN 0 to HW filter on device batadv0
[  364.521725][T17250] loop4: detected capacity change from 0 to 256
[  364.602943][T17090] veth0_vlan: entered promiscuous mode
[  364.611791][T17090] veth1_vlan: entered promiscuous mode
[  364.630003][T17090] veth0_macvtap: entered promiscuous mode
[  364.637696][T17090] veth1_macvtap: entered promiscuous mode
[  364.646451][T17265] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3849'.
[  364.663044][T17090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.673754][T17090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.683604][T17090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.694059][T17090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.703952][T17090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.714443][T17090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.724286][T17090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  364.734741][T17090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.746284][T17090] batman_adv: batadv0: Interface activated: batadv_slave_0
[  364.756862][T17090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.767490][T17090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.777296][T17090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.787783][T17090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.797602][T17090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.808052][T17090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.817894][T17090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.828322][T17090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.838161][T17090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  364.848656][T17090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  364.859936][T17090] batman_adv: batadv0: Interface activated: batadv_slave_1
[  364.869949][T17090] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  364.878767][T17090] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  364.887556][T17090] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  364.891791][T17267] loop4: detected capacity change from 0 to 512
[  364.896270][T17090] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  364.912083][T17267] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  364.927215][T17267] EXT4-fs (loop4): 1 truncate cleaned up
[  364.939229][  T941] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.969676][T17272] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17272 comm=syz.4.3853
[  364.997688][  T941] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.028964][T17282] ebt_among: src integrity fail: 100
[  365.037955][  T941] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.088267][  T941] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.117784][T17297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17297 comm=syz.1.3859
[  365.165856][T17303] loop1: detected capacity change from 0 to 512
[  365.174117][T17303] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  365.186521][T17306] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17306 comm=syz.4.3863
[  365.196231][T17273] chnl_net:caif_netlink_parms(): no params data found
[  365.207370][T17303] EXT4-fs (loop1): 1 truncate cleaned up
[  365.256654][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.264098][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.271574][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.279067][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.286519][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.293992][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.296089][T17315] loop1: detected capacity change from 0 to 256
[  365.301417][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.315084][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.322622][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.330202][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.337707][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.345200][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.352615][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.360038][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.367485][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.374955][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.382393][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.389569][T17327] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17327 comm=syz.2.3870
[  365.389793][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.409579][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.417058][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.424505][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.431896][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.439305][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.446735][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.454119][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.461551][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.469131][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.476517][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.483872][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.491377][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.498751][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.506217][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.513641][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.521088][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.528465][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.535869][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.543226][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.550626][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.558079][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.565478][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.572891][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.580308][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.587742][ T3339] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  365.596362][T17273] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.603446][T17273] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.611990][ T3339] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  365.621997][T17273] bridge_slave_0: entered allmulticast mode
[  365.629763][T17273] bridge_slave_0: entered promiscuous mode
[  365.642589][T17336] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3873'.
[  365.649659][T17340] loop1: detected capacity change from 0 to 512
[  365.658619][T17340] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  365.670840][T17273] bridge0: port 2(bridge_slave_1) entered blocking state
[  365.678079][T17273] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.680338][T17343] loop2: detected capacity change from 0 to 512
[  365.686815][T17340] EXT4-fs (loop1): 1 truncate cleaned up
[  365.691657][T17343] EXT4-fs: inline encryption not supported
[  365.700506][T17273] bridge_slave_1: entered allmulticast mode
[  365.719102][T17273] bridge_slave_1: entered promiscuous mode
[  365.730441][  T941] bridge_slave_1: left allmulticast mode
[  365.736152][  T941] bridge_slave_1: left promiscuous mode
[  365.741772][  T941] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.752649][T17343] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  365.755277][T17350] loop3: detected capacity change from 0 to 764
[  365.769635][T17343] EXT4-fs (loop2): mount failed
[  365.778713][  T941] bridge_slave_0: left allmulticast mode
[  365.779152][T17350] rock: directory entry would overflow storage
[  365.784490][  T941] bridge_slave_0: left promiscuous mode
[  365.790617][T17350] rock: sig=0x4654, size=5, remaining=4
[  365.796470][  T941] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.811854][T17350] rock: directory entry would overflow storage
[  365.818111][T17350] rock: sig=0x4f50, size=4, remaining=3
[  365.823674][T17350] iso9660: Corrupted directory entry in block 4 of inode 1792
[  365.846365][T17355] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17355 comm=syz.2.3880
[  365.903902][T17361] loop3: detected capacity change from 0 to 764
[  365.911071][T17361] rock: directory entry would overflow storage
[  365.917308][T17361] rock: sig=0x4654, size=5, remaining=4
[  365.925235][T17361] rock: directory entry would overflow storage
[  365.931408][T17361] rock: sig=0x4f50, size=4, remaining=3
[  365.937028][T17361] iso9660: Corrupted directory entry in block 4 of inode 1792
[  365.947295][  T941] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  365.958933][  T941] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  365.968689][T17364] loop3: detected capacity change from 0 to 1024
[  365.969804][  T941] bond0 (unregistering): Released all slaves
[  365.991233][T17359] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3882'.
[  366.021341][T17273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  366.035850][T17273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.079994][T17273] team0: Port device team_slave_0 added
[  366.093221][T17273] team0: Port device team_slave_1 added
[  366.117623][T17369] FAULT_INJECTION: forcing a failure.
[  366.117623][T17369] name failslab, interval 1, probability 0, space 0, times 0
[  366.130319][T17369] CPU: 1 UID: 0 PID: 17369 Comm: syz.2.3885 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  366.141205][T17369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  366.151306][T17369] Call Trace:
[  366.154619][T17369]  <TASK>
[  366.157568][T17369]  dump_stack_lvl+0xf2/0x150
[  366.162172][T17369]  dump_stack+0x15/0x20
[  366.166334][T17369]  should_fail_ex+0x229/0x230
[  366.171009][T17369]  ? audit_log_d_path+0x96/0x250
[  366.175940][T17369]  should_failslab+0x8f/0xb0
[  366.180543][T17369]  __kmalloc_cache_noprof+0x4b/0x2a0
[  366.185897][T17369]  audit_log_d_path+0x96/0x250
[  366.190654][T17369]  ? get_file_rcu+0xf4/0x110
[  366.195237][T17369]  ? __rcu_read_unlock+0x4e/0x70
[  366.200242][T17369]  audit_log_d_path_exe+0x45/0x80
[  366.205294][T17369]  audit_log_task+0x155/0x180
[  366.209965][T17369]  audit_seccomp+0x68/0x130
[  366.214459][T17369]  __seccomp_filter+0x6fa/0x1180
[  366.219409][T17369]  ? proc_fail_nth_write+0x130/0x160
[  366.224752][T17369]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  366.230399][T17369]  ? vfs_write+0x5a5/0x900
[  366.234845][T17369]  __secure_computing+0x9f/0x1c0
[  366.239828][T17369]  syscall_trace_enter+0xd1/0x1f0
[  366.244947][T17369]  do_syscall_64+0xaa/0x1c0
[  366.249502][T17369]  ? clear_bhb_loop+0x55/0xb0
[  366.254167][T17369]  ? clear_bhb_loop+0x55/0xb0
[  366.258837][T17369]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.264731][T17369] RIP: 0033:0x7fa2a1f19eb9
[  366.269137][T17369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.288775][T17369] RSP: 002b:00007fa2a0b97038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  366.297184][T17369] RAX: ffffffffffffffda RBX: 00007fa2a20b5f80 RCX: 00007fa2a1f19eb9
[  366.305144][T17369] RDX: 0000000020000140 RSI: 0000000000000007 RDI: 0000000020000040
[  366.313113][T17369] RBP: 00007fa2a0b97090 R08: 0000000000000000 R09: 0000000000000000
[  366.321072][T17369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.329052][T17369] R13: 0000000000000000 R14: 00007fa2a20b5f80 R15: 00007ffeee55d0b8
[  366.337023][T17369]  </TASK>
[  366.347776][T17273] batman_adv: batadv0: Adding interface: batadv_slave_0
[  366.354785][T17273] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  366.380687][T17273] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  366.411346][T17273] batman_adv: batadv0: Adding interface: batadv_slave_1
[  366.418366][T17273] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  366.444307][T17273] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  366.458541][T17376] loop3: detected capacity change from 0 to 512
[  366.465372][T17372] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3886'.
[  366.474471][T17376] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  366.497848][  T941] hsr_slave_0: left promiscuous mode
[  366.498181][T17376] EXT4-fs (loop3): 1 truncate cleaned up
[  366.509788][  T941] hsr_slave_1: left promiscuous mode
[  366.511139][T17379] loop2: detected capacity change from 0 to 256
[  366.521824][  T941] batman_adv: batadv0: Removing interface: batadv_slave_0
[  366.523709][T17381] loop4: detected capacity change from 0 to 764
[  366.536003][  T941] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  366.537238][T17379] FAULT_INJECTION: forcing a failure.
[  366.537238][T17379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.543411][  T941] batman_adv: batadv0: Removing interface: batadv_slave_1
[  366.556446][T17379] CPU: 1 UID: 0 PID: 17379 Comm: syz.2.3889 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  366.574246][T17379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  366.574261][T17379] Call Trace:
[  366.574268][T17379]  <TASK>
[  366.574276][T17379]  dump_stack_lvl+0xf2/0x150
[  366.574303][T17379]  dump_stack+0x15/0x20
[  366.599485][T17379]  should_fail_ex+0x229/0x230
[  366.604160][T17379]  should_fail+0xb/0x10
[  366.608379][T17379]  should_fail_usercopy+0x1a/0x20
[  366.613468][T17379]  _copy_from_user+0x1e/0xd0
[  366.618050][T17379]  copy_msghdr_from_user+0x54/0x2a0
[  366.623251][T17379]  __sys_sendmsg+0x17d/0x280
[  366.627932][T17379]  ? native_tss_update_io_bitmap+0x17b/0x200
[  366.633909][T17379]  __x64_sys_sendmsg+0x46/0x50
[  366.638815][T17379]  x64_sys_call+0x2689/0x2d60
[  366.643485][T17379]  do_syscall_64+0xc9/0x1c0
[  366.648016][T17379]  ? clear_bhb_loop+0x55/0xb0
[  366.652685][T17379]  ? clear_bhb_loop+0x55/0xb0
[  366.657369][T17379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.663299][T17379] RIP: 0033:0x7fa2a1f19eb9
[  366.667707][T17379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.687315][T17379] RSP: 002b:00007fa2a0b97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  366.695715][T17379] RAX: ffffffffffffffda RBX: 00007fa2a20b5f80 RCX: 00007fa2a1f19eb9
[  366.703680][T17379] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000007
[  366.711643][T17379] RBP: 00007fa2a0b97090 R08: 0000000000000000 R09: 0000000000000000
[  366.719605][T17379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.727645][T17379] R13: 0000000000000000 R14: 00007fa2a20b5f80 R15: 00007ffeee55d0b8
[  366.735690][T17379]  </TASK>
[  366.746634][T17381] rock: directory entry would overflow storage
[  366.752827][T17381] rock: sig=0x4654, size=5, remaining=4
[  366.758675][  T941] veth1_macvtap: left promiscuous mode
[  366.764209][  T941] veth0_macvtap: left promiscuous mode
[  366.769724][  T941] veth1_vlan: left promiscuous mode
[  366.774475][T17384] loop1: detected capacity change from 0 to 256
[  366.775033][  T941] veth0_vlan: left promiscuous mode
[  366.801843][T17381] rock: directory entry would overflow storage
[  366.808106][T17381] rock: sig=0x4f50, size=4, remaining=3
[  366.813689][T17381] iso9660: Corrupted directory entry in block 4 of inode 1792
[  366.896535][  T941] team0 (unregistering): Port device team_slave_1 removed
[  366.908583][  T941] team0 (unregistering): Port device team_slave_0 removed
[  366.953020][T17391] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3893'.
[  366.967693][T17395] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3894'.
[  367.010293][T17273] hsr_slave_0: entered promiscuous mode
[  367.018856][T17273] hsr_slave_1: entered promiscuous mode
[  367.038171][T17273] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  367.045844][T17273] Cannot create hsr debugfs directory
[  367.087366][T17427] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  367.202139][T17451] pim6reg1: entered promiscuous mode
[  367.207568][T17451] pim6reg1: entered allmulticast mode
[  367.327943][T17474] loop4: detected capacity change from 0 to 1024
[  367.335292][T17474] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  367.345391][T17474] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  367.355295][T17474] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  367.366411][T17474] EXT4-fs error (device loop4): ext4_get_journal_inode:5740: inode #5: comm syz.4.3901: unexpected bad inode w/o EXT4_IGET_BAD
[  367.379888][T17474] EXT4-fs (loop4): no journal found
[  367.385139][T17474] EXT4-fs (loop4): can't get journal size
[  367.430347][T17492] loop4: detected capacity change from 0 to 764
[  367.446427][T17492] rock: directory entry would overflow storage
[  367.452701][T17492] rock: sig=0x4654, size=5, remaining=4
[  367.470839][T17273] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  367.488930][T17492] rock: directory entry would overflow storage
[  367.495174][T17492] rock: sig=0x4f50, size=4, remaining=3
[  367.500821][T17492] iso9660: Corrupted directory entry in block 4 of inode 1792
[  367.510529][T17273] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  367.519856][T17273] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  367.541291][T17273] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  367.563422][T17504] loop3: detected capacity change from 0 to 256
[  367.595577][T17518] FAULT_INJECTION: forcing a failure.
[  367.595577][T17518] name failslab, interval 1, probability 0, space 0, times 0
[  367.608365][T17518] CPU: 0 UID: 0 PID: 17518 Comm: syz.3.3907 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  367.619167][T17518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  367.629233][T17518] Call Trace:
[  367.632511][T17518]  <TASK>
[  367.635468][T17518]  dump_stack_lvl+0xf2/0x150
[  367.640078][T17518]  dump_stack+0x15/0x20
[  367.644243][T17518]  should_fail_ex+0x229/0x230
[  367.648989][T17518]  ? __d_alloc+0x3d/0x340
[  367.653322][T17518]  should_failslab+0x8f/0xb0
[  367.658095][T17518]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[  367.663855][T17518]  __d_alloc+0x3d/0x340
[  367.668097][T17518]  d_alloc_pseudo+0x1e/0x80
[  367.672679][T17518]  alloc_file_pseudo+0x70/0x140
[  367.677567][T17518]  __shmem_file_setup+0x1bb/0x1f0
[  367.682660][T17518]  shmem_file_setup+0x3b/0x50
[  367.687456][T17518]  __se_sys_memfd_create+0x31d/0x600
[  367.692752][T17518]  __x64_sys_memfd_create+0x31/0x40
[  367.698059][T17518]  x64_sys_call+0x2891/0x2d60
[  367.702740][T17518]  do_syscall_64+0xc9/0x1c0
[  367.707346][T17518]  ? clear_bhb_loop+0x55/0xb0
[  367.712031][T17518]  ? clear_bhb_loop+0x55/0xb0
[  367.716720][T17518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.722655][T17518] RIP: 0033:0x7fc08f2b9eb9
[  367.727134][T17518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.746760][T17518] RSP: 002b:00007fc08df36e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  367.755263][T17518] RAX: ffffffffffffffda RBX: 000000000000052a RCX: 00007fc08f2b9eb9
[  367.763240][T17518] RDX: 00007fc08df36ef0 RSI: 0000000000000000 RDI: 00007fc08f328131
[  367.771219][T17518] RBP: 0000000020000640 R08: 00007fc08df36bb7 R09: 00007fc08df36e40
[  367.779178][T17518] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000500
[  367.787137][T17518] R13: 00007fc08df36ef0 R14: 00007fc08df36eb0 R15: 00000000200001c0
[  367.795144][T17518]  </TASK>
[  367.812047][T17547] loop4: detected capacity change from 0 to 512
[  367.821616][T17273] 8021q: adding VLAN 0 to HW filter on device bond0
[  367.833185][T17547] EXT4-fs: inline encryption not supported
[  367.840869][T17273] 8021q: adding VLAN 0 to HW filter on device team0
[  367.857512][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.864762][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  367.884390][T17547] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  367.900693][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.905331][T17547] EXT4-fs (loop4): mount failed
[  367.907853][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  367.940099][T17273] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  367.950514][T17273] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  367.956374][T17553] loop3: detected capacity change from 0 to 2048
[  368.031022][T17553] EXT4-fs mount: 13 callbacks suppressed
[  368.031039][T17553] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  368.065283][T17590] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3910'.
[  368.083664][T16321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.176253][T17601] loop1: detected capacity change from 0 to 764
[  368.196164][T17601] rock: directory entry would overflow storage
[  368.202365][T17601] rock: sig=0x4654, size=5, remaining=4
[  368.209627][T17273] 8021q: adding VLAN 0 to HW filter on device batadv0
[  368.223788][T17601] rock: directory entry would overflow storage
[  368.230033][T17601] rock: sig=0x4f50, size=4, remaining=3
[  368.235610][T17601] iso9660: Corrupted directory entry in block 4 of inode 1792
[  368.342369][T17273] veth0_vlan: entered promiscuous mode
[  368.351704][T17273] veth1_vlan: entered promiscuous mode
[  368.370409][T17273] veth0_macvtap: entered promiscuous mode
[  368.378643][T17273] veth1_macvtap: entered promiscuous mode
[  368.390235][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.400851][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.410810][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.421342][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.431189][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.441663][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.451491][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.461900][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.471725][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  368.482222][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.494062][T17273] batman_adv: batadv0: Interface activated: batadv_slave_0
[  368.502360][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.512864][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.522726][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.533249][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.543081][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.553534][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.563392][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.573817][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.583664][T17273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  368.594087][T17273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  368.605473][T17273] batman_adv: batadv0: Interface activated: batadv_slave_1
[  368.615233][T17273] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  368.623944][T17273] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  368.632822][T17273] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  368.641523][T17273] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  368.671553][T17644] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3929'.
[  368.702054][T17649] loop0: detected capacity change from 0 to 128
[  368.703220][T17647] loop3: detected capacity change from 0 to 764
[  368.712664][T17649] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  368.728214][T17647] rock: directory entry would overflow storage
[  368.728505][T17649] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  368.734528][T17647] rock: sig=0x4654, size=5, remaining=4
[  368.755183][T17647] rock: directory entry would overflow storage
[  368.761487][T17647] rock: sig=0x4f50, size=4, remaining=3
[  368.767111][T17647] iso9660: Corrupted directory entry in block 4 of inode 1792
[  368.775655][T17273] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  368.815944][T17656] FAULT_INJECTION: forcing a failure.
[  368.815944][T17656] name failslab, interval 1, probability 0, space 0, times 0
[  368.828721][T17656] CPU: 1 UID: 0 PID: 17656 Comm: syz.2.3932 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  368.839551][T17656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  368.849658][T17656] Call Trace:
[  368.852922][T17656]  <TASK>
[  368.855837][T17656]  dump_stack_lvl+0xf2/0x150
[  368.860489][T17656]  dump_stack+0x15/0x20
[  368.864633][T17656]  should_fail_ex+0x229/0x230
[  368.869328][T17656]  ? skb_clone+0x154/0x1f0
[  368.873733][T17656]  should_failslab+0x8f/0xb0
[  368.878348][T17656]  kmem_cache_alloc_noprof+0x4c/0x290
[  368.883775][T17656]  skb_clone+0x154/0x1f0
[  368.888140][T17656]  __netlink_deliver_tap+0x2bd/0x4c0
[  368.893439][T17656]  netlink_unicast+0x64a/0x670
[  368.898305][T17656]  netlink_sendmsg+0x5cc/0x6e0
[  368.903058][T17656]  ? __pfx_netlink_sendmsg+0x10/0x10
[  368.908526][T17656]  __sock_sendmsg+0x140/0x180
[  368.913240][T17656]  ____sys_sendmsg+0x312/0x410
[  368.918086][T17656]  __sys_sendmsg+0x1e9/0x280
[  368.922669][T17656]  __x64_sys_sendmsg+0x46/0x50
[  368.927443][T17656]  x64_sys_call+0x2689/0x2d60
[  368.932165][T17656]  do_syscall_64+0xc9/0x1c0
[  368.936655][T17656]  ? clear_bhb_loop+0x55/0xb0
[  368.941312][T17656]  ? clear_bhb_loop+0x55/0xb0
[  368.944464][   T29] kauditd_printk_skb: 282 callbacks suppressed
[  368.944477][   T29] audit: type=1400 audit(1725309982.690:10137): avc:  denied  { read } for  pid=17655 comm="syz.3.3933" name="ppp" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  368.945968][T17656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.954095][T17661] xt_TPROXY: Can be used only with -p tcp or -p udp
[  368.974917][T17656] RIP: 0033:0x7fa2a1f19eb9
[  368.974941][T17656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.974958][T17656] RSP: 002b:00007fa2a0b97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  369.019979][T17656] RAX: ffffffffffffffda RBX: 00007fa2a20b5f80 RCX: 00007fa2a1f19eb9
[  369.027993][T17656] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[  369.035956][T17656] RBP: 00007fa2a0b97090 R08: 0000000000000000 R09: 0000000000000000
[  369.043922][T17656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.051884][T17656] R13: 0000000000000000 R14: 00007fa2a20b5f80 R15: 00007ffeee55d0b8
[  369.059854][T17656]  </TASK>
[  369.065204][   T29] audit: type=1400 audit(1725309982.690:10138): avc:  denied  { open } for  pid=17655 comm="syz.3.3933" path="/dev/ppp" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  369.076772][T17662] 9pnet_fd: Insufficient options for proto=fd
[  369.090174][   T29] audit: type=1400 audit(1725309982.820:10139): avc:  denied  { create } for  pid=17655 comm="syz.3.3933" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  369.139419][T17657] loop3: detected capacity change from 0 to 128
[  369.160801][T17668] loop4: detected capacity change from 0 to 128
[  369.168288][   T29] audit: type=1326 audit(1725309982.870:10140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.1.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3d3f9eb9 code=0x7ffc0000
[  369.173008][T17672] loop1: detected capacity change from 0 to 1024
[  369.191857][   T29] audit: type=1326 audit(1725309982.870:10141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.1.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3d3f9eb9 code=0x7ffc0000
[  369.191888][   T29] audit: type=1326 audit(1725309982.870:10142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.1.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f5c3d3f9eb9 code=0x7ffc0000
[  369.191908][   T29] audit: type=1326 audit(1725309982.870:10143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.1.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3d3f9eb9 code=0x7ffc0000
[  369.191929][   T29] audit: type=1326 audit(1725309982.870:10144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.1.3935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c3d3f9eb9 code=0x7ffc0000
[  369.201056][T17672] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  369.221989][   T29] audit: type=1326 audit(1725309982.880:10145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17664 comm="syz.4.3936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fa01a9eb9 code=0x7ffc0000
[  369.245492][T17672] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  369.269170][   T29] audit: type=1326 audit(1725309982.880:10146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17664 comm="syz.4.3936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fa01a9eb9 code=0x7ffc0000
[  369.296974][T17672] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  369.334275][T17668] EXT4-fs (loop4): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  369.343420][T17672] EXT4-fs error (device loop1): ext4_get_journal_inode:5740: inode #5: comm syz.1.3939: unexpected bad inode w/o EXT4_IGET_BAD
[  369.392653][T17657] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  369.409811][T17672] EXT4-fs (loop1): no journal found
[  369.411970][T17683] loop0: detected capacity change from 0 to 128
[  369.415125][T17672] EXT4-fs (loop1): can't get journal size
[  369.422775][T17672] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  369.443262][T17657] ext4 filesystem being mounted at /file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  369.454264][T17683] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  369.476387][T17657] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  369.487250][T17090] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.506142][T17683] ext4 filesystem being mounted at /5/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  369.535108][T17273] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  369.615668][T17698] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  369.631140][T17697] loop1: detected capacity change from 0 to 764
[  369.640294][T17697] rock: directory entry would overflow storage
[  369.646523][T17697] rock: sig=0x4654, size=5, remaining=4
[  369.670735][T17697] rock: directory entry would overflow storage
[  369.676975][T17697] rock: sig=0x4f50, size=4, remaining=3
[  369.682534][T17697] iso9660: Corrupted directory entry in block 4 of inode 1792
[  369.770411][T17719] loop1: detected capacity change from 0 to 128
[  369.784952][T17721] loop3: detected capacity change from 0 to 512
[  369.790542][T17719] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  369.791490][T17721] EXT4-fs: inline encryption not supported
[  369.804414][T17719] ext4 filesystem being mounted at /18/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  369.831596][T17090] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  369.853527][T17721] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  369.869794][T17721] EXT4-fs (loop3): mount failed
[  369.892381][T17728] FAULT_INJECTION: forcing a failure.
[  369.892381][T17728] name failslab, interval 1, probability 0, space 0, times 0
[  369.901928][T17730] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3957'.
[  369.905365][T17728] CPU: 1 UID: 0 PID: 17728 Comm: syz.4.3952 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  369.905402][T17728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  369.905413][T17728] Call Trace:
[  369.905491][T17728]  <TASK>
[  369.941445][T17728]  dump_stack_lvl+0xf2/0x150
[  369.946043][T17728]  dump_stack+0x15/0x20
[  369.950192][T17728]  should_fail_ex+0x229/0x230
[  369.954963][T17728]  ? vm_area_dup+0x98/0x130
[  369.959521][T17728]  should_failslab+0x8f/0xb0
[  369.964112][T17728]  kmem_cache_alloc_noprof+0x4c/0x290
[  369.969547][T17728]  vm_area_dup+0x98/0x130
[  369.973867][T17728]  __split_vma+0xf7/0x690
[  369.978277][T17728]  do_vmi_align_munmap+0x1a5/0xa60
[  369.983414][T17728]  do_vmi_munmap+0x1fb/0x250
[  369.988003][T17728]  do_munmap+0x7a/0xb0
[  369.992130][T17728]  __se_sys_mremap+0xabc/0xf20
[  369.996906][T17728]  ? fput+0x13b/0x180
[  370.000930][T17728]  __x64_sys_mremap+0x67/0x80
[  370.005619][T17728]  x64_sys_call+0x2747/0x2d60
[  370.010321][T17728]  do_syscall_64+0xc9/0x1c0
[  370.014818][T17728]  ? clear_bhb_loop+0x55/0xb0
[  370.019490][T17728]  ? clear_bhb_loop+0x55/0xb0
[  370.024159][T17728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.030059][T17728] RIP: 0033:0x7f9fa01a9eb9
[  370.034507][T17728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.054188][T17728] RSP: 002b:00007f9f9ede5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  370.062592][T17728] RAX: ffffffffffffffda RBX: 00007f9fa0346130 RCX: 00007f9fa01a9eb9
[  370.070597][T17728] RDX: 0000000000004000 RSI: 0000000000003000 RDI: 0000000020001000
[  370.078610][T17728] RBP: 00007f9f9ede5090 R08: 0000000020005000 R09: 0000000000000000
[  370.086574][T17728] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  370.094536][T17728] R13: 0000000000000000 R14: 00007f9fa0346130 R15: 00007ffc037f52a8
[  370.102560][T17728]  </TASK>
[  370.151636][T17733] FAULT_INJECTION: forcing a failure.
[  370.151636][T17733] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  370.164822][T17733] CPU: 0 UID: 0 PID: 17733 Comm: syz.0.3959 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  370.175682][T17733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  370.185739][T17733] Call Trace:
[  370.189006][T17733]  <TASK>
[  370.191998][T17733]  dump_stack_lvl+0xf2/0x150
[  370.196613][T17733]  dump_stack+0x15/0x20
[  370.200783][T17733]  should_fail_ex+0x229/0x230
[  370.205460][T17733]  should_fail+0xb/0x10
[  370.209637][T17733]  should_fail_usercopy+0x1a/0x20
[  370.214655][T17733]  _copy_from_user+0x1e/0xd0
[  370.219306][T17733]  move_addr_to_kernel+0x82/0x120
[  370.224443][T17733]  copy_msghdr_from_user+0x271/0x2a0
[  370.229821][T17733]  __sys_sendmsg+0x17d/0x280
[  370.234421][T17733]  __x64_sys_sendmsg+0x46/0x50
[  370.239255][T17733]  x64_sys_call+0x2689/0x2d60
[  370.243929][T17733]  do_syscall_64+0xc9/0x1c0
[  370.248424][T17733]  ? clear_bhb_loop+0x55/0xb0
[  370.253094][T17733]  ? clear_bhb_loop+0x55/0xb0
[  370.257800][T17733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.263761][T17733] RIP: 0033:0x7f1a73f59eb9
[  370.268167][T17733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.287802][T17733] RSP: 002b:00007f1a72bd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  370.296204][T17733] RAX: ffffffffffffffda RBX: 00007f1a740f5f80 RCX: 00007f1a73f59eb9
[  370.304167][T17733] RDX: 0000000000000000 RSI: 0000000020004440 RDI: 0000000000000006
[  370.312172][T17733] RBP: 00007f1a72bd7090 R08: 0000000000000000 R09: 0000000000000000
[  370.320150][T17733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.328116][T17733] R13: 0000000000000000 R14: 00007f1a740f5f80 R15: 00007ffe243c0548
[  370.336144][T17733]  </TASK>
[  370.344200][T17735] loop3: detected capacity change from 0 to 512
[  370.351396][T17735] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  370.406318][T17735] EXT4-fs (loop3): 1 truncate cleaned up
[  370.412638][T17735] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  370.428335][T17740] loop0: detected capacity change from 0 to 764
[  370.436574][T17740] rock: directory entry would overflow storage
[  370.442911][T17740] rock: sig=0x4654, size=5, remaining=4
[  370.457847][T16321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.503489][T17740] rock: directory entry would overflow storage
[  370.509818][T17740] rock: sig=0x4f50, size=4, remaining=3
[  370.515397][T17740] iso9660: Corrupted directory entry in block 4 of inode 1792
[  370.584966][T17754] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3968'.
[  370.606265][T17746] netlink: 'syz.1.3963': attribute type 7 has an invalid length.
[  370.662500][T17760] loop0: detected capacity change from 0 to 256
[  370.704890][T17769] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3973'.
[  370.722066][T17766] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  370.799820][T17776] loop2: detected capacity change from 0 to 764
[  370.818908][T17776] rock: directory entry would overflow storage
[  370.825123][T17776] rock: sig=0x4654, size=5, remaining=4
[  370.845776][T17776] rock: directory entry would overflow storage
[  370.851961][T17776] rock: sig=0x4f50, size=4, remaining=3
[  370.857522][T17776] iso9660: Corrupted directory entry in block 4 of inode 1792
[  371.010895][T17764] netlink: 48 bytes leftover after parsing attributes in process `syz.3.3971'.
[  371.039141][T17794] netlink: 324 bytes leftover after parsing attributes in process `syz.4.3983'.
[  371.062348][T17792] FAULT_INJECTION: forcing a failure.
[  371.062348][T17792] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  371.075461][T17792] CPU: 1 UID: 0 PID: 17792 Comm: syz.1.3982 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  371.086299][T17792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  371.096357][T17792] Call Trace:
[  371.099630][T17792]  <TASK>
[  371.102601][T17792]  dump_stack_lvl+0xf2/0x150
[  371.107263][T17792]  dump_stack+0x15/0x20
[  371.111454][T17792]  should_fail_ex+0x229/0x230
[  371.116164][T17792]  should_fail+0xb/0x10
[  371.120340][T17792]  should_fail_usercopy+0x1a/0x20
[  371.125387][T17792]  _copy_to_user+0x1e/0xa0
[  371.129844][T17792]  simple_read_from_buffer+0xa0/0x110
[  371.135226][T17792]  proc_fail_nth_read+0xff/0x140
[  371.140162][T17792]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  371.145757][T17792]  vfs_read+0x1a2/0x6e0
[  371.149918][T17792]  ? __rcu_read_unlock+0x4e/0x70
[  371.154859][T17792]  ? __fget_files+0x1da/0x210
[  371.159579][T17792]  ksys_read+0xeb/0x1b0
[  371.163739][T17792]  __x64_sys_read+0x42/0x50
[  371.168318][T17792]  x64_sys_call+0x27d3/0x2d60
[  371.173001][T17792]  do_syscall_64+0xc9/0x1c0
[  371.177503][T17792]  ? clear_bhb_loop+0x55/0xb0
[  371.182183][T17792]  ? clear_bhb_loop+0x55/0xb0
[  371.187012][T17792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.192954][T17792] RIP: 0033:0x7f5c3d3f88fc
[  371.197368][T17792] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  371.217000][T17792] RSP: 002b:00007f5c3c077030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  371.225401][T17792] RAX: ffffffffffffffda RBX: 00007f5c3d595f80 RCX: 00007f5c3d3f88fc
[  371.233360][T17792] RDX: 000000000000000f RSI: 00007f5c3c0770a0 RDI: 0000000000000006
[  371.241322][T17792] RBP: 00007f5c3c077090 R08: 0000000000000000 R09: 0000000000000000
[  371.249287][T17792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  371.257247][T17792] R13: 0000000000000000 R14: 00007f5c3d595f80 R15: 00007ffe5bbc1378
[  371.265213][T17792]  </TASK>
[  371.277377][T17797] loop4: detected capacity change from 0 to 256
[  371.307180][T17801] loop1: detected capacity change from 0 to 512
[  371.313665][T17801] EXT4-fs: inline encryption not supported
[  371.326325][T17801] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  371.328214][T17808] loop4: detected capacity change from 0 to 1024
[  371.341243][T17801] EXT4-fs (loop1): mount failed
[  371.352774][T17808] EXT4-fs: Ignoring removed orlov option
[  371.358616][T17808] EXT4-fs: Ignoring removed nomblk_io_submit option
[  371.375963][T17808] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  371.409029][T17817] syz.1.3991[17817] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  371.409278][T17817] syz.1.3991[17817] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  371.421712][T16401] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.450741][T17817] bond1: entered promiscuous mode
[  371.455872][T17817] bond1: entered allmulticast mode
[  371.462247][T17817] 8021q: adding VLAN 0 to HW filter on device bond1
[  371.473766][T17817] bond1 (unregistering): Released all slaves
[  371.655866][T17829] ebt_among: src integrity fail: 100
[  371.717801][T17835] loop4: detected capacity change from 0 to 8192
[  371.757271][T17847] FAULT_INJECTION: forcing a failure.
[  371.757271][T17847] name failslab, interval 1, probability 0, space 0, times 0
[  371.770024][T17847] CPU: 1 UID: 0 PID: 17847 Comm: syz.0.4002 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  371.780930][T17847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  371.790996][T17847] Call Trace:
[  371.794319][T17847]  <TASK>
[  371.797246][T17847]  dump_stack_lvl+0xf2/0x150
[  371.801855][T17847]  dump_stack+0x15/0x20
[  371.806021][T17847]  should_fail_ex+0x229/0x230
[  371.810770][T17847]  ? __request_module+0x1d5/0x3e0
[  371.815795][T17847]  should_failslab+0x8f/0xb0
[  371.820435][T17847]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[  371.826809][T17847]  ? should_failslab+0x8f/0xb0
[  371.831573][T17847]  kstrdup+0x3a/0x80
[  371.835524][T17847]  __request_module+0x1d5/0x3e0
[  371.840465][T17847]  ? strcmp+0x21/0x50
[  371.844443][T17847]  ? crypto_alg_mod_lookup+0x84/0x4f0
[  371.849812][T17847]  crypto_alg_mod_lookup+0xa1/0x4f0
[  371.855136][T17847]  crypto_alloc_tfm_node+0xaa/0x250
[  371.860330][T17847]  crypto_alloc_aead+0x2f/0x40
[  371.865106][T17847]  tls_set_sw_offload+0x57f/0x810
[  371.870152][T17847]  tls_setsockopt+0x8f5/0xcb0
[  371.874931][T17847]  sock_common_setsockopt+0x64/0x80
[  371.880129][T17847]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  371.886473][T17847]  __sys_setsockopt+0x1d8/0x250
[  371.891324][T17847]  __x64_sys_setsockopt+0x66/0x80
[  371.896427][T17847]  x64_sys_call+0x278d/0x2d60
[  371.901209][T17847]  do_syscall_64+0xc9/0x1c0
[  371.905706][T17847]  ? clear_bhb_loop+0x55/0xb0
[  371.910440][T17847]  ? clear_bhb_loop+0x55/0xb0
[  371.915108][T17847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.921002][T17847] RIP: 0033:0x7f1a73f59eb9
[  371.925408][T17847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.945021][T17847] RSP: 002b:00007f1a72bd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  371.953424][T17847] RAX: ffffffffffffffda RBX: 00007f1a740f5f80 RCX: 00007f1a73f59eb9
[  371.961474][T17847] RDX: 0000000000000002 RSI: 000000000000011a RDI: 0000000000000003
[  371.969482][T17847] RBP: 00007f1a72bd7090 R08: 0000000000000028 R09: 0000000000000000
[  371.977450][T17847] R10: 0000000020000400 R11: 0000000000000246 R12: 0000000000000001
[  371.985417][T17847] R13: 0000000000000000 R14: 00007f1a740f5f80 R15: 00007ffe243c0548
[  371.993388][T17847]  </TASK>
[  372.023410][T17851] FAULT_INJECTION: forcing a failure.
[  372.023410][T17851] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  372.036661][T17851] CPU: 1 UID: 0 PID: 17851 Comm: syz.2.4003 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  372.047428][T17851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  372.057559][T17851] Call Trace:
[  372.060840][T17851]  <TASK>
[  372.063845][T17851]  dump_stack_lvl+0xf2/0x150
[  372.068484][T17851]  dump_stack+0x15/0x20
[  372.072772][T17851]  should_fail_ex+0x229/0x230
[  372.077463][T17851]  should_fail+0xb/0x10
[  372.081631][T17851]  should_fail_usercopy+0x1a/0x20
[  372.086825][T17851]  strncpy_from_user+0x25/0x270
[  372.091745][T17851]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  372.097384][T17851]  getname_flags+0xb0/0x3b0
[  372.101953][T17851]  __x64_sys_rename+0x33/0x70
[  372.106713][T17851]  x64_sys_call+0x1a84/0x2d60
[  372.111500][T17851]  do_syscall_64+0xc9/0x1c0
[  372.116043][T17851]  ? clear_bhb_loop+0x55/0xb0
[  372.120709][T17851]  ? clear_bhb_loop+0x55/0xb0
[  372.125412][T17851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.131367][T17851] RIP: 0033:0x7fa2a1f19eb9
[  372.135770][T17851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.155419][T17851] RSP: 002b:00007fa2a0b97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  372.163886][T17851] RAX: ffffffffffffffda RBX: 00007fa2a20b5f80 RCX: 00007fa2a1f19eb9
[  372.171869][T17851] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000020000300
[  372.179829][T17851] RBP: 00007fa2a0b97090 R08: 0000000000000000 R09: 0000000000000000
[  372.187792][T17851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.195789][T17851] R13: 0000000000000000 R14: 00007fa2a20b5f80 R15: 00007ffeee55d0b8
[  372.203756][T17851]  </TASK>
[  372.216514][T17862] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  372.256747][T17871] ebt_among: src integrity fail: 100
[  372.313400][T17883] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4012'.
[  372.340227][T17892] loop1: detected capacity change from 0 to 512
[  372.349729][T17892] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  372.360298][T17894] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4016'.
[  372.361551][T17892] EXT4-fs (loop1): 1 truncate cleaned up
[  372.377695][T17892] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.398035][T17888] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  372.416249][T17090] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.424113][T17899] ebt_among: src integrity fail: 100
[  372.469478][T17907] loop2: detected capacity change from 0 to 512
[  372.476132][T17907] ext4: Unknown parameter 'fowner<00000000000000000000'
[  372.487548][T17907] Invalid ELF header magic: != ELF
[  372.516322][T17913] loop4: detected capacity change from 0 to 1024
[  372.523659][T17913] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  372.533565][T17913] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  372.546826][T17913] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  372.557374][T17913] EXT4-fs error (device loop4): ext4_get_journal_inode:5740: inode #5: comm syz.4.4024: unexpected bad inode w/o EXT4_IGET_BAD
[  372.570783][T17913] EXT4-fs (loop4): no journal found
[  372.576010][T17913] EXT4-fs (loop4): can't get journal size
[  372.582403][T17913] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  372.601179][T16401] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.652743][T17929] ebt_among: src integrity fail: 100
[  372.698034][T17935] loop0: detected capacity change from 0 to 512
[  372.714388][T17931] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  372.722446][T17935] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  372.736068][T17935] EXT4-fs (loop0): 1 truncate cleaned up
[  372.742248][T17935] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.742881][T17938] loop2: detected capacity change from 0 to 128
[  372.765813][T17938] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  372.787333][T17938] ext4 filesystem being mounted at /54/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  372.788267][T17273] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.814039][T16631] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  372.830324][T17951] FAULT_INJECTION: forcing a failure.
[  372.830324][T17951] name failslab, interval 1, probability 0, space 0, times 0
[  372.843041][T17951] CPU: 1 UID: 0 PID: 17951 Comm: syz.2.4037 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  372.853804][T17951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  372.863911][T17951] Call Trace:
[  372.867178][T17951]  <TASK>
[  372.870098][T17951]  dump_stack_lvl+0xf2/0x150
[  372.874686][T17951]  dump_stack+0x15/0x20
[  372.878848][T17951]  should_fail_ex+0x229/0x230
[  372.883517][T17951]  ? alloc_vmap_area+0x1e1/0x1830
[  372.888682][T17951]  should_failslab+0x8f/0xb0
[  372.893354][T17951]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  372.899196][T17951]  alloc_vmap_area+0x1e1/0x1830
[  372.904214][T17951]  ? __rcu_read_unlock+0x4e/0x70
[  372.909173][T17951]  ? should_fail_ex+0xd7/0x230
[  372.914060][T17951]  __get_vm_area_node+0x15e/0x1b0
[  372.919085][T17951]  __vmalloc_node_range_noprof+0x2e1/0xec0
[  372.924935][T17951]  ? bpf_prog_alloc_no_stats+0x49/0x360
[  372.930504][T17951]  ? mntput_no_expire+0x70/0x3c0
[  372.935435][T17951]  ? avc_has_perm_noaudit+0x1cc/0x210
[  372.940808][T17951]  ? bpf_prog_alloc_no_stats+0x49/0x360
[  372.946342][T17951]  __vmalloc_noprof+0x5e/0x70
[  372.951014][T17951]  ? bpf_prog_alloc_no_stats+0x49/0x360
[  372.956575][T17951]  bpf_prog_alloc_no_stats+0x49/0x360
[  372.961939][T17951]  ? bpf_prog_alloc+0x28/0x150
[  372.966951][T17951]  bpf_prog_alloc+0x3a/0x150
[  372.971533][T17951]  bpf_prog_load+0x4d1/0x1070
[  372.976211][T17951]  __sys_bpf+0x463/0x7a0
[  372.980445][T17951]  __x64_sys_bpf+0x43/0x50
[  372.984904][T17951]  x64_sys_call+0x2625/0x2d60
[  372.989575][T17951]  do_syscall_64+0xc9/0x1c0
[  372.994145][T17951]  ? clear_bhb_loop+0x55/0xb0
[  372.998812][T17951]  ? clear_bhb_loop+0x55/0xb0
[  373.003528][T17951]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.009428][T17951] RIP: 0033:0x7fa2a1f19eb9
[  373.013879][T17951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.033593][T17951] RSP: 002b:00007fa2a0b97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  373.041996][T17951] RAX: ffffffffffffffda RBX: 00007fa2a20b5f80 RCX: 00007fa2a1f19eb9
[  373.049957][T17951] RDX: 0000000000000090 RSI: 0000000020000340 RDI: 0000000000000005
[  373.057955][T17951] RBP: 00007fa2a0b97090 R08: 0000000000000000 R09: 0000000000000000
[  373.065995][T17951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.074044][T17951] R13: 0000000000000000 R14: 00007fa2a20b5f80 R15: 00007ffeee55d0b8
[  373.082043][T17951]  </TASK>
[  373.085305][T17951] syz.2.4037: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz2,mems_allowed=0
[  373.091224][T17950] loop0: detected capacity change from 0 to 1024
[  373.101736][T17951] CPU: 1 UID: 0 PID: 17951 Comm: syz.2.4037 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  373.118601][T17951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  373.128654][T17951] Call Trace:
[  373.131922][T17951]  <TASK>
[  373.134989][T17951]  dump_stack_lvl+0xf2/0x150
[  373.139592][T17951]  dump_stack+0x15/0x20
[  373.143796][T17951]  warn_alloc+0x145/0x1b0
[  373.148189][T17951]  __vmalloc_node_range_noprof+0x306/0xec0
[  373.153995][T17951]  ? mntput_no_expire+0x70/0x3c0
[  373.158939][T17951]  ? avc_has_perm_noaudit+0x1cc/0x210
[  373.164337][T17951]  ? bpf_prog_alloc_no_stats+0x49/0x360
[  373.169871][T17951]  __vmalloc_noprof+0x5e/0x70
[  373.174683][T17951]  ? bpf_prog_alloc_no_stats+0x49/0x360
[  373.180226][T17951]  bpf_prog_alloc_no_stats+0x49/0x360
[  373.185587][T17951]  ? bpf_prog_alloc+0x28/0x150
[  373.190363][T17951]  bpf_prog_alloc+0x3a/0x150
[  373.194978][T17951]  bpf_prog_load+0x4d1/0x1070
[  373.199701][T17951]  __sys_bpf+0x463/0x7a0
[  373.203936][T17951]  __x64_sys_bpf+0x43/0x50
[  373.208362][T17951]  x64_sys_call+0x2625/0x2d60
[  373.213108][T17951]  do_syscall_64+0xc9/0x1c0
[  373.217613][T17951]  ? clear_bhb_loop+0x55/0xb0
[  373.222297][T17951]  ? clear_bhb_loop+0x55/0xb0
[  373.227048][T17951]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.232940][T17951] RIP: 0033:0x7fa2a1f19eb9
[  373.237350][T17951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.257098][T17951] RSP: 002b:00007fa2a0b97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  373.265502][T17951] RAX: ffffffffffffffda RBX: 00007fa2a20b5f80 RCX: 00007fa2a1f19eb9
[  373.273467][T17951] RDX: 0000000000000090 RSI: 0000000020000340 RDI: 0000000000000005
[  373.281428][T17951] RBP: 00007fa2a0b97090 R08: 0000000000000000 R09: 0000000000000000
[  373.289390][T17951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.297365][T17951] R13: 0000000000000000 R14: 00007fa2a20b5f80 R15: 00007ffeee55d0b8
[  373.305339][T17951]  </TASK>
[  373.308569][T17951] Mem-Info:
[  373.309633][T17950] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  373.311679][T17951] active_anon:2701 inactive_anon:0 isolated_anon:0
[  373.311679][T17951]  active_file:9266 inactive_file:15226 isolated_file:0
[  373.311679][T17951]  unevictable:0 dirty:443 writeback:0
[  373.311679][T17951]  slab_reclaimable:2822 slab_unreclaimable:17690
[  373.311679][T17951]  mapped:24860 shmem:384 pagetables:612
[  373.311679][T17951]  sec_pagetables:0 bounce:0
[  373.311679][T17951]  kernel_misc_reclaimable:0
[  373.311679][T17951]  free:1892768 free_pcp:5367 free_cma:0
[  373.321443][T17950] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  373.321566][T17950] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  373.322392][T17950] EXT4-fs error (device loop0): ext4_get_journal_inode:5740: inode #5: comm syz.0.4038: unexpected bad inode w/o EXT4_IGET_BAD
[  373.366347][T17951] Node 0 active_anon:10804kB inactive_anon:0kB active_file:37064kB inactive_file:60904kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:99440kB dirty:1772kB writeback:0kB shmem:1536kB writeback_tmp:0kB kernel_stack:2960kB pagetables:2448kB sec_pagetables:0kB all_unreclaimable? no
[  373.366468][T17951] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  373.366519][T17951] lowmem_reserve[]: 0 2866 7844 0
[  373.366540][T17951] Node 0 
[  373.378407][T17950] EXT4-fs (loop0): no journal found
[  373.386065][T17951] DMA32 free:2950336kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953968kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  373.399121][T17950] EXT4-fs (loop0): can't get journal size
[  373.426792][T17951] lowmem_reserve[]: 0 0 4978 0
[  373.426842][T17951] Node 0 Normal free:4605376kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:10804kB inactive_anon:0kB active_file:37064kB inactive_file:60904kB unevictable:0kB writepending:1772kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:17848kB local_pcp:4884kB free_cma:0kB
[  373.426900][T17951] lowmem_reserve[]: 0 0 0 0
[  373.426920][T17951] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  373.552984][T17951] Node 0 DMA32: 2*4kB (M) 1*8kB (M) 3*16kB (M) 2*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950336kB
[  373.569214][T17951] Node 0 Normal: 984*4kB (UME) 530*8kB (ME) 270*16kB (UME) 243*32kB (UME) 324*64kB (UME) 122*128kB (UME) 45*256kB (UME) 36*512kB (UM) 13*1024kB (UME) 8*2048kB (UME) 1096*4096kB (UM) = 4605488kB
[  373.588693][T17951] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  373.598222][T17951] 24740 total pagecache pages
[  373.602977][T17951] 0 pages in swap cache
[  373.605301][T17950] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  373.607139][T17951] Free swap  = 124476kB
[  373.623611][T17951] Total swap = 124996kB
[  373.627779][T17951] 2097051 pages RAM
[  373.631744][T17951] 0 pages HighMem/MovableOnly
[  373.636552][T17951] 80167 pages reserved
[  373.682070][T17958] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4042'.
[  373.687737][T17273] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.705062][T17956] loop1: detected capacity change from 0 to 8192
[  373.744833][T17961] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  373.807831][T17973] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4047'.
[  373.827230][T17976] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4048'.
[  373.971488][T17981] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4050'.
[  374.003815][   T29] kauditd_printk_skb: 575 callbacks suppressed
[  374.003830][   T29] audit: type=1326 audit(1725309987.740:10720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.056940][   T29] audit: type=1326 audit(1725309987.740:10721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.080820][   T29] audit: type=1326 audit(1725309987.740:10722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.087010][T17993] loop2: detected capacity change from 0 to 512
[  374.104518][   T29] audit: type=1326 audit(1725309987.740:10723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.113778][T17993] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  374.134274][   T29] audit: type=1326 audit(1725309987.740:10724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.167716][   T29] audit: type=1326 audit(1725309987.740:10725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.191320][   T29] audit: type=1326 audit(1725309987.740:10726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.214948][   T29] audit: type=1326 audit(1725309987.740:10727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.231149][T17993] EXT4-fs (loop2): 1 truncate cleaned up
[  374.238572][   T29] audit: type=1326 audit(1725309987.740:10728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.238655][   T29] audit: type=1326 audit(1725309987.740:10729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.2.4052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  374.244623][T17993] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  374.306023][T17990] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  374.351864][T16631] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.373917][T18006] loop2: detected capacity change from 0 to 764
[  374.384647][T18006] rock: directory entry would overflow storage
[  374.390898][T18006] rock: sig=0x4654, size=5, remaining=4
[  374.400025][T18006] rock: directory entry would overflow storage
[  374.406275][T18006] rock: sig=0x4f50, size=4, remaining=3
[  374.411835][T18006] iso9660: Corrupted directory entry in block 4 of inode 1792
[  374.474622][T18012] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  374.487362][T18016] loop3: detected capacity change from 0 to 256
[  374.489218][T18018] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4064'.
[  374.505344][T18016] FAULT_INJECTION: forcing a failure.
[  374.505344][T18016] name failslab, interval 1, probability 0, space 0, times 0
[  374.518004][T18016] CPU: 1 UID: 0 PID: 18016 Comm: syz.3.4063 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  374.528763][T18016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  374.538804][T18016] Call Trace:
[  374.542071][T18016]  <TASK>
[  374.545009][T18016]  dump_stack_lvl+0xf2/0x150
[  374.549596][T18016]  dump_stack+0x15/0x20
[  374.553740][T18016]  should_fail_ex+0x229/0x230
[  374.558477][T18016]  ? iter_file_splice_write+0x108/0x970
[  374.564088][T18016]  should_failslab+0x8f/0xb0
[  374.568699][T18016]  __kmalloc_noprof+0xa5/0x370
[  374.573457][T18016]  iter_file_splice_write+0x108/0x970
[  374.578874][T18016]  ? __pfx_iter_file_splice_write+0x10/0x10
[  374.584769][T18016]  direct_splice_actor+0x16c/0x2c0
[  374.589909][T18016]  splice_direct_to_actor+0x305/0x670
[  374.595337][T18016]  ? __pfx_direct_splice_actor+0x10/0x10
[  374.600976][T18016]  do_splice_direct+0xd7/0x150
[  374.605818][T18016]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  374.611856][T18016]  do_sendfile+0x3ab/0x950
[  374.616308][T18016]  __x64_sys_sendfile64+0x110/0x150
[  374.621544][T18016]  x64_sys_call+0xed5/0x2d60
[  374.626226][T18016]  do_syscall_64+0xc9/0x1c0
[  374.630717][T18016]  ? clear_bhb_loop+0x55/0xb0
[  374.635480][T18016]  ? clear_bhb_loop+0x55/0xb0
[  374.640172][T18016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.646112][T18016] RIP: 0033:0x7fc08f2b9eb9
[  374.650614][T18016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.670229][T18016] RSP: 002b:00007fc08df37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  374.678632][T18016] RAX: ffffffffffffffda RBX: 00007fc08f455f80 RCX: 00007fc08f2b9eb9
[  374.686612][T18016] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000006
[  374.694659][T18016] RBP: 00007fc08df37090 R08: 0000000000000000 R09: 0000000000000000
[  374.702696][T18016] R10: 000000000000e065 R11: 0000000000000246 R12: 0000000000000001
[  374.710763][T18016] R13: 0000000000000000 R14: 00007fc08f455f80 R15: 00007ffc0a9d4de8
[  374.718733][T18016]  </TASK>
[  374.756549][T18026] loop0: detected capacity change from 0 to 512
[  374.763038][T18026] EXT4-fs: inline encryption not supported
[  374.778847][T18026] EXT4-fs warning (device loop0): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  374.796174][T18026] EXT4-fs (loop0): mount failed
[  374.806481][T17578] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.842958][T18031] loop0: detected capacity change from 0 to 512
[  374.851282][T18031] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  374.867584][T18031] EXT4-fs (loop0): 1 truncate cleaned up
[  374.876259][T17578] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.879435][T18031] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  374.935046][T17273] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.955461][T17578] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.960513][T18043] loop2: detected capacity change from 0 to 2048
[  374.981080][T18047] loop3: detected capacity change from 0 to 256
[  375.008223][T17578] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.010704][T18050] loop0: detected capacity change from 0 to 512
[  375.010874][T18050] EXT4-fs: inline encryption not supported
[  375.037172][T18050] EXT4-fs warning (device loop0): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  375.037227][T18050] EXT4-fs (loop0): mount failed
[  375.068092][T18043] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  375.105689][T18043] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none.
[  375.106666][T18043] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  375.106892][T18043] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 32 with max blocks 1 with error 28
[  375.106912][T18043] EXT4-fs (loop2): This should not happen!! Data will be lost
[  375.106912][T18043] 
[  375.106922][T18043] EXT4-fs (loop2): Total free blocks count 0
[  375.106932][T18043] EXT4-fs (loop2): Free/Dirty block details
[  375.107016][T18043] EXT4-fs (loop2): free_blocks=2415919104
[  375.107029][T18043] EXT4-fs (loop2): dirty_blocks=32
[  375.107051][T18043] EXT4-fs (loop2): Block reservation details
[  375.107101][T18043] EXT4-fs (loop2): i_reserved_data_blocks=2
[  375.125270][T17578] bridge_slave_1: left allmulticast mode
[  375.155702][T18063] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  375.161206][T17578] bridge_slave_1: left promiscuous mode
[  375.202382][T18065] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  375.205506][T17578] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.211002][T18065] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  375.244963][T18065] vhci_hcd vhci_hcd.0: Device attached
[  375.250360][T18067] usbip_core: unknown command
[  375.255947][T18067] vhci_hcd: unknown pdu 0
[  375.255957][T18067] usbip_core: unknown command
[  375.256377][T17585] vhci_hcd: stop threads
[  375.256387][T17585] vhci_hcd: release socket
[  375.256399][T17585] vhci_hcd: disconnect device
[  375.260198][T17578] bridge_slave_0: left allmulticast mode
[  375.284611][T17578] bridge_slave_0: left promiscuous mode
[  375.284775][T17578] bridge0: port 1(bridge_slave_0) entered disabled state
[  375.341959][T18076] FAULT_INJECTION: forcing a failure.
[  375.341959][T18076] name failslab, interval 1, probability 0, space 0, times 0
[  375.355012][T18076] CPU: 1 UID: 0 PID: 18076 Comm: syz.3.4080 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  375.365787][T18076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  375.375835][T18076] Call Trace:
[  375.379100][T18076]  <TASK>
[  375.382031][T18076]  dump_stack_lvl+0xf2/0x150
[  375.386723][T18076]  dump_stack+0x15/0x20
[  375.390872][T18076]  should_fail_ex+0x229/0x230
[  375.395555][T18076]  ? audit_log_start+0x34c/0x6b0
[  375.400486][T18076]  should_failslab+0x8f/0xb0
[  375.405134][T18076]  kmem_cache_alloc_noprof+0x4c/0x290
[  375.410539][T18076]  audit_log_start+0x34c/0x6b0
[  375.415317][T18076]  ? kmem_cache_free+0xd8/0x280
[  375.420166][T18076]  audit_seccomp+0x4b/0x130
[  375.424664][T18076]  __seccomp_filter+0x6fa/0x1180
[  375.429685][T18076]  ? __perf_event_task_sched_out+0x111/0xfe0
[  375.435736][T18076]  __secure_computing+0x9f/0x1c0
[  375.440747][T18076]  syscall_trace_enter+0xd1/0x1f0
[  375.445776][T18076]  do_syscall_64+0xaa/0x1c0
[  375.450350][T18076]  ? clear_bhb_loop+0x55/0xb0
[  375.455018][T18076]  ? clear_bhb_loop+0x55/0xb0
[  375.459690][T18076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  375.465664][T18076] RIP: 0033:0x7fc08f2b88fc
[  375.470067][T18076] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  375.489666][T18076] RSP: 002b:00007fc08df37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  375.498070][T18076] RAX: ffffffffffffffda RBX: 00007fc08f455f80 RCX: 00007fc08f2b88fc
[  375.506033][T18076] RDX: 000000000000000f RSI: 00007fc08df370a0 RDI: 0000000000000005
[  375.514086][T18076] RBP: 00007fc08df37090 R08: 0000000000000000 R09: 0000000000000000
[  375.522149][T18076] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  375.530147][T18076] R13: 0000000000000000 R14: 00007fc08f455f80 R15: 00007ffc0a9d4de8
[  375.538189][T18076]  </TASK>
[  375.568468][T17578] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  375.580057][T17578] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  375.590661][T17578] bond0 (unregistering): Released all slaves
[  375.661717][T18035] chnl_net:caif_netlink_parms(): no params data found
[  375.705313][T17578] hsr_slave_0: left promiscuous mode
[  375.711795][T17578] hsr_slave_1: left promiscuous mode
[  375.717900][T17578] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  375.725380][T17578] batman_adv: batadv0: Removing interface: batadv_slave_0
[  375.729472][T18086] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  375.740264][T17578] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  375.747835][T17578] batman_adv: batadv0: Removing interface: batadv_slave_1
[  375.757848][T17578] veth1_macvtap: left promiscuous mode
[  375.763347][T17578] veth0_macvtap: left promiscuous mode
[  375.769003][T17578] veth1_vlan: left promiscuous mode
[  375.774278][T17578] veth0_vlan: left promiscuous mode
[  375.881488][T17578] team0 (unregistering): Port device team_slave_1 removed
[  375.894848][T17578] team0 (unregistering): Port device team_slave_0 removed
[  375.918624][T18093] loop4: detected capacity change from 0 to 1024
[  375.949442][T18093] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c118, mo2=0002]
[  375.962034][T18035] bridge0: port 1(bridge_slave_0) entered blocking state
[  375.968589][T18104] loop2: detected capacity change from 0 to 512
[  375.969357][T18035] bridge0: port 1(bridge_slave_0) entered disabled state
[  375.986100][T18093] System zones: 0-1, 3-12
[  375.990991][T18093] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  376.006551][T18104] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  376.006862][T18035] bridge_slave_0: entered allmulticast mode
[  376.032588][T18104] EXT4-fs (loop2): 1 truncate cleaned up
[  376.040124][T18104] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  376.055175][T18035] bridge_slave_0: entered promiscuous mode
[  376.065499][T18035] bridge0: port 2(bridge_slave_1) entered blocking state
[  376.072631][T18035] bridge0: port 2(bridge_slave_1) entered disabled state
[  376.079933][T18035] bridge_slave_1: entered allmulticast mode
[  376.088313][T18035] bridge_slave_1: entered promiscuous mode
[  376.112681][T16631] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.125067][T18093] loop4: detected capacity change from 1024 to 1023
[  376.132572][T18113] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2978: inode #15: comm syz.4.4085: corrupted xattr block 112: invalid header
[  376.151403][T18113] EXT4-fs warning (device loop4): ext4_evict_inode:271: xattr delete (err -117)
[  376.172817][T18112] __nla_validate_parse: 2 callbacks suppressed
[  376.172833][T18112] netlink: 80 bytes leftover after parsing attributes in process `syz.3.4088'.
[  376.189713][T18035] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  376.204973][T18035] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  376.222368][T16401] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /135/file1: bad entry in directory: rec_len is smaller than minimal - offset=980, inode=0, rec_len=0, size=1024 fake=0
[  376.250171][T16401] EXT4-fs error (device loop4): ext4_lookup:1811: inode #12: comm syz-executor: iget: bad extended attribute block 257296770591160
[  376.265569][T18118] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4090'.
[  376.275128][T16401] EXT4-fs error (device loop4): ext4_lookup:1811: inode #12: comm syz-executor: iget: bad extended attribute block 257296770591160
[  376.290987][T18035] team0: Port device team_slave_0 added
[  376.300270][T18035] team0: Port device team_slave_1 added
[  376.326265][T18120] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  376.348440][T18035] batman_adv: batadv0: Adding interface: batadv_slave_0
[  376.355512][T18035] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  376.381420][T18035] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  376.393886][T18035] batman_adv: batadv0: Adding interface: batadv_slave_1
[  376.400908][T18035] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  376.426928][T18035] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  376.437700][T18133] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4096'.
[  376.468342][T18035] hsr_slave_0: entered promiscuous mode
[  376.474581][T18035] hsr_slave_1: entered promiscuous mode
[  376.480498][T18035] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  376.488103][T18035] Cannot create hsr debugfs directory
[  376.603901][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  376.651630][T18155] loop3: detected capacity change from 0 to 512
[  376.661633][T18155] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  376.665269][T16401] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.669719][T18155] EXT4-fs (loop3): orphan cleanup on readonly fs
[  376.685796][T18155] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  376.700740][T18155] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  376.710036][T18155] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4100: bg 0: block 40: padding at end of block bitmap is not set
[  376.726150][T18155] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  376.738140][T18155] EXT4-fs (loop3): 1 truncate cleaned up
[  376.744309][T17585] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.744470][T18155] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  376.768461][T18161] batadv_slave_0: entered promiscuous mode
[  376.775338][T18163] batadv_slave_0: left promiscuous mode
[  376.817448][T17585] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.878553][T18176] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4107'.
[  376.894834][T17585] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.927632][T18035] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  376.937525][T18035] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  376.948529][T17585] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  376.968803][T18035] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  376.975281][T18179] ebt_among: src integrity fail: 100
[  376.984628][T18035] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  377.008040][T18164] chnl_net:caif_netlink_parms(): no params data found
[  377.029306][T18181] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  377.029574][T17585] bridge_slave_1: left allmulticast mode
[  377.042351][T17585] bridge_slave_1: left promiscuous mode
[  377.048073][T17585] bridge0: port 2(bridge_slave_1) entered disabled state
[  377.055764][T17585] bridge_slave_0: left allmulticast mode
[  377.061386][T17585] bridge_slave_0: left promiscuous mode
[  377.067084][T17585] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.206402][T17585] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  377.216937][T17585] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  377.227113][T17585] bond0 (unregistering): Released all slaves
[  377.296307][T18164] bridge0: port 1(bridge_slave_0) entered blocking state
[  377.303411][T18164] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.318870][T18164] bridge_slave_0: entered allmulticast mode
[  377.325526][T18164] bridge_slave_0: entered promiscuous mode
[  377.348964][T18164] bridge0: port 2(bridge_slave_1) entered blocking state
[  377.356084][T18164] bridge0: port 2(bridge_slave_1) entered disabled state
[  377.367067][T18164] bridge_slave_1: entered allmulticast mode
[  377.373702][T18164] bridge_slave_1: entered promiscuous mode
[  377.386204][T18196] loop0: detected capacity change from 0 to 512
[  377.393565][T18196] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  377.405762][T18035] 8021q: adding VLAN 0 to HW filter on device bond0
[  377.412830][T18196] EXT4-fs (loop0): 1 truncate cleaned up
[  377.419089][T18196] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.424109][T18201] loop2: detected capacity change from 0 to 512
[  377.439731][T17585] hsr_slave_0: left promiscuous mode
[  377.445204][T18201] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  377.455408][T16321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.456029][T17273] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.464523][T17585] hsr_slave_1: left promiscuous mode
[  377.485308][T18201] EXT4-fs (loop2): 1 truncate cleaned up
[  377.491411][T18201] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.504296][T17585] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  377.511938][T17585] batman_adv: batadv0: Removing interface: batadv_slave_0
[  377.520759][T18208] ebt_among: src integrity fail: 100
[  377.522127][T17585] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  377.533554][T17585] batman_adv: batadv0: Removing interface: batadv_slave_1
[  377.549519][T16631] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.559848][T17585] veth1_macvtap: left promiscuous mode
[  377.565594][T17585] veth0_macvtap: left promiscuous mode
[  377.571117][T17585] veth1_vlan: left promiscuous mode
[  377.576365][T17585] veth0_vlan: left promiscuous mode
[  377.871695][T18230] loop0: detected capacity change from 0 to 764
[  377.879893][T17585] team0 (unregistering): Port device team_slave_1 removed
[  377.888140][T18230] rock: directory entry would overflow storage
[  377.894350][T18230] rock: sig=0x4654, size=5, remaining=4
[  377.911657][T17585] team0 (unregistering): Port device team_slave_0 removed
[  377.922807][T18230] rock: directory entry would overflow storage
[  377.929010][T18230] rock: sig=0x4f50, size=4, remaining=3
[  377.934613][T18230] iso9660: Corrupted directory entry in block 4 of inode 1792
[  378.008165][T18164] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  378.044335][T18035] 8021q: adding VLAN 0 to HW filter on device team0
[  378.055360][T18221] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4123'.
[  378.075039][T17583] bridge0: port 1(bridge_slave_0) entered blocking state
[  378.082145][T17583] bridge0: port 1(bridge_slave_0) entered forwarding state
[  378.090845][T17583] bridge0: port 2(bridge_slave_1) entered blocking state
[  378.097979][T17583] bridge0: port 2(bridge_slave_1) entered forwarding state
[  378.109272][T18164] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  378.122164][T18236] ebt_among: src integrity fail: 100
[  378.127889][T18234] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4127'.
[  378.153423][T18164] team0: Port device team_slave_0 added
[  378.160361][T18164] team0: Port device team_slave_1 added
[  378.173998][T18035] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  378.184413][T18035] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  378.204867][T18239] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  378.219913][T18164] batman_adv: batadv0: Adding interface: batadv_slave_0
[  378.227129][T18164] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  378.253134][T18164] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  378.267666][T18164] batman_adv: batadv0: Adding interface: batadv_slave_1
[  378.274779][T18164] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  378.301060][T18164] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  378.335129][T18164] hsr_slave_0: entered promiscuous mode
[  378.341361][T18164] hsr_slave_1: entered promiscuous mode
[  378.375730][T18035] 8021q: adding VLAN 0 to HW filter on device batadv0
[  378.532060][T18263] loop2: detected capacity change from 0 to 764
[  378.543986][T18265] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4136'.
[  378.561258][T18263] rock: directory entry would overflow storage
[  378.567474][T18263] rock: sig=0x4654, size=5, remaining=4
[  378.572512][T18269] ebt_among: src integrity fail: 100
[  378.584463][T18263] rock: directory entry would overflow storage
[  378.590837][T18263] rock: sig=0x4f50, size=4, remaining=3
[  378.596462][T18263] iso9660: Corrupted directory entry in block 4 of inode 1792
[  378.611171][T18035] veth0_vlan: entered promiscuous mode
[  378.626717][T18035] veth1_vlan: entered promiscuous mode
[  378.647413][T18035] veth0_macvtap: entered promiscuous mode
[  378.660459][T18035] veth1_macvtap: entered promiscuous mode
[  378.671138][T18035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  378.681655][T18035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.691525][T18035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  378.702117][T18035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.712115][T18035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  378.722654][T18035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.732596][T18035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  378.743056][T18035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.755903][T18035] batman_adv: batadv0: Interface activated: batadv_slave_0
[  378.767151][T18035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  378.777710][T18035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.787633][T18035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  378.798108][T18035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.808016][T18035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  378.818442][T18035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.828330][T18035] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  378.838753][T18035] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  378.850241][T18035] batman_adv: batadv0: Interface activated: batadv_slave_1
[  378.877040][T18164] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  378.887698][T18035] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  378.896683][T18035] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  378.905457][T18035] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  378.906570][T18289] ebt_among: src integrity fail: 100
[  378.914204][T18035] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  378.936184][T18164] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  378.954037][T18164] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  378.958496][T18293] loop3: detected capacity change from 0 to 764
[  378.975562][T18164] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  378.985297][T18293] rock: directory entry would overflow storage
[  378.991473][T18293] rock: sig=0x4654, size=5, remaining=4
[  379.003785][T18293] rock: directory entry would overflow storage
[  379.010125][T18293] rock: sig=0x4f50, size=4, remaining=3
[  379.015868][T18293] iso9660: Corrupted directory entry in block 4 of inode 1792
[  379.016517][T18300] loop0: detected capacity change from 0 to 512
[  379.030923][T18300] EXT4-fs: inline encryption not supported
[  379.043825][T18298] loop2: detected capacity change from 0 to 1024
[  379.052569][T18298] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  379.053023][T18300] __quota_error: 72 callbacks suppressed
[  379.053035][T18300] Quota error (device loop0): v2_read_file_info: Free block number 8 out of range (1, 6).
[  379.080485][T18298] JBD2: no valid journal superblock found
[  379.081611][T18300] EXT4-fs warning (device loop0): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  379.086452][T18298] EXT4-fs (loop2): Could not load journal inode
[  379.101991][T18300] EXT4-fs (loop0): mount failed
[  379.145824][T18164] 8021q: adding VLAN 0 to HW filter on device bond0
[  379.182631][T18164] 8021q: adding VLAN 0 to HW filter on device team0
[  379.204963][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.212051][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[  379.223608][  T941] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.230712][  T941] bridge0: port 2(bridge_slave_1) entered forwarding state
[  379.232481][T18310] loop1: detected capacity change from 0 to 256
[  379.238798][T18312] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  379.285846][T18317] loop3: detected capacity change from 0 to 512
[  379.295044][T18317] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  379.326288][T18317] EXT4-fs (loop3): 1 truncate cleaned up
[  379.333115][T18317] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  379.349330][   T29] audit: type=1326 audit(1725309993.090:10796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18323 comm="syz.2.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  379.366231][T18164] 8021q: adding VLAN 0 to HW filter on device batadv0
[  379.372979][   T29] audit: type=1326 audit(1725309993.090:10797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18323 comm="syz.2.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  379.403431][   T29] audit: type=1326 audit(1725309993.090:10798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18323 comm="syz.2.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  379.426931][   T29] audit: type=1326 audit(1725309993.090:10799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18323 comm="syz.2.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  379.450600][   T29] audit: type=1326 audit(1725309993.090:10800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18323 comm="syz.2.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  379.474189][   T29] audit: type=1326 audit(1725309993.090:10801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18323 comm="syz.2.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  379.497830][   T29] audit: type=1326 audit(1725309993.090:10802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18323 comm="syz.2.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  379.509479][T18164] veth0_vlan: entered promiscuous mode
[  379.521560][   T29] audit: type=1326 audit(1725309993.090:10803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18323 comm="syz.2.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  379.530887][T18164] veth1_vlan: entered promiscuous mode
[  379.550489][   T29] audit: type=1326 audit(1725309993.090:10804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18323 comm="syz.2.4156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa2a1f19eb9 code=0x7ffc0000
[  379.580585][T16321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.611831][T18339] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  379.615849][T18164] veth0_macvtap: entered promiscuous mode
[  379.629487][T18347] loop3: detected capacity change from 0 to 764
[  379.635622][T18164] veth1_macvtap: entered promiscuous mode
[  379.643099][T18347] rock: directory entry would overflow storage
[  379.649362][T18347] rock: sig=0x4654, size=5, remaining=4
[  379.660634][T18347] rock: directory entry would overflow storage
[  379.666956][T18347] rock: sig=0x4f50, size=4, remaining=3
[  379.672519][T18347] iso9660: Corrupted directory entry in block 4 of inode 1792
[  379.701630][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.712194][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.714782][T18360] FAULT_INJECTION: forcing a failure.
[  379.714782][T18360] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.722086][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.735159][T18360] CPU: 1 UID: 0 PID: 18360 Comm: syz.3.4163 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  379.745547][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.756244][T18360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  379.756259][T18360] Call Trace:
[  379.756266][T18360]  <TASK>
[  379.756274][T18360]  dump_stack_lvl+0xf2/0x150
[  379.756302][T18360]  dump_stack+0x15/0x20
[  379.766177][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.766191][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.766209][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.766220][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.776260][T18360]  should_fail_ex+0x229/0x230
[  379.779560][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.782464][T18360]  should_fail+0xb/0x10
[  379.787043][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.791152][T18360]  should_fail_usercopy+0x1a/0x20
[  379.821398][T18164] batman_adv: batadv0: Interface activated: batadv_slave_0
[  379.821698][T18360]  strncpy_from_user+0x25/0x270
[  379.837438][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.846567][T18360]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  379.846598][T18360]  getname_flags+0xb0/0x3b0
[  379.850734][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.850747][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.860510][T18360]  __x64_sys_rename+0x33/0x70
[  379.860538][T18360]  x64_sys_call+0x1a84/0x2d60
[  379.865604][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.872839][T18360]  do_syscall_64+0xc9/0x1c0
[  379.877685][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.888133][T18360]  ? clear_bhb_loop+0x55/0xb0
[  379.893753][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.898225][T18360]  ? clear_bhb_loop+0x55/0xb0
[  379.898245][T18360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.898289][T18360] RIP: 0033:0x7fc08f2b9eb9
[  379.898303][T18360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.908187][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.918459][T18360] RSP: 002b:00007fc08df37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  379.918480][T18360] RAX: ffffffffffffffda RBX: 00007fc08f455f80 RCX: 00007fc08f2b9eb9
[  379.918492][T18360] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000300
[  379.923131][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.923145][T18164] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.927852][T18360] RBP: 00007fc08df37090 R08: 0000000000000000 R09: 0000000000000000
[  379.927866][T18360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  379.937714][T18164] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.942118][T18360] R13: 0000000000000000 R14: 00007fc08f455f80 R15: 00007ffc0a9d4de8
[  380.090331][T18360]  </TASK>
[  380.097428][T18164] batman_adv: batadv0: Interface activated: batadv_slave_1
[  380.106124][T18164] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  380.114904][T18164] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  380.123589][T18164] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  380.132311][T18164] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  380.201270][T18368] loop0: detected capacity change from 0 to 1024
[  380.217629][T18371] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.224981][T18371] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.247902][T18368] EXT4-fs error (device loop0): __ext4_fill_super:5435: inode #2: comm syz.0.4167: casefold flag without casefold feature
[  380.284635][T18378] loop1: detected capacity change from 0 to 512
[  380.292865][T18368] EXT4-fs (loop0): get root inode failed
[  380.298610][T18368] EXT4-fs (loop0): mount failed
[  380.308229][T18378] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  380.330104][T18381] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4170'.
[  380.339725][T18378] EXT4-fs (loop1): 1 truncate cleaned up
[  380.398268][T18378] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  380.411001][T18384] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  380.437370][T18035] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.538484][T18407] loop3: detected capacity change from 0 to 764
[  380.547586][T18407] rock: directory entry would overflow storage
[  380.553774][T18407] rock: sig=0x4654, size=5, remaining=4
[  380.561668][T18407] rock: directory entry would overflow storage
[  380.567969][T18407] rock: sig=0x4f50, size=4, remaining=3
[  380.573558][T18407] iso9660: Corrupted directory entry in block 4 of inode 1792
[  380.608310][T18416] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4183'.
[  380.617612][T18414] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4183'.
[  380.809642][T18434] loop3: detected capacity change from 0 to 512
[  380.817940][T18434] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  380.832153][T18434] EXT4-fs (loop3): 1 truncate cleaned up
[  380.836110][T18436] loop2: detected capacity change from 0 to 128
[  380.842601][T18434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  380.846198][T18436] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  380.872029][T18436] ext4 filesystem being mounted at /102/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  380.883802][T16321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.918956][T18421] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=18421 comm=syz.4.4184
[  380.921580][T18441] loop3: detected capacity change from 0 to 764
[  380.942438][T18441] rock: directory entry would overflow storage
[  380.948777][T18441] rock: sig=0x4654, size=5, remaining=4
[  380.956886][T18441] rock: directory entry would overflow storage
[  380.963058][T18441] rock: sig=0x4f50, size=4, remaining=3
[  380.968638][T18441] iso9660: Corrupted directory entry in block 4 of inode 1792
[  380.976725][T16631] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  381.098010][T18456] loop4: detected capacity change from 0 to 512
[  381.118564][T18456] EXT4-fs: inline encryption not supported
[  381.152918][T18456] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  381.170454][T18463] loop3: detected capacity change from 0 to 512
[  381.194723][T18463] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  381.208232][T18456] EXT4-fs (loop4): mount failed
[  381.220761][T18456] ==================================================================
[  381.229045][T18456] BUG: KCSAN: data-race in mlock_new_folio / need_mlock_drain
[  381.236529][T18456] 
[  381.238851][T18456] read-write to 0xffff888237d2b370 of 1 bytes by task 18458 on cpu 1:
[  381.247000][T18456]  mlock_new_folio+0x114/0x200
[  381.251854][T18456]  folio_add_lru_vma+0x5d/0x60
[  381.256614][T18456]  handle_mm_fault+0x246c/0x2a30
[  381.261544][T18456]  __get_user_pages+0x499/0x10d0
[  381.266475][T18456]  __mm_populate+0x25b/0x3b0
[  381.271060][T18456]  __se_sys_mlockall+0x2c5/0x370
[  381.275993][T18456]  __x64_sys_mlockall+0x1f/0x30
[  381.280868][T18456]  x64_sys_call+0x1e3a/0x2d60
[  381.285539][T18456]  do_syscall_64+0xc9/0x1c0
[  381.290030][T18456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.295920][T18456] 
[  381.298226][T18456] read to 0xffff888237d2b370 of 1 bytes by task 18456 on cpu 0:
[  381.305841][T18456]  need_mlock_drain+0x30/0x50
[  381.310554][T18456]  __lru_add_drain_all+0x235/0x410
[  381.315662][T18456]  lru_add_drain_all+0x10/0x20
[  381.320419][T18456]  invalidate_bdev+0x47/0x70
[  381.325008][T18456]  ext4_fill_super+0x6f3/0x39e0
[  381.329858][T18456]  get_tree_bdev+0x256/0x2e0
[  381.334440][T18456]  ext4_get_tree+0x1c/0x30
[  381.338854][T18456]  vfs_get_tree+0x56/0x1e0
[  381.343261][T18456]  do_new_mount+0x227/0x690
[  381.347755][T18456]  path_mount+0x49b/0xb30
[  381.352075][T18456]  __se_sys_mount+0x27c/0x2d0
[  381.356743][T18456]  __x64_sys_mount+0x67/0x80
[  381.361325][T18456]  x64_sys_call+0x203e/0x2d60
[  381.365999][T18456]  do_syscall_64+0xc9/0x1c0
[  381.370491][T18456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.376392][T18456] 
[  381.378697][T18456] value changed: 0x17 -> 0x1d
[  381.383380][T18456] 
[  381.385686][T18456] Reported by Kernel Concurrency Sanitizer on:
[  381.391819][T18456] CPU: 0 UID: 0 PID: 18456 Comm: syz.4.4197 Not tainted 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0
[  381.402590][T18456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  381.412632][T18456] ==================================================================
[  381.430472][T18463] EXT4-fs (loop3): 1 truncate cleaned up
[  381.437318][T18463] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  381.465859][T16321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.