last executing test programs:

13.914282139s ago: executing program 0 (id=198):
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)={@map, 0xffffffffffffffff, 0x0, 0x0, 0x4, @prog_fd}, 0x20)

13.872222142s ago: executing program 0 (id=200):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c00000003"], 0x7c}}, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ioctl$EVIOCGKEYCODE(r0, 0x80284504, &(0x7f0000000800)=""/4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000010405000000000000000000030000000500010003000001"], 0x1c}}, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000840)={<r2=>0x0, @in6={{0xa, 0x4e24, 0x0, @empty, 0xfffffff8}}, 0x240, 0x40, 0x4000001, 0x101, 0x0, 0x4f4097dd, 0x3}, &(0x7f00000001c0)=0x9c)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
io_setup(0x3, &(0x7f0000000180)=<r4=>0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), 0xffffffffffffffff)
io_submit(r4, 0x2, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x10000}])
ioctl$EVIOCGRAB(r3, 0x40044590, &(0x7f0000000140))
write$char_usb(r3, &(0x7f0000000040)="e2", 0x2778)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000100)={r2, @in6={{0xa, 0x4e24, 0x2, @mcast2, 0x7ff}}, 0x0, 0x0, 0x0, 0x7, 0x22, 0x200, 0x1}, 0x9c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x220080e, &(0x7f0000001900), 0x0, 0x4fa, &(0x7f0000000140)="$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")
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r6=>0xffffffffffffffff})
fcntl$setstatus(r0, 0x4, 0x6000)
fcntl$setstatus(r6, 0x4, 0x2400)
socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$SO_J1939_FILTER(0xffffffffffffffff, 0x6b, 0x1, &(0x7f0000000780)=[{0x0, 0x2}, {0x0, 0x0, {0x0, 0xf0}, {0x0, 0x0, 0x2}, 0x0, 0xfd}, {0x2, 0x3, {0x0, 0xf0, 0x3}, {0x1, 0xf0, 0xaa3fb3212d3e05ce}, 0xfd, 0x1}, {0x3, 0x1, {0x0, 0xf0, 0x4}, {0x0, 0x0, 0x2}, 0x2, 0xfd}], 0x80)
splice(r6, 0x0, r5, 0x0, 0x1, 0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

13.631841082s ago: executing program 0 (id=203):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
sendfile(r1, r1, 0x0, 0x7a680000)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001680)={{0x14, 0x10, 0x1, 0xe00}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWSETELEM={0x60, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x24, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xe4}}, 0x0)

13.628573212s ago: executing program 0 (id=204):
r0 = socket$inet6(0xa, 0x3, 0x4)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000180)={{{@in=@broadcast, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2e}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0xe8)
connect$inet6(r0, 0x0, 0x0)

13.604734934s ago: executing program 0 (id=205):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r1}, 0x10)
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r4, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)={@map, 0xffffffffffffffff, 0x0, 0x0, 0x4, @prog_fd}, 0x20)

13.515866021s ago: executing program 0 (id=207):
socket$nl_route(0x10, 0x3, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000004cc0)={0x2, 0x0, @private=0xa010101}, 0x10)
listen(0xffffffffffffffff, 0x1)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000240)={0x0, @in6={{0x2, 0x0, 0x0, @empty}}}, &(0x7f0000000040)=0x90)
syz_emit_ethernet(0x88, &(0x7f0000000300)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd6000021000523afffe800000000000000000002100000000bbff0200000000000000000000000000018600907800000000000000000000000018000000001805a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96509269748e254c1e4a0001005ff9297d00001392000100463f96459ec10b50a8ffe7d3fa1faedce2ef9855a470ac48b20898f22683ad72f610b28e4a838e6869f6e3ec30616ed3bdd24625398f12b828b2c70b2cf11646055811ae"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000950000007e300000"], &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket(0x11, 0x800000003, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x20, 0x1, 0x0, 0x0, 0x0, 0x0, 0x93409, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0xffffffff}, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x100}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = shmget$private(0x0, 0x2000, 0x10, &(0x7f0000001000/0x2000)=nil)
fstat(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
r4 = getgid()
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000100)={<r5=>0x0, <r6=>0x0}, &(0x7f00000001c0)=0x9)
setuid(r6)
shmctl$IPC_SET(r2, 0x1, &(0x7f0000000500)={{0x0, r3, r4, r6, 0xffffffffffffffff, 0x11, 0x1000}, 0x6, 0x9, 0x4, 0xa0b6, 0x0, 0xffffffffffffffff, 0x200})
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x88)
ioctl$ifreq_SIOCGIFINDEX_team(r7, 0x8933, &(0x7f0000000080))
sendmsg$nl_route(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r8 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f8e)
r9 = dup2(r8, r8)
ioctl$BLKTRACESETUP(r9, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0xffffffff, 0x1, 0x6ca06b2f, 0x0, r5})
ioctl$BLKTRACESETUP(r9, 0x1276, 0x0)

6.627570286s ago: executing program 3 (id=294):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c00000003"], 0x7c}}, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ioctl$EVIOCGKEYCODE(0xffffffffffffffff, 0x80284504, &(0x7f0000000800)=""/4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000010405000000000000000000030000000500010003000001"], 0x1c}}, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000840)={<r2=>0x0, @in6={{0xa, 0x4e24, 0x0, @empty, 0xfffffff8}}, 0x240, 0x40, 0x4000001, 0x101, 0x0, 0x4f4097dd, 0x3}, &(0x7f00000001c0)=0x9c)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
io_setup(0x3, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(r5, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x90000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x14, r6, 0x100, 0x70bd2c, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000)
io_submit(r4, 0x2, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x10000}])
ioctl$EVIOCGRAB(r3, 0x40044590, &(0x7f0000000140))
write$char_usb(r3, &(0x7f0000000040)="e2", 0x2778)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000100)={r2, @in6={{0xa, 0x4e24, 0x2, @mcast2, 0x7ff}}, 0x0, 0x0, 0x0, 0x7, 0x22, 0x200, 0x1}, 0x9c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x220080e, &(0x7f0000001900), 0x0, 0x4fa, &(0x7f0000000140)="$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")
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r8=>0xffffffffffffffff})
fcntl$setstatus(r0, 0x4, 0x6000)
fcntl$setstatus(r8, 0x4, 0x2400)
socket$inet6_udp(0xa, 0x2, 0x0)
r9 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_FILTER(r9, 0x6b, 0x1, &(0x7f0000000780)=[{0x0, 0x2}, {0x0, 0x0, {0x0, 0xf0}, {0x0, 0x0, 0x2}, 0x0, 0xfd}, {0x2, 0x3, {0x0, 0xf0, 0x3}, {0x1, 0xf0, 0xaa3fb3212d3e05ce}, 0xfd, 0x1}, {0x3, 0x1, {0x0, 0xf0, 0x4}, {0x0, 0x0, 0x2}, 0x2, 0xfd}], 0x80)
splice(r8, 0x0, r7, 0x0, 0x1, 0x0)
close_range(r7, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018e58, &(0x7f0000000000), 0x1, 0x61d, &(0x7f0000001680)="$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")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

6.186935472s ago: executing program 4 (id=295):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2}}, {@stripe={'stripe', 0x3d, 0x2004000}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000780)="$eJzs28tvG0UYAPBv13FKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWlUQECpHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZs4jp0mwY5L/ftJm8zsjjPzeXbs2Z1sAH1rJPuRROyJiN8jYqieXV1gpP7r5tLl6b+XLk8nUa2+9VdSK3dj6fJ0UbR43e48M5pGpJ8lcahFvfMXL52dqlRmL+T58YVz74/PX7z07JlzU6dnT8+enzxx4vixiReen3yuI3Fmbbpx8KO5wwdee+fqG9Mnr77787dJEX9THB0yst7BJ6rVDlfXW3sb0slADxvCppQiIuuucm38D0UpVjpvKF79tKeNA7qqWq1Wd7c/vFgF7mBJbLTk2fzzArgzFF/02fVvsW3T1OO2cP2l+gVQFvfNfKsfGYg0L1Nuur7tpJGIOLn4z1fZFt25DwEAsMr32fznmVbzvzTubyh3d742NBwR90TEvoi4NyL2R8R9EbWyD0TEg5usv3mRZO38J722pcA2KJv/vZivba2e/xWzvxgu5bm9tfjLyakzldmj+XsyGuUdWX5inTp+eOW3L9oda5z/ZVtWfzEXzNtxbWDH6tfMTC1M/ZeYG13/JOLgQKv4k+WVgCQiDkTEwS3Wceapbw63O9Yu/vJG/nAH1pmqX0c8We//xWiKv5Csvz45fldUZo+OF2fFWr/8euXNdvXfuv+7K+v/XS3P/+X4h5PG9dr5zddx5Y/P217TbPX8H0zerqUH830fTi0sXJiIGExerze6cf/kymuLfFE+i3/0SOvxvy9W3olDEZGdxA9FxMMR8Uje9kcj4rGIOLJO/D+9/Ph7W4+/u7L4ZzbV/yuJwWje0zpROvvjd6sqHd5M/Fn/H6+lRvM9G/n820i7tnY2AwAAwP9PGhF7IknHltNpOjZW/3/5/bErrczNLzx9au6D8zP1ZwSGo5wWd7qGGu6HTuSX9UV+sil/LL9v/GVpZy0/Nj1Xmel18NDndrcZ/5k/S71uHdB1nteC/mX8Q/8y/qF/Gf/Qv1qM/529aAew/Vp9/3/cg3YA269p/Fv2gz7i+h/6l/EP/cv4h740vzNu/ZC8hMSaRKS3RTMkupTo9ScTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAZ/wbAAD//9E940M=")
chdir(&(0x7f0000000140)='./file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x89}]}, &(0x7f0000000000)='GPL\x00'}, 0x90)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x6, 0x2a6, &(0x7f0000000440)="$eJzs3T9rW1cUAPDzbFlS20EaOpVCH7RDJ2N77SJTbDDV1KKh7dCa2oZiiYINhv6hqqeuXTr2ExQC2fIlsmTIHsgayBYPhhee9F4kO7JsBcvOn99v8fV999x77vXFxoPO+/Hj3v5OGnvHfzyKej2JhVa04iSJZixE6a84o/VPAABvspMsi6fZ0CxxSUTU55cWADBHM//9vzv3lACAOfvm2+++Wm+3N75O03ps9v4+6uT/2edfh8/X9+Ln6MZurEQjTiOyF4btzSzL+pU014zPev2jTh7Z++F+Mf/6k4hB/Go0ojnoOhu/1d5YTYfG4vt5Hu8X67fy+LVoxIcT1t9qb6xNiI9ONT7/dCz/5WjEg5/il+jGziCJUfyfq2n6Zfbvs9+/z9PL45P+Uac2GDeSLd7wjwYAAAAAAAAAAAAAAAAAAAAAgLfYclE7pxaD+j15V1F/Z/E0/2Yp0lLzbH2eYXxSTnSuPlA/i//K+joraZpmxcBRfCU+qkTldnYNAAAAAAAAAAAAAAAAAAAAr5fDX3/b3+52dw+upVFWAyg/1v+q87TGej6J6YNro7UWiuaUmWOxHJNETE0j38Q1Hctljfcuyvn/O7NOWL98zNK087meRnm79reTyWdYi7KnXl6Se+NjqnHFtaoXPcpmun7ViY8aM++9+sGg0Z8yJpJpiX3xeHhyRU9yfhfVwalODF8qGmPh5+7GTPf55d8ViWodAAAAAAAAAAAAAAAAAAAwV6MP/U54eHxB0MOt4Uv+a3NODgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABuyOj9/zM0+kXwFQZX4+DwlrcIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAO+B5AAAA///S9mga")
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x56, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x3c}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x1, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x2}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={0x1, 0x58, &(0x7f00000002c0)}, 0x10)
close(0xffffffffffffffff)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000400), 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f0000000240)=""/88)
open(&(0x7f0000000340)='./bus\x00', 0x8e046, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x1718, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a4b78c660e677df701908b9aaa3f6a00400", "036c47c6780820d1cbf7896de1fdcf335263bdbcef549ba197fce47ddfdd753abd9501ce721b6ae9b49600002a00", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000940)={'#! ', './file0'}, 0xfdef)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20020008)
mkdirat(r0, &(0x7f0000000040)='./bus\x00', 0x0)

5.83201342s ago: executing program 3 (id=298):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
open(&(0x7f0000000100)='./file1\x00', 0x0, 0x0)

5.723614119s ago: executing program 3 (id=299):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r1}, 0x10)
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x0, 0x300)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r3}, 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x0, @loopback}, @in6={0xa, 0x0, 0x0, @private0}], 0x2c)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)={@map, 0xffffffffffffffff, 0x0, 0x0, 0x4, @prog_fd}, 0x20)

5.704914151s ago: executing program 4 (id=300):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r0)
pwritev2(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
truncate(0x0, 0x80000002328)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_MCAST_MSFILTER(r2, 0x0, 0x30, &(0x7f00000004c0)={0x0, {{0x2, 0x0, @multicast2}}, 0x1, 0x1, [{{0x2, 0x0, @loopback}}]}, 0x110)
sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000", @ANYRES16=r1, @ANYBLOB="8d8700001600000000001f"], 0x14}}, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x541c, &(0x7f00000000c0))

5.619621068s ago: executing program 3 (id=302):
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x8, 0x8, 0x6, 0x0, 0x1}, 0x48)
socket(0x1, 0x1, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x81, 0xff, 0x9, 0x0, 0x1}, 0x48)
r2 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00'})
dup3(r2, r1, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2800000035005700000000000000f0ff02ffffffe5000000100001800c001000080001"], 0x28}}, 0x0)
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r4 = gettid()
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_RELOAD(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)={0x3c, r3, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r4}}]}, 0x3c}}, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)

5.527864135s ago: executing program 4 (id=303):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
syz_clone3(&(0x7f0000000340)={0x42907480, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_clone3(&(0x7f0000000500)={0x8d2c2600, 0x0, &(0x7f0000000240), 0x0, {}, &(0x7f0000000580)=""/202, 0xca, &(0x7f0000000180)=""/122, &(0x7f00000004c0)=[0x0], 0x1}, 0x58)

4.655722365s ago: executing program 2 (id=307):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000001800dd8d0000000000000000020000000000000600000000060015000200000014001680100008800c000280", @ANYRESHEX], 0x38}}, 0x0)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x20000100, 0x20000130], 0x0, 0x0, &(0x7f0000000100)=[{}, {}, {0x0, '\x00', 0x10d}]}, 0x108)

4.655303986s ago: executing program 2 (id=308):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c00000003"], 0x7c}}, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ioctl$EVIOCGKEYCODE(r0, 0x80284504, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000010405000000000000000000030000000500010003000001"], 0x1c}}, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000840)={<r2=>0x0, @in6={{0xa, 0x4e24, 0x0, @empty, 0xfffffff8}}, 0x240, 0x40, 0x4000001, 0x101, 0x0, 0x4f4097dd, 0x3}, &(0x7f00000001c0)=0x9c)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
io_setup(0x3, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(r5, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x90000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x14, r6, 0x100, 0x70bd2c, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000)
io_submit(r4, 0x2, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x10000}])
ioctl$EVIOCGRAB(r3, 0x40044590, &(0x7f0000000140))
write$char_usb(r3, &(0x7f0000000040)="e2", 0x2778)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000100)={r2, @in6={{0xa, 0x4e24, 0x2, @mcast2, 0x7ff}}, 0x0, 0x0, 0x0, 0x7, 0x22, 0x200, 0x1}, 0x9c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x220080e, &(0x7f0000001900), 0x0, 0x4fa, &(0x7f0000000140)="$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")
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r8=>0xffffffffffffffff})
fcntl$setstatus(r0, 0x4, 0x6000)
fcntl$setstatus(r8, 0x4, 0x2400)
socket$inet6_udp(0xa, 0x2, 0x0)
r9 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_FILTER(r9, 0x6b, 0x1, &(0x7f0000000780)=[{0x0, 0x2}, {0x0, 0x0, {0x0, 0xf0}, {0x0, 0x0, 0x2}, 0x0, 0xfd}, {0x2, 0x3, {0x0, 0xf0, 0x3}, {0x1, 0xf0, 0xaa3fb3212d3e05ce}, 0xfd, 0x1}, {0x3, 0x1, {0x0, 0xf0, 0x4}, {0x0, 0x0, 0x2}, 0x2, 0xfd}], 0x80)
splice(r8, 0x0, r7, 0x0, 0x1, 0x0)
close_range(r7, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018e58, &(0x7f0000000000), 0x1, 0x61d, &(0x7f0000001680)="$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")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

3.803220574s ago: executing program 2 (id=314):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet(0x2, 0x6, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x0, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='xfrm0\x00', 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
io_uring_setup(0x168e, &(0x7f0000000000))
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='debugfs\x00', 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0)
write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x8607}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0}, 0xaea5}, {{&(0x7f00000002c0)=@ethernet={0x0, @local}, 0x80, 0x0, 0x0, &(0x7f0000000bc0)=""/132, 0x84}, 0x5}], 0x2, 0x10042, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="386bc8675dcfd62bf2197870a19452dd92ea58534aec6f5bedaca84b3861d84aa734fb4f5c222c56d9a3c241bf480ee500000000000000000000bd4bd73e02dc49f54febca7a98af4bea74fd531b2c6a467d15060a57f8eb3fc6be370ce3156264b4b594ffad5429644ee6d96655f16499e3580acf47ecfe4ac1588f188cdfea19f81200fa244734bc29a0dd2e093dbd3f0cd62e8ef2b21dd18cd5d9f5b82b2709c792fa985aaf8ad4333676040128dcddd8340babb35f74f35008f78616904dc111d65fbfc4ca46d7b2a38e5098d456649d58f313c411f7b928f6024148a1061f369a30adb274e839d65e01dce3"])
pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000000)={0x1fe, 0x1fc, 0x8000000000, 0x0, 0x0, 0x0, 0x401}, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x5400, 0x0)

3.638064427s ago: executing program 2 (id=315):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000240)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
recvmmsg(r1, &(0x7f0000001b80)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/80, 0x50}], 0x1}}], 0x1, 0x0, 0x0)
shutdown(r1, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)

3.546950455s ago: executing program 2 (id=316):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2}}, {@stripe={'stripe', 0x3d, 0x2004000}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000780)="$eJzs28tvG0UYAPBv13FKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWlUQECpHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZs4jp0mwY5L/ftJm8zsjjPzeXbs2Z1sAH1rJPuRROyJiN8jYqieXV1gpP7r5tLl6b+XLk8nUa2+9VdSK3dj6fJ0UbR43e48M5pGpJ8lcahFvfMXL52dqlRmL+T58YVz74/PX7z07JlzU6dnT8+enzxx4vixiReen3yuI3Fmbbpx8KO5wwdee+fqG9Mnr77787dJEX9THB0yst7BJ6rVDlfXW3sb0slADxvCppQiIuuucm38D0UpVjpvKF79tKeNA7qqWq1Wd7c/vFgF7mBJbLTk2fzzArgzFF/02fVvsW3T1OO2cP2l+gVQFvfNfKsfGYg0L1Nuur7tpJGIOLn4z1fZFt25DwEAsMr32fznmVbzvzTubyh3d742NBwR90TEvoi4NyL2R8R9EbWyD0TEg5usv3mRZO38J722pcA2KJv/vZivba2e/xWzvxgu5bm9tfjLyakzldmj+XsyGuUdWX5inTp+eOW3L9oda5z/ZVtWfzEXzNtxbWDH6tfMTC1M/ZeYG13/JOLgQKv4k+WVgCQiDkTEwS3Wceapbw63O9Yu/vJG/nAH1pmqX0c8We//xWiKv5Csvz45fldUZo+OF2fFWr/8euXNdvXfuv+7K+v/XS3P/+X4h5PG9dr5zddx5Y/P217TbPX8H0zerqUH830fTi0sXJiIGExerze6cf/kymuLfFE+i3/0SOvxvy9W3olDEZGdxA9FxMMR8Uje9kcj4rGIOLJO/D+9/Ph7W4+/u7L4ZzbV/yuJwWje0zpROvvjd6sqHd5M/Fn/H6+lRvM9G/n820i7tnY2AwAAwP9PGhF7IknHltNpOjZW/3/5/bErrczNLzx9au6D8zP1ZwSGo5wWd7qGGu6HTuSX9UV+sil/LL9v/GVpZy0/Nj1Xmel18NDndrcZ/5k/S71uHdB1nteC/mX8Q/8y/qF/Gf/Qv1qM/529aAew/Vp9/3/cg3YA269p/Fv2gz7i+h/6l/EP/cv4h740vzNu/ZC8hMSaRKS3RTMkupTo9ScTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAZ/wbAAD//9E940M=")
chdir(&(0x7f0000000140)='./file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x89}]}, &(0x7f0000000000)='GPL\x00'}, 0x90)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x6, 0x2a6, &(0x7f0000000440)="$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")
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x56, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x3c}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x1, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x2}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={0x1, 0x58, &(0x7f00000002c0)}, 0x10)
close(0xffffffffffffffff)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000400), 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
open(&(0x7f0000000340)='./bus\x00', 0x8e046, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x1718, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a4b78c660e677df701908b9aaa3f6a00400", "036c47c6780820d1cbf7896de1fdcf335263bdbcef549ba197fce47ddfdd753abd9501ce721b6ae9b49600002a00", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000940)={'#! ', './file0'}, 0xfdef)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20020008)
mkdirat(r0, &(0x7f0000000040)='./bus\x00', 0x0)

3.125430919s ago: executing program 2 (id=318):
socket$vsock_stream(0x28, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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")
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000000000000000a76d002cd11d11dfce52c2000000ebff800a2800000000280101000000005e1affd5020000000900010073797a3000000000080002"], 0x7c}}, 0x20000041)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000300)='./file0/file1\x00', 0x80)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x90c000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1a49002, 0x0)
syz_mount_image$iso9660(&(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='map=normal,mode=0x0000000000000003,norock,gid=', @ANYRESHEX=0x0, @ANYBLOB=',iocharset=maciceland,overriderockperm,map=normal,mode=0x000000000000001,map=acorn,check=strict,overriderockperm,map=normal,cruft,\x00\x00'], 0x3, 0x3f8, &(0x7f0000000f00)="$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")
mount$bind(0x0, &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0)
perf_event_open(&(0x7f0000000680)={0x2, 0x80, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6}, 0x1004a5, 0x0, 0x100, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x2804049, &(0x7f0000001580)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYRESDEC, @ANYRES8, @ANYBLOB="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"], 0x41, 0x304, &(0x7f0000001880)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0xc0185879, &(0x7f0000000080)={@id={0x2, 0x0, @d}})
mount$bind(&(0x7f0000000240)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x189505a, 0x0)
mount$bind(&(0x7f0000000100)='\x00', &(0x7f0000000040)='.\x00', 0x0, 0x1adc51, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="012900"/12], 0x19)
open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000380)='net/ip_vs\x00')
pread64(r2, &(0x7f0000004180)=""/4096, 0x1000, 0x0)
inotify_init1(0x0)

1.525637167s ago: executing program 1 (id=328):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0x0)
sendfile(r1, r1, 0x0, 0x7a680000)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001680)={{0x14, 0x10, 0x1, 0xe00}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWSETELEM={0x60, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x24, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xe4}}, 0x0)

1.394425738s ago: executing program 1 (id=329):
statfs(0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x12300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x40, 0x0, 0xffffffff, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400e4ffffff0000dd0a0000000000006a016d00000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x68000000}, 0x48)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000000), 0x10)
getpriority(0x0, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fcntl$setown(r1, 0x8, 0x0)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000400)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2000, 0x0})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB], 0xd8}}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0x1}, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000140)=@o_path={&(0x7f0000000100)='./file0\x00', 0x0, 0x4010}, 0x18)
r3 = socket$inet(0x2, 0x1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x0, 0x84)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @private2}, 0x1c)
shutdown(r5, 0x1)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000000), 0x248800)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848100000", 0x17}], 0x1}, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x3, 0x482, [0x20000940, 0x0, 0x0, 0x20000a46, 0x20000dd2], 0x0, &(0x7f0000000300), &(0x7f0000000e00)=ANY=[@ANYBLOB]}, 0x78)
sendmsg$kcm(r6, &(0x7f00000001c0)={0x0, 0x190d, &(0x7f0000000500)=[{&(0x7f00000000c0)="2e00000010008188040f46ecdb4cb9cca7480ef410000000e3bd6efb440013030e000a000d000000ba8000001201", 0x2e}], 0x1}, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)

1.129023839s ago: executing program 1 (id=330):
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r1}, 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x0, @loopback}, @in6={0xa, 0x0, 0x0, @private0}], 0x2c)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)={@map, 0xffffffffffffffff, 0x0, 0x0, 0x4, @prog_fd}, 0x20)

1.017654449s ago: executing program 3 (id=331):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet(0x2, 0x6, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='xfrm0\x00', 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
io_uring_setup(0x168e, &(0x7f0000000000))
pipe(&(0x7f00000001c0))
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff}, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='debugfs\x00', 0x0, 0x0)
r2 = inotify_init()
inotify_add_watch(r2, &(0x7f0000000200)='./file0\x00', 0x0)
write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
r3 = socket(0x0, 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040), 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0}, 0xaea5}, {{&(0x7f00000002c0)=@ethernet={0x0, @local}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000a80)=""/81, 0x51}, {&(0x7f0000000440)=""/129, 0x81}, {&(0x7f0000000580)=""/159, 0x9f}, {&(0x7f0000000340)=""/28, 0x1c}, {&(0x7f0000000c80)=""/153, 0x99}, {&(0x7f0000000700)=""/81, 0x51}, {0x0}], 0x7, &(0x7f0000000bc0)=""/132, 0x84}, 0x5}], 0x2, 0x10042, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="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"])
socket$inet_sctp(0x2, 0x5, 0x84)
pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000000)={0x1fe, 0x1fc, 0x8000000000, 0x0, 0x0, 0x0, 0x401}, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x5400, 0x0)
ioprio_set$pid(0x2, 0xffffffffffffffff, 0x0)
accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x80800)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000800)=[{&(0x7f00000001c0)="a4", 0x1}], 0x1)

919.714756ms ago: executing program 1 (id=332):
r0 = socket(0x5, 0x800000003, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
lseek(r1, 0xfffffffffffffffe, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x12, &(0x7f0000000000), 0x48)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={<r4=>0x0, 0x1c, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @local, 0x5}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000001c0)={r4, @in={{0x2, 0x3, @empty}}, 0x0, 0x0, 0xfffffffe, 0x3ff, 0x95}, 0x9c)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00', <r6=>0x0})
bind$xdp(0xffffffffffffffff, &(0x7f0000000200)={0x2c, 0x1, r6, 0x0, r5}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f00000003c0)=@gettfilter={0x2c, 0x2e, 0x4, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, r6, {0xa, 0xe}, {0xe, 0x2}, {0xffff, 0x9}}, [{0x8}]}, 0x2c}}, 0x1)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000001, 0x12, r7, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x0, @empty}}}, 0x9c)
r8 = socket(0x10, 0x3, 0x0)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x3, 0xfffffffd})
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000300)=@generic={&(0x7f0000000100)='./file0\x00'}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000d40)=@newqdisc={0x90, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x60, 0x2, {{0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8], 0x0, [0x4, 0x2], [0x0, 0x4]}, [@TCA_MQPRIO_MODE={0x6, 0x4}]}}}]}, 0x90}}, 0x0)
socket(0x20, 0x4, 0x6e9)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r10=>r2}, './file0\x00'})
fcntl$getownex(r8, 0x10, &(0x7f0000000080)={0x0, <r11=>0x0})
write$cgroup_pid(r10, &(0x7f00000000c0)=r11, 0x12)

601.609172ms ago: executing program 4 (id=304):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r1}, 0x10)
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r3}, 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x0, @loopback}, @in6={0xa, 0x0, 0x0, @private0}], 0x2c)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)={@map, 0xffffffffffffffff, 0x0, 0x0, 0x4, @prog_fd}, 0x20)

532.070858ms ago: executing program 1 (id=333):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c00000003"], 0x7c}}, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ioctl$EVIOCGKEYCODE(r0, 0x80284504, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000010405000000000000000000030000000500010003000001"], 0x1c}}, 0x0)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000840)={<r2=>0x0, @in6={{0xa, 0x4e24, 0x0, @empty, 0xfffffff8}}, 0x240, 0x40, 0x4000001, 0x101, 0x0, 0x4f4097dd, 0x3}, &(0x7f00000001c0)=0x9c)
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
io_setup(0x3, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(r5, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x90000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x14, r6, 0x100, 0x70bd2c, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000)
io_submit(r4, 0x2, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x10000}])
ioctl$EVIOCGRAB(r3, 0x40044590, &(0x7f0000000140))
write$char_usb(r3, &(0x7f0000000040)="e2", 0x2778)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000100)={r2, @in6={{0xa, 0x4e24, 0x2, @mcast2, 0x7ff}}, 0x0, 0x0, 0x0, 0x7, 0x22, 0x200, 0x1}, 0x9c)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x220080e, &(0x7f0000001900), 0x0, 0x4fa, &(0x7f0000000140)="$eJzs3c9vI1cdAPDvzOaHk6ZNWnoABHQphQWt1km8bVT1AOWEEKqE6BGkbUi8URQ7jmKnNGEP6f+ARCVOcOQP4NwTdy4IblzKAYkfEaipxGHQjCdbN2snWfLDUfz5SKN5b553vu9tdt5bf73rF8DIuh0R+xExERHvRMRseT0pj3ize+Sv+/jg0crhwaOVJLLs7X8meXul915JeX6mvGfe+KPvRfw0eTJue3dvY7nRqG+X9flOc2u+vbt3b725vFZfq2/WakuLSwuv33+tdmFjfak5UZa+/NEf9r/187xbM0U9K8Z2YYF6dIc+XsbpGouIH1xGsCG4VY5nYtgd4f+SRsQLEfFy8fzPxq3ipwkA3GRZNhvZbG8dALjp0iIHlqTVMhcwE2larXZzeC/GdNpotTt3H7Z2Nle7ubK5GE8frjfqC2WucC7Gk7y+WJQ/rdeO1e9HxPMR8YvJqaJeXWk1Vof5Fx8AGGHPHFv//zPZXf8BgBuuMuwOAABXzvoPAKPH+g8Ao8f6DwCjx/oPAKPH+g8Ao8f6DwAj5YdvvZUf2WH5/der7+7ubLTevbdab29Umzsr1ZXW9lZ1rdVaK76zp3na/Rqt1tbiq7Hz3ty3t9qd+fbu3oNma2ez86D4Xu8H9fErGRUAcJLnX/rwz0lE7L8xVRzRs5eDtRputnTYHQCG5tawOwAMjd2+YHSd4z2+9ADcEH226P2MSkRMHb+YZVl2eV0CLtmdL8j/w6jqyf/7V8AwYuT/YXTJ/8PoyrLkrHv+x1lfCABcb3L8wIDP/18oz78tPxz4yerxV3xwmb0CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA6+1o/99quRf4TKRptRrxbETMxXjycL1RX4iI5yLiT5Pjk3l9cch9BgDOK/1bUu7/dWf2lZnjrRPJJ5PFOSJ+9qu3f/necqez/cf8+r8eX+98UF6vDaP/AMBpjtbp4tzzRv7jg0crR8dZ75VeQH/+/t2IqHTjHx5MxOHj+GMxVpwrMR4R0/9OynpX0pO7OI/99yPi8/3Gn8RMkQPp7nx6PH4e+9krjZ9+Jn5atHXP+e/F5y6gLzBqPsznnzf7PX9p3C7O/Z//SjFDnV85/+W3Wjks5sBP4x/Nf7cGzH+3zxrj1d9/v1uaerLt/YgvjkUcxT7smX+O4icD4r9yxvh/+dJXXh7Ulv064k70j98ba77T3Jpv7+7dW28ur9XX6pu12tLi0sLr91+rzRc56vnBq8E/3rj73KC2fPzTA+JXThn/108Y835P+Tf/fefHXz3WPtYT/5tf6xc/jRdPiJ+vid84IX6v5enfVQa15fFXB4z/tJ//3TPG/+ive09sGw4ADE97d29judGobysoXP9C/kf2GnSjb+E7VxVrIp7qV2VZt5BGxFPEGjRjXETWDbgOHj/0EfHJsDsDAAAAAAAAAAAAAAD0dRX/Y2nYYwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAODm+l8AAAD//7VGz2M=")
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r8=>0xffffffffffffffff})
fcntl$setstatus(r0, 0x4, 0x6000)
fcntl$setstatus(r8, 0x4, 0x2400)
socket$inet6_udp(0xa, 0x2, 0x0)
r9 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_FILTER(r9, 0x6b, 0x1, &(0x7f0000000780)=[{0x0, 0x2}, {0x0, 0x0, {0x0, 0xf0}, {0x0, 0x0, 0x2}, 0x0, 0xfd}, {0x2, 0x3, {0x0, 0xf0, 0x3}, {0x1, 0xf0, 0xaa3fb3212d3e05ce}, 0xfd, 0x1}, {0x3, 0x1, {0x0, 0xf0, 0x4}, {0x0, 0x0, 0x2}, 0x2, 0xfd}], 0x80)
splice(r8, 0x0, r7, 0x0, 0x1, 0x0)
close_range(r7, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018e58, &(0x7f0000000000), 0x1, 0x61d, &(0x7f0000001680)="$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")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

417.963397ms ago: executing program 4 (id=334):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet(0x2, 0x6, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x0, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='xfrm0\x00', 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
io_uring_setup(0x168e, &(0x7f0000000000))
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='debugfs\x00', 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0)
write$P9_RLERRORu(0xffffffffffffffff, 0x0, 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x8607}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0}, 0xaea5}, {{&(0x7f00000002c0)=@ethernet={0x0, @local}, 0x80, 0x0, 0x0, &(0x7f0000000bc0)=""/132, 0x84}, 0x5}], 0x2, 0x10042, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="386bc8675dcfd62bf2197870a19452dd92ea58534aec6f5bedaca84b3861d84aa734fb4f5c222c56d9a3c241bf480ee500000000000000000000bd4bd73e02dc49f54febca7a98af4bea74fd531b2c6a467d15060a57f8eb3fc6be370ce3156264b4b594ffad5429644ee6d96655f16499e3580acf47ecfe4ac1588f188cdfea19f81200fa244734bc29a0dd2e093dbd3f0cd62e8ef2b21dd18cd5d9f5b82b2709c792fa985aaf8ad4333676040128dcddd8340babb35f74f35008f78616904dc111d65fbfc4ca46d7b2a38e5098d456649d58f313c411f7b928f6024148a1061f369a30adb274e839d65e01dce3"])
pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000000)={0x1fe, 0x1fc, 0x8000000000, 0x0, 0x0, 0x0, 0x401}, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x5400, 0x0)

200.692534ms ago: executing program 4 (id=335):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2}}, {@stripe={'stripe', 0x3d, 0x2004000}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000780)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x89}]}, &(0x7f0000000000)='GPL\x00'}, 0x90)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x6, 0x2a6, &(0x7f0000000440)="$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")
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x56, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x3c}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x1, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x2}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={0x1, 0x58, &(0x7f00000002c0)}, 0x10)
close(0xffffffffffffffff)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000400), 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
open(&(0x7f0000000340)='./bus\x00', 0x8e046, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x1718, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a4b78c660e677df701908b9aaa3f6a00400", "036c47c6780820d1cbf7896de1fdcf335263bdbcef549ba197fce47ddfdd753abd9501ce721b6ae9b49600002a00", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000940)={'#! ', './file0'}, 0xfdef)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20020008)
mkdirat(r0, &(0x7f0000000040)='./bus\x00', 0x0)

112.613892ms ago: executing program 1 (id=336):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r1}, 0x10)
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r3}, 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x0, @loopback}, @in6={0xa, 0x0, 0x0, @private0}], 0x2c)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)={@map, 0xffffffffffffffff, 0x0, 0x0, 0x4, @prog_fd}, 0x20)

0s ago: executing program 3 (id=337):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
sendfile(0xffffffffffffffff, r1, 0x0, 0x7a680000)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001680)={{0x14, 0x10, 0x1, 0xe00}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWSETELEM={0x60, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x24, 0xb, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xe4}}, 0x0)

kernel console output (not intermixed with test programs):

 225 callbacks suppressed
[   40.643999][   T29] audit: type=1400 audit(1722359301.391:335): avc:  denied  { read } for  pid=2998 comm="dhcpcd" name="n25" dev="tmpfs" ino=650 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   40.653226][ T3489] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.673830][   T29] audit: type=1400 audit(1722359301.391:336): avc:  denied  { open } for  pid=2998 comm="dhcpcd" path="/run/udev/data/n25" dev="tmpfs" ino=650 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   40.673861][   T29] audit: type=1400 audit(1722359301.391:337): avc:  denied  { getattr } for  pid=2998 comm="dhcpcd" path="/run/udev/data/n25" dev="tmpfs" ino=650 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   40.684658][ T3508] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   40.749699][ T3489] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.763436][   T50] team0: left allmulticast mode
[   40.768860][   T50] team_slave_0: left allmulticast mode
[   40.775172][   T50] team_slave_1: left allmulticast mode
[   40.781156][   T50] team0: left promiscuous mode
[   40.786086][   T50] team_slave_0: left promiscuous mode
[   40.792197][   T50] team_slave_1: left promiscuous mode
[   40.798715][   T50] bridge0: port 3(team0) entered disabled state
[   40.809918][ T3508] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.817257][   T50] bridge_slave_1: left allmulticast mode
[   40.828867][   T50] bridge_slave_1: left promiscuous mode
[   40.835994][   T50] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.838841][   T29] audit: type=1400 audit(1722359301.601:338): avc:  denied  { name_bind } for  pid=3507 comm="syz.1.26" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   40.853167][ T3508] Zero length message leads to an empty skb
[   40.873549][   T50] bridge_slave_0: left allmulticast mode
[   40.879885][   T50] bridge_slave_0: left promiscuous mode
[   40.886836][   T50] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.908670][   T29] audit: type=1400 audit(1722359301.611:339): avc:  denied  { listen } for  pid=3507 comm="syz.1.26" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   40.933441][   T29] audit: type=1400 audit(1722359301.611:340): avc:  denied  { connect } for  pid=3507 comm="syz.1.26" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   40.956353][   T29] audit: type=1400 audit(1722359301.611:341): avc:  denied  { name_connect } for  pid=3507 comm="syz.1.26" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   40.979428][   T29] audit: type=1400 audit(1722359301.611:342): avc:  denied  { map } for  pid=3507 comm="syz.1.26" path="/2/file1/cpuacct.usage_percpu_user" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   41.005973][   T29] audit: type=1400 audit(1722359301.611:343): avc:  denied  { execute } for  pid=3507 comm="syz.1.26" path="/2/file1/cpuacct.usage_percpu_user" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   41.033464][   T29] audit: type=1400 audit(1722359301.611:344): avc:  denied  { getopt } for  pid=3507 comm="syz.1.26" laddr=127.0.0.1 lport=50990 faddr=127.0.0.2 fport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   41.129106][   T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   41.140189][   T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   41.152055][   T50] bond0 (unregistering): Released all slaves
[   41.163869][ T3489] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.188676][ T3485] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.199578][ T3258] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.201523][ T3489] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.218766][ T3493] chnl_net:caif_netlink_parms(): no params data found
[   41.256427][ T3532] loop2: detected capacity change from 0 to 512
[   41.267814][ T3532] EXT4-fs (loop2): first meta block group too large: 16711680 (group descriptor block count 1)
[   41.285502][ T3533] loop1: detected capacity change from 0 to 1024
[   41.286291][ T3485] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.295170][ T3533] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   41.323271][ T3485] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.341233][ T3485] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.363558][   T50] hsr_slave_0: left promiscuous mode
[   41.371278][   T50] hsr_slave_1: left promiscuous mode
[   41.383566][ T3537] loop2: detected capacity change from 0 to 1024
[   41.393676][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   41.401610][   T50] batman_adv: batadv0: Removing interface: batadv_slave_0
[   41.410252][ T3537] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   41.426117][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   41.436168][   T50] batman_adv: batadv0: Removing interface: batadv_slave_1
[   41.436675][ T3537] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   41.459703][   T50] veth1_macvtap: left promiscuous mode
[   41.461566][ T3537] EXT4-fs (loop2): orphan cleanup on readonly fs
[   41.466023][   T50] veth0_macvtap: left promiscuous mode
[   41.474280][ T3537] EXT4-fs error (device loop2): ext4_map_blocks:718: inode #3: block 3: comm syz.2.28: lblock 3 mapped to illegal pblock 3 (length 1)
[   41.479758][   T50] veth1_vlan: left promiscuous mode
[   41.497335][ T3537] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.28: Failed to acquire dquot type 0
[   41.502021][   T50] veth0_vlan: left promiscuous mode
[   41.524932][ T3537] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.28: lblock 3 mapped to illegal pblock 3 (length 1)
[   41.543452][ T3537] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.28: Failed to acquire dquot type 0
[   41.572795][ T3537] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.28: Freeing blocks not in datazone - block = 0, count = 4096
[   41.604837][ T3537] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.28: lblock 3 mapped to illegal pblock 3 (length 1)
[   41.642234][ T3537] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.28: Failed to acquire dquot type 0
[   41.659186][ T3537] EXT4-fs (loop2): 1 orphan inode deleted
[   41.668528][ T3537] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   41.727459][ T3545] loop1: detected capacity change from 0 to 512
[   41.734951][   T50] team0 (unregistering): Port device team_slave_1 removed
[   41.741570][ T3545] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   41.757279][ T3545] EXT4-fs (loop1): 1 truncate cleaned up
[   41.757442][   T50] team0 (unregistering): Port device team_slave_0 removed
[   41.763984][ T3545] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.787531][ T3265] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.836713][ T3545] loop1: detected capacity change from 512 to 11
[   41.865650][ T3545] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5810: Out of memory
[   41.899515][ T3549] loop2: detected capacity change from 0 to 8192
[   41.905100][ T3545] EXT4-fs error (device loop1): ext4_truncate:4241: inode #18: comm syz.1.32: mark_inode_dirty error
[   41.925053][ T3493] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.933703][ T3493] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.941906][ T3493] bridge_slave_0: entered allmulticast mode
[   41.963913][ T3545] EXT4-fs error (device loop1) in ext4_setattr:5553: Out of memory
[   41.973844][ T3493] bridge_slave_0: entered promiscuous mode
[   41.985904][ T3549]  loop2: p1 p2 p3 p4
[   41.990630][ T3549] loop2: p1 start 51379968 is beyond EOD, truncated
[   42.007853][ T3559] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5810: Out of memory
[   42.019038][ T3493] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.026911][ T3493] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.038979][ T3549] loop2: p3 size 100663552 extends beyond EOD, truncated
[   42.048242][ T3493] bridge_slave_1: entered allmulticast mode
[   42.049714][ T3559] EXT4-fs error (device loop1): ext4_truncate:4241: inode #18: comm syz.1.32: mark_inode_dirty error
[   42.055196][ T3493] bridge_slave_1: entered promiscuous mode
[   42.080908][ T3545] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5810: Out of memory
[   42.086124][ T3549] loop2: p4 size 50348032 extends beyond EOD, truncated
[   42.102507][ T3559] EXT4-fs error (device loop1) in ext4_setattr:5553: Out of memory
[   42.137197][ T3570] loop0: detected capacity change from 0 to 1024
[   42.149584][ T3493] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   42.162716][ T3493] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   42.184381][ T3570] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.185972][ T3574] loop2: detected capacity change from 0 to 512
[   42.216911][ T3574] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   42.219449][ T3570] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.247506][ T3258] EXT4-fs warning (device loop1): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -12 reading directory block
[   42.266923][ T3258] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5810: Out of memory
[   42.277663][ T3258] EXT4-fs error (device loop1): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[   42.292187][ T3252] udevd[3252]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   42.297714][ T3574] EXT4-fs (loop2): 1 truncate cleaned up
[   42.305525][ T3468] udevd[3468]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   42.312137][ T3574] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.326713][ T3580] udevd[3580]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   42.337766][ T3258] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.374598][ T3262] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.407986][ T3493] team0: Port device team_slave_0 added
[   42.417663][ T3493] team0: Port device team_slave_1 added
[   42.459635][ T3493] batman_adv: batadv0: Adding interface: batadv_slave_0
[   42.467555][ T3493] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   42.485832][ T3574] loop2: detected capacity change from 512 to 11
[   42.496815][ T3493] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   42.498511][ T3493] batman_adv: batadv0: Adding interface: batadv_slave_1
[   42.522845][ T3493] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   42.536130][ T3588] syz.2.36: attempt to access beyond end of device
[   42.536130][ T3588] loop2: rw=12288, sector=18, nr_sectors = 2 limit=11
[   42.552866][ T3493] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   42.596105][ T3588] EXT4-fs error (device loop2): ext4_get_inode_loc:4574: inode #18: block 9: comm syz.2.36: unable to read itable block
[   42.621157][ T3493] hsr_slave_0: entered promiscuous mode
[   42.632113][ T3588] syz.2.36: attempt to access beyond end of device
[   42.632113][ T3588] loop2: rw=12288, sector=18, nr_sectors = 2 limit=11
[   42.646579][ T3574] syz.2.36: attempt to access beyond end of device
[   42.646579][ T3574] loop2: rw=12288, sector=18, nr_sectors = 2 limit=11
[   42.648417][ T3493] hsr_slave_1: entered promiscuous mode
[   42.661552][ T3588] EXT4-fs error (device loop2): ext4_get_inode_loc:4574: inode #18: block 9: comm syz.2.36: unable to read itable block
[   42.669428][ T3574] EXT4-fs error (device loop2): ext4_get_inode_loc:4574: inode #18: block 9: comm syz.2.36: unable to read itable block
[   42.682391][ T3588] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5810: IO failure
[   42.697582][ T3599] netlink: 56 bytes leftover after parsing attributes in process `syz.0.39'.
[   42.706850][ T3588] EXT4-fs error (device loop2): ext4_truncate:4241: inode #18: comm syz.2.36: mark_inode_dirty error
[   42.714763][ T3493] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   42.727292][ T3588] EXT4-fs error (device loop2) in ext4_setattr:5553: IO failure
[   42.735809][ T3493] Cannot create hsr debugfs directory
[   42.742127][ T3574] syz.2.36: attempt to access beyond end of device
[   42.742127][ T3574] loop2: rw=12288, sector=18, nr_sectors = 2 limit=11
[   42.768250][ T3574] EXT4-fs error (device loop2): ext4_get_inode_loc:4574: inode #18: block 9: comm syz.2.36: unable to read itable block
[   42.771054][ T3600] loop0: detected capacity change from 0 to 512
[   42.802441][ T3574] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5810: IO failure
[   42.819185][ T3600] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.834315][ T3574] EXT4-fs error (device loop2): ext4_truncate:4241: inode #18: comm syz.2.36: mark_inode_dirty error
[   42.845822][ T3588] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5810: Out of memory
[   42.846143][ T3600] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.870210][   T50] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.877904][ T3265] EXT4-fs warning (device loop2): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -12 reading directory block
[   42.901740][ T3599] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #19: comm syz.0.39: corrupted inode contents
[   42.926348][ T3599] EXT4-fs (loop0): Remounting filesystem read-only
[   42.933174][ T3599] EXT4-fs warning (device loop0): ext4_evict_inode:271: xattr delete (err -5)
[   42.941025][ T3265] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.958859][   T50] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.020004][   T50] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.094900][   T50] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.184437][   T50] bridge_slave_1: left allmulticast mode
[   43.190668][   T50] bridge_slave_1: left promiscuous mode
[   43.196699][   T50] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.208354][   T50] bridge_slave_0: left allmulticast mode
[   43.215350][   T50] bridge_slave_0: left promiscuous mode
[   43.223753][   T50] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.318148][   T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   43.328872][   T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   43.338992][   T50] bond0 (unregistering): Released all slaves
[   43.359846][ T3605] chnl_net:caif_netlink_parms(): no params data found
[   43.398556][ T3605] bridge0: port 1(bridge_slave_0) entered blocking state
[   43.407090][ T3605] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.414571][ T3605] bridge_slave_0: entered allmulticast mode
[   43.421996][ T3605] bridge_slave_0: entered promiscuous mode
[   43.432931][ T3605] bridge0: port 2(bridge_slave_1) entered blocking state
[   43.440378][ T3605] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.447906][ T3605] bridge_slave_1: entered allmulticast mode
[   43.454457][ T3605] bridge_slave_1: entered promiscuous mode
[   43.468858][ T3262] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.480777][   T50] hsr_slave_0: left promiscuous mode
[   43.487918][   T50] hsr_slave_1: left promiscuous mode
[   43.495184][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   43.502956][   T50] batman_adv: batadv0: Removing interface: batadv_slave_0
[   43.511951][   T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   43.519593][   T50] batman_adv: batadv0: Removing interface: batadv_slave_1
[   43.529658][   T50] veth1_macvtap: left promiscuous mode
[   43.535324][   T50] veth0_macvtap: left promiscuous mode
[   43.541373][   T50] veth1_vlan: left promiscuous mode
[   43.546854][   T50] veth0_vlan: left promiscuous mode
[   43.644515][   T50] team0 (unregistering): Port device team_slave_1 removed
[   43.656993][   T50] team0 (unregistering): Port device team_slave_0 removed
[   43.704892][ T3605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   43.719404][ T3493] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   43.739865][ T3605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   43.754288][ T3493] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   43.763557][ T3493] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   43.772714][ T3493] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   43.788629][ T3605] team0: Port device team_slave_0 added
[   43.795556][ T3605] team0: Port device team_slave_1 added
[   43.825425][ T3605] batman_adv: batadv0: Adding interface: batadv_slave_0
[   43.833056][ T3605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   43.859561][ T3605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   43.880218][ T3605] batman_adv: batadv0: Adding interface: batadv_slave_1
[   43.887355][ T3605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   43.913870][ T3605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   43.955047][ T3605] hsr_slave_0: entered promiscuous mode
[   43.961516][ T3605] hsr_slave_1: entered promiscuous mode
[   43.969266][ T3605] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   43.977281][ T3605] Cannot create hsr debugfs directory
[   43.990016][ T3493] 8021q: adding VLAN 0 to HW filter on device bond0
[   44.033481][ T3493] 8021q: adding VLAN 0 to HW filter on device team0
[   44.058076][ T3335] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.065183][ T3335] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.084773][ T3503] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.092092][ T3503] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.200148][ T3493] 8021q: adding VLAN 0 to HW filter on device batadv0
[   44.376027][ T3605] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   44.385392][ T3605] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   44.394461][ T3605] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   44.407937][ T3605] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   44.417810][ T3493] veth0_vlan: entered promiscuous mode
[   44.438423][ T3493] veth1_vlan: entered promiscuous mode
[   44.479748][ T3493] veth0_macvtap: entered promiscuous mode
[   44.494172][ T3605] 8021q: adding VLAN 0 to HW filter on device bond0
[   44.503314][ T3493] veth1_macvtap: entered promiscuous mode
[   44.528147][ T3493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   44.538772][ T3493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   44.548670][ T3493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   44.559195][ T3493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   44.569082][ T3493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   44.579642][ T3493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   44.592646][ T3493] batman_adv: batadv0: Interface activated: batadv_slave_0
[   44.607600][ T3605] 8021q: adding VLAN 0 to HW filter on device team0
[   44.618921][ T3335] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.626259][ T3335] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.648561][ T3335] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.655771][ T3335] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.671793][ T3493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   44.682366][ T3493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   44.692558][ T3493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   44.703531][ T3493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   44.713928][ T3493] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   44.724798][ T3493] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   44.738527][ T3493] batman_adv: batadv0: Interface activated: batadv_slave_1
[   44.765799][ T3493] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   44.775084][ T3493] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   44.784439][ T3493] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   44.793970][ T3493] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   44.916357][ T3605] 8021q: adding VLAN 0 to HW filter on device batadv0
[   44.927866][ T3784] loop4: detected capacity change from 0 to 512
[   44.958849][ T3784] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.002700][ T3784] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.030195][ T3784] EXT4-fs error (device loop4): ext4_add_entry:2435: inode #2: comm syz.4.23: Directory hole found for htree leaf block 0
[   45.074213][ T3605] veth0_vlan: entered promiscuous mode
[   45.091607][ T3605] veth1_vlan: entered promiscuous mode
[   45.136284][ T3605] veth0_macvtap: entered promiscuous mode
[   45.215518][ T3605] veth1_macvtap: entered promiscuous mode
[   45.249805][ T3605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   45.262294][ T3605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.273939][ T3605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   45.287715][ T3605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.299846][ T3605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   45.313442][ T3605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.326106][ T3605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   45.337549][ T3605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.353574][ T3605] batman_adv: batadv0: Interface activated: batadv_slave_0
[   45.363357][ T3605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   45.377189][ T3605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.389074][ T3605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   45.401998][ T3605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.412724][ T3605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   45.424671][ T3605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.436169][ T3605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   45.447735][ T3605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   45.477137][ T3605] batman_adv: batadv0: Interface activated: batadv_slave_1
[   45.493943][ T3605] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   45.503414][ T3605] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   45.513172][ T3605] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   45.523651][ T3605] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   45.796421][   T29] kauditd_printk_skb: 104 callbacks suppressed
[   45.796456][   T29] audit: type=1326 audit(1722359306.551:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   45.830357][   T29] audit: type=1326 audit(1722359306.561:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   45.857455][   T29] audit: type=1326 audit(1722359306.561:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   45.883443][   T29] audit: type=1326 audit(1722359306.561:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   45.908442][   T29] audit: type=1326 audit(1722359306.561:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   45.932818][   T29] audit: type=1326 audit(1722359306.561:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   45.957058][   T29] audit: type=1326 audit(1722359306.561:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   45.983184][   T29] audit: type=1326 audit(1722359306.571:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   46.007530][   T29] audit: type=1326 audit(1722359306.571:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   46.032013][   T29] audit: type=1326 audit(1722359306.581:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3842 comm="syz.1.47" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   46.058700][ T3784] syz.4.23 (3784) used greatest stack depth: 10432 bytes left
[   46.063911][ T3843] loop1: detected capacity change from 0 to 1024
[   46.084454][ T3493] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.095503][ T3843] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.108078][ T3843] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.154903][ T3849] netlink: 'syz.4.49': attribute type 21 has an invalid length.
[   46.189882][ T3605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.217176][   T36] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.258918][   T36] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.281315][ T3858] netlink: 4 bytes leftover after parsing attributes in process `syz.4.55'.
[   46.301300][ T3858] netlink: 32 bytes leftover after parsing attributes in process `syz.4.55'.
[   46.313023][   T36] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.377653][   T36] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.476925][ T3872] FAULT_INJECTION: forcing a failure.
[   46.476925][ T3872] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   46.490515][ T3872] CPU: 1 UID: 0 PID: 3872 Comm: syz.0.57 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0
[   46.490620][ T3874] loop4: detected capacity change from 0 to 512
[   46.501209][ T3872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   46.501279][ T3872] Call Trace:
[   46.522435][ T3872]  <TASK>
[   46.525732][ T3872]  dump_stack_lvl+0xf2/0x150
[   46.530739][ T3872]  dump_stack+0x15/0x20
[   46.535226][ T3872]  should_fail_ex+0x229/0x230
[   46.540137][ T3872]  should_fail+0xb/0x10
[   46.544662][ T3872]  should_fail_usercopy+0x1a/0x20
[   46.549957][ T3872]  _copy_from_iter+0xd3/0xb00
[   46.556133][ T3872]  ? kmalloc_reserve+0x16e/0x190
[   46.561600][ T3872]  ? __build_skb_around+0x196/0x1f0
[   46.566928][ T3872]  ? __alloc_skb+0x21f/0x310
[   46.571955][ T3872]  ? __virt_addr_valid+0x1ed/0x250
[   46.577102][ T3872]  ? __check_object_size+0x35b/0x510
[   46.582501][ T3872]  netlink_sendmsg+0x460/0x6e0
[   46.587524][ T3872]  ? __pfx_netlink_sendmsg+0x10/0x10
[   46.592947][ T3872]  __sock_sendmsg+0x140/0x180
[   46.598751][ T3872]  ____sys_sendmsg+0x312/0x410
[   46.603658][ T3872]  __sys_sendmsg+0x1e9/0x280
[   46.608585][ T3872]  __x64_sys_sendmsg+0x46/0x50
[   46.613637][ T3872]  x64_sys_call+0x26f8/0x2e00
[   46.618394][ T3872]  do_syscall_64+0xc9/0x1c0
[   46.623229][ T3872]  ? clear_bhb_loop+0x55/0xb0
[   46.628039][ T3872]  ? clear_bhb_loop+0x55/0xb0
[   46.632842][ T3872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.639073][ T3872] RIP: 0033:0x7fabf97a73b9
[   46.643672][ T3872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.663923][ T3872] RSP: 002b:00007fabf8427048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.672494][ T3872] RAX: ffffffffffffffda RBX: 00007fabf9935f80 RCX: 00007fabf97a73b9
[   46.681262][ T3872] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000004
[   46.689812][ T3872] RBP: 00007fabf84270a0 R08: 0000000000000000 R09: 0000000000000000
[   46.698948][ T3872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.707580][ T3872] R13: 000000000000000b R14: 00007fabf9935f80 R15: 00007ffdff4531f8
[   46.716008][ T3872]  </TASK>
[   46.765702][ T3874] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.784837][ T3874] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.806118][   T36] bridge_slave_1: left allmulticast mode
[   46.812340][   T36] bridge_slave_1: left promiscuous mode
[   46.818817][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.837952][   T36] bridge_slave_0: left allmulticast mode
[   46.844768][ T3874] EXT4-fs error (device loop4): ext4_add_entry:2435: inode #2: comm syz.4.58: Directory hole found for htree leaf block 0
[   46.844789][   T36] bridge_slave_0: left promiscuous mode
[   46.865135][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.969901][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   46.981620][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   46.993669][   T36] bond0 (unregistering): Released all slaves
[   47.030546][ T3859] chnl_net:caif_netlink_parms(): no params data found
[   47.116306][   T36] hsr_slave_0: left promiscuous mode
[   47.130961][   T36] hsr_slave_1: left promiscuous mode
[   47.138773][ T3913] loop1: detected capacity change from 0 to 128
[   47.146241][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   47.154590][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[   47.171550][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   47.179648][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[   47.192458][   T36] veth1_macvtap: left promiscuous mode
[   47.198150][   T36] veth0_macvtap: left promiscuous mode
[   47.203843][   T36] veth1_vlan: left promiscuous mode
[   47.209688][   T36] veth0_vlan: left promiscuous mode
[   47.344459][   T36] team0 (unregistering): Port device team_slave_1 removed
[   47.362051][   T36] team0 (unregistering): Port device team_slave_0 removed
[   47.371139][ T3943] loop1: detected capacity change from 0 to 512
[   47.379670][ T3943] EXT4-fs (loop1): first meta block group too large: 16711680 (group descriptor block count 1)
[   47.455198][ T3943] loop1: detected capacity change from 0 to 1024
[   47.474959][ T3943] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   47.486293][ T3943] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   47.497964][ T3943] EXT4-fs (loop1): orphan cleanup on readonly fs
[   47.504917][ T3943] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #3: block 3: comm syz.1.72: lblock 3 mapped to illegal pblock 3 (length 1)
[   47.506371][ T3859] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.526008][ T3859] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.533670][ T3859] bridge_slave_0: entered allmulticast mode
[   47.534092][ T3943] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.72: Failed to acquire dquot type 0
[   47.541091][ T3859] bridge_slave_0: entered promiscuous mode
[   47.559536][ T3943] EXT4-fs error (device loop1): ext4_map_blocks:609: inode #3: block 3: comm syz.1.72: lblock 3 mapped to illegal pblock 3 (length 1)
[   47.560866][ T3859] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.581364][ T3859] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.591598][ T3943] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.72: Failed to acquire dquot type 0
[   47.601549][ T3859] bridge_slave_1: entered allmulticast mode
[   47.606603][ T3943] EXT4-fs error (device loop1): ext4_free_blocks:6590: comm syz.1.72: Freeing blocks not in datazone - block = 0, count = 4096
[   47.616086][ T3493] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.624076][ T3859] bridge_slave_1: entered promiscuous mode
[   47.641471][ T3943] EXT4-fs error (device loop1): ext4_map_blocks:609: inode #3: block 3: comm syz.1.72: lblock 3 mapped to illegal pblock 3 (length 1)
[   47.675769][ T3943] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.72: Failed to acquire dquot type 0
[   47.690448][ T3943] EXT4-fs (loop1): 1 orphan inode deleted
[   47.697165][ T3943] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.715011][ T3859] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.730739][ T3859] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.791498][ T3969] capability: warning: `syz.4.74' uses deprecated v2 capabilities in a way that may be insecure
[   47.798303][ T3859] team0: Port device team_slave_0 added
[   47.816781][ T3859] team0: Port device team_slave_1 added
[   47.841061][ T3605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.883612][ T3859] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.890824][ T3859] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.901685][ T3976] FAULT_INJECTION: forcing a failure.
[   47.901685][ T3976] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   47.917669][ T3859] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.932018][ T3976] CPU: 1 UID: 0 PID: 3976 Comm: syz.1.75 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0
[   47.932054][ T3976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   47.932069][ T3976] Call Trace:
[   47.932076][ T3976]  <TASK>
[   47.932084][ T3976]  dump_stack_lvl+0xf2/0x150
[   47.968050][ T3903] chnl_net:caif_netlink_parms(): no params data found
[   47.971093][ T3976]  dump_stack+0x15/0x20
[   47.990905][ T3976]  should_fail_ex+0x229/0x230
[   47.996292][ T3976]  should_fail+0xb/0x10
[   48.001509][ T3976]  should_fail_usercopy+0x1a/0x20
[   48.008260][ T3976]  _copy_to_iter+0xd3/0xaf0
[   48.013342][ T3976]  ? __dequeue_signal+0x30a/0x320
[   48.018881][ T3976]  signalfd_read_iter+0x520/0x650
[   48.025368][ T3976]  vfs_read+0x5e9/0x6e0
[   48.029772][ T3976]  ? __rcu_read_unlock+0x4e/0x70
[   48.035200][ T3976]  ksys_read+0xeb/0x1b0
[   48.039608][ T3976]  __x64_sys_read+0x42/0x50
[   48.044809][ T3976]  x64_sys_call+0x2a36/0x2e00
[   48.053295][ T3976]  do_syscall_64+0xc9/0x1c0
[   48.059713][ T3976]  ? clear_bhb_loop+0x55/0xb0
[   48.064716][ T3976]  ? clear_bhb_loop+0x55/0xb0
[   48.070636][ T3976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.077755][ T3976] RIP: 0033:0x7f8a2dde73b9
[   48.082926][ T3976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.107633][ T3976] RSP: 002b:00007f8a2ca67048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   48.118103][ T3976] RAX: ffffffffffffffda RBX: 00007f8a2df75f80 RCX: 00007f8a2dde73b9
[   48.128343][ T3976] RDX: 0000000000000179 RSI: 0000000020000740 RDI: 0000000000000003
[   48.137990][ T3976] RBP: 00007f8a2ca670a0 R08: 0000000000000000 R09: 0000000000000000
[   48.146333][ T3976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.155371][ T3976] R13: 000000000000000b R14: 00007f8a2df75f80 R15: 00007ffdb2409738
[   48.163726][ T3976]  </TASK>
[   48.191456][ T3859] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.198756][ T3859] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.225733][ T3859] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.258786][ T3984] netlink: 32 bytes leftover after parsing attributes in process `syz.4.74'.
[   48.294025][ T3859] hsr_slave_0: entered promiscuous mode
[   48.304021][ T3859] hsr_slave_1: entered promiscuous mode
[   48.311160][ T3859] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   48.322283][ T3859] Cannot create hsr debugfs directory
[   48.335402][ T4003] loop0: detected capacity change from 0 to 512
[   48.356281][ T4003] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e846c028, mo2=0002]
[   48.365389][ T4003] System zones: 1-12
[   48.366379][ T4005] loop1: detected capacity change from 0 to 2048
[   48.371252][ T4003] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.78: Attempting to read directory block (0) that is past i_size (256)
[   48.396963][ T4003] EXT4-fs (loop0): Remounting filesystem read-only
[   48.407382][ T4003] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[   48.410694][ T3903] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.417787][ T4003] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.426331][ T3903] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.442195][ T4003] SELinux: (dev loop0, type ext4) getxattr errno 5
[   48.460906][ T4003] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.473893][ T4005] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.491362][ T3903] bridge_slave_0: entered allmulticast mode
[   48.499229][ T3903] bridge_slave_0: entered promiscuous mode
[   48.516784][   T36] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.528983][ T3903] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.536487][ T3903] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.548720][ T3903] bridge_slave_1: entered allmulticast mode
[   48.558608][ T3903] bridge_slave_1: entered promiscuous mode
[   48.578955][   T36] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.646345][   T36] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.684144][ T3903] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.697957][ T4028] netlink: 4 bytes leftover after parsing attributes in process `syz.4.82'.
[   48.709889][ T3903] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   48.729337][ T3605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.741754][ T4028] netlink: 32 bytes leftover after parsing attributes in process `syz.4.82'.
[   48.783058][   T36] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.797495][ T4034] loop1: detected capacity change from 0 to 512
[   48.805062][ T4034] EXT4-fs (loop1): first meta block group too large: 16711680 (group descriptor block count 1)
[   48.824931][ T3903] team0: Port device team_slave_0 added
[   48.837473][ T3903] team0: Port device team_slave_1 added
[   48.867526][ T3903] batman_adv: batadv0: Adding interface: batadv_slave_0
[   48.874997][ T3903] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.902219][ T3903] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   48.923768][ T4040] loop1: detected capacity change from 0 to 1024
[   48.936980][ T4040] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   48.960644][ T3903] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.969978][ T3903] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.997359][ T3903] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.998516][ T4040] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   49.019525][ T4040] EXT4-fs (loop1): orphan cleanup on readonly fs
[   49.030035][ T4040] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #3: block 3: comm syz.1.83: lblock 3 mapped to illegal pblock 3 (length 1)
[   49.050422][ T4044] openvswitch: netlink: IPv4 tunnel dst address is zero
[   49.061388][   T36] bridge_slave_1: left allmulticast mode
[   49.061472][ T4040] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.83: Failed to acquire dquot type 0
[   49.067859][   T36] bridge_slave_1: left promiscuous mode
[   49.084947][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.092434][ T4040] EXT4-fs error (device loop1): ext4_map_blocks:609: inode #3: block 3: comm syz.1.83: lblock 3 mapped to illegal pblock 3 (length 1)
[   49.108571][ T4040] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.83: Failed to acquire dquot type 0
[   49.120082][ T4040] EXT4-fs error (device loop1): ext4_free_blocks:6590: comm syz.1.83: Freeing blocks not in datazone - block = 0, count = 4096
[   49.120097][   T36] bridge_slave_0: left allmulticast mode
[   49.120118][   T36] bridge_slave_0: left promiscuous mode
[   49.136151][ T4040] EXT4-fs error (device loop1): ext4_map_blocks:609: inode #3: block 3: comm syz.1.83: lblock 3 mapped to illegal pblock 3 (length 1)
[   49.139833][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.145336][ T4040] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.83: Failed to acquire dquot type 0
[   49.179262][ T4040] EXT4-fs (loop1): 1 orphan inode deleted
[   49.187914][ T4040] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   49.284378][ T3605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.298770][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   49.327572][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   49.347902][   T36] bond0 (unregistering): Released all slaves
[   49.387686][ T4044] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.450102][ T3903] hsr_slave_0: entered promiscuous mode
[   49.468145][ T3903] hsr_slave_1: entered promiscuous mode
[   49.481485][ T3903] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   49.501050][ T3903] Cannot create hsr debugfs directory
[   49.521048][   T36] hsr_slave_0: left promiscuous mode
[   49.527852][   T36] hsr_slave_1: left promiscuous mode
[   49.554799][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   49.562664][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[   49.579017][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   49.586698][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[   49.618057][   T36] veth1_macvtap: left promiscuous mode
[   49.623603][   T36] veth0_macvtap: left promiscuous mode
[   49.629511][   T36] veth1_vlan: left promiscuous mode
[   49.634983][   T36] veth0_vlan: left promiscuous mode
[   49.853802][   T36] team0 (unregistering): Port device team_slave_1 removed
[   49.870619][   T36] team0 (unregistering): Port device team_slave_0 removed
[   49.948576][ T4044] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.984796][ T4070] loop0: detected capacity change from 0 to 512
[   50.003925][ T4070] EXT4-fs: Ignoring removed i_version option
[   50.010782][ T4070] EXT4-fs: Ignoring removed oldalloc option
[   50.048033][ T4044] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.062204][ T4070] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.079636][ T4070] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.098277][ T4070] netlink: 144 bytes leftover after parsing attributes in process `syz.0.88'.
[   50.113095][ T3859] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   50.131015][ T3859] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   50.153576][ T4044] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.195119][ T3262] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.237492][ T3859] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   50.267931][ T3859] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   50.292723][ T4044] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.314849][ T4044] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.337883][ T4044] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.359887][ T4044] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.393003][ T4095] loop1: detected capacity change from 0 to 1024
[   50.417770][ T4095] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   50.532893][ T3859] 8021q: adding VLAN 0 to HW filter on device bond0
[   50.545553][ T4108] loop1: detected capacity change from 0 to 512
[   50.565470][ T3859] 8021q: adding VLAN 0 to HW filter on device team0
[   50.566435][ T4108] EXT4-fs (loop1): first meta block group too large: 16711680 (group descriptor block count 1)
[   50.590466][ T4113] netlink: 'syz.4.94': attribute type 27 has an invalid length.
[   50.662198][ T4108] loop1: detected capacity change from 0 to 1024
[   50.670484][ T4108] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   50.676919][ T4113] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.687979][ T4108] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   50.688470][ T4113] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.697880][ T4108] EXT4-fs (loop1): orphan cleanup on readonly fs
[   50.713195][ T4133] loop4: detected capacity change from 0 to 512
[   50.728008][ T4133] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[   50.746963][ T4108] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #3: block 3: comm syz.1.95: lblock 3 mapped to illegal pblock 3 (length 1)
[   50.767175][ T4108] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.95: Failed to acquire dquot type 0
[   50.786387][ T4108] EXT4-fs error (device loop1): ext4_map_blocks:609: inode #3: block 3: comm syz.1.95: lblock 3 mapped to illegal pblock 3 (length 1)
[   50.801831][ T4108] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.95: Failed to acquire dquot type 0
[   50.829883][ T4108] EXT4-fs error (device loop1): ext4_free_blocks:6590: comm syz.1.95: Freeing blocks not in datazone - block = 0, count = 4096
[   50.861722][ T4108] EXT4-fs error (device loop1): ext4_map_blocks:609: inode #3: block 3: comm syz.1.95: lblock 3 mapped to illegal pblock 3 (length 1)
[   50.886616][ T4108] __quota_error: 166 callbacks suppressed
[   50.886643][ T4108] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   50.915930][ T4108] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.95: Failed to acquire dquot type 0
[   50.927698][ T4108] EXT4-fs (loop1): 1 orphan inode deleted
[   50.929302][ T4113] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.946441][ T4108] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   50.961731][ T4113] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   51.022222][ T4113] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   51.030704][ T4113] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   51.039395][ T4113] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   51.048149][ T4113] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   51.069627][ T3903] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   51.082614][ T3334] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.089809][ T3334] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.107849][ T3605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.150338][ T4121] netlink: 16 bytes leftover after parsing attributes in process `syz.4.94'.
[   51.166498][   T29] audit: type=1400 audit(1722359311.931:606): avc:  denied  { connect } for  pid=4147 comm="syz.1.96" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   51.194039][ T4141] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.212929][ T4141] 8021q: adding VLAN 0 to HW filter on device team0
[   51.228778][ T4141] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   51.247347][ T3903] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   51.254553][   T29] audit: type=1400 audit(1722359312.011:607): avc:  denied  { create } for  pid=4149 comm="syz.1.97" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   51.275637][   T29] audit: type=1400 audit(1722359312.011:608): avc:  denied  { bind } for  pid=4149 comm="syz.1.97" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   51.278944][ T3903] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   51.295212][   T29] audit: type=1400 audit(1722359312.011:609): avc:  denied  { listen } for  pid=4149 comm="syz.1.97" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   51.328921][ T3903] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   51.349585][ T4129] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.356718][ T4129] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.387458][   T29] audit: type=1400 audit(1722359312.151:610): avc:  denied  { write } for  pid=4149 comm="syz.1.97" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   51.391526][ T3859] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   51.406796][   T29] audit: type=1400 audit(1722359312.151:611): avc:  denied  { name_connect } for  pid=4149 comm="syz.1.97" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[   51.417304][ T3859] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   51.453442][   T29] audit: type=1400 audit(1722359312.211:612): avc:  denied  { shutdown } for  pid=4149 comm="syz.1.97" lport=37325 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   51.454519][ T4150] loop1: detected capacity change from 0 to 128
[   51.474823][   T29] audit: type=1400 audit(1722359312.211:613): avc:  denied  { getopt } for  pid=4149 comm="syz.1.97" lport=37325 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   51.619304][ T3903] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.649110][ T3859] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.681787][ T3903] 8021q: adding VLAN 0 to HW filter on device team0
[   51.700717][ T4128] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.708008][ T4128] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.743235][ T4128] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.750394][ T4128] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.789199][ T4191] loop0: detected capacity change from 0 to 1024
[   51.797043][ T3903] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   51.807991][ T3903] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   51.820041][ T4191] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   51.870365][ T3859] veth0_vlan: entered promiscuous mode
[   51.906872][ T4198] loop0: detected capacity change from 0 to 512
[   51.924807][ T3859] veth1_vlan: entered promiscuous mode
[   51.941273][ T4198] EXT4-fs (loop0): first meta block group too large: 16711680 (group descriptor block count 1)
[   51.974658][ T3903] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.985260][ T3859] veth0_macvtap: entered promiscuous mode
[   51.996641][ T3859] veth1_macvtap: entered promiscuous mode
[   52.047858][ T3859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.058500][ T3859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.068859][ T3859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.080112][ T3859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.100910][ T4212] loop0: detected capacity change from 0 to 1024
[   52.106134][ T3859] batman_adv: batadv0: Interface activated: batadv_slave_0
[   52.116129][ T3859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.126681][ T3859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.136593][ T3859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.147096][ T3859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.158816][ T3859] batman_adv: batadv0: Interface activated: batadv_slave_1
[   52.180176][ T3859] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.189384][ T3859] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.198757][ T3859] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.207788][ T3859] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.227716][ T4212] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   52.260423][ T4212] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   52.310363][ T4212] EXT4-fs (loop0): orphan cleanup on readonly fs
[   52.312199][ T3903] veth0_vlan: entered promiscuous mode
[   52.336782][ T3903] veth1_vlan: entered promiscuous mode
[   52.343403][ T4212] EXT4-fs error (device loop0): ext4_map_blocks:718: inode #3: block 3: comm syz.0.104: lblock 3 mapped to illegal pblock 3 (length 1)
[   52.381212][ T4229] loop3: detected capacity change from 0 to 512
[   52.390879][ T3903] veth0_macvtap: entered promiscuous mode
[   52.398889][ T4212] Quota error (device loop0): write_blk: dquota write failed
[   52.410209][ T3903] veth1_macvtap: entered promiscuous mode
[   52.415847][ T4212] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.104: Failed to acquire dquot type 0
[   52.439337][ T3903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.450850][ T3903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.461297][ T3903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.473037][ T3903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.483007][ T3903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.494108][ T3903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.508720][ T4212] EXT4-fs error (device loop0): ext4_map_blocks:609: inode #3: block 3: comm syz.0.104: lblock 3 mapped to illegal pblock 3 (length 1)
[   52.524164][ T4229] EXT4-fs warning (device loop3): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop3.
[   52.547160][ T3903] batman_adv: batadv0: Interface activated: batadv_slave_0
[   52.559514][ T3903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.570408][ T3903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.580975][ T3903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.591533][ T3903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.601745][ T3903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.612412][ T3903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.615834][ T4212] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.104: Failed to acquire dquot type 0
[   52.634903][ T3903] batman_adv: batadv0: Interface activated: batadv_slave_1
[   52.681015][ T3903] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.689905][ T3903] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.695868][ T4212] EXT4-fs error (device loop0): ext4_free_blocks:6590: comm syz.0.104: Freeing blocks not in datazone - block = 0, count = 4096
[   52.698965][ T3903] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.721682][ T3903] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.776625][ T4212] EXT4-fs error (device loop0): ext4_map_blocks:609: inode #3: block 3: comm syz.0.104: lblock 3 mapped to illegal pblock 3 (length 1)
[   52.842280][ T4212] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.104: Failed to acquire dquot type 0
[   52.896938][ T4212] EXT4-fs (loop0): 1 orphan inode deleted
[   52.906109][ T4212] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   53.014273][ T3262] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.057332][ T4280] netlink: 20 bytes leftover after parsing attributes in process `syz.0.109'.
[   53.077296][ T4280] FAULT_INJECTION: forcing a failure.
[   53.077296][ T4280] name failslab, interval 1, probability 0, space 0, times 0
[   53.090032][ T4280] CPU: 0 UID: 0 PID: 4280 Comm: syz.0.109 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0
[   53.101015][ T4280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   53.111359][ T4280] Call Trace:
[   53.114854][ T4280]  <TASK>
[   53.117814][ T4280]  dump_stack_lvl+0xf2/0x150
[   53.122543][ T4280]  dump_stack+0x15/0x20
[   53.127012][ T4280]  should_fail_ex+0x229/0x230
[   53.131799][ T4280]  ? skb_clone+0x154/0x1f0
[   53.136349][ T4280]  should_failslab+0x8f/0xb0
[   53.140992][ T4280]  kmem_cache_alloc_noprof+0x4c/0x290
[   53.147024][ T4280]  skb_clone+0x154/0x1f0
[   53.151534][ T4280]  __netlink_deliver_tap+0x2bd/0x4c0
[   53.157646][ T4280]  netlink_sendskb+0x123/0x140
[   53.162711][ T4280]  netlink_unicast+0x291/0x670
[   53.167530][ T4280]  netlink_ack+0x4c4/0x4f0
[   53.172080][ T4280]  netlink_rcv_skb+0x19c/0x230
[   53.176909][ T4280]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[   53.182409][ T4280]  xfrm_netlink_rcv+0x47/0x60
[   53.187284][ T4280]  netlink_unicast+0x593/0x670
[   53.192116][ T4280]  netlink_sendmsg+0x5cc/0x6e0
[   53.196934][ T4280]  ? __pfx_netlink_sendmsg+0x10/0x10
[   53.202497][ T4280]  __sock_sendmsg+0x140/0x180
[   53.207362][ T4280]  ____sys_sendmsg+0x312/0x410
[   53.212340][ T4280]  __sys_sendmsg+0x1e9/0x280
[   53.217150][ T4280]  __x64_sys_sendmsg+0x46/0x50
[   53.222055][ T4280]  x64_sys_call+0x26f8/0x2e00
[   53.226889][ T4280]  do_syscall_64+0xc9/0x1c0
[   53.231428][ T4280]  ? clear_bhb_loop+0x55/0xb0
[   53.236544][ T4280]  ? clear_bhb_loop+0x55/0xb0
[   53.241471][ T4280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.247532][ T4280] RIP: 0033:0x7fabf97a73b9
[   53.252139][ T4280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.272043][ T4280] RSP: 002b:00007fabf8427048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   53.280477][ T4280] RAX: ffffffffffffffda RBX: 00007fabf9935f80 RCX: 00007fabf97a73b9
[   53.288929][ T4280] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000003
[   53.297134][ T4280] RBP: 00007fabf84270a0 R08: 0000000000000000 R09: 0000000000000000
[   53.305131][ T4280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   53.313136][ T4280] R13: 000000000000000b R14: 00007fabf9935f80 R15: 00007ffdff4531f8
[   53.321313][ T4280]  </TASK>
[   53.344816][ T4295] loop1: detected capacity change from 0 to 1024
[   53.351526][ T4295] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   53.492344][ T4313] loop0: detected capacity change from 0 to 1024
[   53.512997][ T4313] EXT4-fs: dax option not supported
[   53.536275][ T4307] loop4: detected capacity change from 0 to 8192
[   53.560594][ T4313] netlink: 100 bytes leftover after parsing attributes in process `syz.0.117'.
[   53.585981][ T4307]  loop4: p1 p2 p3 p4
[   53.590582][ T4307] loop4: p1 start 51379968 is beyond EOD, truncated
[   53.605932][ T4307] loop4: p3 size 100663552 extends beyond EOD, truncated
[   53.625894][ T4307] loop4: p4 size 50348032 extends beyond EOD, truncated
[   53.704273][ T4320] loop0: detected capacity change from 0 to 512
[   53.724088][ T3468] udevd[3468]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   53.724613][ T3881] udevd[3881]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   53.747220][ T4320] EXT4-fs (loop0): first meta block group too large: 16711680 (group descriptor block count 1)
[   53.747232][ T3252] udevd[3252]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   53.807714][ T4320] loop0: detected capacity change from 0 to 1024
[   53.834096][ T4320] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.862220][ T4320] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   53.867109][ T4330] netlink: 'syz.2.121': attribute type 10 has an invalid length.
[   53.881127][ T4330] bridge0: port 3(team0) entered blocking state
[   53.887662][ T4330] bridge0: port 3(team0) entered disabled state
[   53.894142][ T4330] team0: entered allmulticast mode
[   53.899514][ T4330] team_slave_0: entered allmulticast mode
[   53.904699][ T4320] EXT4-fs (loop0): orphan cleanup on readonly fs
[   53.905251][ T4330] team_slave_1: entered allmulticast mode
[   53.919580][ T4330] team0: entered promiscuous mode
[   53.924709][ T4330] team_slave_0: entered promiscuous mode
[   53.930504][ T4330] team_slave_1: entered promiscuous mode
[   53.933394][ T4320] EXT4-fs error (device loop0): ext4_map_blocks:718: inode #3: block 3: comm syz.0.119: lblock 3 mapped to illegal pblock 3 (length 1)
[   53.936651][ T4330] bridge0: port 3(team0) entered blocking state
[   53.956800][ T4330] bridge0: port 3(team0) entered forwarding state
[   53.995695][ T4320] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.119: Failed to acquire dquot type 0
[   54.027466][ T4320] EXT4-fs error (device loop0): ext4_map_blocks:609: inode #3: block 3: comm syz.0.119: lblock 3 mapped to illegal pblock 3 (length 1)
[   54.045797][ T4320] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.119: Failed to acquire dquot type 0
[   54.078583][ T4320] EXT4-fs error (device loop0): ext4_free_blocks:6590: comm syz.0.119: Freeing blocks not in datazone - block = 0, count = 4096
[   54.093987][ T4320] EXT4-fs error (device loop0): ext4_map_blocks:609: inode #3: block 3: comm syz.0.119: lblock 3 mapped to illegal pblock 3 (length 1)
[   54.110933][ T4320] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.119: Failed to acquire dquot type 0
[   54.137936][ T4344] loop2: detected capacity change from 0 to 1024
[   54.145343][ T4320] EXT4-fs (loop0): 1 orphan inode deleted
[   54.151851][ T4344] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   54.161764][ T4320] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   54.296773][ T4357] FAULT_INJECTION: forcing a failure.
[   54.296773][ T4357] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.310157][ T4357] CPU: 1 UID: 0 PID: 4357 Comm: syz.2.128 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0
[   54.321358][ T4357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   54.331628][ T4357] Call Trace:
[   54.334934][ T4357]  <TASK>
[   54.337962][ T4357]  dump_stack_lvl+0xf2/0x150
[   54.342638][ T4357]  dump_stack+0x15/0x20
[   54.346865][ T4357]  should_fail_ex+0x229/0x230
[   54.354337][ T4357]  should_fail+0xb/0x10
[   54.358541][ T4357]  should_fail_usercopy+0x1a/0x20
[   54.363619][ T4357]  _copy_from_user+0x1e/0xd0
[   54.368398][ T4357]  perf_copy_attr+0x146/0x5b0
[   54.373294][ T4357]  __se_sys_perf_event_open+0x6d/0x2170
[   54.379225][ T4357]  ? proc_fail_nth_write+0x12d/0x160
[   54.385072][ T4357]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   54.390934][ T4357]  ? vfs_write+0x5a5/0x900
[   54.395482][ T4357]  ? kmem_cache_free+0xd8/0x280
[   54.400377][ T4357]  __x64_sys_perf_event_open+0x67/0x80
[   54.406032][ T4357]  x64_sys_call+0x27c0/0x2e00
[   54.411261][ T4357]  do_syscall_64+0xc9/0x1c0
[   54.415834][ T4357]  ? clear_bhb_loop+0x55/0xb0
[   54.420987][ T4357]  ? clear_bhb_loop+0x55/0xb0
[   54.425737][ T4357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.432102][ T4357] RIP: 0033:0x7fed793373b9
[   54.436733][ T4357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.458389][ T4357] RSP: 002b:00007fed77fb7048 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   54.467262][ T4357] RAX: ffffffffffffffda RBX: 00007fed794c5f80 RCX: 00007fed793373b9
[   54.475567][ T4357] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200002c0
[   54.484463][ T4357] RBP: 00007fed77fb70a0 R08: 0000000000000006 R09: 0000000000000000
[   54.492674][ T4357] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   54.500780][ T4357] R13: 000000000000000b R14: 00007fed794c5f80 R15: 00007ffcf0adb6d8
[   54.509257][ T4357]  </TASK>
[   54.526158][ T3262] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.629683][ T4360] loop2: detected capacity change from 0 to 8192
[   54.677010][ T4360]  loop2: p1 p2 p3 p4
[   54.682821][ T4360] loop2: p1 start 51379968 is beyond EOD, truncated
[   54.692323][ T4360] loop2: p3 size 100663552 extends beyond EOD, truncated
[   54.702851][ T4360] loop2: p4 size 50348032 extends beyond EOD, truncated
[   54.789736][ T3881] udevd[3881]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   54.789822][ T3468] udevd[3468]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   54.804127][ T3252] udevd[3252]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   54.845349][ T4371] loop2: detected capacity change from 0 to 512
[   54.866333][ T4371] EXT4-fs (loop2): first meta block group too large: 16711680 (group descriptor block count 1)
[   54.927821][ T4373] loop0: detected capacity change from 0 to 1024
[   55.065536][ T4377] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4377 comm=syz.0.135
[   55.098519][ T4379] netlink: 'syz.2.136': attribute type 11 has an invalid length.
[   55.106676][ T4379] netlink: 132 bytes leftover after parsing attributes in process `syz.2.136'.
[   55.123469][ T4379] netlink: 16151 bytes leftover after parsing attributes in process `syz.2.136'.
[   55.145937][ T4379] netlink: 132 bytes leftover after parsing attributes in process `syz.2.136'.
[   55.169195][ T4379] netlink: 'syz.2.136': attribute type 10 has an invalid length.
[   55.174639][ T4381] loop4: detected capacity change from 0 to 512
[   55.205749][ T4379] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   55.324704][ T4383] loop2: detected capacity change from 0 to 1024
[   55.347353][ T4383] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.360268][ T4383] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.424511][ T4392] loop3: detected capacity change from 0 to 512
[   55.461005][ T4392] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.479582][ T4392] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.502785][ T4392] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.141: Directory hole found for htree leaf block 0
[   55.530227][ T3903] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.577746][ T4396] loop2: detected capacity change from 0 to 512
[   55.585406][ T4396] EXT4-fs (loop2): first meta block group too large: 16711680 (group descriptor block count 1)
[   55.689356][ T4396] loop2: detected capacity change from 0 to 1024
[   55.698372][ T4396] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   55.710242][ T4396] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   55.719668][ T4396] EXT4-fs (loop2): orphan cleanup on readonly fs
[   55.732323][ T4396] EXT4-fs error (device loop2): ext4_map_blocks:718: inode #3: block 3: comm syz.2.142: lblock 3 mapped to illegal pblock 3 (length 1)
[   55.747628][ T4396] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.142: Failed to acquire dquot type 0
[   55.759296][ T4396] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.142: lblock 3 mapped to illegal pblock 3 (length 1)
[   55.775870][ T4396] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.142: Failed to acquire dquot type 0
[   55.787866][ T4396] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.142: Freeing blocks not in datazone - block = 0, count = 4096
[   55.802430][ T4396] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.142: lblock 3 mapped to illegal pblock 3 (length 1)
[   55.817302][ T4396] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.142: Failed to acquire dquot type 0
[   55.829808][ T4396] EXT4-fs (loop2): 1 orphan inode deleted
[   55.837290][ T4396] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   55.872248][ T4408] loop0: detected capacity change from 0 to 1024
[   55.928321][ T4410] loop0: detected capacity change from 0 to 512
[   55.937493][ T3903] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.957718][ T4410] EXT4-fs (loop0): first meta block group too large: 16711680 (group descriptor block count 1)
[   55.968709][   T29] kauditd_printk_skb: 119 callbacks suppressed
[   55.968764][   T29] audit: type=1400 audit(1722359316.721:719): avc:  denied  { read append } for  pid=4412 comm="syz.2.147" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   56.003252][   T29] audit: type=1400 audit(1722359316.741:720): avc:  denied  { open } for  pid=4412 comm="syz.2.147" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   56.013334][ T4416] loop1: detected capacity change from 0 to 512
[   56.029492][   T29] audit: type=1400 audit(1722359316.741:721): avc:  denied  { create } for  pid=4412 comm="syz.2.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   56.059395][   T29] audit: type=1400 audit(1722359316.741:722): avc:  denied  { ioctl } for  pid=4412 comm="syz.2.147" path="socket:[7901]" dev="sockfs" ino=7901 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   56.087912][   T29] audit: type=1400 audit(1722359316.741:723): avc:  denied  { write } for  pid=4412 comm="syz.2.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   56.115983][   T29] audit: type=1400 audit(1722359316.741:724): avc:  denied  { accept } for  pid=4412 comm="syz.2.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   56.149713][   T29] audit: type=1400 audit(1722359316.821:725): avc:  denied  { accept } for  pid=4412 comm="syz.2.147" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   56.237411][ T4427] netlink: 'syz.4.152': attribute type 11 has an invalid length.
[   56.247885][ T4427] netlink: 132 bytes leftover after parsing attributes in process `syz.4.152'.
[   56.281852][ T4427] netlink: 16151 bytes leftover after parsing attributes in process `syz.4.152'.
[   56.300625][ T4427] netlink: 132 bytes leftover after parsing attributes in process `syz.4.152'.
[   56.322986][ T4427] netlink: 'syz.4.152': attribute type 10 has an invalid length.
[   56.362988][ T3859] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.376774][ T4427] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   56.438192][ T4430] netlink: 'syz.3.154': attribute type 10 has an invalid length.
[   56.454952][ T4430] bridge0: port 3(team0) entered blocking state
[   56.461748][ T4430] bridge0: port 3(team0) entered disabled state
[   56.479503][ T4430] team0: entered allmulticast mode
[   56.485013][ T4430] team_slave_0: entered allmulticast mode
[   56.491679][ T4430] team_slave_1: entered allmulticast mode
[   56.513318][ T4437] openvswitch: netlink: IPv4 tunnel dst address is zero
[   56.524932][ T4430] team0: entered promiscuous mode
[   56.530448][ T4430] team_slave_0: entered promiscuous mode
[   56.536490][ T4430] team_slave_1: entered promiscuous mode
[   56.548694][   T29] audit: type=1400 audit(1722359317.311:726): avc:  granted  { setsecparam } for  pid=4436 comm="syz.4.156" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[   56.559371][ T4430] bridge0: port 3(team0) entered blocking state
[   56.576320][ T4430] bridge0: port 3(team0) entered forwarding state
[   56.681902][ T4442] loop3: detected capacity change from 0 to 1024
[   56.697003][ T4442] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   57.023861][ T4456] loop3: detected capacity change from 0 to 8192
[   57.041701][ T4460] loop1: detected capacity change from 0 to 512
[   57.066001][ T4460] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.080620][ T4460] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.092135][ T4456]  loop3: p1 p2 p3 p4
[   57.098234][ T4456] loop3: p1 start 51379968 is beyond EOD, truncated
[   57.108213][ T4460] EXT4-fs error (device loop1): ext4_add_entry:2435: inode #2: comm syz.1.164: Directory hole found for htree leaf block 0
[   57.125320][ T4456] loop3: p3 size 100663552 extends beyond EOD, truncated
[   57.138100][ T4456] loop3: p4 size 50348032 extends beyond EOD, truncated
[   57.150542][ T2960]  loop3: p1 p2 p3 p4
[   57.155043][ T2960] loop3: p1 start 51379968 is beyond EOD, truncated
[   57.164825][ T2960] loop3: p3 size 100663552 extends beyond EOD, truncated
[   57.173651][ T2960] loop3: p4 size 50348032 extends beyond EOD, truncated
[   57.284919][ T4466] loop3: detected capacity change from 0 to 512
[   57.297586][ T4466] EXT4-fs: Ignoring removed i_version option
[   57.304082][ T4466] EXT4-fs: Ignoring removed oldalloc option
[   57.318172][ T3468] udevd[3468]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   57.321920][ T3252] udevd[3252]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   57.334121][ T4469] netlink: 'syz.0.166': attribute type 11 has an invalid length.
[   57.344756][ T3881] udevd[3881]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   57.350148][ T4469] netlink: 132 bytes leftover after parsing attributes in process `syz.0.166'.
[   57.376387][ T4466] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.394384][ T3881] udevd[3881]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   57.398249][ T4466] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.416629][ T4469] netlink: 16151 bytes leftover after parsing attributes in process `syz.0.166'.
[   57.422468][ T4466] netlink: 144 bytes leftover after parsing attributes in process `syz.3.165'.
[   57.430510][ T4469] netlink: 'syz.0.166': attribute type 10 has an invalid length.
[   57.442043][ T4466] SELinux: security_context_str_to_sid (us;�j���	�\	��	er_u) failed with errno=-22
[   57.445561][   T29] audit: type=1400 audit(1722359318.201:727): avc:  denied  { mounton } for  pid=4465 comm="syz.3.165" path="/10/file0/file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   57.459269][ T4466] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   57.506906][ T4469] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   57.518009][ T3859] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.565437][ T4475] loop0: detected capacity change from 0 to 1024
[   57.573124][ T4475] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   57.593773][ T4474] netlink: 'syz.3.167': attribute type 10 has an invalid length.
[   57.668628][   T29] audit: type=1400 audit(1722359318.431:728): avc:  denied  { create } for  pid=4484 comm="syz.0.171" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ipx_socket permissive=1
[   57.718457][ T4485] loop3: detected capacity change from 0 to 256
[   57.725453][ T4485] vfat: Unknown parameter ''
[   57.989450][    C0] eth0: bad gso: type: 1, size: 1408
[   58.240866][ T3605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.378573][ T4510] loop1: detected capacity change from 0 to 1024
[   58.395996][ T4510] EXT4-fs: Ignoring removed oldalloc option
[   58.407270][ T4510] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   58.457414][ T4510] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.628916][ T3605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.633510][ T4515] netlink: 'syz.0.179': attribute type 10 has an invalid length.
[   58.741320][ T4525] loop1: detected capacity change from 0 to 512
[   58.765857][ T4525] EXT4-fs (loop1): first meta block group too large: 16711680 (group descriptor block count 1)
[   58.891616][ T4529] loop0: detected capacity change from 0 to 512
[   58.930383][ T4529] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.952677][ T4529] ext4 filesystem being mounted at /51/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.972429][ T4535] openvswitch: netlink: IPv4 tunnel dst address is zero
[   59.098504][ T4535] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.134554][ T4556] loop2: detected capacity change from 0 to 512
[   59.163510][ T4556] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.178761][ T4556] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.193083][ T4556] EXT4-fs error (device loop2): ext4_add_entry:2435: inode #2: comm syz.2.187: Directory hole found for htree leaf block 0
[   59.229329][ T4535] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.313014][ T4535] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.337885][ T3262] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.369797][ T4565] FAULT_INJECTION: forcing a failure.
[   59.369797][ T4565] name failslab, interval 1, probability 0, space 0, times 0
[   59.383286][ T4565] CPU: 0 UID: 0 PID: 4565 Comm: syz.0.188 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0
[   59.394439][ T4565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   59.405230][ T4565] Call Trace:
[   59.408719][ T4565]  <TASK>
[   59.412027][ T4565]  dump_stack_lvl+0xf2/0x150
[   59.418025][ T4565]  dump_stack+0x15/0x20
[   59.422365][ T4565]  should_fail_ex+0x229/0x230
[   59.427626][ T4565]  ? __inet_diag_dump_start+0x53/0x780
[   59.433702][ T4565]  should_failslab+0x8f/0xb0
[   59.438408][ T4565]  __kmalloc_cache_noprof+0x4b/0x2a0
[   59.443989][ T4565]  __inet_diag_dump_start+0x53/0x780
[   59.449389][ T4565]  ? __netlink_lookup+0x253/0x290
[   59.454713][ T4565]  inet_diag_dump_start+0x1a/0x20
[   59.460194][ T4565]  __netlink_dump_start+0x32a/0x510
[   59.465629][ T4565]  inet_diag_handler_cmd+0xfb/0x150
[   59.471127][ T4565]  ? __pfx_inet_diag_dump_start+0x10/0x10
[   59.477078][ T4565]  ? __pfx_inet_diag_dump+0x10/0x10
[   59.482525][ T4565]  ? __pfx_inet_diag_dump_done+0x10/0x10
[   59.488195][ T4565]  ? __pfx_inet_diag_handler_cmd+0x10/0x10
[   59.494075][ T4565]  sock_diag_rcv_msg+0x2b8/0x2e0
[   59.499498][ T4565]  netlink_rcv_skb+0x12c/0x230
[   59.504782][ T4565]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[   59.511682][ T4565]  sock_diag_rcv+0x1c/0x30
[   59.516700][ T4565]  netlink_unicast+0x593/0x670
[   59.521719][ T4565]  netlink_sendmsg+0x5cc/0x6e0
[   59.526717][ T4565]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.532212][ T4565]  __sock_sendmsg+0x140/0x180
[   59.537362][ T4565]  sock_write_iter+0x164/0x1b0
[   59.542487][ T4565]  do_iter_readv_writev+0x3b0/0x470
[   59.549263][ T4565]  vfs_writev+0x2e0/0x880
[   59.553913][ T4565]  do_writev+0xf8/0x220
[   59.559343][ T4565]  __x64_sys_writev+0x45/0x50
[   59.564053][ T4565]  x64_sys_call+0x1d63/0x2e00
[   59.569667][ T4565]  do_syscall_64+0xc9/0x1c0
[   59.574568][ T4565]  ? clear_bhb_loop+0x55/0xb0
[   59.579415][ T4565]  ? clear_bhb_loop+0x55/0xb0
[   59.584218][ T4565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.590398][ T4565] RIP: 0033:0x7fabf97a73b9
[   59.595275][ T4565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.617423][ T4565] RSP: 002b:00007fabf8427048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   59.626551][ T4565] RAX: ffffffffffffffda RBX: 00007fabf9935f80 RCX: 00007fabf97a73b9
[   59.635672][ T4565] RDX: 0000000000000001 RSI: 0000000020000080 RDI: 0000000000000003
[   59.644462][ T4565] RBP: 00007fabf84270a0 R08: 0000000000000000 R09: 0000000000000000
[   59.652617][ T4565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.661160][ T4565] R13: 000000000000004d R14: 00007fabf9935f80 R15: 00007ffdff4531f8
[   59.670726][ T4565]  </TASK>
[   59.686166][ T4535] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.749568][ T4535] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.761946][ T4535] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.781779][ T4535] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.794330][ T4535] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.818770][ T4580] loop3: detected capacity change from 0 to 1024
[   59.827459][ T4580] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   59.839010][ T4580] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.870037][ T3859] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.893104][ T4587] loop3: detected capacity change from 0 to 1024
[   59.982378][ T4593] loop0: detected capacity change from 0 to 512
[   59.994482][ T4593] EXT4-fs (loop0): first meta block group too large: 16711680 (group descriptor block count 1)
[   60.043678][ T3903] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.095379][ T4599] loop2: detected capacity change from 0 to 512
[   60.102889][ T4599] EXT4-fs (loop2): first meta block group too large: 16711680 (group descriptor block count 1)
[   60.399841][ T4615] loop1: detected capacity change from 0 to 2048
[   60.413805][ T4615] msdos: Unknown parameter '���'
[   60.499925][ T4627] __nla_validate_parse: 1 callbacks suppressed
[   60.499959][ T4627] netlink: 28 bytes leftover after parsing attributes in process `syz.1.210'.
[   60.541082][ T4629] loop3: detected capacity change from 0 to 512
[   60.558906][ T4629] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.558973][ T4629] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.562193][ T4629] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.212: Directory hole found for htree leaf block 0
[   60.598344][ T4633] loop2: detected capacity change from 0 to 512
[   60.614003][ T4633] EXT4-fs (loop2): first meta block group too large: 16711680 (group descriptor block count 1)
[   60.739070][ T4642] netlink: 144 bytes leftover after parsing attributes in process `syz.1.216'.
[   60.750951][ T4642] SELinux: security_context_str_to_sid (us;�j���	�\	��	er_u) failed with errno=-22
[   61.508200][ T4650] netlink: 'syz.3.220': attribute type 10 has an invalid length.
[   61.539494][ T4655] loop3: detected capacity change from 0 to 512
[   61.548142][ T4655] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   61.560331][ T4655] EXT4-fs (loop3): 1 truncate cleaned up
[   61.702354][ T4663] netlink: 28 bytes leftover after parsing attributes in process `syz.1.224'.
[   61.823959][ T4675] netlink: 144 bytes leftover after parsing attributes in process `syz.1.228'.
[   61.838977][ T4673] loop2: detected capacity change from 0 to 512
[   61.853741][ T4675] SELinux: security_context_str_to_sid (us;�j���	�\	��	er_u) failed with errno=-22
[   61.867955][ T4673] EXT4-fs (loop2): first meta block group too large: 16711680 (group descriptor block count 1)
[   61.922859][ T4677] netlink: 'syz.1.229': attribute type 4 has an invalid length.
[   62.101427][ T4683] netlink: 'syz.2.231': attribute type 10 has an invalid length.
[   62.186597][   T29] kauditd_printk_skb: 44 callbacks suppressed
[   62.186615][   T29] audit: type=1400 audit(1722359322.941:773): avc:  denied  { setopt } for  pid=4690 comm="syz.4.233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   62.500334][   T29] audit: type=1326 audit(1722359323.261:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4699 comm="syz.3.235" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efefe1473b9 code=0x0
[   62.998900][ T4702] netlink: 28 bytes leftover after parsing attributes in process `syz.1.236'.
[   63.106016][   T29] audit: type=1400 audit(1722359323.861:775): avc:  denied  { create } for  pid=4708 comm="syz.2.240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   63.138484][ T4711] loop4: detected capacity change from 0 to 512
[   63.153355][ T4711] EXT4-fs: Ignoring removed i_version option
[   63.159816][ T4711] EXT4-fs: Ignoring removed oldalloc option
[   63.192165][ T4711] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.210642][ T4715] loop2: detected capacity change from 0 to 1764
[   63.222981][   T29] audit: type=1400 audit(1722359323.981:776): avc:  denied  { mount } for  pid=4713 comm="syz.2.242" name="/" dev="loop2" ino=1920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   63.238423][ T4711] netlink: 144 bytes leftover after parsing attributes in process `syz.4.239'.
[   63.257589][   T29] audit: type=1400 audit(1722359324.021:777): avc:  denied  { unmount } for  pid=3903 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[   63.291097][ T4711] SELinux: security_context_str_to_sid (us;�j���	�\	��	er_u) failed with errno=-22
[   63.386388][ T4729] netlink: 'syz.1.244': attribute type 10 has an invalid length.
[   63.396723][   T29] audit: type=1400 audit(1722359324.141:778): avc:  denied  { getopt } for  pid=4732 comm="syz.3.246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   63.424929][ T4729] bridge0: port 3(team0) entered blocking state
[   63.432856][ T4729] bridge0: port 3(team0) entered disabled state
[   63.442102][ T4729] team0: entered allmulticast mode
[   63.448951][ T4729] team_slave_0: entered allmulticast mode
[   63.455670][ T4729] team_slave_1: entered allmulticast mode
[   63.467473][ T4729] team0: entered promiscuous mode
[   63.473375][ T4729] team_slave_0: entered promiscuous mode
[   63.482061][ T4729] team_slave_1: entered promiscuous mode
[   63.494931][ T4729] bridge0: port 3(team0) entered blocking state
[   63.503305][ T4729] bridge0: port 3(team0) entered forwarding state
[   63.545367][ T4736] loop4: detected capacity change from 0 to 512
[   63.575916][ T4736] ext4 filesystem being mounted at /35/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.610977][   T29] audit: type=1326 audit(1722359324.361:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.4.247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9da42873b9 code=0x7ffc0000
[   63.678861][   T29] audit: type=1326 audit(1722359324.371:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.4.247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9da42873b9 code=0x7ffc0000
[   63.710187][   T29] audit: type=1326 audit(1722359324.371:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.4.247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7f9da42873b9 code=0x7ffc0000
[   63.738586][   T29] audit: type=1326 audit(1722359324.371:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4735 comm="syz.4.247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9da42873b9 code=0x7ffc0000
[   63.818631][ T4757] FAULT_INJECTION: forcing a failure.
[   63.818631][ T4757] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.833138][ T4757] CPU: 0 UID: 0 PID: 4757 Comm: syz.1.253 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0
[   63.846050][ T4757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   63.857178][ T4757] Call Trace:
[   63.860857][ T4757]  <TASK>
[   63.864843][ T4757]  dump_stack_lvl+0xf2/0x150
[   63.870287][ T4757]  dump_stack+0x15/0x20
[   63.875108][ T4757]  should_fail_ex+0x229/0x230
[   63.881055][ T4757]  should_fail+0xb/0x10
[   63.885730][ T4757]  should_fail_usercopy+0x1a/0x20
[   63.893358][ T4757]  _copy_from_user+0x1e/0xd0
[   63.898900][ T4757]  move_addr_to_kernel+0x82/0x120
[   63.905050][ T4757]  __sys_connect+0x74/0x1c0
[   63.909879][ T4757]  __x64_sys_connect+0x41/0x50
[   63.917724][ T4757]  x64_sys_call+0x202b/0x2e00
[   63.923040][ T4757]  do_syscall_64+0xc9/0x1c0
[   63.929448][ T4757]  ? clear_bhb_loop+0x55/0xb0
[   63.935223][ T4757]  ? clear_bhb_loop+0x55/0xb0
[   63.940613][ T4757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.949817][ T4757] RIP: 0033:0x7f8a2dde73b9
[   63.956656][ T4757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.982212][ T4757] RSP: 002b:00007f8a2ca67048 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   63.992489][ T4757] RAX: ffffffffffffffda RBX: 00007f8a2df75f80 RCX: 00007f8a2dde73b9
[   64.001648][ T4757] RDX: 000000000000001c RSI: 0000000020000680 RDI: 0000000000000003
[   64.011614][ T4757] RBP: 00007f8a2ca670a0 R08: 0000000000000000 R09: 0000000000000000
[   64.022337][ T4757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.032335][ T4757] R13: 000000000000004d R14: 00007f8a2df75f80 R15: 00007ffdb2409738
[   64.041429][ T4757]  </TASK>
[   64.204034][ T4766] loop4: detected capacity change from 0 to 512
[   64.217579][ T4766] EXT4-fs (loop4): first meta block group too large: 16711680 (group descriptor block count 1)
[   64.388417][ T4771] loop4: detected capacity change from 0 to 512
[   64.418873][ T4769] mmap: syz.3.251 (4769) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   64.422994][ T4771] EXT4-fs: Ignoring removed i_version option
[   64.440799][ T4771] EXT4-fs: Ignoring removed oldalloc option
[   64.484702][ T4771] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.517598][ T4771] netlink: 144 bytes leftover after parsing attributes in process `syz.4.256'.
[   64.543924][ T4771] SELinux: security_context_str_to_sid (us;�j���	�\	��	er_u) failed with errno=-22
[   64.769063][ T4785] program syz.4.260 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.098698][ T4806] openvswitch: netlink: IPv4 tunnel dst address is zero
[   65.119798][ T4806] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.179514][ T4806] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.272804][ T4806] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.389093][ T4806] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.459700][ T4806] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.480979][ T4806] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.516243][ T4806] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.555168][ T4806] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.828760][ T4836] netlink: 16 bytes leftover after parsing attributes in process `syz.1.276'.
[   65.843403][ T4836] 9pnet_fd: Insufficient options for proto=fd
[   65.909723][ T4839] loop2: detected capacity change from 0 to 512
[   65.932100][ T4839] EXT4-fs (loop2): first meta block group too large: 16711680 (group descriptor block count 1)
[   66.033673][ T4839] loop2: detected capacity change from 0 to 1024
[   66.042795][ T4839] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   66.106216][ T4839] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   66.124740][ T4839] EXT4-fs (loop2): orphan cleanup on readonly fs
[   66.132630][ T4849] netlink: 144 bytes leftover after parsing attributes in process `syz.1.281'.
[   66.145356][ T4839] EXT4-fs error (device loop2): ext4_map_blocks:718: inode #3: block 3: comm syz.2.277: lblock 3 mapped to illegal pblock 3 (length 1)
[   66.168225][ T4839] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.277: Failed to acquire dquot type 0
[   66.222087][ T4839] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.277: lblock 3 mapped to illegal pblock 3 (length 1)
[   66.276663][ T4851] program syz.3.282 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   66.300435][ T4839] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.277: Failed to acquire dquot type 0
[   66.330574][ T4839] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.277: Freeing blocks not in datazone - block = 0, count = 4096
[   66.353910][ T4839] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.277: lblock 3 mapped to illegal pblock 3 (length 1)
[   66.375053][ T4839] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.277: Failed to acquire dquot type 0
[   66.390681][ T4839] EXT4-fs (loop2): 1 orphan inode deleted
[   66.657071][ T4859] loop4: detected capacity change from 0 to 136
[   67.128823][ T4874] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.175407][ T4876] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.251789][ T4874] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.252481][ T4884] loop3: detected capacity change from 0 to 512
[   67.286886][ T4884] EXT4-fs (loop3): first meta block group too large: 16711680 (group descriptor block count 1)
[   67.304437][ T4876] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.380014][ T4874] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.397581][ T4884] loop3: detected capacity change from 0 to 1024
[   67.424737][ T4876] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.440448][ T4884] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   67.454409][ T4884] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   67.463106][ T4884] EXT4-fs (loop3): orphan cleanup on readonly fs
[   67.487170][ T4874] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.502363][ T4884] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #3: block 3: comm syz.3.294: lblock 3 mapped to illegal pblock 3 (length 1)
[   67.519520][ T4884] __quota_error: 47 callbacks suppressed
[   67.519534][ T4884] Quota error (device loop3): write_blk: dquota write failed
[   67.519614][ T4876] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.526558][ T4884] Quota error (device loop3): find_free_dqentry: Can't write quota data block 3
[   67.528183][ T4884] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   67.573317][ T4884] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.294: Failed to acquire dquot type 0
[   67.590511][ T4884] EXT4-fs error (device loop3): ext4_map_blocks:609: inode #3: block 3: comm syz.3.294: lblock 3 mapped to illegal pblock 3 (length 1)
[   67.614800][ T4874] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.629916][ T4884] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   67.649200][ T4874] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.660160][ T4884] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.294: Failed to acquire dquot type 0
[   67.686909][ T4888] loop4: detected capacity change from 0 to 512
[   67.687062][ T4874] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.695283][ T4884] EXT4-fs error (device loop3): ext4_free_blocks:6590: comm syz.3.294: Freeing blocks not in datazone - block = 0, count = 4096
[   67.724961][ T4888] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   67.737110][ T4884] EXT4-fs error (device loop3): ext4_map_blocks:609: inode #3: block 3: comm syz.3.294: lblock 3 mapped to illegal pblock 3 (length 1)
[   67.749484][ T4874] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.763521][ T4884] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   67.777029][ T4884] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.294: Failed to acquire dquot type 0
[   67.779539][ T4876] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.800942][ T4884] EXT4-fs (loop3): 1 orphan inode deleted
[   67.807858][ T4888] EXT4-fs (loop4): 1 truncate cleaned up
[   67.814738][ T4884] EXT4-fs mount: 11 callbacks suppressed
[   67.814752][ T4884] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   67.838579][ T4888] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.867427][ T4876] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.907666][ T4876] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.932051][ T4876] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.965937][ T4888] loop4: detected capacity change from 512 to 11
[   67.988053][ T4888] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5810: Out of memory
[   68.016764][ T4888] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5810: Out of memory
[   68.044891][ T4888] EXT4-fs error (device loop4): ext4_evict_inode:251: inode #19: comm syz.4.295: mark_inode_dirty error
[   68.047767][ T3859] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.061333][ T4888] EXT4-fs warning (device loop4): ext4_evict_inode:254: couldn't mark inode dirty (err -12)
[   68.083956][ T4894] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5810: Out of memory
[   68.156782][ T3493] EXT4-fs warning (device loop4): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -12 reading directory block
[   68.175193][ T3493] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5810: Out of memory
[   68.185510][ T3493] EXT4-fs error (device loop4): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[   68.222530][ T3493] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.277032][ T4902] netlink: 28 bytes leftover after parsing attributes in process `syz.1.301'.
[   68.297659][ T4904] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.389014][ T4904] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.468746][ T4904] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.548304][ T4904] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.579779][ T4908] chnl_net:caif_netlink_parms(): no params data found
[   68.644892][ T3368] bridge_slave_1: left allmulticast mode
[   68.651359][ T3368] bridge_slave_1: left promiscuous mode
[   68.657304][ T3368] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.669703][ T3368] bridge_slave_0: left allmulticast mode
[   68.676835][ T3368] bridge_slave_0: left promiscuous mode
[   68.684501][ T3368] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.859004][ T3368] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   68.872409][ T3368] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   68.883396][ T3368] bond0 (unregistering): (slave dummy0): Releasing backup interface
[   68.897424][ T3368] bond0 (unregistering): Released all slaves
[   68.906639][ T4942] FAULT_INJECTION: forcing a failure.
[   68.906639][ T4942] name failslab, interval 1, probability 0, space 0, times 0
[   68.920941][ T4942] CPU: 0 UID: 0 PID: 4942 Comm: syz.2.306 Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0
[   68.933881][ T4942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   68.948015][ T4942] Call Trace:
[   68.951398][ T4942]  <TASK>
[   68.955248][ T4942]  dump_stack_lvl+0xf2/0x150
[   68.960910][ T4942]  dump_stack+0x15/0x20
[   68.965600][ T4942]  should_fail_ex+0x229/0x230
[   68.970680][ T4942]  ? getname_flags+0x81/0x3b0
[   68.976329][ T4942]  should_failslab+0x8f/0xb0
[   68.982068][ T4942]  kmem_cache_alloc_noprof+0x4c/0x290
[   68.988040][ T4942]  getname_flags+0x81/0x3b0
[   68.993302][ T4942]  getname+0x17/0x20
[   68.997457][ T4942]  do_sys_openat2+0x67/0x120
[   69.003867][ T4942]  __x64_sys_open+0xe6/0x110
[   69.009629][ T4942]  x64_sys_call+0x13dd/0x2e00
[   69.015376][ T4942]  do_syscall_64+0xc9/0x1c0
[   69.021304][ T4942]  ? clear_bhb_loop+0x55/0xb0
[   69.026677][ T4942]  ? clear_bhb_loop+0x55/0xb0
[   69.032696][ T4942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.040427][ T4942] RIP: 0033:0x7fed793373b9
[   69.045508][ T4942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.067261][ T4942] RSP: 002b:00007fed77f75048 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   69.077133][ T4942] RAX: ffffffffffffffda RBX: 00007fed794c6130 RCX: 00007fed793373b9
[   69.088215][ T4942] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000100
[   69.097445][ T4942] RBP: 00007fed77f750a0 R08: 0000000000000000 R09: 0000000000000000
[   69.106699][ T4942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.117025][ T4942] R13: 000000000000006e R14: 00007fed794c6130 R15: 00007ffcf0adb6d8
[   69.127530][ T4942]  </TASK>
[   69.184484][ T4947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.307'.
[   69.230092][ T4949] loop2: detected capacity change from 0 to 512
[   69.230129][ T4908] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.245313][ T4908] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.256655][ T4949] EXT4-fs (loop2): first meta block group too large: 16711680 (group descriptor block count 1)
[   69.274649][ T4908] bridge_slave_0: entered allmulticast mode
[   69.286441][ T4908] bridge_slave_0: entered promiscuous mode
[   69.307534][ T3368] hsr_slave_0: left promiscuous mode
[   69.320040][ T3368] hsr_slave_1: left promiscuous mode
[   69.334889][ T4949] loop2: detected capacity change from 0 to 1024
[   69.356422][ T3368] batman_adv: batadv0: Removing interface: batadv_slave_0
[   69.374154][ T3368] batman_adv: batadv0: Removing interface: batadv_slave_1
[   69.377214][ T4949] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   69.402650][ T4949] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   69.428548][ T4949] EXT4-fs (loop2): orphan cleanup on readonly fs
[   69.449438][ T4949] EXT4-fs error (device loop2): ext4_map_blocks:718: inode #3: block 3: comm syz.2.308: lblock 3 mapped to illegal pblock 3 (length 1)
[   69.476217][ T4953] loop1: detected capacity change from 2048 to 11
[   69.493095][ T4949] Quota error (device loop2): write_blk: dquota write failed
[   69.502788][ T4949] Quota error (device loop2): find_free_dqentry: Can't write quota data block 3
[   69.534766][ T3368] team0 (unregistering): Port device team_slave_1 removed
[   69.544507][ T4949] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   69.575717][ T3368] team0 (unregistering): Port device team_slave_0 removed
[   69.585518][ T4949] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.308: Failed to acquire dquot type 0
[   69.614655][ T4949] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.308: lblock 3 mapped to illegal pblock 3 (length 1)
[   69.654120][ T4949] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   69.675314][ T4949] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.308: Failed to acquire dquot type 0
[   69.691446][ T4949] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.308: Freeing blocks not in datazone - block = 0, count = 4096
[   69.695903][ T4908] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.717608][ T4908] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.751188][ T4949] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.308: lblock 3 mapped to illegal pblock 3 (length 1)
[   69.751273][ T4908] bridge_slave_1: entered allmulticast mode
[   69.786802][ T4949] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   69.808027][ T4908] bridge_slave_1: entered promiscuous mode
[   69.834519][ T4949] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.308: Failed to acquire dquot type 0
[   69.871991][ T4908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.886463][ T4949] EXT4-fs (loop2): 1 orphan inode deleted
[   69.892795][ T4908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.905876][ T4949] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   69.954475][ T4908] team0: Port device team_slave_0 added
[   69.964385][ T4908] team0: Port device team_slave_1 added
[   69.997659][ T4908] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.009096][ T4908] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.043793][ T4908] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.068322][ T3903] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.089446][ T4908] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.096949][ T4908] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.129668][ T4908] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.271613][ T4908] hsr_slave_0: entered promiscuous mode
[   70.297679][ T4908] hsr_slave_1: entered promiscuous mode
[   70.324182][ T4908] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.341876][ T5004] loop2: detected capacity change from 0 to 512
[   70.350532][ T4908] Cannot create hsr debugfs directory
[   70.397773][ T5004] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   70.446344][ T5004] EXT4-fs (loop2): 1 truncate cleaned up
[   70.453890][ T5004] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.515731][ T5004] loop2: detected capacity change from 512 to 11
[   70.530077][ T5004] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5810: Out of memory
[   70.541389][ T5004] EXT4-fs error (device loop2): ext4_truncate:4241: inode #18: comm syz.2.316: mark_inode_dirty error
[   70.555114][ T5004] EXT4-fs error (device loop2) in ext4_setattr:5553: Out of memory
[   70.587114][ T5004] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5810: Out of memory
[   70.606773][ T5004] EXT4-fs error (device loop2): ext4_truncate:4241: inode #18: comm syz.2.316: mark_inode_dirty error
[   70.639759][ T5021] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5810: Out of memory
[   70.660121][ T5004] EXT4-fs error (device loop2) in ext4_setattr:5553: Out of memory
[   70.719208][ T3903] EXT4-fs warning (device loop2): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -12 reading directory block
[   70.747576][ T3903] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5810: Out of memory
[   70.781862][ T3903] EXT4-fs error (device loop2): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[   70.816184][ T4908] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   70.844080][ T3903] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.855158][ T4908] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   70.872350][ T4908] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   70.929326][ T4908] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   70.984876][ T5035] netlink: 'syz.1.320': attribute type 10 has an invalid length.
[   71.069051][ T4908] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.110781][ T4908] 8021q: adding VLAN 0 to HW filter on device team0
[   71.154017][ T4139] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.165228][ T4139] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.194296][ T4131] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.203518][ T4131] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.246527][ T4908] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   71.259170][ T4908] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   71.291956][ T5024] chnl_net:caif_netlink_parms(): no params data found
[   71.384775][ T4908] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.474102][ T5024] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.482122][ T5024] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.512094][ T5024] bridge_slave_0: entered allmulticast mode
[   71.525953][ T5024] bridge_slave_0: entered promiscuous mode
[   71.567412][ T5024] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.575859][ T5024] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.598279][ T5024] bridge_slave_1: entered allmulticast mode
[   71.608265][ T5024] bridge_slave_1: entered promiscuous mode
[   71.647490][ T5024] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   71.678318][ T5024] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   71.762967][ T5024] team0: Port device team_slave_0 added
[   71.792165][ T5024] team0: Port device team_slave_1 added
[   71.855324][ T4908] veth0_vlan: entered promiscuous mode
[   71.866321][ T5024] batman_adv: batadv0: Adding interface: batadv_slave_0
[   71.874670][ T5024] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.905132][ T5024] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   71.920988][ T5024] batman_adv: batadv0: Adding interface: batadv_slave_1
[   71.928456][ T5024] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.959140][ T5024] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   71.987652][ T4908] veth1_vlan: entered promiscuous mode
[   72.033997][ T4908] veth0_macvtap: entered promiscuous mode
[   72.060276][ T5024] hsr_slave_0: entered promiscuous mode
[   72.069397][ T5024] hsr_slave_1: entered promiscuous mode
[   72.086009][ T5024] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   72.095279][ T5024] Cannot create hsr debugfs directory
[   72.111757][ T4908] veth1_macvtap: entered promiscuous mode
[   72.139312][ T4908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.151544][ T4908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.163441][ T4908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.175110][ T4908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.186491][ T4908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.200098][ T4908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.212294][ T4908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   72.223945][ T4908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.237847][ T4908] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.287245][ T4908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.300321][ T4908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.311202][ T4908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.323163][ T4908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.335462][ T4908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.350330][ T4908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.364121][ T4908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.378395][ T4908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.390344][ T4908] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.401559][ T4908] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.411452][ T4908] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.421316][ T4908] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.431166][ T4908] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.466500][ T4904] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.550263][ T4904] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.590832][ T5164] netlink: 'syz.1.329': attribute type 10 has an invalid length.
[   72.608255][ T4904] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.655805][ T5024] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.719819][ T4904] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.769794][   T29] kauditd_printk_skb: 67 callbacks suppressed
[   72.769811][   T29] audit: type=1400 audit(1722359333.531:892): avc:  denied  { mount } for  pid=4908 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   72.830750][ T4904] syz.3.302 (4904) used greatest stack depth: 9024 bytes left
[   72.843763][ T5024] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.909901][ T5024] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.922420][   T29] audit: type=1400 audit(1722359333.671:893): avc:  denied  { create } for  pid=5172 comm="syz.1.332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[   72.978030][ T5024] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.994394][   T29] audit: type=1326 audit(1722359333.751:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   73.025265][   T29] audit: type=1326 audit(1722359333.751:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   73.059072][   T29] audit: type=1326 audit(1722359333.751:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   73.088510][   T29] audit: type=1326 audit(1722359333.751:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   73.119258][   T29] audit: type=1326 audit(1722359333.751:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   73.148620][   T29] audit: type=1326 audit(1722359333.751:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   73.177138][   T29] audit: type=1326 audit(1722359333.751:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2dde73b9 code=0x7ffc0000
[   73.207071][   T29] audit: type=1326 audit(1722359333.751:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5172 comm="syz.1.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8a2dde5d50 code=0x7ffc0000
[   73.320728][ T5024] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   73.355442][ T5024] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   73.381142][ T5024] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   73.399547][ T5024] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   73.582543][ T5024] 8021q: adding VLAN 0 to HW filter on device bond0
[   73.618293][ T5024] 8021q: adding VLAN 0 to HW filter on device team0
[   73.633675][ T4139] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.642870][ T4139] bridge0: port 1(bridge_slave_0) entered forwarding state
[   73.688635][ T4139] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.697065][ T4139] bridge0: port 2(bridge_slave_1) entered forwarding state
[   73.772285][ T5024] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   73.784592][ T5024] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   73.801993][ T5195] loop4: detected capacity change from 0 to 512
[   73.864373][ T5195] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   73.999131][ T5195] EXT4-fs (loop4): 1 truncate cleaned up
[   74.069018][ T5195] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.270636][   T36] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.329634][   T36] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.419300][   T36] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.477436][   T36] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.964993][ T5198] ==================================================================
[   74.978585][ T5198] BUG: KCSAN: data-race in kswapd / shrink_node
[   74.986451][ T5198] 
[   74.993468][ T5198] read-write to 0xffff88823fffd1f8 of 4 bytes by task 78 on cpu 0:
[   75.004784][ T5198]  kswapd+0x14c9/0x1820
[   75.010608][ T5198]  kthread+0x1d1/0x210
[   75.015964][ T5198]  ret_from_fork+0x4b/0x60
[   75.022055][ T5198]  ret_from_fork_asm+0x1a/0x30
[   75.027936][ T5198] 
[   75.030644][ T5198] write to 0xffff88823fffd1f8 of 4 bytes by task 5198 on cpu 1:
[   75.039342][ T5198]  shrink_node+0x1c58/0x1d40
[   75.044684][ T5198]  do_try_to_free_pages+0x30e/0xb80
[   75.051194][ T5198]  try_to_free_pages+0x64f/0x950
[   75.056583][ T5198]  __alloc_pages_slowpath+0x4de/0xd70
[   75.063274][ T5198]  __alloc_pages_noprof+0x26d/0x360
[   75.069123][ T5198]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   75.075708][ T5198]  alloc_pages_noprof+0xe1/0x100
[   75.081057][ T5198]  pte_alloc_one+0x32/0xf0
[   75.085900][ T5198]  __do_fault+0x79/0x200
[   75.091768][ T5198]  handle_mm_fault+0x11c9/0x2940
[   75.097434][ T5198]  exc_page_fault+0x296/0x650
[   75.104765][ T5198]  asm_exc_page_fault+0x26/0x30
[   75.112123][ T5198]  rep_stos_alternative+0x40/0x80
[   75.119187][ T5198]  elf_load+0x394/0x520
[   75.123618][ T5198]  load_elf_binary+0xbf7/0x1980
[   75.128968][ T5198]  bprm_execve+0x4e6/0xc30
[   75.135746][ T5198]  kernel_execve+0x697/0x6d0
[   75.141193][ T5198]  call_usermodehelper_exec_async+0x19d/0x250
[   75.147932][ T5198]  ret_from_fork+0x4b/0x60
[   75.153560][ T5198]  ret_from_fork_asm+0x1a/0x30
[   75.159423][ T5198] 
[   75.162571][ T5198] value changed: 0x00000000 -> 0x00000001
[   75.168765][ T5198] 
[   75.171719][ T5198] Reported by Kernel Concurrency Sanitizer on:
[   75.179463][ T5198] CPU: 1 UID: 0 PID: 5198 Comm: modprobe Not tainted 6.11.0-rc1-syzkaller-00043-g94ede2a3e913 #0
[   75.193921][ T5198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   75.209169][ T5198] ==================================================================
[   84.606172][   T36] team0: left allmulticast mode
[   84.612120][   T36] team_slave_0: left allmulticast mode
[   84.618509][   T36] team_slave_1: left allmulticast mode
[   84.624731][   T36] team0: left promiscuous mode
[   84.631193][   T36] team_slave_0: left promiscuous mode
[   84.638289][   T36] team_slave_1: left promiscuous mode
[   84.644365][   T36] bridge0: port 3(team0) entered disabled state
[   84.667274][   T36] bridge_slave_1: left allmulticast mode
[   84.673761][   T36] bridge_slave_1: left promiscuous mode
[   84.680646][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.721243][   T36] bridge_slave_0: left allmulticast mode
[   84.727622][   T36] bridge_slave_0: left promiscuous mode
[   84.734297][   T36] bridge0: port 1(bridge_slave_0) entered disabled state