last executing test programs:

5.811768184s ago: executing program 0 (id=3374):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = syz_io_uring_setup(0x4175, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0})
io_uring_enter(r4, 0x569, 0x0, 0x0, 0x0, 0x57)
ioctl$TCSETSW2(r3, 0x5403, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, "23f555d9adb52d4408020eadd1beaa82dc5ecf"})
ioctl$TIOCGPGRP(r2, 0x5437, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x400e, &(0x7f00000002c0)={[{@i_version}, {@nobh}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@nogrpid}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000c50000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x2c, r11, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_V4={0x8, 0x8, @private}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r12=>0x0})
sendmsg$NL802154_CMD_GET_SEC_DEV(r7, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x3c, r8, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004}, 0x400c010)
lchown(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

3.870021809s ago: executing program 0 (id=3396):
socket$kcm(0x10, 0x0, 0x4)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

3.093765906s ago: executing program 1 (id=3407):
syz_open_dev$evdev(0x0, 0x186c, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000280)={0x1, &(0x7f0000000240)=[{}]}, 0x10)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB='<\x00\x00', @ANYRES16, @ANYBLOB], 0x3c}}, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)

2.954392288s ago: executing program 0 (id=3412):
socket$kcm(0x10, 0x2, 0x4)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

2.742389356s ago: executing program 4 (id=3414):
io_uring_setup(0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$9p_tcp(0x0, &(0x7f0000000540)='./file0\x00', &(0x7f0000000580), 0x0, 0x0)

2.666429212s ago: executing program 4 (id=3415):
prlimit64(0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c0000002000010400000000000000000a0000000000000000000000080017004e224e22080018"], 0x2c}}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)={0x7c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_TUPLE_MASTER={0x24, 0xe, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}]}, 0x7c}}, 0x0)
pause()
r4 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setsig(r4, 0xa, 0x13)
fcntl$setlease(r4, 0x400, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r4, 0x89fa, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000080)={@private0, @broadcast, 0x1e, 0x8}})
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

1.98742223s ago: executing program 0 (id=3417):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = syz_io_uring_setup(0x4175, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0})
io_uring_enter(r4, 0x569, 0x0, 0x0, 0x0, 0x57)
ioctl$TCSETSW2(r3, 0x5403, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, "23f555d9adb52d4408020eadd1beaa82dc5ecf"})
ioctl$TIOCGPGRP(r2, 0x5437, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x400e, &(0x7f00000002c0)={[{@i_version}, {@nobh}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@nogrpid}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000c50000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x2c, r11, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_V4={0x8, 0x8, @private}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r12=>0x0})
sendmsg$NL802154_CMD_GET_SEC_DEV(r7, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x3c, r8, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4004}, 0x400c010)
lchown(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

1.823910675s ago: executing program 4 (id=3418):
socket(0x1e, 0x80005, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb0100180000000000000040000000400000000200000000000000000000040400000000000000000000010500000008000000000000000000000300000000020000000200000000000000000000000000000d"], 0x0, 0x5a}, 0x20)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x18}}, 0x0)
getsockname$packet(r2, &(0x7f0000000300)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r3, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r6], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newtfilter={0x24, 0x10, 0xc27, 0x0, 0x0, {0x0, 0x0, 0x74, r3, {0xc}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

1.815172545s ago: executing program 3 (id=3419):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000000)=@framed={{}, [@printk={@s, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}, @call={0x85, 0x0, 0x0, 0x8}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x8, 0x8, &(0x7f00000002c0)="0000ff0cffffa000", &(0x7f0000000300)=""/8, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00')
r1 = semget$private(0x0, 0x4000000009, 0x0)
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000540)='./binderfs2/custom1\x00')
semop(r1, &(0x7f0000000500), 0x0)
semop(0x0, &(0x7f0000000000)=[{0x4, 0x8001}, {0x4, 0x7f}], 0x2)
clock_gettime(0x0, &(0x7f00000001c0)={<r2=>0x0, <r3=>0x0})
semtimedop(0x0, &(0x7f0000000140)=[{0x1, 0x1, 0x800}, {}, {0x3, 0xfffc}, {0x2, 0x73aa, 0x1000}, {0x4, 0x8, 0x1000}, {0x4, 0x7, 0x1800}, {0x4, 0x80, 0x800}], 0x7, &(0x7f0000000580)={r2, r3+10000000})
semctl$IPC_RMID(0x0, 0x0, 0x0)

1.553713077s ago: executing program 4 (id=3420):
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x4004551e, &(0x7f0000000380)={0x0, 0x0, "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"})
ioctl$USBDEVFS_CLEAR_HALT(0xffffffffffffffff, 0x5514, 0x0)

1.420216228s ago: executing program 3 (id=3421):
mlock(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
capset(0x0, 0x0)
socket$inet6(0xa, 0x5, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='mm_page_free\x00', r0}, 0x10)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
r1 = socket(0x2c, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r2, &(0x7f0000000140), &(0x7f0000000080)=@udp6=r1}, 0x20)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001c2df6f270000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r5}, 0x10)
sendmsg$nl_xfrm(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="400100001a0013070000000000000000fe8000000000000000000000000000aaff01000000000000000000000000000100000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414aa196fe6b30c7de60000000000000000000000000000000033000000ac1414000000000000000000000000007b07000000000000000000000000000009000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000008f0b74bb53273fa0000000000000feffcdde5a00048ae71087deffff0000000000000000020002008000000000000000480001007368613100"/255], 0x140}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000000c0)=<r6=>0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', <r8=>0x0})
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="500000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0021000000000000280012800b0001006d6163736563000018000200050009000000000008000500", @ANYRES32=r8, @ANYBLOB], 0x50}}, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}]}, 0x1c}}, 0x0)
write$nci(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="6105010303039bddb70c1b64940602046b7f06beacfe46fd1817"], 0x1a)
r11 = socket(0x2c, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000140), &(0x7f0000000080)=@tcp6=r11, 0x1}, 0x20)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/profiling', 0xca000, 0x8)
socket$inet6_dccp(0xa, 0x6, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x4, 0x0, 0x2, 0x0, 0x82, 0x0, 0x11, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0x48000000000}, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0x6, 0xffffffffffffffff, 0x0)

1.420074189s ago: executing program 4 (id=3422):
socket$kcm(0x10, 0x0, 0x4)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

1.419957398s ago: executing program 3 (id=3423):
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r1, &(0x7f0000000200), 0xf000)

1.378528792s ago: executing program 3 (id=3424):
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000000)={0x4000000, 0x0, 0x0, 0x0, 0x0, "fea353c9d402d5881bba1eba4cc49f6a5b7f52"})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x4000000000002, 0x0, &(0x7f0000000100))
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x7, 0x6, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x13, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f00000002c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r6=>0x0})
r7 = socket$inet6_sctp(0xa, 0x0, 0x84)
socket$inet(0x2, 0x80001, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000440)=@assoc_value={<r8=>0x0}, &(0x7f0000000300)=0x8)
getsockopt$inet_sctp6_SCTP_CONTEXT(r7, 0x84, 0x76, &(0x7f0000000000)={r8}, &(0x7f0000000080)=0x8)
sendmsg$BATADV_CMD_TP_METER(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000001180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000b00000000000a000900aaaaaaaaaaaa000008000300", @ANYRES32=r6], 0x30}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
inotify_init()
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000300)="10", 0x1}], 0x1, 0x0)

1.212281456s ago: executing program 1 (id=3426):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0x7c8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x24, 0x60000000}, 0x50)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x8c, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

1.192822198s ago: executing program 2 (id=3427):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x50)
ioctl$BLKROGET(0xffffffffffffffff, 0x125e, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000a40), 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(0xffffffffffffffff, 0x84, 0x65, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000010c0)={0x2, 0x80, 0xb7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f00000002c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, r3})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x3, 0x4, 0x4, 0xfffffff7, 0x20, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x18, 0x7, &(0x7f00000001c0)=ANY=[], &(0x7f0000000a00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800200}, 0x90)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
dup3(0xffffffffffffffff, r4, 0x80000)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x16, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="b4000000006800000f10ef000000050000aa0000000000000000040000000000d91be20b5b1e0b92cf0b0d4186ba676048d8914942bfdc3b333860816b3ef0a5669da6ab3eefa100fc5a40d027a43d843bee35c8719e9204e777816c16c0973dff48dba99bf4ce1fe8994f4b0af55cac0c18d8b5ecdee42ec9719e83188af2c8bf1ce3b550b82340759e3d7590"], &(0x7f0000003ff6)='GPL\x00', 0x0, 0xba, &(0x7f000000cf3d)=""/186, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4668536e}, 0x10}, 0xad)
io_setup(0xffff, &(0x7f0000000780))
io_setup(0x9, &(0x7f00000014c0))
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000540)=[{0x6}, {0x6}]})
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x4000, 0x2)
socket$inet6_udplite(0xa, 0x2, 0x88)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1.111518355s ago: executing program 1 (id=3428):
prlimit64(0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c0000002000010400000000000000000a0000000000000000000000080017004e224e22080018"], 0x2c}}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)={0x7c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_TUPLE_MASTER={0x24, 0xe, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}]}, 0x7c}}, 0x0)
pause()
r4 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setsig(r4, 0xa, 0x13)
fcntl$setlease(r4, 0x400, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r4, 0x89fa, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000080)={@private0, @broadcast, 0x1e, 0x8}})
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

922.930921ms ago: executing program 0 (id=3429):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0x110, 0x0, &(0x7f0000000240)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)
pause()

564.270101ms ago: executing program 4 (id=3430):
r0 = getpid()
r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000280)={0x1, &(0x7f0000000140)=[{0x6}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_io_uring_setup(0x6d0c, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f00000000c0), &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_setup(0x1866, &(0x7f00000003c0), &(0x7f0000000040)=<r4=>0x0, 0x0)
syz_io_uring_submit(r4, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r2, 0x184d, 0x0, 0x0, 0x0, 0x0)
readv(r1, &(0x7f0000000480)=[{&(0x7f0000000240)=""/140, 0x8c}], 0x1)

472.952239ms ago: executing program 3 (id=3431):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000000)=@framed={{}, [@printk={@s, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}, @call={0x85, 0x0, 0x0, 0x8}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x8, 0x8, &(0x7f00000002c0)="0000ff0cffffa000", &(0x7f0000000300)=""/8, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00')
r1 = semget$private(0x0, 0x4000000009, 0x0)
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000540)='./binderfs2/custom1\x00')
semop(r1, &(0x7f0000000500), 0x0)
semop(0x0, &(0x7f0000000000)=[{0x4, 0x8001}, {0x4, 0x7f}], 0x2)
clock_gettime(0x0, &(0x7f00000001c0)={<r2=>0x0, <r3=>0x0})
semtimedop(0x0, &(0x7f0000000140)=[{0x1, 0x1, 0x800}, {}, {0x3, 0xfffc}, {0x2, 0x73aa, 0x1000}, {0x4, 0x8, 0x1000}, {0x4, 0x7, 0x1800}, {0x4, 0x80, 0x800}], 0x7, &(0x7f0000000580)={r2, r3+10000000})
semctl$IPC_RMID(0x0, 0x0, 0x0)

459.37257ms ago: executing program 3 (id=3432):
socket$kcm(0x10, 0x2, 0x4)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

216.240021ms ago: executing program 1 (id=3433):
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x4004551e, &(0x7f0000000380)={0x0, 0x0, "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"})
ioctl$USBDEVFS_CLEAR_HALT(0xffffffffffffffff, 0x5514, 0x0)

215.977031ms ago: executing program 1 (id=3434):
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r1, &(0x7f0000000200), 0xf000)

207.322052ms ago: executing program 2 (id=3435):
mlock(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
capset(0x0, 0x0)
socket$inet6(0xa, 0x5, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='mm_page_free\x00', r0}, 0x10)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
r1 = socket(0x2c, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r2, &(0x7f0000000140), &(0x7f0000000080)=@udp6=r1}, 0x20)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001c2df6f270000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r5}, 0x10)
sendmsg$nl_xfrm(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="400100001a0013070000000000000000fe8000000000000000000000000000aaff01000000000000000000000000000100000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414aa196fe6b30c7de60000000000000000000000000000000033000000ac1414000000000000000000000000007b07000000000000000000000000000009000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000008f0b74bb53273fa0000000000000feffcdde5a00048ae71087deffff0000000000000000020002008000000000000000480001007368613100"/255], 0x140}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000000c0)=<r6=>0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', <r8=>0x0})
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="500000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0021000000000000280012800b0001006d6163736563000018000200050009000000000008000500", @ANYRES32=r8, @ANYBLOB], 0x50}}, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_DEV_UP(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r6}]}, 0x1c}}, 0x0)
write$nci(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="6105010303039bddb70c1b64940602046b7f06beacfe46fd1817"], 0x1a)
r11 = socket(0x2c, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000140), &(0x7f0000000080)=@tcp6=r11, 0x1}, 0x20)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/profiling', 0xca000, 0x8)
socket$inet6_dccp(0xa, 0x6, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x4, 0x0, 0x2, 0x0, 0x82, 0x0, 0x11, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0x48000000000}, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x0, 0x6, 0xffffffffffffffff, 0x0)

170.601845ms ago: executing program 1 (id=3436):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = syz_io_uring_setup(0x4175, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0})
io_uring_enter(r4, 0x569, 0x0, 0x0, 0x0, 0x57)
ioctl$TCSETSW2(r3, 0x5403, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, "23f555d9adb52d4408020eadd1beaa82dc5ecf"})
ioctl$TIOCGPGRP(r2, 0x5437, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x400e, &(0x7f00000002c0)={[{@i_version}, {@nobh}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@nogrpid}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000c50000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x2c, r9, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_V4={0x8, 0x8, @private}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan1\x00'})
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000900)=ANY=[], 0xfeeb, 0x0)
lchown(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

129.719618ms ago: executing program 2 (id=3437):
io_uring_setup(0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$9p_tcp(0x0, &(0x7f0000000540)='./file0\x00', &(0x7f0000000580), 0x0, 0x0)

129.373258ms ago: executing program 2 (id=3438):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0x7c8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x24, 0x60000000}, 0x50)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x8c, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

113.54438ms ago: executing program 2 (id=3439):
r0 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000480)='./file0\x00', 0x1018010, &(0x7f00000004c0)=ANY=[], 0x8, 0x316, &(0x7f000000a400)="$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")
r1 = socket$netlink(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), r1)
sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00032abd7000fedbdf25010000000000038000000600fc020000000000000000000000000000000007004e210000000008000700000000000800010022000000010000000000240001800800090000000000060004004e210000060001000a000000060004004e240000"], 0x78}, 0x1, 0x0, 0x0, 0x9040}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1001}, 0xc)
r5 = io_uring_setup(0x38a0, &(0x7f0000000340))
socket$qrtr(0x2a, 0x2, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'vlan0\x00', <r7=>0x0})
r8 = epoll_create1(0x0)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/stat\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r9, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r8, 0x3, r9, &(0x7f00000000c0)={0x60000005})
epoll_ctl$EPOLL_CTL_MOD(r8, 0x3, r9, &(0x7f0000000000))
r10 = epoll_create1(0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_kthread_stop_ret\x00', r11}, 0x10)
r12 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r12, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001100)=ANY=[], 0x100}, 0x0)
close(r12)
epoll_ctl$EPOLL_CTL_ADD(r10, 0x1, r8, &(0x7f0000000180))
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x0)
r13 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r13, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYRESDEC=r0, @ANYRES32=r7, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c", @ANYRES8=r13, @ANYRES64=r5, @ANYBLOB="82b73462b7edb6c2520978a7ffb5d7e06ff4c19d3598c17d1c9c30aceff029cc75d9ec20da8e50825bbbc78e23148d0fe0bc4f7b3d6f0741b2fe82c115dd85483772b5851a801af12a4620870a3b19ef618e7b7829c18998653671a94bd025e33336a6018ea3ce92ec19c18b8afef261ba2bd1a4ca1b10548879ab64a46ee639c6e883fd9a4d4da136", @ANYRES8=r3], 0xb4}}, 0x0)

277.92µs ago: executing program 2 (id=3440):
socket$kcm(0x10, 0x0, 0x4)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev, 0xd}, 0x1c)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

0s ago: executing program 0 (id=3441):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r3)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000003a80)={0x0, 0x1c, &(0x7f0000003980)=[@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}]}, &(0x7f0000003ac0)=0x10)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x6d, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xc00}, &(0x7f00000000c0)=0x3930)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$UHID_CREATE(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)

kernel console output (not intermixed with test programs):

stack_lvl+0xf2/0x150
[  262.603529][T14548] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  262.603654][T12496]  dump_stack+0x15/0x20
[  262.608703][T14548] System zones: 
[  262.616271][T12496]  dump_header+0x83/0x2d0
[  262.616326][T12496]  oom_kill_process+0x33e/0x4c0
[  262.620500][T14548] 0-2
[  262.624065][T12496]  out_of_memory+0x9af/0xbe0
[  262.629330][T14548] , 18-18
[  262.633351][T12496]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  262.635949][T14548] , 34-34
[  262.640495][T12496]  mem_cgroup_out_of_memory+0x13e/0x190
[  262.643428][T14548] 
[  262.649465][T12496]  try_charge_memcg+0x745/0xcd0
[  262.657722][T14548] EXT4-fs error (device loop3): ext4_orphan_get:1420: comm syz.3.3026: bad orphan inode 15
[  262.658134][T12496]  ? _raw_spin_unlock+0x26/0x50
[  262.660615][T14548] ext4_test_bit(bit=14, block=18) = 1
[  262.665295][T12496]  ? radix_tree_lookup+0xf9/0x150
[  262.675294][T14548] is_bad_inode(inode)=0
[  262.680092][T12496]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  262.680193][T12496]  __read_swap_cache_async+0x2b9/0x520
[  262.680234][T12496]  swap_cluster_readahead+0x380/0x3f0
[  262.680264][T12496]  swapin_readahead+0xe2/0x7a0
[  262.680289][T12496]  ? __filemap_get_folio+0x420/0x5b0
[  262.680328][T12496]  ? swap_cache_get_folio+0x6e/0x210
[  262.680352][T12496]  do_swap_page+0x3bc/0x1840
[  262.680389][T12496]  ? hrtimer_try_to_cancel+0x106/0x1d0
[  262.680420][T12496]  ? __rcu_read_lock+0x36/0x50
[  262.680534][T12496]  handle_mm_fault+0x8b9/0x2ac0
[  262.680635][T12496]  exc_page_fault+0x3b9/0x650
[  262.680668][T12496]  asm_exc_page_fault+0x26/0x30
[  262.680700][T12496] RIP: 0033:0x7f87de4d6b85
[  262.680719][T12496] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d be d9 12 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  262.680809][T12496] RSP: 002b:00007fff783dba48 EFLAGS: 00010246
[  262.680827][T12496] RAX: 0000000000000000 RBX: 00000000000000e9 RCX: 00007f87de4d6b83
[  262.680847][T12496] RDX: 00007fff783dba60 RSI: 0000000000000000 RDI: 0000000000000000
[  262.680862][T12496] RBP: 00007fff783dbadc R08: 000000001dea6274 R09: 7fffffffffffffff
[  262.680878][T12496] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032
[  262.680893][T12496] R13: 0000000000000bb8 R14: 000000000003ff22 R15: 000000000003fee3
[  262.680932][T12496]  </TASK>
[  262.681146][T12496] memory: usage 307200kB, limit 307200kB, failcnt 757
[  262.681163][T12496] memory+swap: usage 307388kB, limit 9007199254740988kB, failcnt 0
[  262.681178][T12496] kmem: usage 307072kB, limit 9007199254740988kB, failcnt 0
[  262.681191][T12496] Memory cgroup stats for /syz2:
[  262.733694][T14557] SET target dimension over the limit!
[  262.733842][T14548] NEXT_ORPHAN(inode)=2264924160
[  262.792235][T12496] cache 126976
[  262.798068][T14548] max_ino=32
[  262.798078][T14548] i_nlink=0
[  262.806088][T12496] rss 0
[  262.806098][T12496] shmem 0
[  262.806106][T12496] mapped_file 126976
[  262.806132][T12496] dirty 126976
[  262.806140][T12496] writeback 0
[  262.806148][T12496] workingset_refault_anon 104
[  262.806158][T12496] workingset_refault_file 296
[  262.806167][T12496] swap 192512
[  262.806175][T12496] swapcached 4096
[  262.806207][T12496] pgpgin 116883
[  262.806215][T12496] pgpgout 116851
[  262.806223][T12496] pgfault 148381
[  262.806231][T12496] pgmajfault 74
[  262.806238][T12496] inactive_anon 4096
[  262.806246][T12496] active_anon 0
[  262.806252][T12496] inactive_file 126976
[  262.806290][T12496] active_file 0
[  262.806298][T12496] unevictable 0
[  262.806306][T12496] hierarchical_memory_limit 314572800
[  262.806317][T12496] hierarchical_memsw_limit 9223372036854771712
[  262.806328][T12496] total_cache 126976
[  262.806335][T12496] total_rss 0
[  262.806341][T12496] total_shmem 0
[  262.806350][T12496] total_mapped_file 126976
[  262.806359][T12496] total_dirty 126976
[  262.806367][T12496] total_writeback 0
[  262.806376][T12496] total_workingset_refault_anon 104
[  262.806386][T12496] total_workingset_refault_file 296
[  262.806399][T12496] total_swap 192512
[  262.806407][T12496] total_swapcached 4096
[  262.806416][T12496] total_pgpgin 116883
[  262.806423][T12496] total_pgpgout 116851
[  262.806430][T12496] total_pgfault 148381
[  262.806439][T12496] total_pgmajfault 74
[  262.806447][T12496] total_inactive_anon 4096
[  262.806456][T12496] total_active_anon 0
[  262.806465][T12496] total_inactive_file 126976
[  262.806474][T12496] total_active_file 0
[  262.806483][T12496] total_unevictable 0
[  262.806548][T12496] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3015,pid=14510,uid=0
[  262.806631][T12496] Memory cgroup out of memory: Killed process 14510 (syz.2.3015) total-vm:80752kB, anon-rss:452kB, file-rss:9916kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  262.834917][T14561] TCP: Unexpected MD5 Hash found for [::].0->[ff02::1].20002 [RP]
[  262.898050][T14548] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  263.098932][T14548] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3026: bg 0: block 80: padding at end of block bitmap is not set
[  263.118958][T14548] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  263.131031][T14548] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.177338][T14575] loop1: detected capacity change from 0 to 512
[  263.204896][T14575] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  263.223000][T11900] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.285304][T14581] netlink: 124 bytes leftover after parsing attributes in process `syz.3.3038'.
[  263.295944][T14581] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3038'.
[  263.296104][T14575] /dev/sg0: Can't lookup blockdev
[  263.352872][T14589] netlink: 80 bytes leftover after parsing attributes in process `syz.1.3041'.
[  263.363364][T14589] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3041'.
[  263.372363][T14589] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3041'.
[  263.378178][T14600] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3044'.
[  263.444249][T14606] loop2: detected capacity change from 0 to 1024
[  263.451100][T14606] ext4: Unknown parameter 'pcr'
[  263.542115][T14615] loop2: detected capacity change from 0 to 512
[  263.549232][T14615] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  263.559399][T14615] EXT4-fs (loop2): inodes count not valid: 33 vs 32
[  263.660335][T14617] loop2: detected capacity change from 0 to 512
[  263.678234][T14617] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  263.691157][T14617] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  263.732336][T12496] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.289412][T14647] loop0: detected capacity change from 0 to 256
[  264.298724][T14647] FAT-fs (loop0): Unrecognized mount option "no ots" or missing value
[  264.324979][T14650] netlink: 'syz.3.3060': attribute type 5 has an invalid length.
[  264.364738][T14654] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  264.551258][T14621] syz.2.3049 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  264.565568][T14621] CPU: 0 PID: 14621 Comm: syz.2.3049 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  264.575738][T14621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  264.585885][T14621] Call Trace:
[  264.589175][T14621]  <TASK>
[  264.592106][T14621]  dump_stack_lvl+0xf2/0x150
[  264.596832][T14621]  dump_stack+0x15/0x20
[  264.601024][T14621]  dump_header+0x83/0x2d0
[  264.605359][T14621]  oom_kill_process+0x33e/0x4c0
[  264.610285][T14621]  out_of_memory+0x9af/0xbe0
[  264.614914][T14621]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  264.621096][T14621]  mem_cgroup_out_of_memory+0x13e/0x190
[  264.626722][T14621]  try_charge_memcg+0x745/0xcd0
[  264.631716][T14621]  ? get_page_from_freelist+0x1a30/0x1a70
[  264.637582][T14621]  obj_cgroup_charge_pages+0xbd/0x1d0
[  264.642985][T14621]  __memcg_kmem_charge_page+0x9d/0x170
[  264.648479][T14621]  __alloc_pages_noprof+0x1bc/0x360
[  264.653786][T14621]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  264.659173][T14621]  alloc_pages_noprof+0xe1/0x100
[  264.664125][T14621]  __vmalloc_node_range_noprof+0x719/0xef0
[  264.669979][T14621]  kvmalloc_node_noprof+0x121/0x170
[  264.675188][T14621]  ? ip_set_alloc+0x1f/0x30
[  264.679712][T14621]  ip_set_alloc+0x1f/0x30
[  264.684182][T14621]  hash_netiface_create+0x273/0x730
[  264.689391][T14621]  ? __nla_parse+0x40/0x60
[  264.693816][T14621]  ? __pfx_hash_netiface_create+0x10/0x10
[  264.699603][T14621]  ip_set_create+0x359/0x8a0
[  264.704194][T14621]  ? memchr+0x1/0x50
[  264.708166][T14621]  ? __nla_parse+0x40/0x60
[  264.712587][T14621]  nfnetlink_rcv_msg+0x4a9/0x570
[  264.717561][T14621]  netlink_rcv_skb+0x12c/0x230
[  264.722379][T14621]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  264.727919][T14621]  nfnetlink_rcv+0x16c/0x15b0
[  264.732621][T14621]  ? kmem_cache_free+0xd8/0x280
[  264.737494][T14621]  ? nlmon_xmit+0x51/0x60
[  264.741844][T14621]  ? __kfree_skb+0x102/0x150
[  264.746459][T14621]  ? consume_skb+0x57/0x180
[  264.750962][T14621]  ? nlmon_xmit+0x51/0x60
[  264.755346][T14621]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  264.760657][T14621]  ? __dev_queue_xmit+0xb21/0x1e50
[  264.765787][T14621]  ? ref_tracker_free+0x3a5/0x410
[  264.770873][T14621]  ? __netlink_deliver_tap+0x495/0x4c0
[  264.776344][T14621]  netlink_unicast+0x58d/0x660
[  264.781175][T14621]  netlink_sendmsg+0x5ca/0x6e0
[  264.785967][T14621]  ? __pfx_netlink_sendmsg+0x10/0x10
[  264.791253][T14621]  __sock_sendmsg+0x140/0x180
[  264.795957][T14621]  ____sys_sendmsg+0x312/0x410
[  264.800799][T14621]  __sys_sendmsg+0x1e9/0x280
[  264.805456][T14621]  ? futex_wait+0x18e/0x1c0
[  264.810003][T14621]  __x64_sys_sendmsg+0x46/0x50
[  264.814813][T14621]  x64_sys_call+0xb25/0x2d70
[  264.819408][T14621]  do_syscall_64+0xc9/0x1c0
[  264.823959][T14621]  ? clear_bhb_loop+0x55/0xb0
[  264.828709][T14621]  ? clear_bhb_loop+0x55/0xb0
[  264.833477][T14621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.839375][T14621] RIP: 0033:0x7f87de4a4bd9
[  264.843802][T14621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.863480][T14621] RSP: 002b:00007f87dd726048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  264.871929][T14621] RAX: ffffffffffffffda RBX: 00007f87de632f60 RCX: 00007f87de4a4bd9
[  264.879899][T14621] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  264.887884][T14621] RBP: 00007f87de513e60 R08: 0000000000000000 R09: 0000000000000000
[  264.895918][T14621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  264.903930][T14621] R13: 000000000000000b R14: 00007f87de632f60 R15: 00007fff783db788
[  264.911904][T14621]  </TASK>
[  264.915399][T14621] memory: usage 307200kB, limit 307200kB, failcnt 990
[  264.922604][T14621] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0
[  264.930529][T14621] kmem: usage 307060kB, limit 9007199254740988kB, failcnt 0
[  264.937881][T14621] Memory cgroup stats for /syz2:
[  264.938089][T14621] cache 126976
[  264.947300][T14621] rss 0
[  264.950062][T14621] shmem 0
[  264.952990][T14621] mapped_file 126976
[  264.956915][T14621] dirty 126976
[  264.960302][T14621] writeback 0
[  264.963633][T14621] workingset_refault_anon 146
[  264.968326][T14621] workingset_refault_file 360
[  264.973003][T14621] swap 253952
[  264.976925][T14621] swapcached 12288
[  264.980644][T14621] pgpgin 117523
[  264.984213][T14621] pgpgout 117489
[  264.987805][T14621] pgfault 149394
[  264.991433][T14621] pgmajfault 91
[  264.994905][T14621] inactive_anon 12288
[  264.998967][T14621] active_anon 0
[  265.002469][T14621] inactive_file 126976
[  265.007199][T14621] active_file 0
[  265.010666][T14621] unevictable 0
[  265.014397][T14621] hierarchical_memory_limit 314572800
[  265.019844][T14621] hierarchical_memsw_limit 9223372036854771712
[  265.026028][T14621] total_cache 126976
[  265.029971][T14621] total_rss 0
[  265.033264][T14621] total_shmem 0
[  265.037276][T14621] total_mapped_file 126976
[  265.041679][T14621] total_dirty 126976
[  265.045589][T14621] total_writeback 0
[  265.049414][T14621] total_workingset_refault_anon 146
[  265.054636][T14621] total_workingset_refault_file 360
[  265.059865][T14621] total_swap 253952
[  265.063741][T14621] total_swapcached 12288
[  265.068563][T14621] total_pgpgin 117523
[  265.072619][T14621] total_pgpgout 117489
[  265.076795][T14621] total_pgfault 149394
[  265.080880][T14621] total_pgmajfault 91
[  265.084857][T14621] total_inactive_anon 12288
[  265.089406][T14621] total_active_anon 0
[  265.093403][T14621] total_inactive_file 126976
[  265.098545][T14621] total_active_file 0
[  265.102549][T14621] total_unevictable 0
[  265.106573][T14621] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3049,pid=14620,uid=0
[  265.121701][T14621] Memory cgroup out of memory: Killed process 14620 (syz.2.3049) total-vm:80752kB, anon-rss:452kB, file-rss:9920kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  265.221417][   T29] kauditd_printk_skb: 45 callbacks suppressed
[  265.221447][   T29] audit: type=1326 audit(1720914482.049:3682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14659 comm="syz.3.3064" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x0
[  265.283616][   T29] audit: type=1400 audit(1720914482.109:3683): avc:  denied  { setopt } for  pid=14661 comm="syz.0.3065" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  265.316081][T14662] loop0: detected capacity change from 0 to 2048
[  265.329172][   T29] audit: type=1400 audit(1720914482.159:3684): avc:  denied  { nlmsg_write } for  pid=14657 comm="syz.1.3063" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  265.357809][T14662]  loop0: p2 p3 < > p4 < p5 >
[  265.362515][T14662] loop0: partition table partially beyond EOD, truncated
[  265.369727][   T29] audit: type=1400 audit(1720914482.159:3685): avc:  denied  { read } for  pid=14659 comm="syz.3.3064" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  265.375982][T14662] loop0: p2 start 16908804 is beyond EOD, truncated
[  265.396505][T14662] loop0: p3 start 4284289 is beyond EOD, truncated
[  265.417560][T14662] loop0: p5 start 16908804 is beyond EOD, truncated
[  265.442028][   T29] audit: type=1400 audit(1720914482.269:3686): avc:  denied  { connect } for  pid=14668 comm="syz.1.3067" lport=259 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  265.520998][T14680] loop2: detected capacity change from 0 to 2048
[  265.556908][T14680]  loop2: p1 < > p4
[  265.561655][T14680] loop2: p4 size 8388608 extends beyond EOD, truncated
[  265.610349][T14694] loop0: detected capacity change from 0 to 512
[  265.629137][T14694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.643060][T14694] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  265.682926][T14355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.756870][T14700] __nla_validate_parse: 2 callbacks suppressed
[  265.756890][T14700] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3069'.
[  265.832865][T14704] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3075'.
[  265.905912][   T29] audit: type=1400 audit(1720914482.699:3687): avc:  denied  { accept } for  pid=14702 comm="syz.0.3075" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  266.096450][   T29] audit: type=1400 audit(1720914482.919:3688): avc:  denied  { watch watch_reads } for  pid=14710 comm="syz.0.3077" path="/16" dev="tmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  266.451092][T14721] loop1: detected capacity change from 0 to 256
[  266.522810][T14727] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27664 sclass=netlink_route_socket pid=14727 comm=syz.2.3083
[  266.568166][   T29] audit: type=1326 audit(1720914483.399:3689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14733 comm="syz.2.3086" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f87de4a4bd9 code=0x0
[  266.620535][T14739] loop4: detected capacity change from 0 to 512
[  266.659102][T14739] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.691544][T14739] ext4 filesystem being mounted at /322/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.733753][ T9816] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.010828][T14714] syz.3.3079 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  267.022020][T14714] CPU: 0 PID: 14714 Comm: syz.3.3079 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  267.032200][T14714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  267.042265][T14714] Call Trace:
[  267.045666][T14714]  <TASK>
[  267.048633][T14714]  dump_stack_lvl+0xf2/0x150
[  267.053273][T14714]  dump_stack+0x15/0x20
[  267.057527][T14714]  dump_header+0x83/0x2d0
[  267.061857][T14714]  oom_kill_process+0x33e/0x4c0
[  267.066791][T14714]  out_of_memory+0x9af/0xbe0
[  267.071515][T14714]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  267.077643][T14714]  mem_cgroup_out_of_memory+0x13e/0x190
[  267.083324][T14714]  try_charge_memcg+0x745/0xcd0
[  267.088265][T14714]  ? _raw_spin_unlock+0x26/0x50
[  267.093177][T14714]  ? radix_tree_lookup+0xf9/0x150
[  267.098260][T14714]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  267.104340][T14714]  __read_swap_cache_async+0x2b9/0x520
[  267.109801][T14714]  swap_cluster_readahead+0x276/0x3f0
[  267.115268][T14714]  swapin_readahead+0xe2/0x7a0
[  267.120278][T14714]  ? __filemap_get_folio+0x420/0x5b0
[  267.125566][T14714]  ? swap_cache_get_folio+0x6e/0x210
[  267.130894][T14714]  do_swap_page+0x3bc/0x1840
[  267.135619][T14714]  ? cgroup_rstat_updated+0x99/0x550
[  267.140928][T14714]  ? __rcu_read_lock+0x36/0x50
[  267.145917][T14714]  handle_mm_fault+0x8b9/0x2ac0
[  267.150814][T14714]  exc_page_fault+0x3b9/0x650
[  267.155520][T14714]  asm_exc_page_fault+0x26/0x30
[  267.160371][T14714] RIP: 0033:0x7fcb2cdd8564
[  267.164808][T14714] Code: 00 69 3d 53 b1 de 00 e8 03 00 00 48 8d 1d 14 9a 2b 00 e8 df b5 12 00 eb 11 0f 1f 44 00 00 48 81 c3 d8 00 00 00 48 39 dd 74 bc <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 87 ee ff ff eb
[  267.184480][T14714] RSP: 002b:00007fffb73fed30 EFLAGS: 00010216
[  267.190562][T14714] RAX: 0000000000000000 RBX: 00007fcb2d092038 RCX: 0000000000000000
[  267.198545][T14714] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555745f4808
[  267.206531][T14714] RBP: 00007fcb2d093a60 R08: 0000000000000000 R09: 7fffffffffffffff
[  267.214626][T14714] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000412d1
[  267.222620][T14714] R13: 0000000000000226 R14: 00007fcb2d093a60 R15: 00007fcb2d092038
[  267.230661][T14714]  </TASK>
[  267.234044][T14714] memory: usage 307200kB, limit 307200kB, failcnt 542
[  267.241160][T14714] memory+swap: usage 307448kB, limit 9007199254740988kB, failcnt 0
[  267.249404][T14714] kmem: usage 307044kB, limit 9007199254740988kB, failcnt 0
[  267.256760][T14714] Memory cgroup stats for /syz3:
[  267.259597][T14714] cache 147456
[  267.259610][T14714] rss 4096
[  267.259618][T14714] shmem 0
[  267.259627][T14714] mapped_file 147456
[  267.259636][T14714] dirty 147456
[  267.259646][T14714] writeback 8192
[  267.259654][T14714] workingset_refault_anon 440
[  267.259664][T14714] workingset_refault_file 801
[  267.294281][T14714] swap 253952
[  267.294291][T14714] swapcached 12288
[  267.294334][T14714] pgpgin 109845
[  267.294359][T14714] pgpgout 109806
[  267.308609][T14714] pgfault 140059
[  267.308638][T14714] pgmajfault 214
[  267.308648][T14714] inactive_anon 12288
[  267.308657][T14714] active_anon 0
[  267.308665][T14714] inactive_file 147456
[  267.308757][T14714] active_file 0
[  267.308766][T14714] unevictable 0
[  267.308775][T14714] hierarchical_memory_limit 314572800
[  267.308785][T14714] hierarchical_memsw_limit 9223372036854771712
[  267.346011][T14714] total_cache 147456
[  267.346021][T14714] total_rss 4096
[  267.346028][T14714] total_shmem 0
[  267.346035][T14714] total_mapped_file 147456
[  267.346043][T14714] total_dirty 147456
[  267.346052][T14714] total_writeback 8192
[  267.346061][T14714] total_workingset_refault_anon 440
[  267.346076][T14714] total_workingset_refault_file 801
[  267.346086][T14714] total_swap 253952
[  267.346095][T14714] total_swapcached 12288
[  267.346104][T14714] total_pgpgin 109845
[  267.346113][T14714] total_pgpgout 109806
[  267.346122][T14714] total_pgfault 140059
[  267.346166][T14714] total_pgmajfault 214
[  267.346175][T14714] total_inactive_anon 12288
[  267.346184][T14714] total_active_anon 0
[  267.346194][T14714] total_inactive_file 147456
[  267.346203][T14714] total_active_file 0
[  267.346212][T14714] total_unevictable 0
[  267.346222][T14714] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.3079,pid=14714,uid=0
[  267.346309][T14714] Memory cgroup out of memory: Killed process 14714 (syz.3.3079) total-vm:80752kB, anon-rss:452kB, file-rss:9924kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  267.418799][T14762] FAULT_INJECTION: forcing a failure.
[  267.418799][T14762] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  267.418828][T14762] CPU: 0 PID: 14762 Comm: syz.2.3094 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  267.418857][T14762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  267.418872][T14762] Call Trace:
[  267.418881][T14762]  <TASK>
[  267.418888][T14762]  dump_stack_lvl+0xf2/0x150
[  267.418924][T14762]  dump_stack+0x15/0x20
[  267.418957][T14762]  should_fail_ex+0x229/0x230
[  267.418985][T14762]  should_fail+0xb/0x10
[  267.419019][T14762]  should_fail_usercopy+0x1a/0x20
[  267.419113][T14762]  _copy_from_user+0x1e/0xd0
[  267.419140][T14762]  copy_msghdr_from_user+0x54/0x2a0
[  267.419166][T14762]  __sys_sendmsg+0x17d/0x280
[  267.419265][T14762]  __x64_sys_sendmsg+0x46/0x50
[  267.419294][T14762]  x64_sys_call+0xb25/0x2d70
[  267.419325][T14762]  do_syscall_64+0xc9/0x1c0
[  267.419406][T14762]  ? clear_bhb_loop+0x55/0xb0
[  267.419490][T14762]  ? clear_bhb_loop+0x55/0xb0
[  267.419522][T14762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.419629][T14762] RIP: 0033:0x7f87de4a4bd9
[  267.419647][T14762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.419672][T14762] RSP: 002b:00007f87dd726048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  267.419696][T14762] RAX: ffffffffffffffda RBX: 00007f87de632f60 RCX: 00007f87de4a4bd9
[  267.419710][T14762] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000003
[  267.419724][T14762] RBP: 00007f87dd7260a0 R08: 0000000000000000 R09: 0000000000000000
[  267.419739][T14762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  267.419830][T14762] R13: 000000000000000b R14: 00007f87de632f60 R15: 00007fff783db788
[  267.419851][T14762]  </TASK>
[  267.771072][T14774] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=784 sclass=netlink_route_socket pid=14774 comm=syz.0.3098
[  267.799039][T14778] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0
[  267.807078][T14780] loop0: detected capacity change from 0 to 512
[  267.808114][T14777] loop2: detected capacity change from 0 to 512
[  267.821458][T14777] EXT4-fs: Ignoring removed mblk_io_submit option
[  267.828271][T14777] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  267.828409][T14780] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  267.839834][T14777] EXT4-fs (loop2): 1 truncate cleaned up
[  267.852024][T14780] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  267.858243][T14777] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  267.900433][T14780] vlan2: entered allmulticast mode
[  267.934667][T14777] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 33556480 > max in inode 18
[  267.954251][T12496] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.969156][   T29] audit: type=1400 audit(1720914484.799:3690): avc:  denied  { write } for  pid=14794 comm="syz.4.3104" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  267.971605][T14795] dccp_invalid_packet: invalid packet type
[  267.995125][   T29] audit: type=1400 audit(1720914484.799:3691): avc:  denied  { view } for  pid=14794 comm="syz.4.3104" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  268.015584][T14355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  268.020044][T14797] loop3: detected capacity change from 0 to 2048
[  268.039574][T14797] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  268.076580][T14807] loop0: detected capacity change from 0 to 512
[  268.113060][T14818] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3108'.
[  268.155576][T14827] loop0: detected capacity change from 0 to 512
[  268.163359][T14827] ext4: Bad value for 'commit'
[  268.177198][T14830] loop4: detected capacity change from 0 to 512
[  268.183951][T14830] EXT4-fs: Ignoring removed mblk_io_submit option
[  268.191857][T14830] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  268.203506][T14830] EXT4-fs (loop4): 1 truncate cleaned up
[  268.209672][T14830] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.233844][T14837] syzkaller1: entered promiscuous mode
[  268.239416][T14837] syzkaller1: entered allmulticast mode
[  268.268699][T14830] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 33556480 > max in inode 18
[  268.286583][ T9816] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.299204][T14848] loop0: detected capacity change from 0 to 512
[  268.306672][T14848] EXT4-fs: Ignoring removed mblk_io_submit option
[  268.313515][T14848] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  268.325837][T14848] EXT4-fs (loop0): 1 truncate cleaned up
[  268.331829][T14848] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.384214][T14859] loop1: detected capacity change from 0 to 512
[  268.392492][T14848] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 33556480 > max in inode 18
[  268.404602][T14859] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  268.418318][T14859] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  268.419216][T14355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.432095][T14863] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3114'.
[  268.455327][T14859] vlan2: entered allmulticast mode
[  268.504161][T13797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  268.543568][T14872] xt_CONNSECMARK: invalid mode: 0
[  268.555543][T14872] loop1: detected capacity change from 0 to 512
[  268.573955][T14872] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.588334][T14872] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  268.840312][T11900] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.515715][    C0] sched: RT throttling activated
[  269.564711][T13797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.590499][T14896] loop0: detected capacity change from 0 to 512
[  269.617669][T14896] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  269.626762][T14898] loop4: detected capacity change from 0 to 512
[  269.633764][T14896] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  269.639845][T14903] x_tables: duplicate underflow at hook 2
[  269.648515][T14898] EXT4-fs: Ignoring removed mblk_io_submit option
[  269.661778][T14898] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  269.674102][T14898] EXT4-fs (loop4): 1 truncate cleaned up
[  269.679685][T14896] vlan2: entered allmulticast mode
[  269.680176][T14898] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  269.764414][T14916] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 33556480 > max in inode 18
[  269.768187][T14355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  269.795461][T14922] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4376 sclass=netlink_route_socket pid=14922 comm=syz.2.3135
[  269.812139][ T9816] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.881562][T14932] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3139'.
[  270.443904][   T29] kauditd_printk_skb: 12 callbacks suppressed
[  270.443921][   T29] audit: type=1400 audit(1720914487.269:3704): avc:  denied  { accept } for  pid=14942 comm="syz.0.3142" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  270.483984][T14945] team0: Port device macvlan0 added
[  270.544773][T14943] loop0: detected capacity change from 0 to 8192
[  270.546795][T14947] loop3: detected capacity change from 0 to 512
[  270.566182][T14943]  loop0: p1 p4
[  270.570194][T14943] loop0: p4 start 50689 is beyond EOD, truncated
[  270.578789][   T29] audit: type=1400 audit(1720914487.419:3705): avc:  denied  { lock } for  pid=14942 comm="syz.0.3142" path="socket:[58557]" dev="sockfs" ino=58557 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  270.606738][T14947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  270.620264][T14947] ext4 filesystem being mounted at /174/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  270.639256][T14947] vlan2: entered allmulticast mode
[  270.664580][T14952] loop1: detected capacity change from 0 to 2048
[  270.671605][T14952] EXT4-fs: Ignoring removed bh option
[  270.691909][T14954] loop2: detected capacity change from 0 to 512
[  270.700105][T14954] EXT4-fs: Ignoring removed mblk_io_submit option
[  270.707586][T11900] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  270.718158][T14952] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.732521][T14954] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  270.751933][T14958] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3146'.
[  270.758511][T14954] EXT4-fs (loop2): 1 truncate cleaned up
[  270.767470][T13797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  270.791084][T14954] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  270.843039][T14938] syz.4.3140 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  270.857964][T14938] CPU: 1 PID: 14938 Comm: syz.4.3140 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  270.868147][T14938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  270.878310][T14938] Call Trace:
[  270.881602][T14938]  <TASK>
[  270.884552][T14938]  dump_stack_lvl+0xf2/0x150
[  270.884600][T14938]  dump_stack+0x15/0x20
[  270.884636][T14938]  dump_header+0x83/0x2d0
[  270.884660][T14938]  oom_kill_process+0x33e/0x4c0
[  270.884738][T14938]  out_of_memory+0x9af/0xbe0
[  270.884793][T14938]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  270.884826][T14938]  mem_cgroup_out_of_memory+0x13e/0x190
[  270.884945][T14938]  try_charge_memcg+0x745/0xcd0
[  270.884977][T14938]  ? get_page_from_freelist+0x1a30/0x1a70
[  270.885119][T14938]  obj_cgroup_charge_pages+0xbd/0x1d0
[  270.885186][T14938]  __memcg_kmem_charge_page+0x9d/0x170
[  270.885215][T14938]  __alloc_pages_noprof+0x1bc/0x360
[  270.885251][T14938]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  270.885350][T14938]  alloc_pages_noprof+0xe1/0x100
[  270.885395][T14938]  __vmalloc_node_range_noprof+0x719/0xef0
[  270.885496][T14938]  kvmalloc_node_noprof+0x121/0x170
[  270.885564][T14938]  ? ip_set_alloc+0x1f/0x30
[  270.885607][T14938]  ip_set_alloc+0x1f/0x30
[  270.885726][T14938]  hash_netiface_create+0x273/0x730
[  270.885769][T14938]  ? __nla_parse+0x40/0x60
[  270.885802][T14938]  ? __pfx_hash_netiface_create+0x10/0x10
[  270.885887][T14938]  ip_set_create+0x359/0x8a0
[  270.885911][T14938]  ? memchr+0x1/0x50
[  270.885941][T14938]  ? __nla_parse+0x40/0x60
[  270.885978][T14938]  nfnetlink_rcv_msg+0x4a9/0x570
[  270.886035][T14938]  netlink_rcv_skb+0x12c/0x230
[  270.886076][T14938]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  270.886167][T14938]  nfnetlink_rcv+0x16c/0x15b0
[  270.886276][T14938]  ? kmem_cache_free+0xd8/0x280
[  270.886322][T14938]  ? nlmon_xmit+0x51/0x60
[  270.886345][T14938]  ? __kfree_skb+0x102/0x150
[  270.886372][T14938]  ? consume_skb+0x57/0x180
[  270.886408][T14938]  ? nlmon_xmit+0x51/0x60
[  270.886432][T14938]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  270.886535][T14938]  ? __dev_queue_xmit+0xb21/0x1e50
[  270.886568][T14938]  ? ref_tracker_free+0x3a5/0x410
[  270.886596][T14938]  ? __netlink_deliver_tap+0x495/0x4c0
[  270.886684][T14938]  netlink_unicast+0x58d/0x660
[  270.886727][T14938]  netlink_sendmsg+0x5ca/0x6e0
[  270.886790][T14938]  ? __pfx_netlink_sendmsg+0x10/0x10
[  270.886816][T14938]  __sock_sendmsg+0x140/0x180
[  270.886841][T14938]  ____sys_sendmsg+0x312/0x410
[  270.886925][T14938]  __sys_sendmsg+0x1e9/0x280
[  270.886956][T14938]  ? futex_wait+0x18e/0x1c0
[  270.887090][T14938]  __x64_sys_sendmsg+0x46/0x50
[  270.887174][T14938]  x64_sys_call+0xb25/0x2d70
[  270.887212][T14938]  do_syscall_64+0xc9/0x1c0
[  270.887254][T14938]  ? clear_bhb_loop+0x55/0xb0
[  270.887299][T14938]  ? clear_bhb_loop+0x55/0xb0
[  270.887339][T14938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.887375][T14938] RIP: 0033:0x7fb21b375bd9
[  270.887392][T14938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.887415][T14938] RSP: 002b:00007fb21a5f7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  270.887507][T14938] RAX: ffffffffffffffda RBX: 00007fb21b503f60 RCX: 00007fb21b375bd9
[  270.887524][T14938] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  270.887541][T14938] RBP: 00007fb21b3e4e60 R08: 0000000000000000 R09: 0000000000000000
[  270.887557][T14938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  270.887588][T14938] R13: 000000000000000b R14: 00007fb21b503f60 R15: 00007fffeb38cf18
[  270.887610][T14938]  </TASK>
[  270.888362][T14938] memory: usage 307200kB, limit 307200kB, failcnt 499
[  270.888379][T14938] memory+swap: usage 307584kB, limit 9007199254740988kB, failcnt 0
[  270.888394][T14938] kmem: usage 307096kB, limit 9007199254740988kB, failcnt 0
[  270.888406][T14938] Memory cgroup stats for /syz4:
[  270.888683][T14938] cache 98304
[  270.888693][T14938] rss 0
[  270.888702][T14938] shmem 0
[  270.888710][T14938] mapped_file 98304
[  270.888794][T14938] dirty 98304
[  270.888802][T14938] writeback 0
[  270.888812][T14938] workingset_refault_anon 125
[  270.888823][T14938] workingset_refault_file 597
[  270.888831][T14938] swap 393216
[  270.888840][T14938] swapcached 4096
[  270.888848][T14938] pgpgin 115172
[  270.888856][T14938] pgpgout 115147
[  270.888865][T14938] pgfault 142870
[  270.888873][T14938] pgmajfault 69
[  270.888882][T14938] inactive_anon 0
[  270.888890][T14938] active_anon 4096
[  270.888898][T14938] inactive_file 0
[  270.888916][T14938] active_file 98304
[  270.888924][T14938] unevictable 0
[  270.888986][T14938] hierarchical_memory_limit 314572800
[  270.888997][T14938] hierarchical_memsw_limit 9223372036854771712
[  270.889006][T14938] total_cache 98304
[  270.889012][T14938] total_rss 0
[  270.889019][T14938] total_shmem 0
[  270.889094][T14938] total_mapped_file 98304
[  270.889109][T14938] total_dirty 98304
[  270.889116][T14938] total_writeback 0
[  270.889124][T14938] total_workingset_refault_anon 125
[  270.889132][T14938] total_workingset_refault_file 597
[  270.889141][T14938] total_swap 393216
[  270.889150][T14938] total_swapcached 4096
[  270.889159][T14938] total_pgpgin 116657
[  270.889168][T14938] total_pgpgout 116632
[  270.889177][T14938] total_pgfault 144354
[  270.889186][T14938] total_pgmajfault 69
[  270.889195][T14938] total_inactive_anon 0
[  270.889204][T14938] total_active_anon 4096
[  270.889279][T14938] total_inactive_file 0
[  270.889287][T14938] total_active_file 98304
[  270.889294][T14938] total_unevictable 0
[  270.889303][T14938] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.3140,pid=14937,uid=0
[  270.889370][T14938] Memory cgroup out of memory: Killed process 14937 (syz.4.3140) total-vm:80752kB, anon-rss:456kB, file-rss:10044kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  270.901856][T14972] loop0: detected capacity change from 0 to 512
[  270.948640][T14977] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 33556480 > max in inode 18
[  270.957474][T14972] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  270.957582][T14972] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  270.962053][T14972] EXT4-fs error (device loop0): ext4_do_update_inode:5075: inode #2: comm syz.0.3152: corrupted inode contents
[  270.962203][T14972] EXT4-fs error (device loop0): ext4_dirty_inode:5935: inode #2: comm syz.0.3152: mark_inode_dirty error
[  270.962473][T14972] EXT4-fs error (device loop0): ext4_do_update_inode:5075: inode #2: comm syz.0.3152: corrupted inode contents
[  270.962637][T14972] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.3152: mark_inode_dirty error
[  270.965155][   T29] audit: type=1400 audit(1720914487.789:3706): avc:  denied  { setopt } for  pid=14970 comm="syz.0.3152" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  270.965222][   T29] audit: type=1400 audit(1720914487.789:3707): avc:  denied  { ioctl } for  pid=14970 comm="syz.0.3152" path="socket:[58614]" dev="sockfs" ino=58614 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  271.016299][T14355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.630987][   T29] audit: type=1326 audit(1720914488.469:3708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14980 comm="syz.4.3155" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb21b375bd9 code=0x0
[  271.662496][T12496] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.674225][   T29] audit: type=1326 audit(1720914488.509:3709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14983 comm="syz.3.3156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  271.697808][   T29] audit: type=1326 audit(1720914488.509:3710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14983 comm="syz.3.3156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  271.700226][T14986] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3157'.
[  271.730958][   T29] audit: type=1326 audit(1720914488.509:3711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14983 comm="syz.3.3156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  271.732528][T14986] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3157'.
[  271.763806][   T29] audit: type=1326 audit(1720914488.589:3712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14983 comm="syz.3.3156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  271.784405][T14988] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3158'.
[  271.796968][T14988] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3158'.
[  271.808018][T14988] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  271.816653][   T29] audit: type=1326 audit(1720914488.589:3713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14983 comm="syz.3.3156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  271.828370][T14988] bond1: entered allmulticast mode
[  271.847391][T14988] 8021q: adding VLAN 0 to HW filter on device bond1
[  271.861172][T14997] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3158'.
[  271.883600][T15001] macvlan0: entered promiscuous mode
[  271.928380][T15008] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3164'.
[  271.940245][T15010] ip6_tunnel: non-ECT from 0000:0000:0000:0000:0000:ffff:ac1e:0001 with DS=0xd
[  271.971355][T15012] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3163'.
[  271.989923][T15012] bond_slave_0: entered promiscuous mode
[  271.995647][T15012] bond_slave_1: entered promiscuous mode
[  272.002385][T15012] macvtap1: entered promiscuous mode
[  272.006702][T15020] loop0: detected capacity change from 0 to 512
[  272.007744][T15012] bond0: entered promiscuous mode
[  272.019534][T15012] macvtap1: entered allmulticast mode
[  272.024928][T15012] bond0: entered allmulticast mode
[  272.028997][T15020] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  272.030813][T15012] bond_slave_0: entered allmulticast mode
[  272.046362][T15012] bond_slave_1: entered allmulticast mode
[  272.053326][T15012] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  272.062492][T15021] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3163'.
[  272.072012][T15021] bond0: left allmulticast mode
[  272.076992][T15021] bond_slave_0: left allmulticast mode
[  272.082531][T15021] bond_slave_1: left allmulticast mode
[  272.088100][T15021] bond0: left promiscuous mode
[  272.093287][T15021] bond_slave_0: left promiscuous mode
[  272.098725][T15021] bond_slave_1: left promiscuous mode
[  272.105247][T15021] macvtap1: left promiscuous mode
[  272.110418][T15021] macvtap1: left allmulticast mode
[  272.124632][T15020] vlan2: entered allmulticast mode
[  272.148749][T15026] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  272.155178][T15026] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  272.162038][T15026] hsr_slave_0: left promiscuous mode
[  272.168133][T15026] hsr_slave_1: left promiscuous mode
[  272.228413][T15029] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3172'.
[  272.238178][T15029] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3172'.
[  272.388326][T15043] loop2: detected capacity change from 0 to 8192
[  272.426763][T15043]  loop2: p1 p2 p3
[  272.430661][T15043] loop2: p1 size 108986237 extends beyond EOD, truncated
[  272.438278][T15043] loop2: p2 start 65535 is beyond EOD, truncated
[  272.444669][T15043] loop2: p3 start 1593835520 is beyond EOD, truncated
[  272.514017][ T2747] hid-generic 0000:0000:0000.0019: unknown main item tag 0x0
[  272.521913][ T2747] hid-generic 0000:0000:0000.0019: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  272.595543][T15049] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15049 comm=syz.2.3179
[  272.610483][T15049] netlink: 'syz.2.3179': attribute type 1 has an invalid length.
[  272.624159][T15049] 8021q: adding VLAN 0 to HW filter on device bond0
[  272.645435][T15052] loop2: detected capacity change from 0 to 512
[  272.658003][T15052] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  272.688211][ T3187] bond0 (unregistering): Released all slaves
[  272.710784][T15060] FAULT_INJECTION: forcing a failure.
[  272.710784][T15060] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  272.725233][T15060] CPU: 1 PID: 15060 Comm: syz.4.3183 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  272.735537][T15060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  272.745617][T15060] Call Trace:
[  272.748907][T15060]  <TASK>
[  272.751910][T15060]  dump_stack_lvl+0xf2/0x150
[  272.756518][T15060]  dump_stack+0x15/0x20
[  272.760726][T15060]  should_fail_ex+0x229/0x230
[  272.765466][T15060]  should_fail+0xb/0x10
[  272.769697][T15060]  should_fail_usercopy+0x1a/0x20
[  272.774770][T15060]  _copy_from_iter+0xd3/0xb00
[  272.779456][T15060]  ? _copy_from_iter+0x161/0xb00
[  272.784456][T15060]  copy_page_from_iter+0x14f/0x280
[  272.789574][T15060]  skb_copy_datagram_from_iter+0x203/0x440
[  272.795452][T15060]  packet_sendmsg+0x25b2/0x3320
[  272.800340][T15060]  ? selinux_socket_sendmsg+0x182/0x1b0
[  272.805989][T15060]  ? __pfx_packet_sendmsg+0x10/0x10
[  272.811207][T15060]  __sock_sendmsg+0x140/0x180
[  272.815894][T15060]  __sys_sendto+0x1e5/0x260
[  272.820414][T15060]  __x64_sys_sendto+0x78/0x90
[  272.825165][T15060]  x64_sys_call+0x16d7/0x2d70
[  272.829892][T15060]  do_syscall_64+0xc9/0x1c0
[  272.834424][T15060]  ? clear_bhb_loop+0x55/0xb0
[  272.839192][T15060]  ? clear_bhb_loop+0x55/0xb0
[  272.843943][T15060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.849978][T15060] RIP: 0033:0x7fb21b375bd9
[  272.854432][T15060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.874074][T15060] RSP: 002b:00007fb21a5f7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  272.882494][T15060] RAX: ffffffffffffffda RBX: 00007fb21b503f60 RCX: 00007fb21b375bd9
[  272.890464][T15060] RDX: 0000000000010000 RSI: 0000000020000180 RDI: 0000000000000005
[  272.898434][T15060] RBP: 00007fb21a5f70a0 R08: 0000000020000140 R09: 0000000000000014
[  272.906406][T15060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  272.914393][T15060] R13: 000000000000000b R14: 00007fb21b503f60 R15: 00007fffeb38cf18
[  272.922391][T15060]  </TASK>
[  272.940925][T15066] loop1: detected capacity change from 0 to 128
[  272.972466][T15073] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=239 sclass=netlink_route_socket pid=15073 comm=syz.3.3188
[  272.985534][T15072] loop3: detected capacity change from 0 to 164
[  273.131316][T15098] IPVS: persistence engine module ip_vs_pe_À not found
[  273.132854][ T6339] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  273.150212][ T6339] hid-generic 0000:0000:0000.001A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  273.172950][T15111] loop0: detected capacity change from 0 to 764
[  273.243005][T15115] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  273.342700][T15125] loop0: detected capacity change from 0 to 512
[  273.349278][T15125] EXT4-fs: Ignoring removed i_version option
[  273.357987][T15125] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a016c018, mo2=0002]
[  273.366083][T15125] System zones: 1-12
[  273.370660][T15125] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3206: bg 0: block 131: padding at end of block bitmap is not set
[  273.385405][T15125] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  273.394472][T15125] EXT4-fs (loop0): 1 truncate cleaned up
[  273.556522][T15134] loop2: detected capacity change from 0 to 1024
[  273.563150][T15134] EXT4-fs: Ignoring removed orlov option
[  273.729958][T15151] loop2: detected capacity change from 0 to 512
[  273.737155][T15151] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  273.748324][T15151] EXT4-fs (loop2): orphan cleanup on readonly fs
[  273.754937][T15151] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #3: comm syz.2.3214: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  273.773220][T15151] EXT4-fs error (device loop2): ext4_quota_enable:7037: comm syz.2.3214: Bad quota inode: 3, type: 0
[  273.785493][T15151] EXT4-fs warning (device loop2): ext4_enable_quotas:7078: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  273.800177][T15151] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  273.810961][T15151] autofs4:pid:15151:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.4294934529), cmd(0xc018937e)
[  273.825012][T15151] autofs4:pid:15151:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e)
[  273.889608][T15162] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15162 comm=syz.2.3215
[  273.889695][T15163] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15163 comm=syz.2.3215
[  273.919776][T15165] loop4: detected capacity change from 0 to 512
[  273.938236][T15165] ext4 filesystem being mounted at /350/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  273.997325][T15179] loop3: detected capacity change from 0 to 256
[  274.011823][T15179] FAT-fs (loop3): Directory bread(block 64) failed
[  274.019448][T15179] FAT-fs (loop3): Directory bread(block 65) failed
[  274.033004][T15179] FAT-fs (loop3): Directory bread(block 66) failed
[  274.049444][T15179] FAT-fs (loop3): Directory bread(block 67) failed
[  274.062299][T15179] FAT-fs (loop3): Directory bread(block 68) failed
[  274.069282][T15185] loop2: detected capacity change from 0 to 512
[  274.070177][T15179] FAT-fs (loop3): Directory bread(block 69) failed
[  274.083658][T15179] FAT-fs (loop3): Directory bread(block 70) failed
[  274.091709][T15179] FAT-fs (loop3): Directory bread(block 71) failed
[  274.098855][T15179] FAT-fs (loop3): Directory bread(block 72) failed
[  274.105450][T15179] FAT-fs (loop3): Directory bread(block 73) failed
[  274.107689][T15185] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  274.125191][T15193] loop4: detected capacity change from 0 to 1024
[  274.133274][T15193] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  274.160872][T15193] loop4: detected capacity change from 0 to 512
[  274.167689][T15193] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  274.179457][T15193] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002]
[  274.188015][T15193] System zones: 1-12
[  274.192552][T15193] EXT4-fs (loop4): 1 truncate cleaned up
[  274.205114][T15193] EXT4-fs warning (device loop4): verify_group_input:156: Last group not full
[  274.220467][   T11] kworker/u8:0: attempt to access beyond end of device
[  274.220467][   T11] loop3: rw=1, sector=1224, nr_sectors = 4 limit=256
[  274.230242][T15193] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 3689716856 (only 1 groups)
[  274.278378][T15208] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  274.333035][T15223] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15223 comm=syz.0.3232
[  274.371545][T15232] netlink: 'syz.0.3233': attribute type 29 has an invalid length.
[  274.381291][T15232] netlink: 'syz.0.3233': attribute type 29 has an invalid length.
[  274.389799][T15232] netlink: 'syz.0.3233': attribute type 29 has an invalid length.
[  274.439573][T15240] loop0: detected capacity change from 0 to 128
[  274.447339][T15240] EXT4-fs: Ignoring removed i_version option
[  274.453446][T15240] ext4: Unknown parameter 'obj_role'
[  274.919087][T15319] loop1: detected capacity change from 0 to 512
[  274.939257][T15319] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  275.013607][T15334] vlan2: entered allmulticast mode
[  275.369662][T15390] loop3: detected capacity change from 0 to 512
[  275.389597][T15390] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  275.408947][T15390] vlan2: entered allmulticast mode
[  275.412086][T15394] loop4: detected capacity change from 0 to 512
[  275.416280][T15396] loop0: detected capacity change from 0 to 512
[  275.429708][T15396] EXT4-fs error (device loop0): ext4_orphan_get:1394: inode #15: comm syz.0.3246: casefold flag without casefold feature
[  275.442742][T15396] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz.0.3246: couldn't read orphan inode 15 (err -117)
[  275.445294][T15394] ext4 filesystem being mounted at /354/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  275.490169][T15394] vlan3: entered allmulticast mode
[  275.612736][   T29] kauditd_printk_skb: 119 callbacks suppressed
[  275.612754][   T29] audit: type=1326 audit(1720914492.439:3833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15412 comm="syz.4.3249" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb21b375bd9 code=0x0
[  275.819593][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.827101][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.834551][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x2
[  275.843335][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.850815][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.858300][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.867109][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.874533][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.881981][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.889399][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.897976][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.905456][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.913021][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.920522][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.929075][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.936502][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.943941][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.951374][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.959935][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.967416][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.974815][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.982454][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.991027][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  275.998444][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.005856][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.013234][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.021752][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.029218][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.036753][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.044216][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.052853][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.060343][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.067919][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.075328][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.083898][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.091324][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.098754][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.107258][  T920] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  276.115864][  T920] hid-generic 0000:0000:0000.001B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  276.200724][   T29] audit: type=1400 audit(1720914493.029:3834): avc:  denied  { mount } for  pid=15421 comm="syz.2.3252" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  276.224308][   T29] audit: type=1400 audit(1720914493.029:3835): avc:  denied  { create } for  pid=15421 comm="syz.2.3252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  276.245371][   T29] audit: type=1400 audit(1720914493.029:3836): avc:  denied  { getopt } for  pid=15421 comm="syz.2.3252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  276.372522][   T29] audit: type=1400 audit(1720914493.199:3837): avc:  denied  { ioctl } for  pid=15423 comm="syz.0.3253" path="socket:[58176]" dev="sockfs" ino=58176 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  276.412592][   T29] audit: type=1400 audit(1720914493.209:3838): avc:  denied  { mounton } for  pid=15425 comm="syz.3.3254" path="/proc/528/task" dev="proc" ino=59237 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  276.436762][   T29] audit: type=1400 audit(1720914493.209:3839): avc:  denied  { mount } for  pid=15425 comm="syz.3.3254" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  276.470611][   T29] audit: type=1400 audit(1720914493.299:3840): avc:  denied  { read } for  pid=15435 comm="syz.4.3259" name="usbmon0" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  276.495597][   T29] audit: type=1400 audit(1720914493.299:3841): avc:  denied  { open } for  pid=15435 comm="syz.4.3259" path="/dev/usbmon0" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  276.526917][T15437] bridge0: entered promiscuous mode
[  276.532301][T15437] macvtap2: entered promiscuous mode
[  276.537802][T15437] macvtap2: entered allmulticast mode
[  276.543191][T15437] bridge0: entered allmulticast mode
[  276.552696][T15432] bridge0: left allmulticast mode
[  276.554203][   T29] audit: type=1400 audit(1720914493.379:3842): avc:  denied  { write } for  pid=15435 comm="syz.4.3259" name="usbmon0" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  276.557907][T15432] bridge0: left promiscuous mode
[  276.586599][T15432] macvtap2: left promiscuous mode
[  276.591717][T15432] macvtap2: left allmulticast mode
[  276.734016][T15452] loop1: detected capacity change from 0 to 128
[  276.743162][T15452] __nla_validate_parse: 13 callbacks suppressed
[  276.743179][T15452] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3264'.
[  277.390400][T15460] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3266'.
[  277.563658][T15471] loop1: detected capacity change from 0 to 512
[  277.598836][T15471] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  277.620018][T15471] vlan2: entered allmulticast mode
[  277.658472][T15481] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3273'.
[  277.673332][T15482] loop4: detected capacity change from 0 to 1024
[  277.684858][T15481] bond_slave_0: entered promiscuous mode
[  277.690607][T15481] bond_slave_1: entered promiscuous mode
[  277.698256][T15481] macvtap3: entered promiscuous mode
[  277.698281][T15481] bond0: entered promiscuous mode
[  277.698526][T15481] macvtap3: entered allmulticast mode
[  277.698542][T15481] bond0: entered allmulticast mode
[  277.698556][T15481] bond_slave_0: entered allmulticast mode
[  277.698571][T15481] bond_slave_1: entered allmulticast mode
[  277.699671][T15481] 8021q: adding VLAN 0 to HW filter on device macvtap3
[  277.708153][T15481] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3273'.
[  277.708525][T15481] bond0: left allmulticast mode
[  277.708544][T15481] bond_slave_0: left allmulticast mode
[  277.708560][T15481] bond_slave_1: left allmulticast mode
[  277.708582][T15481] bond0: left promiscuous mode
[  277.708787][T15481] bond_slave_0: left promiscuous mode
[  277.708807][T15481] bond_slave_1: left promiscuous mode
[  277.708929][T15481] macvtap3: left promiscuous mode
[  277.708942][T15481] macvtap3: left allmulticast mode
[  277.720401][T15482] netlink: 'syz.4.3269': attribute type 10 has an invalid length.
[  277.746553][T15482] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  277.753866][T15482] xt_NFQUEUE: number of total queues is 0
[  278.120800][T15495] loop3: detected capacity change from 0 to 512
[  278.138247][T15495] ext4 filesystem being mounted at /199/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.213776][T15465] syz.0.3268 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  278.219934][T15498] vlan2: entered allmulticast mode
[  278.228097][T15465] CPU: 0 PID: 15465 Comm: syz.0.3268 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  278.228128][T15465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  278.228189][T15465] Call Trace:
[  278.228198][T15465]  <TASK>
[  278.228207][T15465]  dump_stack_lvl+0xf2/0x150
[  278.228277][T15465]  dump_stack+0x15/0x20
[  278.228319][T15465]  dump_header+0x83/0x2d0
[  278.228348][T15465]  oom_kill_process+0x33e/0x4c0
[  278.228376][T15465]  out_of_memory+0x9af/0xbe0
[  278.228432][T15465]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  278.228472][T15465]  mem_cgroup_out_of_memory+0x13e/0x190
[  278.228516][T15465]  try_charge_memcg+0x745/0xcd0
[  278.228554][T15465]  ? get_page_from_freelist+0x1a30/0x1a70
[  278.228630][T15465]  obj_cgroup_charge_pages+0xbd/0x1d0
[  278.228663][T15465]  __memcg_kmem_charge_page+0x9d/0x170
[  278.228692][T15465]  __alloc_pages_noprof+0x1bc/0x360
[  278.228729][T15465]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  278.228792][T15465]  alloc_pages_noprof+0xe1/0x100
[  278.228868][T15465]  __vmalloc_node_range_noprof+0x719/0xef0
[  278.228920][T15465]  kvmalloc_node_noprof+0x121/0x170
[  278.228973][T15465]  ? ip_set_alloc+0x1f/0x30
[  278.229014][T15465]  ip_set_alloc+0x1f/0x30
[  278.229082][T15465]  hash_netiface_create+0x273/0x730
[  278.229125][T15465]  ? __nla_parse+0x40/0x60
[  278.229176][T15465]  ? __pfx_hash_netiface_create+0x10/0x10
[  278.229237][T15465]  ip_set_create+0x359/0x8a0
[  278.229333][T15465]  ? memchr+0x1/0x50
[  278.229367][T15465]  ? __nla_parse+0x40/0x60
[  278.229401][T15465]  nfnetlink_rcv_msg+0x4a9/0x570
[  278.229457][T15465]  netlink_rcv_skb+0x12c/0x230
[  278.390121][T15465]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  278.395652][T15465]  nfnetlink_rcv+0x16c/0x15b0
[  278.400355][T15465]  ? kmem_cache_free+0xd8/0x280
[  278.405325][T15465]  ? nlmon_xmit+0x51/0x60
[  278.409665][T15465]  ? __kfree_skb+0x102/0x150
[  278.414271][T15465]  ? consume_skb+0x57/0x180
[  278.418862][T15465]  ? nlmon_xmit+0x51/0x60
[  278.423234][T15465]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  278.428537][T15465]  ? __dev_queue_xmit+0xb21/0x1e50
[  278.433663][T15465]  ? ref_tracker_free+0x3a5/0x410
[  278.438743][T15465]  ? __netlink_deliver_tap+0x495/0x4c0
[  278.444313][T15465]  netlink_unicast+0x58d/0x660
[  278.449102][T15465]  netlink_sendmsg+0x5ca/0x6e0
[  278.453989][T15465]  ? __pfx_netlink_sendmsg+0x10/0x10
[  278.459314][T15465]  __sock_sendmsg+0x140/0x180
[  278.464054][T15465]  ____sys_sendmsg+0x312/0x410
[  278.468894][T15465]  __sys_sendmsg+0x1e9/0x280
[  278.473510][T15465]  ? futex_wait+0x18e/0x1c0
[  278.478299][T15465]  __x64_sys_sendmsg+0x46/0x50
[  278.483137][T15465]  x64_sys_call+0xb25/0x2d70
[  278.487741][T15465]  do_syscall_64+0xc9/0x1c0
[  278.492298][T15465]  ? clear_bhb_loop+0x55/0xb0
[  278.497121][T15465]  ? clear_bhb_loop+0x55/0xb0
[  278.501813][T15465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.507795][T15465] RIP: 0033:0x7ff8fb20abd9
[  278.512237][T15465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.531947][T15465] RSP: 002b:00007ff8fa48c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  278.540366][T15465] RAX: ffffffffffffffda RBX: 00007ff8fb398f60 RCX: 00007ff8fb20abd9
[  278.548341][T15465] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  278.556336][T15465] RBP: 00007ff8fb279e60 R08: 0000000000000000 R09: 0000000000000000
[  278.564313][T15465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  278.572373][T15465] R13: 000000000000000b R14: 00007ff8fb398f60 R15: 00007fff187a2158
[  278.580403][T15465]  </TASK>
[  278.583802][T15465] memory: usage 307200kB, limit 307200kB, failcnt 820
[  278.590869][T15465] memory+swap: usage 307388kB, limit 9007199254740988kB, failcnt 0
[  278.598862][T15465] kmem: usage 307104kB, limit 9007199254740988kB, failcnt 0
[  278.606312][T15465] Memory cgroup stats for /syz0:
[  278.607068][T15465] cache 90112
[  278.615358][T15465] rss 0
[  278.619397][T15465] shmem 0
[  278.622415][T15465] mapped_file 90112
[  278.626245][T15465] dirty 90112
[  278.629622][T15465] writeback 0
[  278.632907][T15465] workingset_refault_anon 173
[  278.637588][T15465] workingset_refault_file 479
[  278.642286][T15465] swap 192512
[  278.645564][T15465] swapcached 8192
[  278.650244][T15465] pgpgin 175016
[  278.653719][T15465] pgpgout 174992
[  278.657277][T15465] pgfault 197517
[  278.660986][T15465] pgmajfault 92
[  278.664467][T15465] inactive_anon 0
[  278.668131][T15465] active_anon 8192
[  278.671851][T15465] inactive_file 0
[  278.675496][T15465] active_file 90112
[  278.680621][T15465] unevictable 0
[  278.684316][T15465] hierarchical_memory_limit 314572800
[  278.689705][T15465] hierarchical_memsw_limit 9223372036854771712
[  278.695880][T15465] total_cache 90112
[  278.699709][T15465] total_rss 0
[  278.703036][T15465] total_shmem 0
[  278.707665][T15465] total_mapped_file 90112
[  278.712005][T15465] total_dirty 90112
[  278.715894][T15465] total_writeback 0
[  278.719710][T15465] total_workingset_refault_anon 173
[  278.724911][T15465] total_workingset_refault_file 479
[  278.730190][T15465] total_swap 192512
[  278.734085][T15465] total_swapcached 8192
[  278.739333][T15465] total_pgpgin 175016
[  278.743314][T15465] total_pgpgout 174992
[  278.747518][T15465] total_pgfault 197517
[  278.751584][T15465] total_pgmajfault 92
[  278.755552][T15465] total_inactive_anon 0
[  278.759736][T15465] total_active_anon 8192
[  278.764080][T15465] total_inactive_file 0
[  278.769753][T15465] total_active_file 90112
[  278.774185][T15465] total_unevictable 0
[  278.778196][T15465] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.3268,pid=15464,uid=0
[  278.793220][T15465] Memory cgroup out of memory: Killed process 15464 (syz.0.3268) total-vm:80752kB, anon-rss:452kB, file-rss:9768kB, shmem-rss:0kB, UID:0 pgtables:92kB oom_score_adj:1000
[  278.933040][T15507] xt_TPROXY: Can be used only with -p tcp or -p udp
[  278.942079][T15507] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3278'.
[  279.004134][T15509] loop3: detected capacity change from 0 to 2048
[  279.046986][T15509]  loop3: p1 < > p4
[  279.052048][T15509] loop3: p4 size 8388608 extends beyond EOD, truncated
[  279.117802][T15513] loop3: detected capacity change from 0 to 128
[  279.230187][T15521] loop3: detected capacity change from 0 to 512
[  279.248003][T15521] ext4 filesystem being mounted at /204/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  279.264827][T15521] vlan2: entered allmulticast mode
[  279.375108][T15528] loop3: detected capacity change from 0 to 512
[  279.385326][T15528] EXT4-fs (loop3): 1 orphan inode deleted
[  279.397944][T15528] EXT4-fs (loop3): Online resizing not supported with sparse_super2
[  280.071232][T15545] loop0: detected capacity change from 0 to 512
[  280.334239][T15542] syz.2.3292 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  280.349854][T15542] CPU: 1 PID: 15542 Comm: syz.2.3292 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  280.360028][T15542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  280.370168][T15542] Call Trace:
[  280.373450][T15542]  <TASK>
[  280.376385][T15542]  dump_stack_lvl+0xf2/0x150
[  280.381021][T15542]  dump_stack+0x15/0x20
[  280.385205][T15542]  dump_header+0x83/0x2d0
[  280.389565][T15542]  oom_kill_process+0x33e/0x4c0
[  280.394466][T15542]  out_of_memory+0x9af/0xbe0
[  280.399091][T15542]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  280.405189][T15542]  mem_cgroup_out_of_memory+0x13e/0x190
[  280.410845][T15542]  try_charge_memcg+0x745/0xcd0
[  280.415790][T15542]  ? get_page_from_freelist+0x1a30/0x1a70
[  280.421525][T15542]  obj_cgroup_charge_pages+0xbd/0x1d0
[  280.426908][T15542]  __memcg_kmem_charge_page+0x9d/0x170
[  280.432379][T15542]  __alloc_pages_noprof+0x1bc/0x360
[  280.437626][T15542]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  280.443023][T15542]  alloc_pages_noprof+0xe1/0x100
[  280.447996][T15542]  __vmalloc_node_range_noprof+0x719/0xef0
[  280.453880][T15542]  kvmalloc_node_noprof+0x121/0x170
[  280.459112][T15542]  ? ip_set_alloc+0x1f/0x30
[  280.463636][T15542]  ip_set_alloc+0x1f/0x30
[  280.468130][T15542]  hash_netiface_create+0x273/0x730
[  280.473429][T15542]  ? __nla_parse+0x40/0x60
[  280.477964][T15542]  ? __pfx_hash_netiface_create+0x10/0x10
[  280.483785][T15542]  ip_set_create+0x359/0x8a0
[  280.488381][T15542]  ? memchr+0x1/0x50
[  280.492292][T15542]  ? __nla_parse+0x40/0x60
[  280.496914][T15542]  nfnetlink_rcv_msg+0x4a9/0x570
[  280.501895][T15542]  netlink_rcv_skb+0x12c/0x230
[  280.506680][T15542]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  280.512163][T15542]  nfnetlink_rcv+0x16c/0x15b0
[  280.516941][T15542]  ? kmem_cache_free+0xd8/0x280
[  280.521834][T15542]  ? nlmon_xmit+0x51/0x60
[  280.526173][T15542]  ? __kfree_skb+0x102/0x150
[  280.530773][T15542]  ? consume_skb+0x57/0x180
[  280.535347][T15542]  ? nlmon_xmit+0x51/0x60
[  280.539682][T15542]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  280.544979][T15542]  ? __dev_queue_xmit+0xb21/0x1e50
[  280.550103][T15542]  ? ref_tracker_free+0x3a5/0x410
[  280.555218][T15542]  ? __netlink_deliver_tap+0x495/0x4c0
[  280.560698][T15542]  netlink_unicast+0x58d/0x660
[  280.565530][T15542]  netlink_sendmsg+0x5ca/0x6e0
[  280.570303][T15542]  ? __pfx_netlink_sendmsg+0x10/0x10
[  280.575621][T15542]  __sock_sendmsg+0x140/0x180
[  280.580335][T15542]  ____sys_sendmsg+0x312/0x410
[  280.585157][T15542]  __sys_sendmsg+0x1e9/0x280
[  280.589828][T15542]  ? futex_wait+0x18e/0x1c0
[  280.594403][T15542]  __x64_sys_sendmsg+0x46/0x50
[  280.599185][T15542]  x64_sys_call+0xb25/0x2d70
[  280.603835][T15542]  do_syscall_64+0xc9/0x1c0
[  280.608361][T15542]  ? clear_bhb_loop+0x55/0xb0
[  280.613090][T15542]  ? clear_bhb_loop+0x55/0xb0
[  280.617790][T15542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.623775][T15542] RIP: 0033:0x7f87de4a4bd9
[  280.628193][T15542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.647815][T15542] RSP: 002b:00007f87dd726048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  280.656234][T15542] RAX: ffffffffffffffda RBX: 00007f87de632f60 RCX: 00007f87de4a4bd9
[  280.664284][T15542] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  280.672322][T15542] RBP: 00007f87de513e60 R08: 0000000000000000 R09: 0000000000000000
[  280.680328][T15542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  280.688444][T15542] R13: 000000000000000b R14: 00007f87de632f60 R15: 00007fff783db788
[  280.696426][T15542]  </TASK>
[  280.701215][T15542] memory: usage 307200kB, limit 307200kB, failcnt 1193
[  280.708356][T15542] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[  280.716407][T15542] kmem: usage 307092kB, limit 9007199254740988kB, failcnt 0
[  280.723700][T15542] Memory cgroup stats for /syz2:
[  280.731643][T15542] cache 110592
[  280.740233][T15542] rss 0
[  280.743002][T15542] shmem 0
[  280.745977][T15542] mapped_file 110592
[  280.750144][T15542] dirty 110592
[  280.753784][T15542] writeback 0
[  280.757167][T15542] workingset_refault_anon 171
[  280.761923][T15542] workingset_refault_file 424
[  280.766628][T15542] swap 217088
[  280.769918][T15542] swapcached 0
[  280.773300][T15542] pgpgin 129073
[  280.776780][T15542] pgpgout 129046
[  280.780337][T15542] pgfault 161651
[  280.783901][T15542] pgmajfault 101
[  280.787467][T15542] inactive_anon 0
[  280.791135][T15542] active_anon 0
[  280.794599][T15542] inactive_file 0
[  280.798444][T15542] active_file 110592
[  280.802354][T15542] unevictable 0
[  280.805884][T15542] hierarchical_memory_limit 314572800
[  280.811261][T15542] hierarchical_memsw_limit 9223372036854771712
[  280.817444][T15542] total_cache 110592
[  280.821392][T15542] total_rss 0
[  280.824746][T15542] total_shmem 0
[  280.828259][T15542] total_mapped_file 110592
[  280.832682][T15542] total_dirty 110592
[  280.836600][T15542] total_writeback 0
[  280.840410][T15542] total_workingset_refault_anon 171
[  280.845650][T15542] total_workingset_refault_file 424
[  280.850950][T15542] total_swap 217088
[  280.854766][T15542] total_swapcached 0
[  280.858693][T15542] total_pgpgin 129073
[  280.862681][T15542] total_pgpgout 129046
[  280.866840][T15542] total_pgfault 161651
[  280.870958][T15542] total_pgmajfault 101
[  280.875077][T15542] total_inactive_anon 0
[  280.879348][T15542] total_active_anon 0
[  280.883333][T15542] total_inactive_file 0
[  280.887567][T15542] total_active_file 110592
[  280.891986][T15542] total_unevictable 0
[  280.895995][T15542] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3292,pid=15541,uid=0
[  280.911017][T15542] Memory cgroup out of memory: Killed process 15541 (syz.2.3292) total-vm:80752kB, anon-rss:456kB, file-rss:10044kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  280.968695][T10300] bond0: (slave syz_tun): Releasing backup interface
[  280.972603][   T29] kauditd_printk_skb: 26 callbacks suppressed
[  280.972622][   T29] audit: type=1400 audit(1720914497.799:3869): avc:  denied  { mounton } for  pid=15558 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  280.996607][T15556] loop1: detected capacity change from 0 to 2048
[  281.044096][   T29] audit: type=1400 audit(1720914497.849:3870): avc:  denied  { sys_module } for  pid=15558 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  281.047252][T15563] 9pnet_fd: Insufficient options for proto=fd
[  281.065479][   T29] audit: type=1400 audit(1720914497.859:3871): avc:  denied  { create } for  pid=15557 comm="syz.0.3298" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  281.065513][   T29] audit: type=1400 audit(1720914497.859:3872): avc:  denied  { bind } for  pid=15557 comm="syz.0.3298" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  281.129460][T15556] EXT4-fs error (device loop1): ext4_orphan_get:1420: comm syz.1.3297: bad orphan inode 8192
[  281.150406][   T11] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.172738][   T29] audit: type=1400 audit(1720914497.999:3873): avc:  denied  { read } for  pid=15555 comm="syz.1.3297" name="event0" dev="devtmpfs" ino=217 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  281.197377][   T29] audit: type=1400 audit(1720914497.999:3874): avc:  denied  { open } for  pid=15555 comm="syz.1.3297" path="/dev/input/event0" dev="devtmpfs" ino=217 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  281.280638][T15577] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15577 comm=syz.1.3297
[  281.302823][   T11] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.305732][   T29] audit: type=1400 audit(1720914498.059:3875): avc:  denied  { ioctl } for  pid=15555 comm="syz.1.3297" path="/dev/input/event0" dev="devtmpfs" ino=217 ioctlcmd=0x4592 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  281.365492][T15579] can: request_module (can-proto-4) failed.
[  281.397840][   T11] team0: Port device netdevsim1 removed
[  281.405469][   T11] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.419868][T15579] netlink: 'syz.3.3301': attribute type 10 has an invalid length.
[  281.424784][   T29] audit: type=1400 audit(1720914498.249:3876): avc:  denied  { checkpoint_restore } for  pid=15582 comm="syz.1.3302" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  281.453843][T15579] team0: Port device netdevsim1 added
[  281.475416][T15584] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2220 sclass=netlink_route_socket pid=15584 comm=syz.3.3301
[  281.497786][   T29] audit: type=1400 audit(1720914498.329:3877): avc:  denied  { create } for  pid=15582 comm="syz.1.3302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  281.519034][   T11] netdevsim netdevsim4 netdevsim0 (unregistering): left allmulticast mode
[  281.531993][   T29] audit: type=1400 audit(1720914498.359:3878): avc:  denied  { listen } for  pid=15582 comm="syz.1.3302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  281.554354][   T11] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.571123][T15588] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3304'.
[  281.627606][T15558] chnl_net:caif_netlink_parms(): no params data found
[  281.652992][   T11] bridge_slave_1: left allmulticast mode
[  281.660089][   T11] bridge_slave_1: left promiscuous mode
[  281.665809][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  281.728651][   T11] bond0 (unregistering): (slave geneve1): Releasing backup interface
[  281.888321][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  281.900263][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  281.910802][   T11] bond0 (unregistering): Released all slaves
[  281.919996][   T11] bond1 (unregistering): Released all slaves
[  281.948609][T15558] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.955816][T15558] bridge0: port 1(bridge_slave_0) entered disabled state
[  281.963128][T15558] bridge_slave_0: entered allmulticast mode
[  281.969930][T15558] bridge_slave_0: entered promiscuous mode
[  281.977087][T15558] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.984272][T15558] bridge0: port 2(bridge_slave_1) entered disabled state
[  281.993003][T15558] bridge_slave_1: entered allmulticast mode
[  281.999748][T15558] bridge_slave_1: entered promiscuous mode
[  282.011490][   T11] tipc: Left network mode
[  282.020703][T15558] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  282.031784][T15558] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  282.055665][T15558] team0: Port device team_slave_0 added
[  282.063708][   T11] hsr_slave_0: left promiscuous mode
[  282.069405][   T11] hsr_slave_1: left promiscuous mode
[  282.075229][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  282.083808][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  282.091441][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  282.098928][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  282.108815][   T11] dummy0: left promiscuous mode
[  282.113698][   T11] veth0_macvtap: left promiscuous mode
[  282.119291][   T11] veth1_vlan: left promiscuous mode
[  282.124521][   T11] veth0_vlan: left promiscuous mode
[  282.178193][   T11] pim6reg (unregistering): left allmulticast mode
[  282.186254][   T11] pimreg1 (unregistering): left allmulticast mode
[  282.233240][   T11] team0 (unregistering): Port device team_slave_1 removed
[  282.245769][   T11] team0 (unregistering): Port device team_slave_0 removed
[  282.275181][T15605] loop1: detected capacity change from 0 to 512
[  282.282707][T15605] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  282.291253][T15605] EXT4-fs (loop1): invalid inodes per group: 30
[  282.291253][T15605] 
[  282.301155][T15558] team0: Port device team_slave_1 added
[  282.318163][T15558] batman_adv: batadv0: Adding interface: batadv_slave_0
[  282.325169][T15558] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  282.351157][T15558] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  282.362732][T15558] batman_adv: batadv0: Adding interface: batadv_slave_1
[  282.369717][T15558] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  282.395775][T15558] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  282.423007][T15558] hsr_slave_0: entered promiscuous mode
[  282.429947][T15558] hsr_slave_1: entered promiscuous mode
[  282.453515][T15607] loop3: detected capacity change from 0 to 2048
[  282.474307][T15610] sch_fq: defrate 0 ignored.
[  282.525147][T15616] SET target dimension over the limit!
[  282.609982][T15621] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3314'.
[  282.843056][T15558] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  282.854130][T15558] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  282.866670][T15558] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  282.877805][T15558] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  282.936810][T15558] 8021q: adding VLAN 0 to HW filter on device bond0
[  282.960250][T15558] 8021q: adding VLAN 0 to HW filter on device team0
[  282.972933][ T3158] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.980052][ T3158] bridge0: port 1(bridge_slave_0) entered forwarding state
[  283.005773][T15558] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  283.016391][T15558] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  283.032665][ T3158] bridge0: port 2(bridge_slave_1) entered blocking state
[  283.039815][ T3158] bridge0: port 2(bridge_slave_1) entered forwarding state
[  283.107450][T15558] 8021q: adding VLAN 0 to HW filter on device batadv0
[  283.244715][T15558] veth0_vlan: entered promiscuous mode
[  283.257738][T15558] veth1_vlan: entered promiscuous mode
[  283.275536][T15558] veth0_macvtap: entered promiscuous mode
[  283.285073][T15558] veth1_macvtap: entered promiscuous mode
[  283.297118][T15558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.297759][T15614] syz.1.3312 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  283.307649][T15558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.307671][T15558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.307689][T15558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.307704][T15558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.307720][T15558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.310174][T15558] batman_adv: batadv0: Interface activated: batadv_slave_0
[  283.319959][T15614] CPU: 1 PID: 15614 Comm: syz.1.3312 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  283.335281][T15558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.340119][T15614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  283.350034][T15558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.360403][T15614] Call Trace:
[  283.360415][T15614]  <TASK>
[  283.360425][T15614]  dump_stack_lvl+0xf2/0x150
[  283.370325][T15558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.377569][T15614]  dump_stack+0x15/0x20
[  283.387830][T15558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.398213][T15614]  dump_header+0x83/0x2d0
[  283.408317][T15558] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.418076][T15614]  oom_kill_process+0x33e/0x4c0
[  283.418111][T15614]  out_of_memory+0x9af/0xbe0
[  283.418136][T15614]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  283.421448][T15558] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.425297][T15558] batman_adv: batadv0: Interface activated: batadv_slave_1
[  283.429078][T15614]  mem_cgroup_out_of_memory+0x13e/0x190
[  283.429125][T15614]  try_charge_memcg+0x745/0xcd0
[  283.429166][T15614]  ? _raw_spin_unlock+0x26/0x50
[  283.443595][T15558] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.443732][T15614]  ? radix_tree_lookup+0xf9/0x150
[  283.453588][T15558] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.457871][T15614]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  283.468469][T15558] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.473131][T15614]  __read_swap_cache_async+0x2b9/0x520
[  283.477727][T15558] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.483759][T15614]  swap_cluster_readahead+0x276/0x3f0
[  283.528376][T15658] loop3: detected capacity change from 0 to 1024
[  283.529718][T15614]  swapin_readahead+0xe2/0x7a0
[  283.584184][T15614]  ? __filemap_get_folio+0x420/0x5b0
[  283.589562][T15614]  ? swap_cache_get_folio+0x6e/0x210
[  283.594915][T15614]  do_swap_page+0x3bc/0x1840
[  283.599526][T15614]  ? cgroup_rstat_updated+0x99/0x550
[  283.604891][T15614]  ? __rcu_read_lock+0x36/0x50
[  283.609678][T15614]  handle_mm_fault+0x8b9/0x2ac0
[  283.614561][T15614]  exc_page_fault+0x3b9/0x650
[  283.619257][T15614]  asm_exc_page_fault+0x26/0x30
[  283.624124][T15614] RIP: 0033:0x7f3067855b73
[  283.628540][T15614] Code: 18 07 00 48 8d 3d 76 18 07 00 e8 d8 49 f6 ff 0f 1f 84 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d be d9 12 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f
[  283.648158][T15614] RSP: 002b:00007ffde40f0fb8 EFLAGS: 00010293
[  283.654231][T15614] RAX: 00000000fffffffa RBX: 00007f30679b1f60 RCX: 0000000000000000
[  283.662205][T15614] RDX: 00007ffde40f0fd0 RSI: 0000000000000000 RDI: 0000000000000000
[  283.670191][T15614] RBP: 00007f30679b3a60 R08: 000000000f22bace R09: 7fffffffffffffff
[  283.678168][T15614] R10: 0000000000000000 R11: 00007f3067988080 R12: 00000000000452cd
[  283.686141][T15614] R13: 0000000000000226 R14: 00007f30679b3a60 R15: 00007f30679b2038
[  283.694120][T15614]  </TASK>
[  283.697187][T15614] memory: usage 307200kB, limit 307200kB, failcnt 1170
[  283.705767][T15614] memory+swap: usage 307368kB, limit 9007199254740988kB, failcnt 0
[  283.713703][T15614] kmem: usage 306996kB, limit 9007199254740988kB, failcnt 0
[  283.721090][T15614] Memory cgroup stats for /syz1:
[  283.724330][T15614] cache 184320
[  283.734090][T15614] rss 0
[  283.736905][T15614] shmem 0
[  283.739850][T15614] mapped_file 184320
[  283.743759][T15614] dirty 184320
[  283.743770][T15614] writeback 4096
[  283.743779][T15614] workingset_refault_anon 334
[  283.743789][T15614] workingset_refault_file 1648
[  283.743798][T15614] swap 172032
[  283.743886][T15614] swapcached 24576
[  283.743894][T15614] pgpgin 134608
[  283.743902][T15614] pgpgout 134557
[  283.743910][T15614] pgfault 140341
[  283.743918][T15614] pgmajfault 147
[  283.743927][T15614] inactive_anon 24576
[  283.743935][T15614] active_anon 0
[  283.743944][T15614] inactive_file 184320
[  283.743952][T15614] active_file 0
[  283.743961][T15614] unevictable 0
[  283.743969][T15614] hierarchical_memory_limit 314572800
[  283.744010][T15614] hierarchical_memsw_limit 9223372036854771712
[  283.744019][T15614] total_cache 184320
[  283.744026][T15614] total_rss 0
[  283.744033][T15614] total_shmem 0
[  283.744039][T15614] total_mapped_file 184320
[  283.744047][T15614] total_dirty 184320
[  283.744054][T15614] total_writeback 4096
[  283.744062][T15614] total_workingset_refault_anon 334
[  283.744073][T15614] total_workingset_refault_file 1648
[  283.744126][T15614] total_swap 172032
[  283.744133][T15614] total_swapcached 24576
[  283.744140][T15614] total_pgpgin 134608
[  283.744147][T15614] total_pgpgout 134557
[  283.744154][T15614] total_pgfault 140341
[  283.744161][T15614] total_pgmajfault 147
[  283.744169][T15614] total_inactive_anon 24576
[  283.744178][T15614] total_active_anon 0
[  283.744197][T15614] total_inactive_file 184320
[  283.744207][T15614] total_active_file 0
[  283.744216][T15614] total_unevictable 0
[  283.744225][T15614] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.3312,pid=15614,uid=0
[  283.744359][T15614] Memory cgroup out of memory: Killed process 15614 (syz.1.3312) total-vm:80752kB, anon-rss:452kB, file-rss:10052kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  284.003207][T15673] netlink: 76 bytes leftover after parsing attributes in process `syz.0.3324'.
[  284.059252][T15675] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3325'.
[  284.445417][T15708] netlink: 124 bytes leftover after parsing attributes in process `syz.3.3336'.
[  284.457035][T15708] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3336'.
[  284.488502][T15710] loop3: detected capacity change from 0 to 2364
[  284.584653][T15714] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3339'.
[  284.598447][T15714] bond_slave_0: entered promiscuous mode
[  284.604121][T15714] bond_slave_1: entered promiscuous mode
[  284.610117][T15714] macvtap1: entered promiscuous mode
[  284.615413][T15714] bond0: entered promiscuous mode
[  284.620736][T15714] macvtap1: entered allmulticast mode
[  284.627600][T15714] bond0: entered allmulticast mode
[  284.632735][T15714] bond_slave_0: entered allmulticast mode
[  284.638492][T15714] bond_slave_1: entered allmulticast mode
[  284.645368][T15714] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  284.653832][T15715] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3339'.
[  284.663110][T15715] bond0: left allmulticast mode
[  284.668099][T15715] bond_slave_0: left allmulticast mode
[  284.673577][T15715] bond_slave_1: left allmulticast mode
[  284.679175][T15715] bond0: left promiscuous mode
[  284.684236][T15715] bond_slave_0: left promiscuous mode
[  284.689658][T15715] bond_slave_1: left promiscuous mode
[  284.696739][T15715] macvtap1: left promiscuous mode
[  284.701777][T15715] macvtap1: left allmulticast mode
[  285.018298][T15724] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3343'.
[  285.033826][T15724] loop2: detected capacity change from 0 to 512
[  285.050980][T15724] EXT4-fs (loop2): blocks per group (95) and clusters per group (32768) inconsistent
[  285.117776][T15729] loop4: detected capacity change from 0 to 4096
[  285.140491][T15733] loop2: detected capacity change from 0 to 512
[  285.149218][T15733] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  285.165240][T15733] EXT4-fs (loop2): orphan cleanup on readonly fs
[  285.171884][T15733] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #3: comm syz.2.3347: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  285.189781][T15733] EXT4-fs error (device loop2): ext4_quota_enable:7037: comm syz.2.3347: Bad quota inode: 3, type: 0
[  285.202844][T15733] EXT4-fs warning (device loop2): ext4_enable_quotas:7078: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  285.218263][T15733] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  285.223513][T15738] loop4: detected capacity change from 0 to 512
[  285.232839][T15738] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  285.242844][T15738] EXT4-fs (loop4): inodes count not valid: 36 vs 32
[  285.280307][T15743] loop1: detected capacity change from 0 to 512
[  285.299904][T15743] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.349761][T15747] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3351'.
[  285.369091][T15747] bond_slave_0: entered promiscuous mode
[  285.374792][T15747] bond_slave_1: entered promiscuous mode
[  285.397174][T15747] macvtap4: entered promiscuous mode
[  285.402521][T15747] bond0: entered promiscuous mode
[  285.407899][T15747] macvtap4: entered allmulticast mode
[  285.413306][T15747] bond0: entered allmulticast mode
[  285.418536][T15747] bond_slave_0: entered allmulticast mode
[  285.424351][T15747] bond_slave_1: entered allmulticast mode
[  285.464360][T15747] 8021q: adding VLAN 0 to HW filter on device macvtap4
[  285.482381][T15753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3351'.
[  285.502964][T15753] bond0: left allmulticast mode
[  285.508043][T15753] bond_slave_0: left allmulticast mode
[  285.513561][T15753] bond_slave_1: left allmulticast mode
[  285.519235][T15753] bond0: left promiscuous mode
[  285.521694][T15720] syz.3.3342 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  285.524265][T15753] bond_slave_0: left promiscuous mode
[  285.536033][T15720] CPU: 1 PID: 15720 Comm: syz.3.3342 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  285.540640][T15753] bond_slave_1: left promiscuous mode
[  285.550796][T15720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  285.550814][T15720] Call Trace:
[  285.550824][T15720]  <TASK>
[  285.550833][T15720]  dump_stack_lvl+0xf2/0x150
[  285.577179][T15720]  dump_stack+0x15/0x20
[  285.581414][T15720]  dump_header+0x83/0x2d0
[  285.585808][T15720]  oom_kill_process+0x33e/0x4c0
[  285.590687][T15720]  out_of_memory+0x9af/0xbe0
[  285.595301][T15720]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  285.601610][T15720]  mem_cgroup_out_of_memory+0x13e/0x190
[  285.607197][T15720]  try_charge_memcg+0x745/0xcd0
[  285.612091][T15720]  ? _raw_spin_unlock+0x26/0x50
[  285.617073][T15720]  ? radix_tree_lookup+0xf9/0x150
[  285.622209][T15720]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  285.628346][T15720]  __read_swap_cache_async+0x2b9/0x520
[  285.633836][T15720]  swap_cluster_readahead+0x276/0x3f0
[  285.639240][T15720]  swapin_readahead+0xe2/0x7a0
[  285.644165][T15720]  ? __filemap_get_folio+0x420/0x5b0
[  285.649494][T15720]  ? swap_cache_get_folio+0x6e/0x210
[  285.654806][T15720]  do_swap_page+0x3bc/0x1840
[  285.659497][T15720]  ? cgroup_rstat_updated+0x99/0x550
[  285.664835][T15720]  ? __rcu_read_lock+0x36/0x50
[  285.669639][T15720]  handle_mm_fault+0x8b9/0x2ac0
[  285.674541][T15720]  exc_page_fault+0x3b9/0x650
[  285.679266][T15720]  asm_exc_page_fault+0x26/0x30
[  285.684214][T15720] RIP: 0033:0x7fcb2cdd8564
[  285.688649][T15720] Code: 00 69 3d 53 b1 de 00 e8 03 00 00 48 8d 1d 14 9a 2b 00 e8 df b5 12 00 eb 11 0f 1f 44 00 00 48 81 c3 d8 00 00 00 48 39 dd 74 bc <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df e8 87 ee ff ff eb
[  285.708289][T15720] RSP: 002b:00007fffb73fed30 EFLAGS: 00010202
[  285.714568][T15720] RAX: 0000000000000000 RBX: 00007fcb2d093040 RCX: 0000000000000000
[  285.722565][T15720] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555745f4808
[  285.730555][T15720] RBP: 00007fcb2d093a60 R08: 0000000000000000 R09: 7fffffffffffffff
[  285.738653][T15720] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000045b89
[  285.746648][T15720] R13: 0000000000000226 R14: 00007fcb2d093a60 R15: 00007fcb2d092038
[  285.754664][T15720]  </TASK>
[  285.757858][T15753] macvtap4: left promiscuous mode
[  285.759671][T15720] memory: usage 307200kB, limit 307200kB, failcnt 720
[  285.762989][T15753] macvtap4: left allmulticast mode
[  285.769974][T15720] memory+swap: usage 307464kB, limit 9007199254740988kB, failcnt 0
[  285.782842][T15720] kmem: usage 307016kB, limit 9007199254740988kB, failcnt 0
[  285.791607][T15720] Memory cgroup stats for /syz3:
[  285.793404][T15720] cache 184320
[  285.801829][T15720] rss 4096
[  285.804872][T15720] shmem 0
[  285.807854][T15720] mapped_file 184320
[  285.811777][T15720] dirty 184320
[  285.815232][T15720] writeback 4096
[  285.820207][T15720] workingset_refault_anon 460
[  285.824898][T15720] workingset_refault_file 818
[  285.829714][T15720] swap 270336
[  285.833010][T15720] swapcached 4096
[  285.836679][T15720] pgpgin 116938
[  285.840153][T15720] pgpgout 116892
[  285.843698][T15720] pgfault 150264
[  285.848606][T15720] pgmajfault 226
[  285.852156][T15720] inactive_anon 0
[  285.855813][T15720] active_anon 4096
[  285.859546][T15720] inactive_file 0
[  285.863210][T15720] active_file 184320
[  285.867162][T15720] unevictable 0
[  285.870617][T15720] hierarchical_memory_limit 314572800
[  285.877334][T15720] hierarchical_memsw_limit 9223372036854771712
[  285.883483][T15720] total_cache 184320
[  285.887432][T15720] total_rss 4096
[  285.890990][T15720] total_shmem 0
[  285.894438][T15720] total_mapped_file 184320
[  285.898867][T15720] total_dirty 184320
[  285.902759][T15720] total_writeback 4096
[  285.907952][T15720] total_workingset_refault_anon 460
[  285.913141][T15720] total_workingset_refault_file 818
[  285.918392][T15720] total_swap 270336
[  285.922250][T15720] total_swapcached 4096
[  285.926441][T15720] total_pgpgin 116938
[  285.930635][T15720] total_pgpgout 116892
[  285.934709][T15720] total_pgfault 150264
[  285.940202][T15720] total_pgmajfault 226
[  285.944282][T15720] total_inactive_anon 0
[  285.948467][T15720] total_active_anon 4096
[  285.952737][T15720] total_inactive_file 0
[  285.953403][T15760] loop0: detected capacity change from 0 to 1024
[  285.956923][T15720] total_active_file 184320
[  285.956934][T15720] total_unevictable 0
[  285.956944][T15720] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.3342,pid=15720,uid=0
[  285.988142][T15720] Memory cgroup out of memory: Killed process 15720 (syz.3.3342) total-vm:80752kB, anon-rss:452kB, file-rss:9924kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  286.238060][T15765] loop4: detected capacity change from 0 to 128
[  286.244831][T15765] FAT-fs (loop4): Unrecognized mount option "" or missing value
[  286.318332][   T29] kauditd_printk_skb: 21 callbacks suppressed
[  286.318347][   T29] audit: type=1400 audit(1720914503.149:3900): avc:  denied  { connect } for  pid=15764 comm="syz.4.3357" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  286.380614][T15768] loop4: detected capacity change from 0 to 512
[  286.387292][T15768] ext4: Unknown parameter 'subj_user'
[  286.408264][   T29] audit: type=1400 audit(1720914503.239:3901): avc:  denied  { write } for  pid=15767 comm="syz.4.3358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  286.429109][T15768] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=15768 comm=syz.4.3358
[  286.442024][   T29] audit: type=1326 audit(1720914503.259:3902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15769 comm="syz.3.3359" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x0
[  286.466659][   T29] audit: type=1400 audit(1720914503.269:3903): avc:  denied  { read } for  pid=15767 comm="syz.4.3358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  286.821720][   T29] audit: type=1400 audit(1720914503.649:3904): avc:  denied  { watch } for  pid=15779 comm="syz.2.3363" path="/163/bus" dev="tmpfs" ino=887 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  286.847218][T15780] netlink: 'syz.2.3363': attribute type 13 has an invalid length.
[  286.858835][T15780] erspan0: refused to change device tx_queue_len
[  286.865195][T15780] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  286.923342][T15801] openvswitch: netlink: IPv4 tunnel dst address is zero
[  286.941135][T15803] bond_slave_0: entered promiscuous mode
[  286.946893][T15803] bond_slave_1: entered promiscuous mode
[  286.950161][   T29] audit: type=1400 audit(1720914503.779:3905): avc:  denied  { accept } for  pid=15804 comm="syz.2.3367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  286.952785][T15803] macvtap1: entered promiscuous mode
[  286.978667][T15803] bond0: entered promiscuous mode
[  286.979633][   T29] audit: type=1400 audit(1720914503.809:3906): avc:  denied  { create } for  pid=15804 comm="syz.2.3367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  286.984462][T15803] macvtap1: entered allmulticast mode
[  287.010526][T15803] bond0: entered allmulticast mode
[  287.015917][T15803] bond_slave_0: entered allmulticast mode
[  287.021682][T15803] bond_slave_1: entered allmulticast mode
[  287.034138][T15803] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  287.043829][T14355] EXT4-fs unmount: 47 callbacks suppressed
[  287.043844][T14355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.062489][T15806] bond0: left allmulticast mode
[  287.068748][T15806] bond_slave_0: left allmulticast mode
[  287.074339][T15806] bond_slave_1: left allmulticast mode
[  287.080088][T15806] bond0: left promiscuous mode
[  287.085153][T15806] bond_slave_0: left promiscuous mode
[  287.090568][T15806] bond_slave_1: left promiscuous mode
[  287.098179][T15806] macvtap1: left promiscuous mode
[  287.103258][T15806] macvtap1: left allmulticast mode
[  287.120589][T15812] loop0: detected capacity change from 0 to 512
[  287.133239][T15812] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  287.139238][T15813] loop2: detected capacity change from 0 to 512
[  287.143529][T15812] EXT4-fs (loop0): orphan cleanup on readonly fs
[  287.156573][T15812] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #3: comm syz.0.3369: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  287.174319][T15812] EXT4-fs error (device loop0): ext4_quota_enable:7037: comm syz.0.3369: Bad quota inode: 3, type: 0
[  287.176651][T15813] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.185648][T15812] EXT4-fs warning (device loop0): ext4_enable_quotas:7078: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  287.199526][T15813] ext4 filesystem being mounted at /168/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  287.212662][T15812] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  287.231595][T15812] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  287.257531][T14355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.292922][T12496] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.319096][   T29] audit: type=1400 audit(1720914504.149:3907): avc:  denied  { create } for  pid=15830 comm="syz.0.3374" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  287.353835][   T29] audit: type=1400 audit(1720914504.179:3908): avc:  denied  { read write } for  pid=15832 comm="syz.3.3375" name="virtual_nci" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  287.380798][T15837] loop2: detected capacity change from 0 to 2048
[  287.388949][   T29] audit: type=1400 audit(1720914504.209:3909): avc:  denied  { open } for  pid=15832 comm="syz.3.3375" path="/dev/virtual_nci" dev="devtmpfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  287.418366][T15837] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  287.451488][T15845] loop4: detected capacity change from 0 to 256
[  287.560216][T15854] loop0: detected capacity change from 0 to 512
[  287.577692][T15854] EXT4-fs: Ignoring removed i_version option
[  287.583782][T15854] EXT4-fs: Ignoring removed nobh option
[  287.612693][T15854] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  287.628809][   T11] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  287.645577][T15854] EXT4-fs (loop0): 1 truncate cleaned up
[  287.652694][   T11] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 25 with error 28
[  287.665072][   T11] EXT4-fs (loop2): This should not happen!! Data will be lost
[  287.665072][   T11] 
[  287.674777][   T11] EXT4-fs (loop2): Total free blocks count 0
[  287.676298][T15854] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  287.682228][   T11] EXT4-fs (loop2): Free/Dirty block details
[  287.698823][   T11] EXT4-fs (loop2): free_blocks=2415919104
[  287.704641][   T11] EXT4-fs (loop2): dirty_blocks=32
[  287.711296][   T11] EXT4-fs (loop2): Block reservation details
[  287.717334][   T11] EXT4-fs (loop2): i_reserved_data_blocks=2
[  287.725323][T12496] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.227108][T15850] syz.3.3379 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  288.241321][T15850] CPU: 1 PID: 15850 Comm: syz.3.3379 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  288.251473][T15850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  288.261620][T15850] Call Trace:
[  288.264911][T15850]  <TASK>
[  288.267860][T15850]  dump_stack_lvl+0xf2/0x150
[  288.272470][T15850]  dump_stack+0x15/0x20
[  288.276803][T15850]  dump_header+0x83/0x2d0
[  288.281161][T15850]  oom_kill_process+0x33e/0x4c0
[  288.286168][T15850]  out_of_memory+0x9af/0xbe0
[  288.290846][T15850]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  288.296985][T15850]  mem_cgroup_out_of_memory+0x13e/0x190
[  288.302634][T15850]  try_charge_memcg+0x745/0xcd0
[  288.307548][T15850]  ? get_page_from_freelist+0x1a30/0x1a70
[  288.313306][T15850]  obj_cgroup_charge_pages+0xbd/0x1d0
[  288.318683][T15850]  __memcg_kmem_charge_page+0x9d/0x170
[  288.324204][T15850]  __alloc_pages_noprof+0x1bc/0x360
[  288.329450][T15850]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  288.334949][T15850]  alloc_pages_noprof+0xe1/0x100
[  288.339958][T15850]  __vmalloc_node_range_noprof+0x719/0xef0
[  288.345869][T15850]  kvmalloc_node_noprof+0x121/0x170
[  288.351131][T15850]  ? ip_set_alloc+0x1f/0x30
[  288.355655][T15850]  ip_set_alloc+0x1f/0x30
[  288.360014][T15850]  hash_netiface_create+0x273/0x730
[  288.365239][T15850]  ? __nla_parse+0x40/0x60
[  288.369686][T15850]  ? __pfx_hash_netiface_create+0x10/0x10
[  288.375446][T15850]  ip_set_create+0x359/0x8a0
[  288.380047][T15850]  ? memchr+0x1/0x50
[  288.384033][T15850]  ? __nla_parse+0x40/0x60
[  288.388471][T15850]  nfnetlink_rcv_msg+0x4a9/0x570
[  288.393500][T15850]  netlink_rcv_skb+0x12c/0x230
[  288.398329][T15850]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  288.403834][T15850]  nfnetlink_rcv+0x16c/0x15b0
[  288.408600][T15850]  ? skb_release_data+0x583/0x5a0
[  288.413657][T15850]  ? kmem_cache_free+0xd8/0x280
[  288.418571][T15850]  ? nlmon_xmit+0x51/0x60
[  288.422970][T15850]  ? __kfree_skb+0x102/0x150
[  288.427621][T15850]  ? consume_skb+0x57/0x180
[  288.432160][T15850]  ? nlmon_xmit+0x51/0x60
[  288.436519][T15850]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  288.441936][T15850]  ? __dev_queue_xmit+0xb21/0x1e50
[  288.447062][T15850]  ? ref_tracker_free+0x3a5/0x410
[  288.452111][T15850]  ? __netlink_deliver_tap+0x495/0x4c0
[  288.457658][T15850]  netlink_unicast+0x58d/0x660
[  288.462449][T15850]  netlink_sendmsg+0x5ca/0x6e0
[  288.467239][T15850]  ? __pfx_netlink_sendmsg+0x10/0x10
[  288.472618][T15850]  __sock_sendmsg+0x140/0x180
[  288.477359][T15850]  ____sys_sendmsg+0x312/0x410
[  288.482153][T15850]  __sys_sendmsg+0x1e9/0x280
[  288.486859][T15850]  ? futex_wait+0x18e/0x1c0
[  288.491483][T15850]  __x64_sys_sendmsg+0x46/0x50
[  288.496326][T15850]  x64_sys_call+0xb25/0x2d70
[  288.500934][T15850]  do_syscall_64+0xc9/0x1c0
[  288.505451][T15850]  ? clear_bhb_loop+0x55/0xb0
[  288.510183][T15850]  ? clear_bhb_loop+0x55/0xb0
[  288.514894][T15850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.520816][T15850] RIP: 0033:0x7fcb2cf03bd9
[  288.525227][T15850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.544852][T15850] RSP: 002b:00007fcb2c185048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  288.553268][T15850] RAX: ffffffffffffffda RBX: 00007fcb2d091f60 RCX: 00007fcb2cf03bd9
[  288.561326][T15850] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  288.569575][T15850] RBP: 00007fcb2cf72e60 R08: 0000000000000000 R09: 0000000000000000
[  288.577566][T15850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  288.585629][T15850] R13: 000000000000000b R14: 00007fcb2d091f60 R15: 00007fffb73fec48
[  288.593631][T15850]  </TASK>
[  288.598782][T15850] memory: usage 307200kB, limit 307200kB, failcnt 1222
[  288.605671][T15850] memory+swap: usage 307584kB, limit 9007199254740988kB, failcnt 0
[  288.613990][T15850] kmem: usage 307020kB, limit 9007199254740988kB, failcnt 0
[  288.621336][T15850] Memory cgroup stats for /syz3:
[  288.622398][T15850] cache 184320
[  288.630826][T15850] rss 0
[  288.633685][T15850] shmem 0
[  288.636770][T15850] mapped_file 184320
[  288.640857][T15850] dirty 184320
[  288.644405][T15850] writeback 0
[  288.646803][T15868] loop4: detected capacity change from 0 to 512
[  288.647747][T15850] workingset_refault_anon 501
[  288.658751][T15850] workingset_refault_file 818
[  288.663500][T15850] swap 393216
[  288.666815][T15850] swapcached 0
[  288.668581][T15868] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.670195][T15850] pgpgin 118149
[  288.670205][T15850] pgpgout 118104
[  288.670215][T15850] pgfault 150698
[  288.670224][T15850] pgmajfault 242
[  288.695069][T15868] ext4 filesystem being mounted at /13/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  288.696957][T15850] inactive_anon 0
[  288.696969][T15850] active_anon 0
[  288.714520][T15850] inactive_file 184320
[  288.718642][T15850] active_file 0
[  288.722197][T15850] unevictable 0
[  288.725648][T15850] hierarchical_memory_limit 314572800
[  288.731213][T15850] hierarchical_memsw_limit 9223372036854771712
[  288.737378][T15850] total_cache 184320
[  288.741308][T15850] total_rss 0
[  288.744586][T15850] total_shmem 0
[  288.748203][T15850] total_mapped_file 184320
[  288.752846][T15850] total_dirty 184320
[  288.756826][T15850] total_writeback 0
[  288.760698][T15850] total_workingset_refault_anon 501
[  288.766100][T15850] total_workingset_refault_file 818
[  288.771310][T15850] total_swap 393216
[  288.775108][T15850] total_swapcached 0
[  288.779034][T15850] total_pgpgin 118149
[  288.783028][T15850] total_pgpgout 118104
[  288.787165][T15850] total_pgfault 150698
[  288.791234][T15850] total_pgmajfault 242
[  288.795311][T15850] total_inactive_anon 0
[  288.799465][T15850] total_active_anon 0
[  288.803455][T15850] total_inactive_file 184320
[  288.808083][T15850] total_active_file 0
[  288.812079][T15850] total_unevictable 0
[  288.816100][T15850] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.3379,pid=15849,uid=0
[  288.831083][T15850] Memory cgroup out of memory: Killed process 15849 (syz.3.3379) total-vm:80752kB, anon-rss:448kB, file-rss:9924kB, shmem-rss:0kB, UID:0 pgtables:100kB oom_score_adj:1000
[  288.868012][T15558] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.899875][T15878] __nla_validate_parse: 8 callbacks suppressed
[  288.899892][T15878] netlink: 80 bytes leftover after parsing attributes in process `syz.1.3388'.
[  288.932721][T15878] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3388'.
[  288.941668][T15878] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3388'.
[  288.958623][T15883] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3387'.
[  288.976301][T15883] veth2: entered promiscuous mode
[  288.981414][T15883] veth2: entered allmulticast mode
[  289.138831][T15896] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3393'.
[  289.148386][T15896] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3393'.
[  289.256952][T14355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.280701][T15904] loop3: detected capacity change from 0 to 512
[  289.310186][T15904] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.323221][T15904] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  289.362039][T11900] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.427188][T15913] netlink: 80 bytes leftover after parsing attributes in process `syz.3.3399'.
[  289.436927][T15913] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3399'.
[  289.445844][T15913] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3399'.
[  290.031502][T15934] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3405'.
[  290.040778][T15934] veth0_to_hsr: entered promiscuous mode
[  290.046600][T15934] veth0_to_hsr: entered allmulticast mode
[  290.055469][T15934] veth0_to_hsr: left promiscuous mode
[  290.061097][T15934] veth0_to_hsr: left allmulticast mode
[  290.127921][T15945] loop4: detected capacity change from 0 to 512
[  290.153315][T15945] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.177117][T15945] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  290.245163][T15558] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.394492][T15964] loop2: detected capacity change from 0 to 512
[  290.407171][T15964] EXT4-fs: Ignoring removed i_version option
[  290.413242][T15964] EXT4-fs: Ignoring removed nobh option
[  290.434581][T15964] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  290.471025][T15964] EXT4-fs (loop2): 1 truncate cleaned up
[  290.477670][T15964] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  290.854967][T13797] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  290.865911][T13797] CPU: 1 PID: 13797 Comm: syz-executor Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  290.876279][T13797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  290.886337][T13797] Call Trace:
[  290.889611][T13797]  <TASK>
[  290.892600][T13797]  dump_stack_lvl+0xf2/0x150
[  290.897345][T13797]  dump_stack+0x15/0x20
[  290.901605][T13797]  dump_header+0x83/0x2d0
[  290.905939][T13797]  oom_kill_process+0x33e/0x4c0
[  290.910871][T13797]  out_of_memory+0x9af/0xbe0
[  290.915465][T13797]  ? try_to_free_mem_cgroup_pages+0x22a/0x4e0
[  290.921563][T13797]  mem_cgroup_out_of_memory+0x13e/0x190
[  290.927241][T13797]  try_charge_memcg+0x745/0xcd0
[  290.932126][T13797]  ? _raw_spin_unlock+0x26/0x50
[  290.937040][T13797]  ? radix_tree_lookup+0xf9/0x150
[  290.942073][T13797]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  290.948146][T13797]  __read_swap_cache_async+0x2b9/0x520
[  290.953607][T13797]  swap_cluster_readahead+0x276/0x3f0
[  290.959002][T13797]  swapin_readahead+0xe2/0x7a0
[  290.963764][T13797]  ? __filemap_get_folio+0x420/0x5b0
[  290.969097][T13797]  ? swap_cache_get_folio+0x6e/0x210
[  290.974470][T13797]  do_swap_page+0x3bc/0x1840
[  290.979108][T13797]  ? hrtimer_try_to_cancel+0x106/0x1d0
[  290.984648][T13797]  ? __rcu_read_lock+0x36/0x50
[  290.989452][T13797]  handle_mm_fault+0x8b9/0x2ac0
[  290.994334][T13797]  exc_page_fault+0x3b9/0x650
[  290.999020][T13797]  asm_exc_page_fault+0x26/0x30
[  291.003908][T13797] RIP: 0033:0x7f3067855b85
[  291.008330][T13797] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d be d9 12 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  291.027993][T13797] RSP: 002b:00007ffde40f11d8 EFLAGS: 00010246
[  291.034091][T13797] RAX: 0000000000000000 RBX: 0000000000000120 RCX: 00007f3067855b83
[  291.042103][T13797] RDX: 00007ffde40f11f0 RSI: 0000000000000000 RDI: 0000000000000000
[  291.050078][T13797] RBP: 00007ffde40f126c R08: 000000002e95823a R09: 7fffffffffffffff
[  291.058145][T13797] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032
[  291.066133][T13797] R13: 0000000000000bb8 R14: 0000000000046d47 R15: 0000000000046cec
[  291.074133][T13797]  </TASK>
[  291.078810][T13797] memory: usage 307312kB, limit 307200kB, failcnt 1712
[  291.085826][T13797] memory+swap: usage 307504kB, limit 9007199254740988kB, failcnt 0
[  291.093794][T13797] kmem: usage 307128kB, limit 9007199254740988kB, failcnt 0
[  291.101154][T13797] Memory cgroup stats for /syz1:
[  291.101953][T13797] cache 184320
[  291.110455][T13797] rss 0
[  291.113237][T13797] shmem 0
[  291.116291][T13797] mapped_file 184320
[  291.120176][T13797] dirty 184320
[  291.123542][T13797] writeback 4096
[  291.127588][T13797] workingset_refault_anon 391
[  291.132261][T13797] workingset_refault_file 1774
[  291.137222][T13797] swap 196608
[  291.140710][T13797] swapcached 4096
[  291.144369][T13797] pgpgin 141494
[  291.147896][T13797] pgpgout 141448
[  291.151455][T13797] pgfault 146561
[  291.155020][T13797] pgmajfault 167
[  291.158661][T13797] inactive_anon 4096
[  291.162594][T13797] active_anon 0
[  291.166139][T13797] inactive_file 184320
[  291.170278][T13797] active_file 0
[  291.173774][T13797] unevictable 0
[  291.177307][T13797] hierarchical_memory_limit 314572800
[  291.182665][T13797] hierarchical_memsw_limit 9223372036854771712
[  291.188931][T13797] total_cache 184320
[  291.192844][T13797] total_rss 0
[  291.196152][T13797] total_shmem 0
[  291.199674][T13797] total_mapped_file 184320
[  291.204076][T13797] total_dirty 184320
[  291.207980][T13797] total_writeback 4096
[  291.212121][T13797] total_workingset_refault_anon 391
[  291.217340][T13797] total_workingset_refault_file 1774
[  291.222674][T13797] total_swap 196608
[  291.226511][T13797] total_swapcached 4096
[  291.230678][T13797] total_pgpgin 141494
[  291.234661][T13797] total_pgpgout 141448
[  291.238762][T13797] total_pgfault 146561
[  291.242835][T13797] total_pgmajfault 167
[  291.246923][T13797] total_inactive_anon 4096
[  291.251338][T13797] total_active_anon 0
[  291.255400][T13797] total_inactive_file 184320
[  291.260021][T13797] total_active_file 0
[  291.264029][T13797] total_unevictable 0
[  291.268055][T13797] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.3407,pid=15938,uid=0
[  291.283399][T13797] Memory cgroup out of memory: Killed process 15938 (syz.1.3407) total-vm:80752kB, anon-rss:580kB, file-rss:10052kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000
[  291.317510][T15979] macvlan0: entered promiscuous mode
[  291.322940][T15979] macvlan0: entered allmulticast mode
[  291.328380][T15979] veth1_vlan: entered allmulticast mode
[  291.338660][T15981] loop0: detected capacity change from 0 to 512
[  291.345182][T15981] EXT4-fs: Ignoring removed i_version option
[  291.351227][T15981] EXT4-fs: Ignoring removed nobh option
[  291.358725][T15979] veth1_vlan: left allmulticast mode
[  291.365479][T15979] macvlan0: left promiscuous mode
[  291.370595][T15979] macvlan0: left allmulticast mode
[  291.373621][   T29] kauditd_printk_skb: 36 callbacks suppressed
[  291.373637][   T29] audit: type=1326 audit(1720914508.209:3946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.396748][T15981] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  291.408074][   T29] audit: type=1326 audit(1720914508.209:3947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.441314][   T29] audit: type=1326 audit(1720914508.209:3948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.464830][   T29] audit: type=1326 audit(1720914508.209:3949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.492832][   T29] audit: type=1326 audit(1720914508.299:3950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.517704][   T29] audit: type=1326 audit(1720914508.299:3951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.541299][   T29] audit: type=1326 audit(1720914508.299:3952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.559981][T15981] EXT4-fs (loop0): 1 truncate cleaned up
[  291.566185][   T29] audit: type=1326 audit(1720914508.299:3953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.575380][T15981] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  291.594601][   T29] audit: type=1326 audit(1720914508.299:3954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.630796][   T29] audit: type=1326 audit(1720914508.299:3955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15980 comm="syz.3.3419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb2cf03bd9 code=0x7ffc0000
[  291.697056][T15995] loop3: detected capacity change from 0 to 512
[  291.708126][T15995] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  291.722411][T15995] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  291.747780][T11900] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.858769][T12496] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.207325][T14355] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  292.879928][T16028] loop1: detected capacity change from 0 to 512
[  292.897668][T16028] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.910935][T16028] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  292.955488][T13797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.015828][T16043] loop2: detected capacity change from 0 to 128
[  293.213182][T16055] loop1: detected capacity change from 0 to 512
[  293.226968][T16055] EXT4-fs: Ignoring removed i_version option
[  293.233018][T16055] EXT4-fs: Ignoring removed nobh option
[  293.238742][T16052] ==================================================================
[  293.238791][T16052] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64
[  293.238851][T16052] 
[  293.238854][T16052] read-write to 0xffffffff860079c0 of 8 bytes by interrupt on cpu 1:
[  293.238875][T16052]  tick_do_update_jiffies64+0x112/0x1b0
[  293.238909][T16052]  tick_nohz_handler+0x7c/0x2d0
[  293.238951][T16052]  __hrtimer_run_queues+0x20d/0x5e0
[  293.238982][T16052]  hrtimer_interrupt+0x210/0x7b0
[  293.239009][T16052]  __sysvec_apic_timer_interrupt+0x5c/0x1a0
[  293.239042][T16052]  sysvec_apic_timer_interrupt+0x6e/0x80
[  293.239074][T16052]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  293.239113][T16052]  console_flush_all+0x4fc/0x710
[  293.239138][T16052]  console_unlock+0x7b/0x280
[  293.239158][T16052]  vprintk_emit+0x3ed/0x5e0
[  293.239179][T16052]  vprintk_default+0x26/0x30
[  293.239199][T16052]  vprintk+0x75/0x80
[  293.239226][T16052]  _printk+0x7a/0xa0
[  293.239247][T16052]  __ext4_msg+0x134/0x1a0
[  293.239268][T16052]  ext4_parse_param+0x8cf/0x1020
[  293.239290][T16052]  vfs_parse_fs_param+0x13b/0x290
[  293.239318][T16052]  generic_parse_monolithic+0x165/0x1d0
[  293.239346][T16052]  parse_monolithic_mount_data+0x43/0x50
[  293.239377][T16052]  do_new_mount+0x1fa/0x690
[  293.239407][T16052]  path_mount+0x49b/0xb30
[  293.267223][T16055] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  293.268083][T16052]  __se_sys_mount+0x27f/0x2d0
[  293.276629][T16055] EXT4-fs (loop1): 1 truncate cleaned up
[  293.278467][T16052]  __x64_sys_mount+0x67/0x80
[  293.284119][T16055] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  293.288585][T16052]  x64_sys_call+0x25c9/0x2d70
[  293.288622][T16052]  do_syscall_64+0xc9/0x1c0
[  293.412719][T16052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.418631][T16052] 
[  293.420956][T16052] read to 0xffffffff860079c0 of 8 bytes by task 16052 on cpu 0:
[  293.428593][T16052]  mem_cgroup_flush_stats_ratelimited+0x29/0x100
[  293.434948][T16052]  count_shadow_nodes+0x6b/0x230
[  293.439925][T16052]  do_shrink_slab+0x5a/0x690
[  293.444621][T16052]  shrink_slab+0x4ed/0x860
[  293.449056][T16052]  shrink_node+0x59a/0x1da0
[  293.453593][T16052]  do_try_to_free_pages+0x3cf/0xc20
[  293.458803][T16052]  try_to_free_mem_cgroup_pages+0x1ea/0x4e0
[  293.464718][T16052]  try_charge_memcg+0x27a/0xcd0
[  293.469683][T16052]  obj_cgroup_charge_pages+0xbd/0x1d0
[  293.475111][T16052]  __memcg_kmem_charge_page+0x9d/0x170
[  293.480593][T16052]  __alloc_pages_noprof+0x1bc/0x360
[  293.485819][T16052]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  293.491243][T16052]  alloc_pages_noprof+0xe1/0x100
[  293.496208][T16052]  __vmalloc_node_range_noprof+0x719/0xef0
[  293.502039][T16052]  kvmalloc_node_noprof+0x121/0x170
[  293.507263][T16052]  ip_set_alloc+0x1f/0x30
[  293.511618][T16052]  hash_netiface_create+0x273/0x730
[  293.516839][T16052]  ip_set_create+0x359/0x8a0
[  293.521442][T16052]  nfnetlink_rcv_msg+0x4a9/0x570
[  293.526403][T16052]  netlink_rcv_skb+0x12c/0x230
[  293.531292][T16052]  nfnetlink_rcv+0x16c/0x15b0
[  293.536007][T16052]  netlink_unicast+0x58d/0x660
[  293.540827][T16052]  netlink_sendmsg+0x5ca/0x6e0
[  293.545600][T16052]  __sock_sendmsg+0x140/0x180
[  293.550284][T16052]  ____sys_sendmsg+0x312/0x410
[  293.555073][T16052]  __sys_sendmsg+0x1e9/0x280
[  293.559894][T16052]  __x64_sys_sendmsg+0x46/0x50
[  293.564682][T16052]  x64_sys_call+0xb25/0x2d70
[  293.569286][T16052]  do_syscall_64+0xc9/0x1c0
[  293.573809][T16052]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.579731][T16052] 
[  293.582055][T16052] value changed: 0x00000000fffffd2f -> 0x00000000fffffd30
[  293.589172][T16052] 
[  293.591500][T16052] Reported by Kernel Concurrency Sanitizer on:
[  293.597649][T16052] CPU: 0 PID: 16052 Comm: syz.1.3436 Not tainted 6.10.0-rc7-syzkaller-00256-gd0d0cd380055 #0
[  293.607809][T16052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  293.617872][T16052] ==================================================================
[  293.924663][T13797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.