last executing test programs:

4.248548777s ago: executing program 4 (id=3111):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='comm\x00')
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x0, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$TUNGETDEVNETNS(r1, 0x8982, 0x20000000)

4.201463571s ago: executing program 4 (id=3112):
socket(0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r2 = dup2(r0, r1)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RGETLOCK(r2, 0x0, 0x2c)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xc}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

4.164529604s ago: executing program 4 (id=3114):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x20, r1, 0xc4fc9e906872338b, 0x0, 0x0, {{0x15}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x4, 0x117}]}, 0x20}}, 0x0)

4.105423668s ago: executing program 4 (id=3117):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r0, @ANYRES32=r0, @ANYBLOB="000300000000000085000000bf0900000000000055090100000000009500000000000000bf91005f7df5bd76000000000000000000008500000085000000e83200000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x76, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYBLOB="9feb010018000000000030001cf5975a9274ad214f900000009c004c8feba31d050000fa0000007859326f0000000000000000008dfc88e20000000000"], &(0x7f0000000400)=""/75, 0x3d, 0x4b, 0x1, 0x10001}, 0x20)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000340)=0x81, 0x4)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000140)={'ip6gre0\x00', 0x0})
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet_dccp_int(r2, 0x21, 0xb, &(0x7f0000000300)=0x3, 0x4)
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5000000010000300"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000140012800b00010067656e6576650000040002801c001a"], 0x50}, 0x1, 0x2}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback={0xfec0ffff00000000, 0x2}}})
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sys_enter\x00'}, 0x10)
fsetxattr$trusted_overlay_redirect(r5, &(0x7f0000000100), &(0x7f0000000180)='./file0\x00', 0x8, 0x1)
r6 = syz_open_dev$evdev(&(0x7f00000000c0), 0xffffffffffffffc1, 0x179542)
ioctl$EVIOCGRAB(r6, 0x40044590, &(0x7f0000000000))
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCBRDELBR(r7, 0x89a1, &(0x7f00000002c0)='ipvlan1\x00')
setsockopt$TIPC_DEST_DROPPABLE(r7, 0x10f, 0x81, &(0x7f0000000280)=0x4, 0x4)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r8, 0x4b52, &(0x7f0000000040)={0x0, 0x0})

4.056126693s ago: executing program 4 (id=3119):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x24, 0x11, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8}, @NFTA_META_KEY={0x8}]}}}]}, @NFT_MSG_DELRULE={0x120, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_RULE_EXPRESSIONS={0x10c, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @limit={{0xa}, @void}}, {0x10, 0x1, 0x0, 0x1, @xfrm={{0x9}, @void}}, {0x68, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x54, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x62}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x38}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0xc}, @NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0x1b}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x38}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x97}, @NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x63}, @NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0x1}]}}}, {0x1c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x24, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_HASH_DREG={0x8, 0x2, 0x1, 0x0, 0x11}, @NFTA_HASH_TYPE={0x8, 0x7, 0x1, 0x0, 0x1}]}}}, {0x10, 0x1, 0x0, 0x1, @match={{0xa}, @void}}, {0x30, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_OSF_TTL={0x5, 0x2, 0x5c}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0xb}, @NFTA_OSF_FLAGS={0x8}]}}}]}]}, @NFT_MSG_DELOBJ={0x2c, 0x14, 0xa, 0x801, 0x0, 0x0, {}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc}]}], {0x14, 0x10}}, 0x1f4}}, 0x0)

4.018923876s ago: executing program 4 (id=3121):
r0 = open(&(0x7f0000000040)='./bus\x00', 0x60142, 0x0)
fallocate(r0, 0x0, 0x0, 0x2000)
r1 = openat$cgroup_ro(r0, &(0x7f0000000300)='devices.list\x00', 0x275a, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_INTERFACE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='9\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000070000000c001700000000000000000008000100000000000a0004007770616e31000000"], 0x34}}, 0x0)
r4 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r6)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBSENT(r7, 0x4b48, &(0x7f00000011c0)={0x0, "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"})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f00000009c0)={'vcan0\x00', <r9=>0x0})
r10 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udp\x00')
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6)
ftruncate(r10, 0x0)
setsockopt$SO_J1939_FILTER(r8, 0x6b, 0x1, &(0x7f0000000380)=[{0x0, 0x0, {0x0, 0x0, 0x1}, {0x0, 0x0, 0x3}}, {0x1, 0x0, {0x0, 0xff, 0x2}, {}, 0xfd, 0xff}, {0x0, 0x0, {0x0, 0xff}, {0x0, 0xf0}}], 0x60)
r11 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r11, &(0x7f0000000080)={0x1d, r9}, 0x18)
sendmsg$can_j1939(r11, &(0x7f00000001c0)={&(0x7f0000000040)={0x1d, r9}, 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1}, 0x1, 0x0, 0x0, 0x40011}, 0xee)
r12 = socket$nl_route(0x10, 0x3, 0x0)
bind$can_j1939(r8, &(0x7f0000000200)={0x1d, r9}, 0x18)
r13 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r13, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r14=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f00)=@newtfilter={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r14}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

689.767684ms ago: executing program 1 (id=3196):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x72ea}]})
write$ppp(r0, &(0x7f0000000300)="1632", 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000030085000000a8000000850000000800000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
socket(0xa, 0x3, 0x0)
syz_read_part_table(0x5a8, &(0x7f0000000000)="$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")

505.667179ms ago: executing program 1 (id=3202):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000240)={0x1d, r1}, 0x18)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1, 0x2}, 0x18)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f00000003c0)='./bus\x00', 0x0)
r3 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r4 = open(&(0x7f00000004c0)='./bus\x00', 0x143042, 0x0)
ftruncate(r4, 0x2008002)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r3, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
ioctl$USBDEVFS_CONNECTINFO(r5, 0xc0105502, &(0x7f0000002a40))
connect$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1, 0x1, {}, 0xfe}, 0x18)
r6 = socket$kcm(0xa, 0x6, 0x0)
setsockopt$sock_attach_bpf(r6, 0x10d, 0x2, &(0x7f0000000040), 0x4)
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r7, &(0x7f0000000040)={0x1d, r1, 0x3}, 0x18)
r8 = socket$nl_sock_diag(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_TX_RING(r8, 0x10e, 0x7, &(0x7f0000000100)={0x0, 0x9, 0x8, 0xa4}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x0)
r9 = open(&(0x7f0000000040)='./file0\x00', 0x640d00, 0x0)
fcntl$setlease(r9, 0x400, 0x0)
sendmmsg(r0, &(0x7f0000003e40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000280)='\"', 0x1}], 0x1}}], 0x2, 0x0)

447.641694ms ago: executing program 2 (id=3206):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0xc, &(0x7f0000000b00)=ANY=[@ANYBLOB="696f636861727365743d6d61636963656c618f642c696f636861727365743d757466382cd32151750c0b173a666d61736b3d3030303030303030303031302c6572726f72733d69656d6f756e742d726f95636865636b3d7374726963742c757466383d305f786c6174653d312c757466383d302c73686f72746e616d653d6d697865642c756e695f786c6174653d302c757466383d312c0015331472aee47aae5517f4edae4869af305e31566cad64fe7f61635f294d1c8fa237f29e9fb4f041c1ebb62c1fbb64e43f7a15e144b342d60fffc2f605dd50"], 0xff, 0x191, &(0x7f0000000580)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x10, r0, 0x0)
ftruncate(r0, 0xc17a)
preadv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/107, 0x6b}], 0x1, 0x6, 0x0)
r1 = gettid()
fcntl$setown(r0, 0x8, r1)
open(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000003c0)=0x14)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000002180)={0x2, 0x400000000000003, 0x0, 0x0, 0x12, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, @sadb_x_nat_t_type={0x1}, @sadb_sa={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, @sadb_address={0x3, 0x7, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x90}}, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x2)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='blkio.reset_stats\x00', 0x2, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000001040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xe, &(0x7f0000000440), 0x3, 0x440, &(0x7f00000006c0)="$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")
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$sock(r0, &(0x7f0000002380)=[{{&(0x7f0000000480)=@nfc_llcp={0x27, 0x0, 0xffffffffffffffff, 0x5, 0xe, 0x3, "48eb2383e42237b76bc19d2499071130a29b8fbfb8b5e55a97ce38a94f363458ae10d2defc823b88fe5b3a30698a119d28f90a76bad20b5135a371005fbbfb", 0xe}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000c00)="7cb5d81cf7d9eb9119910e500e3123d642549fe3a4c154af5996566ffbdb5fe2e01a7b1096ad8208dca006bedeb854e0b763a0845add062441c8af720abe074187df9d29e6a6dbaa8a6dde4facfa3b66812ce9c3715f7cadcb", 0x59}], 0x1, &(0x7f0000000400)=[@timestamping={{0x14, 0x1, 0x25, 0x5}}, @timestamping={{0x14, 0x1, 0x25, 0xae6f}}], 0x30}}, {{&(0x7f0000000c80)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000500)="f5848c4b7f886f213de035f2a0269187a69fd568b371422ea1beec64f298ae08d9f402cffe34", 0x26}, {&(0x7f0000000d00)="d8ff9ca12822be9a2bceea818baa0215a291836ca3014a18413e3d0efe5719c9e3f2198c21619aaddc039086b6880a7d97d80880fcd006808626f8c7ea1c353b5cc158fe5070331155a69da522e0b8569d77008052847cae3c2018d417465ce6adbb1c18134947e490c13f8cee312eee5cd612656f4739bbb18ba302d6d11e22b7", 0x81}, {&(0x7f0000001140)="b1527380a1038b9eb21c7c865f213e7fa316cb823f0ae2e611f47607eaed928ae3b0f9cc95579cb1bac7bf9222624ffa75b1fe20f8fee2419f39a27d5ed07d76b6ef073d58f31fd6a0088526a97df3ab90546c34048cb7e1180e8a37f6debee6db167f8fa5b4eb7cd6f41c853c6097560050dfa336420c5a5211f61fe27fd81b1eb76a6dbe347de5df792a2c58e7fe5e972eff0fba6eac4e83991631fa55b12eb62b995c9aa7ec2bf4e2a658f134a4bfae85dea41e683a03bb5916a2eebb515a6322c2d20cf92d4fedc03b753614bd7409d5ee805a503c5fa328d76a3eda9544bec031bbc5af7e71e934ece42f98dfa0fd3681fe4f515e6326f6435e90f766d11d242d93527fc34d510c0677d1c878765a348dfc7ffd3dbb083c2e1aaf592bb53975221db7e37ce346cdf04b0bfe1f8673125452e3fc9ff62d6f9fdb89fc4ee11306bf4e2e2a22b984f3d986221f242cd04d467738345301b6bb8496bc56fffb88305b2b13bce098987baf0f91d3e4e328a3c5f19964bc2d04b692466ce33b41e16d2f2e50307d73dc7efaba9042fb86e60e66721fbd29b2de13d85157911eb59fefc3769487140cf540e0a0d9ec431965dc211ee8e627749b1620868de4d4cb51362b7d79871cac45eafad48f53aeea086cfcb6d5dcf761c6d6411374d2b5e696c76f1a4e45d1c70aa53d7afcc147384509d972f902bd7cc803fed0d74825000298e35d02e0d815ec3073da36987762a224a5b3ba4a47ae6a8748633929c6c8e78d46e3a21ca3609cc093cb91afda7e39b6245e3dd0b7932aa3b39d07281732d0bbf6e51423888e275c5dfcb19c61be284dc270d9d22cf88ba216912bba7cd67e43cde87ac3d2051e3342e4b7fbd6a21253b39a35f6a3f28c0f8299fc245ec89422705a49361576f5c349b5a9bcddb0f2df8d272d33721cac7efb588a0eb8b176ed4bbe653e93c9bb643981cf4b3daf090c24c7034b692c1a7f78d77f97d31e2fe46cc6d2d462fd69b89c5ce7253bd41b30d961bf85e16ebd3c09dd53686ecca173d9baea52c1d7daf0039afa72314d1495d62988fb94556020d738d0adf0fd64df65731ae62eb25f6e5bef047b07d485e03c02c63de4946e02d3629688f3db8564f6b2ade79a346ea5fc7e77f69ed09dd60ea134df7b4688742ad2a626f3983f6b72e90dbb41a1c81688e236e6c9146951ba46377387ae856abaeef3176e7fe255e014f09d1f7e059119e859a331d60b0c404de5b87fda424c4df13de2b0101734706a7db2d9eabf7d5a8e981babd2dae9745457e82c42e5959ed3b1f79ef1b7b22ebc524fecf61086051e78ae3b89febc6484f3b83f4a853ffaf6d8ce47c5e064383884e3e302a8ca8f0aab647bfcc2f5d6052a8e0166b4fcff094022661c424a5e29913df9bdecb8f69a1f4fef54da08e5f8771304a0eab3425b2b1928d03dd70c6bb19c07899641c1b02513c756da86fd4e59415bcac97ff5e9d4d847590ab05eb689e2e92a7f69d663b54572fc48821bcb8ea549610bb0b871512ddd34970df05ce705a686ebc6ef2793ed5e38a218de6beccb380aa5c6e65f2b5be6ccac4dafbd27108873dff845f1876b7a11a388099b5f374b89054df45312206c186452f0e36989181c9ad518dea01861eac73b92ad3b3546038d731a62b7af4e7b8dd1ce8877df77549e4391506f13b5c73e7923088f7e487798271730d8f585b9cdcca4de48c5be5d7ec723b1f1af71591893ff6d2e28d670112b648b2e092c0f1e32501f3b4004f62afdb1a8c51dd359fcd0728b5c045aa53ce81180a8d801654226c74a370bddbf05243411a668c832dd629f0fb61bc922080e184048f831f63a464dd022bc3fc58265dbdc0e0fad6289e4121e3c6b51a76688472acb2411146f223c051e507c24520e4ab3e4827bf1c96e3678577b5b06a6c3ffbfd584ebc318088cf8521b7e977801b6ebdb33306cace94f75fa0ba4f775b35bdc797a4600759a3ab683fa6cb92f01cc6b49b0f009ef72f324c2e5cfa190c5a7bf0493b1a0563925a0697dd60e1a1655504880c4b7cc471806fbfe8efcbe59318467de92981c1f8e13a5aefc4d08b20f71d409cc90c60d1a8a96c7a000aacbb86094a2bf888d88fe7d20081395ed6cb9fda7d9db06f89386a7086883ea8bc8d063a0630e8a0b2b8cc5db49fa6a2b4106892fe461ff22a6aaba03765563feff1a0de0ed2da896159a24f39a1d71ec9818c3a4c4f5f4eb104c785f2423f3c1826f1cfe752cefade70ea45b35293d5f5d236779bb78ec1c541bb41922f166d7956975cd0c53b8c9d6d9e8155f04f147687324d29cdac6491656e63aade547176dea8bc4228c3a1d0b9fd958e43523614c161021ec768f829065c95bcc5c786ae8731d9926e48816dfcfda2a686bbb677fed3bac63cc53b934a5116ba2877cd5017581ac2f4c71047c043f1684726ef5044bb8efe2ef362026baee4bf038019bfd052192402231e2b6f08313afe33bd6c2aa5979f58c87c41f3639b2660ca00808cf71adf55568d8c71cfd877fbc222d1c183f76562a4d042e331c4323c093924372df7fb49d2fccc785f280c2d3d32a22b10bbc5146463b9683c94dc90b2f9d512347ccd0d313263c3087b8641a4df1732a3439d2ce29c020736aa8b5da662671decc407a21ba13e39f52bff7e2f68a0ca710de953e301b69e59004de810d0060a8bb1d0492150c96e679a2797367adf349f99b7185151e3029dc45a98b9caca876e2353300e5b1be96841ad7f0af87b49b579f1418aef74d582756856f127e673ec2bf9827e45b452df72cea3a007d8cec51b4dc9cf95b54f1ff4bbb7be72150e1c43336e264d05bdc3de9b8aa670367694fd1824a11a4d6dbb369e25074017d81afed2a96e3c0e9bfa0b7897426b65e5917f271ad22b0f0cd18fc167c7b7b5fa1801d09ee476c9242d9cb4071c946a1b447e84b45643ce7511cba20c27e9fe38245ad7cdad3ce3913a3d2605ef99c574eca21a7d7cca6ade339f03b4ea616c1d6cb98485cda544de54eb3a32006a82dfa0eb0a27a4361be9da2c8155ae1f5a51987fd0b3ed546b68dd92b21506ea519234c7f12f87e26580e469dc66d35ea1c0f486fc76133fd2dd485116fe7ebfad00ff09dad201c3acc73afa60b3ec744f12a6963f3cde184d1366d865a77b77af18b115e9a5e71fbb22b67a51131516e6817b0734117b904fb2e49e380dfdc34386102b1a9c565f53625380a4530144f76850276b50b61f174b0051cd49eb8f3eeb92e12b97d4f1765fb2b423f054a272cdf05473ee3b29eb42fe49c6e847180c71891630d3f0f6e26818dca03420cc64bc346880b7c281b2d6a65cb9e5c9840493dfc3b3a039ef30573c609de0166016bc8fbc07610af94c2ab6bb8ad5d7cc32f014d21c3956109886929727436b24a1b0c7ac34ed1470be7b11d649ce88403a7b0d6d84451796bca7fdaa23750edbfc960f01c53251fbb56e0c7aab8145ea81451481b3ef0215470987d3becd50d5cd99d4f6bbf683300d91f32a78901c9d4eb0108fea224e84b69613a4c0768771722ada816f1af6b08e12bcee11879df44b861b222f95636ea2ed773f36e1d8c85aa1a9635b18f77248cba3f0ffaf5b7c9ebcd25178f6403af499b068b8be71d1f32b078c63a9ed994445d28157c4082d6147d94e2e4383e068fb37ba01856a6c1618c4bc746710f6b4a646a46756b4674309b94c9d21d21fef6e0d3481c125e16c1f82a26d21dc488b2a62b507e05b8c45b83ba6d6e99c09f61dba8813528d9db64b01f57100b02f44b61346ae33d7c54fe62f5c508b30d2e5c046b3e271a886886ed5d53b21820b37f6d523b0130ed440e948298f31fcccc9e90d002f95e2a207fe0ea917818456e3abf4c215cf37e3b57e74ef1e502caf19e7ce747016bf76eed73ff143c776a9ed8438d5c9c750e913b6f2cbb0f70d5c31627c9944f4d63fc5300d17a832c5363bfb4e8e2da59175d959bb84455ceca43973c614b4ec239a8f3543118e471e8d4e5b622610243620eab440f1325ab998bc0ac023947ceaeebeec4f1d5f99e3d3934d997fb80f58ade23633df58dab674591826eb07689babdf933124ad5340e95affcfca8e6d5064ccff00be3a321352a83dde86b55c82ce4a461cbf950203774cf46771606a6a8a0f3f5132c9620792875d92b37acf004c81845ea014231ce3b99c2d00a9bbf5bd1a582299857510b26274577303c6832580c0a55f8a8a2b48f7809497d6075225a21cd02ae27d922cdd86331c0570f3d9947d1aa9cc22d0eb2a2bbe08430866f9e1ec44c4366b6e3341eb3e5c4ad8a35d8f22c8c80e02e2b2ca4ded281a8aef6784e9c1c0f6ba580c4fb3cefd4b8e8b5f0fae50677ac89cea362c9e3ea4c179625aafc53d43cccbc523620032aca7a5b84bc535a00c390b37bb78e8d1bb32612664da0e6ea2c2f886c10a8cd05190c7a35f8b999ee8504cff3ffd09269a52e52a68b1e4aa1aed8e35730b687889003f439fd48b745827db67987abf365abd89e41623843af318f26c7284ae78f6dac68092c3fbd599ea68bc48ddf1fa0a3f3653564ac0fbd1e632fc51b6d0aec1cf9d61dc9cfa9fbb61bd9becc5396f536f42d8ddbc778c3916842156a208b7ea63a51860a412412b929cd6d2e0ccd15fed4633cfb3d96b350d05c6bb60efa089fb8eef68b7c18fe5c866a63a270eee6f49acf446c74c47fa0adfbc9bc74e1cbe0d3ce7559382d9428b014ba83475d4bc736230cd848d6ec7a777a6c1f4a11e45643858499a910904ca76a9495c37ca0a0d80b96f4e90e69709853caa38122dd69172365671e1b6a1780924720f98ba75f30690fd0b1fdefbc4f48662f601be02bded646fbbc372e1297acc90e531889cbf2129f7d0d5bdcf11b0976268ae53a3359c38c05540e3d4d6fc85ba1c0466784f78a8b6d69344a0405eb1d47fc8f962a5eb05e6876f7e4f22cf8dfc11816f0c12346a50dd5b34c1deb465d9cb5beebbd63d9d1eea6c0c9e3c9dd125ce23691244fdb457c1d6dba33335242475a447a05029d7b81e63ed9e41e0bf52d861895c8fa899479b5156f5067ad92a919a12b4f27f2dc4ec16d6c22543d73d305f24140032df0425be6546d4a7dec1eb507b55b05d06bde82e5991988291d2800cf416ac5e2a449e5ed76462fdb89487b88292ad6b1fdc38069ef989bc5f7a87503cb8b5f907101832d860f98448e8410cd4490152164f4d628aa798bf2ab30124b68f8c10480424e9173facee9e2ea117ee2042677cef3d80d1e6ca597c004b3a6996146bf112dec3f3a6cd6dbd9046ec55f73ff2c83450758b94fd4f9ebedd96534c47d043b7db217a6bcd583299548a0a6f4b65c44edc41b35cad465cd098f1a69c45ca43c0a3256f2580a90065c4371a43d8c59088439760c60bff7df2267fbe76d6b37022890a45c3d14e427623772358f9e17536422b0cb8b292579e53f0ed71f7cb4cea3c685ffd5656aa7945f84997c92893831676ea07d3ab7acf8ecca058abe41cca87436356a75f3df2c23086efa59bc6e2061e349fdb1937df937627cc3f91a1d728700099d9365826c8940e39f59d5eaa92f1755362353c8d5e25c957bb422f9accbc2a222f4f811f541f7a2ac7d469d2a53dfdd1a65637ea666b11ebb0fbd6bb802427eb7c0703a4227910fb184ab262f495656bbff1dfcd28f162590dd0efc3443f71508973b284c09ba90139bc400f8b4e02a3d689f927dadd26c980756da5149a00c51d34a8b57eeca4ec288e9a990186fa3612166", 0x1000}, {&(0x7f0000000dc0)="aaf69bc817c772b8837b114cdc3edbb2fd26451dc99f782074968935f4a53f78283459d5442528176fceb6d187c22fa32bcc3af94da374648f69c8b277c68acbf0a8e857d706559f21a1d3d07dff073d66d008283ac2b2e64e1b54756a206545b8d06884ed352335d034b1ab433c979a62b1a4b6d668dfdff4235eda0739885fcb81e7cc4a18459084859fb410717ddd98b79a4b1f007c9165dc2a4c112011c48361", 0xa2}], 0x4, &(0x7f0000000ec0)=[@mark={{0x14, 0x1, 0x24, 0x8}}, @txtime={{0x18, 0x1, 0x3d, 0x51d}}, @txtime={{0x18, 0x1, 0x3d, 0x1a}}], 0x48}}, {{&(0x7f0000000f40)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e22, @remote}, 0x2, 0x0, 0x3, 0x2}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002140)="930fd64ab35f680db2e8944f3ffd882b9482991796d053db793cfa6aa08c021ef5c84b5cceca72d34f0a38c91840e6c2a44a59475190c6316c0d5f8aeee01e1deab61a31e9444d39a21b9f9051490def28df3558d5ca56e87359b8d40afb6f2e35415f5c3fccab8260caaf9f670324d43b402a635356438b2f389ccd58d87b486f80d75157d4015c5dd625287ba572822d5984792f65dec988c8829b980cf8481470057b7fb43002c05760095d48e22276db17c775b2c7cf511e2b3e431a337dbb23fd42f06761c7d7a074e8e25cab54d50f8a8008eb", 0xd6}, {&(0x7f0000000fc0)="80ff24a2f0299276452b9fddc1b2068a41c8638469354f5a5dabeece96ff1064980d38ad323a1e3098b6465a2e6643405ca5f1f0541a4be6517b8e4cf5dd1fcd2223d677d00d39b040a8c860ec260edb9739cdfab6b192fb04c5809fc5df7b6a8b3385d3d3d1fa5d684a51fc32ba", 0x6e}, {&(0x7f0000002240)="9fdc38c04db72441906b7b", 0xb}, {&(0x7f0000002280)="0deda6f67f1b98d0781188c671456eb709da8b7f76b5f20af64c08d215c348bdcf3d098b5165296af205e0a383c8edccc124dddc46800dd41db3a50069c6a2b72de49854cca671ad7b7bfcf9ddbecea77b008f0c6689b4e09feb765a1ba15503d23d576846c419eb4bb09ecaaec3cd1b45bc3e9184fceb9c01a8592178c09b12731adc0b83450d4f0aac776a5ffc0f8a6a75ba87846e72105fc05e71306146", 0x9f}], 0x4}}], 0x3, 0x0)

367.75507ms ago: executing program 1 (id=3207):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00'}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYBLOB="9feb010018000000000030001cf5975a9274ad214f900000009c004c8feba31d050000fa0000007859326f0000000000000000008dfc88e20000000000"], &(0x7f0000000400)=""/75, 0x3d, 0x4b, 0x1, 0x10001}, 0x20)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000340)=0x81, 0x4)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000140)={'ip6gre0\x00', 0x0})
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet_dccp_int(r1, 0x21, 0xb, &(0x7f0000000300)=0x3, 0x4)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5000000010000300"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000140012800b00010067656e6576650000040002801c001a"], 0x50}, 0x1, 0x2}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback={0xfec0ffff00000000, 0x2}}})
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sys_enter\x00'}, 0x10)
fsetxattr$trusted_overlay_redirect(r4, &(0x7f0000000100), &(0x7f0000000180)='./file0\x00', 0x8, 0x1)
r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0xffffffffffffffc1, 0x179542)
ioctl$EVIOCGRAB(r5, 0x40044590, &(0x7f0000000000))
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCBRDELBR(r6, 0x89a1, &(0x7f00000002c0)='ipvlan1\x00')
setsockopt$TIPC_DEST_DROPPABLE(r6, 0x10f, 0x81, &(0x7f0000000280)=0x4, 0x4)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r7, 0x4b52, &(0x7f0000000040)={0x0, 0x0})

320.995314ms ago: executing program 1 (id=3209):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
r0 = openat$selinux_status(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(0x0, r0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001c40)={&(0x7f0000000a80)=@newqdisc={0x178, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x148, 0x2, [@TCA_GRED_STAB={0x104, 0x6, "1c2f65df1bc501155748f24ed345dfe27e004bc6a32566374539c892000a1fb8239cc41703d2bb8c354c79c41772902d417c6ecaedf5a1cf567bae8e8552fea450f012b09b3ea31f8343af63381a12b0ca346a7069c1c878c58d75ce9edced9cb1edf41d45a446d700c882ae752d3df00932b12b11562ff275a5d7ed0eadd2a3d5e887f61fd151616b79660b2038f17cdb1b00add084bba8c9881e3365460b72cfc5232c126f983dfa8e0ae2cbfeb15bfcd900ba50fce6b9646335e763519a7a3c71330581caf0f6c07a6552517f4135024d3ac0e9023e8df494b77fd72fdd36aa884aebd8c8b0db2b591b8a62c975bc4400"}, @TCA_GRED_PARMS={0x38, 0x5}, @TCA_GRED_LIMIT={0x4, 0x6}]}}]}, 0x178}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000001c0)={'ip6_vti0\x00', &(0x7f0000000140)={'ip6gre0\x00', 0x0, 0x2f, 0x6c, 0x40, 0x1, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8, 0xcc87a6992eff4cc0, 0x6, 0x2}})
socketpair(0x1, 0x6, 0x3ff, &(0x7f0000000140))
r3 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MIF(r3, 0x29, 0xca, &(0x7f0000000080)={0x4000, 0x1}, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6_udplite(0xa, 0x2, 0x88)
r4 = socket$kcm(0xa, 0x6, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000007c0)='memory.events\x00', 0x26e1, 0x0)
r6 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r8)
setsockopt$sock_attach_bpf(r4, 0x10d, 0xb, &(0x7f0000000000)=r5, 0x4)

274.024938ms ago: executing program 0 (id=3210):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='comm\x00')
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$TUNGETDEVNETNS(r1, 0x8982, 0x20000000)

271.846138ms ago: executing program 0 (id=3211):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
r1 = socket$inet6(0xa, 0x6, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c000000000b0101000000000000ea000a0000000500010000000000080002400027"], 0x2c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02020409100000000000004c9e00000002001300027f0000000000000000004105000600200000000a00000000000000000500"], 0x80}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x393, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r4 = socket(0x10, 0x80002, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000180))
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000002c00)=@newtaction={0x14}, 0x14}}, 0x0)
r6 = socket(0x25, 0x1, 0x0)
setsockopt$sock_int(r6, 0x1, 0x0, 0x0, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_MOD(r7, 0x3, r6, &(0x7f0000000080)={0x2000a212})
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000002c0)=ANY=[], 0x44}}, 0x20000004)
listen(r1, 0x101)
socket$inet_dccp(0x2, 0x6, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r8}, 0x10)

271.455618ms ago: executing program 3 (id=3212):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
r1 = socket$inet6(0xa, 0x6, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c000000000b0101000000000000ea000a0000000500010000000000080002400027"], 0x2c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02020409100000000000004c9e00000002001300027f0000000000000000004105000600200000000a00000000000000000500"], 0x80}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x393, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r4 = socket(0x10, 0x80002, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000180))
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000002c00)=@newtaction={0x14}, 0x14}}, 0x0)
r6 = socket(0x25, 0x1, 0x0)
setsockopt$sock_int(r6, 0x1, 0x0, 0x0, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_MOD(r7, 0x3, r6, &(0x7f0000000080)={0x2000a212})
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000002c0)=ANY=[], 0x44}}, 0x20000004)
listen(r1, 0x101)
socket$inet_dccp(0x2, 0x6, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r8}, 0x10)

251.22427ms ago: executing program 1 (id=3213):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100))
ioctl$PPPIOCSACTIVE(0xffffffffffffffff, 0x40107446, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x72ea}]})
write$ppp(r0, &(0x7f0000000300)="1632", 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000030085000000a8000000850000000800000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
socket(0xa, 0x3, 0x0)
syz_read_part_table(0x5a8, &(0x7f0000000000)="$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")

228.078532ms ago: executing program 2 (id=3214):
socket(0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r2 = dup2(r0, r1)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RGETLOCK(r2, &(0x7f0000000140)=ANY=[], 0x2c)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

213.134993ms ago: executing program 0 (id=3215):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f00000006c0)=[{0x48, 0x0, [0x2b00, 0x5, 0x0, 0x0, 0x0, 0x200, 0x6, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x2d97, 0x3]}, {0x4, 0x0, [0x4, 0xd, 0x2, 0x8df, 0xe, 0x6, 0x5, 0x4, 0xfffffffc, 0x3ff, 0xff, 0x81, 0x7ff, 0x8]}, {0x0, 0x0, [0x0, 0x0, 0xb, 0x67, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2, 0x7fffffff, 0x0, 0x8, 0x10001, 0x0, 0x1f5ca4dc]}, {0x0, 0x0, [0x0, 0x4, 0x101, 0x0, 0x0, 0x4, 0x3, 0x8, 0x5, 0x6, 0x0, 0x1, 0x8001, 0x10000, 0x0, 0x2]}, {0x0, 0x0, [0x4, 0x3ff, 0x5, 0xffffffff, 0x3, 0x5, 0x8, 0x8, 0x0, 0x773, 0x3, 0x0, 0x0, 0x7fff, 0x6dc8]}, {0x20, 0x0, [0x5, 0xfffffff8, 0x0, 0x80000001, 0x7, 0x4, 0x7fff, 0xfffffff7, 0xfffffff9, 0xa, 0x3, 0x2, 0x6, 0x789, 0x0, 0x1]}, {0x10, 0x0, [0x9, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x5, 0x1ff, 0x0, 0x9, 0x9, 0x8, 0x80000001, 0x0, 0x3e5b, 0x8a16]}], r4, 0x1, 0x1, 0x1f8}}, 0x20)

170.839856ms ago: executing program 0 (id=3216):
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_GET_SECUREBITS(0x1b)
socket$kcm(0x29, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000200)={[0xfffffbfd]}, 0x0, 0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000054000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="20000100", @ANYRES32], 0x38}}, 0x0)

170.185646ms ago: executing program 0 (id=3217):
r0 = creat(0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PTP_PIN_GETFUNC2(r0, 0xc0603d0f, &(0x7f00000002c0)={'\x00', 0x1, 0x3, 0x10005})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x3}, 0x1810c0, 0x3ff, 0x0, 0x1, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x5, &(0x7f0000000640)=ANY=[@ANYBLOB="18cf2837188144d457276543e8685702000000000000000000000300000085db145dd0ff6cbf9500001fd00000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r1, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x50)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r2, &(0x7f0000000800)={&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="100000000000000000000000070000001c0000000000000000000000080000", @ANYRES32], 0x30}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003fcd0000000000000000f195"], 0x0}, 0x90)
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[], &(0x7f0000000140)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r3, 0x30, 0x2f, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
socket$kcm(0x10, 0x2, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), r4)
socket$inet6(0xa, 0x2, 0x0)
flistxattr(r3, &(0x7f0000000680)=""/213, 0xd5)

168.058016ms ago: executing program 3 (id=3218):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
dup(r0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f00000006c0)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@journal_dev={'journal_dev', 0x3d, 0x5}}, {@data_err_abort}], [{@subj_user={'subj_user', 0x3d, 'GPL\x00'}}, {@appraise_type}, {@uid_eq}, {@subj_user={'subj_user', 0x3d, ','}}, {@flag='sync'}]}, 0x1, 0x5e6, &(0x7f0000001200)="$eJzs3c9vFdUeAPDv3N6WlvJeC3l57+FCmhgDidLSAoYYF7A1pMEfcePGSgsiBRpao0UTSoIbE+PGGBNXLsT/QolsWenKhRtXhoSoYWniNXM7U3rbuS29tJ2G+XySS2fm3OF8p7ffnnNPz5kbQGUNpf/UIvZHxEwSMZAsLJXVIyscWnzegz8/Ops+kmg0Xvs9iSQ7lj8/yb72Zyf3RsSPPySxr2t1vbPz1y5OTE9PXc32R+YuzYzMzl87fOHSxPmp81OXx14YO3H82PETo0c6uq7rBcdO33z3/YFPxt/85qu/ktFvfxlP4mS8nD1x+XVslqEYan5PktVF/Sc2u7KSdGU/J8tf4qReYkBsSP76dUfE/2IguuLhizcQH79SanDAlmokEQ2gohL5DxWV9wPy9/Yr3wfXSumVANvh/qnFAYDV+V9fHBuM3ubYwO4HSSwf1kkiorORuVZ7IuLunfGb5+6M34wtGocDii3ciIj/F+V/0sz/weiNwWb+11ryP+0XnMm+psdf7bD+lUPF8h+2z2L+966Z/9Em/99alv9vd1j/0MPNd/pa8r+v00sCAAAAAACAyrp9KiKeL/r7f21p/k8UzP/pj4iTm1D/0Ir91X//r93bhGqAAvdPRbxUOP+3ls/+HezKtv7VnA/QnZy7MD11JCL+HRGHontXuj+6Rh2HP933ZbuyoWz+X/5I67+bzQXM4rhX39V6zuTE3MTjXjcQcf9GxFOF83+TpfY/KWj/098HM49Yx75nb51pV7Z+/gNbpfF1xMHC9v/hXSuSte/PMdLsD4zkvYLVnv7ws+/a1d9p/rvFBDy+tP3fvXb+DybL79czu/E6js7XG+3KOu3/9ySvN28505Md+2Bibu7qaERPcrorPdpyfGzjMcOTKM+HPF/S/D/0zNrjf0X9/76IWFjxfyd/tK4pzv337/5f28Wj/w/lSfN/ckPt/8Y3xm4Nft+u/kdr/4812/pD2RHjf7DoizxNe1qPF6Rjvahou+MFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgCdBLSL2RFIbXtqu1YaHI/oj4j+xuzZ9ZXbuuXNX3rs8mZY1P/+/ln/S78DifpJ//v/gsv2xFftHI2JvRHze1dfcHz57ZXqy7IsHAAAAAAAAAAAAAAAAAACAHaK/zfr/1G9dZUcHbLl62QEApSnI/5/KiAPYftp/qC75D9Ul/6G65D9Ul/yH6pL/UF3yH6pL/gMAAAAAwBNl74HbPycRsfBiX/OR6snKukuNDNhqtbIDAErjFj9QXab+QHV5jw8k65T3tj1pvTPXMnP2MU4GAAAAAAAAAAAAgMo5uN/6f6gq6/+huqz/h+rK1/8fKDkOYPt5jw/EOiv5C9f/r3sWAAAAAAAAAAAAALCZZuevXZyYnp66ugM26uWG8caO+CZs60aj0bie/hTslHh2+EaeNO2ek0+F3wGhFuZXFt6jnVXKryMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDAPwEAAP//BN0g9g==")
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x8004587d, 0x0)
rmdir(0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000440)={'sit0\x00', 0x0})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x10100, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
ioctl$int_in(r3, 0x5452, &(0x7f0000000940)=0x707987cd)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map, r5, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000000), &(0x7f0000000080)=r2}, 0x20)
recvmsg(r3, 0x0, 0x0)
sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)

136.121959ms ago: executing program 3 (id=3219):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180))

94.271622ms ago: executing program 2 (id=3220):
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={0x38, 0x3, 0x8, 0x301, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_SYN_RECV={0x8}, @CTA_TIMEOUT_TCP_SYN_SENT={0x8}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x38}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xdafa1bb16d28905, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000ac0)=ANY=[@ANYBLOB="5300000007000046009ce6e7e68cce73c582cfa39edf04e493585c78a7c3e3450db5"], 0x53)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000180), 0x28a0e8, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_fscache}], [], 0x6b}})
ftruncate(0xffffffffffffffff, 0x800)
lseek(0xffffffffffffffff, 0x0, 0x2)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0), 0x4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@dellink={0x3c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_VFINFO_LIST={0x1c, 0x16, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, [@IFLA_VF_IB_PORT_GUID={0x14}]}]}]}, 0x3c}}, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000))
pipe(&(0x7f0000000840))
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000000300)={0xa, 0x8000002, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0xda6}, 0x1c)
ioctl$int_in(r8, 0x0, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r9, 0x0)
r10 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r10, 0x107, 0x17, &(0x7f0000000080), 0x4)
sendto$inet6(r8, 0x0, 0x0, 0x2200c851, &(0x7f0000000200)={0xa, 0x2, 0x5, @loopback}, 0x1c)
shutdown(r8, 0x1)
splice(r8, 0x0, r7, 0x0, 0x406f408, 0x0)

93.774532ms ago: executing program 2 (id=3221):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000100)='comm\x00')
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
ioctl$TUNGETDEVNETNS(r1, 0x8982, 0x20000000)

93.571733ms ago: executing program 2 (id=3222):
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
lchown(&(0x7f0000000340)='./bus\x00', r2, 0x0)
fsetxattr$system_posix_acl(r0, &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f00000003c0)={{}, {}, [], {}, [{}], {0x10, 0x7}}, 0x2c, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x10000000000000)

89.601093ms ago: executing program 3 (id=3223):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
r0 = openat$selinux_status(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(0x0, r0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001c40)={&(0x7f0000000a80)=@newqdisc={0x178, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x148, 0x2, [@TCA_GRED_STAB={0x104, 0x6, "1c2f65df1bc501155748f24ed345dfe27e004bc6a32566374539c892000a1fb8239cc41703d2bb8c354c79c41772902d417c6ecaedf5a1cf567bae8e8552fea450f012b09b3ea31f8343af63381a12b0ca346a7069c1c878c58d75ce9edced9cb1edf41d45a446d700c882ae752d3df00932b12b11562ff275a5d7ed0eadd2a3d5e887f61fd151616b79660b2038f17cdb1b00add084bba8c9881e3365460b72cfc5232c126f983dfa8e0ae2cbfeb15bfcd900ba50fce6b9646335e763519a7a3c71330581caf0f6c07a6552517f4135024d3ac0e9023e8df494b77fd72fdd36aa884aebd8c8b0db2b591b8a62c975bc4400"}, @TCA_GRED_PARMS={0x38, 0x5}, @TCA_GRED_LIMIT={0x4, 0x6}]}}]}, 0x178}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000001c0)={'ip6_vti0\x00', &(0x7f0000000140)={'ip6gre0\x00', 0x0, 0x2f, 0x6c, 0x40, 0x1, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8, 0xcc87a6992eff4cc0, 0x6, 0x2}})
socketpair(0x1, 0x6, 0x3ff, &(0x7f0000000140))
socket$igmp6(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = socket$kcm(0xa, 0x6, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000007c0)='memory.events\x00', 0x26e1, 0x0)
r5 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r7)
setsockopt$sock_attach_bpf(r3, 0x10d, 0xb, &(0x7f0000000000)=r4, 0x4)

42.790387ms ago: executing program 2 (id=3224):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0xc, &(0x7f0000000b00)=ANY=[@ANYBLOB="696f636861727365743d6d61636963656c618f642c696f636861727365743d757466382cd32151750c0b173a666d61736b3d3030303030303030303031302c6572726f72733d69656d6f756e742d726f95636865636b3d7374726963742c757466383d305f786c6174653d312c757466383d302c73686f72746e616d653d6d697865642c756e695f786c6174653d302c757466383d312c0015331472aee47aae5517f4edae4869af305e31566cad64fe7f61635f294d1c8fa237f29e9fb4f041c1ebb62c1fbb64e43f7a15e144b342d60fffc2f605dd50"], 0xff, 0x191, &(0x7f0000000580)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x10, r0, 0x0)
ftruncate(r0, 0xc17a)
preadv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/107, 0x6b}], 0x1, 0x6, 0x0)
r1 = gettid()
fcntl$setown(r0, 0x8, r1)
open(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000003c0)=0x14)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000002180)={0x2, 0x400000000000003, 0x0, 0x0, 0x12, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, @sadb_x_nat_t_type={0x1}, @sadb_sa={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, @sadb_address={0x3, 0x7, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x90}}, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x2)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)='blkio.reset_stats\x00', 0x2, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000001040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xe, &(0x7f0000000440), 0x3, 0x440, &(0x7f00000006c0)="$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")
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$sock(r0, &(0x7f0000002380)=[{{&(0x7f0000000480)=@nfc_llcp={0x27, 0x0, 0xffffffffffffffff, 0x5, 0xe, 0x3, "48eb2383e42237b76bc19d2499071130a29b8fbfb8b5e55a97ce38a94f363458ae10d2defc823b88fe5b3a30698a119d28f90a76bad20b5135a371005fbbfb", 0xe}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000c00)="7cb5d81cf7d9eb9119910e500e3123d642549fe3a4c154af5996566ffbdb5fe2e01a7b1096ad8208dca006bedeb854e0b763a0845add062441c8af720abe074187df9d29e6a6dbaa8a6dde4facfa3b66812ce9c3715f7cadcb", 0x59}], 0x1, &(0x7f0000000400)=[@timestamping={{0x14, 0x1, 0x25, 0x5}}, @timestamping={{0x14, 0x1, 0x25, 0xae6f}}], 0x30}}, {{&(0x7f0000000c80)=@sco={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000500)="f5848c4b7f886f213de035f2a0269187a69fd568b371422ea1beec64f298ae08d9f402cffe34", 0x26}, {&(0x7f0000000d00)="d8ff9ca12822be9a2bceea818baa0215a291836ca3014a18413e3d0efe5719c9e3f2198c21619aaddc039086b6880a7d97d80880fcd006808626f8c7ea1c353b5cc158fe5070331155a69da522e0b8569d77008052847cae3c2018d417465ce6adbb1c18134947e490c13f8cee312eee5cd612656f4739bbb18ba302d6d11e22b7", 0x81}, {&(0x7f0000001140)="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", 0x1000}, {&(0x7f0000000dc0)="aaf69bc817c772b8837b114cdc3edbb2fd26451dc99f782074968935f4a53f78283459d5442528176fceb6d187c22fa32bcc3af94da374648f69c8b277c68acbf0a8e857d706559f21a1d3d07dff073d66d008283ac2b2e64e1b54756a206545b8d06884ed352335d034b1ab433c979a62b1a4b6d668dfdff4235eda0739885fcb81e7cc4a18459084859fb410717ddd98b79a4b1f007c9165dc2a4c112011c48361", 0xa2}], 0x4, &(0x7f0000000ec0)=[@mark={{0x14, 0x1, 0x24, 0x8}}, @txtime={{0x18, 0x1, 0x3d, 0x51d}}, @txtime={{0x18, 0x1, 0x3d, 0x1a}}], 0x48}}, {{&(0x7f0000000f40)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e22, @remote}, 0x2, 0x0, 0x3, 0x2}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002140)="930fd64ab35f680db2e8944f3ffd882b9482991796d053db793cfa6aa08c021ef5c84b5cceca72d34f0a38c91840e6c2a44a59475190c6316c0d5f8aeee01e1deab61a31e9444d39a21b9f9051490def28df3558d5ca56e87359b8d40afb6f2e35415f5c3fccab8260caaf9f670324d43b402a635356438b2f389ccd58d87b486f80d75157d4015c5dd625287ba572822d5984792f65dec988c8829b980cf8481470057b7fb43002c05760095d48e22276db17c775b2c7cf511e2b3e431a337dbb23fd42f06761c7d7a074e8e25cab54d50f8a8008eb", 0xd6}, {&(0x7f0000000fc0)="80ff24a2f0299276452b9fddc1b2068a41c8638469354f5a5dabeece96ff1064980d38ad323a1e3098b6465a2e6643405ca5f1f0541a4be6517b8e4cf5dd1fcd2223d677d00d39b040a8c860ec260edb9739cdfab6b192fb04c5809fc5df7b6a8b3385d3d3d1fa5d684a51fc32ba", 0x6e}, {&(0x7f0000002240)="9fdc38c04db72441906b7b", 0xb}, {&(0x7f0000002280)="0deda6f67f1b98d0781188c671456eb709da8b7f76b5f20af64c08d215c348bdcf3d098b5165296af205e0a383c8edccc124dddc46800dd41db3a50069c6a2b72de49854cca671ad7b7bfcf9ddbecea77b008f0c6689b4e09feb765a1ba15503d23d576846c419eb4bb09ecaaec3cd1b45bc3e9184fceb9c01a8592178c09b12731adc0b83450d4f0aac776a5ffc0f8a6a75ba87846e72105fc05e71306146", 0x9f}], 0x4}}], 0x3, 0x0)

42.370317ms ago: executing program 1 (id=3225):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
r1 = socket$inet6(0xa, 0x6, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c000000000b0101000000000000ea000a0000000500010000000000080002400027"], 0x2c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02020409100000000000004c9e00000002001300027f0000000000000000004105000600200000000a00000000000000000500"], 0x80}}, 0x0)
sendmmsg(r3, &(0x7f0000000180), 0x393, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r4 = socket(0x10, 0x80002, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000180))
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000002c00)=@newtaction={0x14}, 0x14}}, 0x0)
r6 = socket(0x25, 0x1, 0x0)
setsockopt$sock_int(r6, 0x1, 0x0, 0x0, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_MOD(r7, 0x3, r6, &(0x7f0000000080)={0x2000a212})
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000002c0)=ANY=[], 0x44}}, 0x20000004)
listen(r1, 0x101)
socket$inet_dccp(0x2, 0x6, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r8}, 0x10)

42.133547ms ago: executing program 0 (id=3226):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x20, r0, 0xc4fc9e906872338b, 0x0, 0x0, {{0x15}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x4, 0x117}]}, 0x20}}, 0x0)

21.626808ms ago: executing program 3 (id=3227):
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_GET_SECUREBITS(0x1b)
socket$kcm(0x29, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000200)={[0xfffffbfd]}, 0x0, 0x8)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000054000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="20000100", @ANYRES32], 0x38}}, 0x0)

0s ago: executing program 3 (id=3228):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x410, &(0x7f0000000200)={[{@grpquota}, {@nouid32}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
open(&(0x7f00000000c0)='./bus\x00', 0x1a12fe, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
socket(0x1e, 0x4, 0x0)
socket$kcm(0xa, 0x5, 0x0)
socket(0x40000000015, 0x5, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
mount$9p_fd(0x0, &(0x7f0000000540)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC=r0, @ANYBLOB=',wfdno=', @ANYRESDEC=r1])
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x1c}, 0x48)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x20}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r4 = eventfd(0x800a6)
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000003c0), 0x2000, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r5, 0xc0182101, &(0x7f0000000400)={0x0, 0x4})
write$eventfd(r4, &(0x7f0000000000)=0xfffffffffffffffb, 0x8)
write$eventfd(r4, &(0x7f00000000c0), 0x8)
r6 = dup(r4)
read$eventfd(r6, &(0x7f0000000040), 0x8)
perf_event_open$cgroup(&(0x7f0000000200)={0x1, 0x80, 0xff, 0x6, 0x4, 0x4, 0x0, 0x9, 0x300, 0x8, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffffffc, 0x4, @perf_config_ext={0x3, 0x4d}, 0x2202, 0xffffffffffffff23, 0x8, 0x3, 0x20f0, 0x7, 0x100, 0x0, 0x2d13ccef, 0x0, 0x5a9}, r6, 0x3, 0xffffffffffffffff, 0x3)
fsetxattr$trusted_overlay_upper(r3, &(0x7f0000000280), &(0x7f00000002c0)=ANY=[@ANYBLOB="00fbda0007baee0c5645d45ba36809bddc992cc8f60a22a658dd63aea65d84226646a9940c596785bcc5f66faf22090016082ffe80e311621d0fcca56734fa59c09c4ff31015e376f9ae6e911878c464643fdfc1b9212669b04bbdead983b1d7afb978db416965335ec093c8907867d6864412426b8fa7ba12b3acb17125f0ec493dc86b619c8e031d7d1fa8a3a907886d82d71c276004508326d5c496003ebd3a6b5868b033ea8d9d99a6c0e850c38a640a3dba0b8cdb00015cf643c2931d701bc8ccbe196b6f437228452454ae9aaa999646c3fff01bdded60"], 0xda, 0x0)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000040))
ioctl$PAGEMAP_SCAN(r8, 0xc0606610, &(0x7f0000000180)={0x60, 0x1, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x20000, &(0x7f00000000c0)=[{0x7, 0x3, 0x56}, {0x3, 0x2, 0xfffffffffffffffd}, {0x9, 0x0, 0x401}, {0xf, 0x9, 0x9}, {0x6, 0x3, 0x1}, {0xbd6, 0x5, 0x1}, {0xffff, 0x0, 0x3ff}], 0x7, 0x3ff, 0x1, 0x20, 0x40})
setsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@int=0xf, 0x4)
write$binfmt_aout(r3, &(0x7f0000000ac0)=ANY=[], 0x920)
fsetxattr$security_selinux(r1, &(0x7f0000000440), &(0x7f0000000500)='system_u:object_r:tetex_data_t:s0\x00', 0x22, 0x0)

kernel console output (not intermixed with test programs):

2026053.980:872): avc:  denied  { append } for  pid=11287 comm="syz.0.2554" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  167.722414][ T3276] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.726094][T11297] loop4: detected capacity change from 0 to 4096
[  167.777396][T11288] netlink: 'syz.0.2554': attribute type 4 has an invalid length.
[  167.789828][T11305] loop3: detected capacity change from 0 to 512
[  167.807213][T11305] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  167.815810][T11305] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.2556: invalid indirect mapped block 2683928664 (level 1)
[  167.829972][T11272] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.837081][T11272] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.847304][T11272] bridge_slave_0: entered allmulticast mode
[  167.853412][T11305] EXT4-fs (loop3): Remounting filesystem read-only
[  167.854087][T11272] bridge_slave_0: entered promiscuous mode
[  167.861204][T11305] EXT4-fs (loop3): 1 truncate cleaned up
[  167.872224][T11272] bridge0: port 2(bridge_slave_1) entered blocking state
[  167.878367][T11305] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.879355][T11272] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.902033][T11272] bridge_slave_1: entered allmulticast mode
[  167.910119][T11272] bridge_slave_1: entered promiscuous mode
[  167.917652][T11305] SELinux: (dev loop3, type ext4) getxattr errno 5
[  167.925589][ T3276] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.927311][T11305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.953040][T11312] SELinux:  policydb version 641993883 does not match my version range 15-33
[  167.954942][   T29] audit: type=1400 audit(1722026054.290:873): avc:  denied  { load_policy } for  pid=11311 comm="syz.4.2559" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  167.962352][T11312] SELinux: failed to load policy
[  167.999325][T11272] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  168.040090][ T3276] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.053087][   T29] audit: type=1400 audit(1722026054.400:874): avc:  denied  { view } for  pid=11304 comm="syz.3.2556" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  168.098503][T11272] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  168.111206][T11326] FAULT_INJECTION: forcing a failure.
[  168.111206][T11326] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.124508][T11326] CPU: 0 UID: 0 PID: 11326 Comm: syz.4.2563 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  168.134944][T11326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  168.145014][T11326] Call Trace:
[  168.148379][T11326]  <TASK>
[  168.151422][T11326]  dump_stack_lvl+0xf2/0x150
[  168.156042][T11326]  dump_stack+0x15/0x20
[  168.160226][T11326]  should_fail_ex+0x229/0x230
[  168.164931][T11326]  should_fail+0xb/0x10
[  168.169188][T11326]  should_fail_usercopy+0x1a/0x20
[  168.174272][T11326]  _copy_from_user+0x1e/0xd0
[  168.178881][T11326]  move_addr_to_kernel+0x82/0x120
[  168.183924][T11326]  __sys_bind+0xe2/0x1d0
[  168.188176][T11326]  __x64_sys_bind+0x41/0x50
[  168.192685][T11326]  x64_sys_call+0x1e45/0x2e00
[  168.197384][T11326]  do_syscall_64+0xc9/0x1c0
[  168.201931][T11326]  ? clear_bhb_loop+0x55/0xb0
[  168.206643][T11326]  ? clear_bhb_loop+0x55/0xb0
[  168.211332][T11326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.217241][T11326] RIP: 0033:0x7faa1bf87299
[  168.221788][T11326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.241491][T11326] RSP: 002b:00007faa1ac07048 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  168.249908][T11326] RAX: ffffffffffffffda RBX: 00007faa1c115f80 RCX: 00007faa1bf87299
[  168.257909][T11326] RDX: 000000000000001c RSI: 0000000020000000 RDI: 0000000000000003
[  168.265907][T11326] RBP: 00007faa1ac070a0 R08: 0000000000000000 R09: 0000000000000000
[  168.273883][T11326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.281859][T11326] R13: 000000000000000b R14: 00007faa1c115f80 R15: 00007ffeb1f15da8
[  168.289857][T11326]  </TASK>
[  168.333813][T11272] team0: Port device team_slave_0 added
[  168.368619][ T3276] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.383661][T11272] team0: Port device team_slave_1 added
[  168.450157][ T3276] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.463615][T11272] batman_adv: batadv0: Adding interface: batadv_slave_0
[  168.470628][T11272] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.496724][T11272] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  168.525210][T11272] batman_adv: batadv0: Adding interface: batadv_slave_1
[  168.532259][T11272] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.558373][T11272] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  168.599464][ T3276] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.658175][T11272] hsr_slave_0: entered promiscuous mode
[  168.664718][T11272] hsr_slave_1: entered promiscuous mode
[  168.672043][T11272] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  168.679725][T11272] Cannot create hsr debugfs directory
[  168.688297][T11283] chnl_net:caif_netlink_parms(): no params data found
[  168.738925][   T29] audit: type=1326 audit(1722026055.070:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11345 comm="syz.0.2569" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8f0da87299 code=0x0
[  168.789732][ T3276] bridge_slave_1: left allmulticast mode
[  168.795530][ T3276] bridge_slave_1: left promiscuous mode
[  168.801254][ T3276] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.810745][ T3276] bridge_slave_0: left allmulticast mode
[  168.816455][ T3276] bridge_slave_0: left promiscuous mode
[  168.822210][ T3276] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.831611][ T3276] bridge_slave_1: left allmulticast mode
[  168.837315][ T3276] bridge_slave_1: left promiscuous mode
[  168.843018][ T3276] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.852953][ T3276] bridge_slave_0: left allmulticast mode
[  168.858680][ T3276] bridge_slave_0: left promiscuous mode
[  168.864367][ T3276] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.171603][ T3276] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  169.182056][ T3276] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  169.192962][ T3276] bond0 (unregistering): Released all slaves
[  169.203818][ T3276] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  169.214784][ T3276] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  169.225436][ T3276] bond0 (unregistering): Released all slaves
[  169.229673][T11375] loop4: detected capacity change from 0 to 1024
[  169.238568][T11375] ext4: Unknown parameter 'subj_user'
[  169.246027][T11357] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2569'.
[  169.279413][T11283] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.286720][T11283] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.294136][T11283] bridge_slave_0: entered allmulticast mode
[  169.301135][T11283] bridge_slave_0: entered promiscuous mode
[  169.313047][T11283] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.320280][T11283] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.328822][T11283] bridge_slave_1: entered allmulticast mode
[  169.335466][T11283] bridge_slave_1: entered promiscuous mode
[  169.374484][T11283] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  169.387058][T11283] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  169.409710][T11283] team0: Port device team_slave_0 added
[  169.419988][ T3276] hsr_slave_0: left promiscuous mode
[  169.425736][ T3276] hsr_slave_1: left promiscuous mode
[  169.431355][ T3276] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  169.438922][ T3276] batman_adv: batadv0: Removing interface: batadv_slave_0
[  169.446722][ T3276] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  169.454142][ T3276] batman_adv: batadv0: Removing interface: batadv_slave_1
[  169.463366][ T3276] hsr_slave_0: left promiscuous mode
[  169.468992][ T3276] hsr_slave_1: left promiscuous mode
[  169.475025][ T3276] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  169.482426][ T3276] batman_adv: batadv0: Removing interface: batadv_slave_0
[  169.489915][ T3276] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  169.497422][ T3276] batman_adv: batadv0: Removing interface: batadv_slave_1
[  169.508137][ T3276] veth1_macvtap: left promiscuous mode
[  169.513721][ T3276] veth0_macvtap: left promiscuous mode
[  169.519332][ T3276] veth1_vlan: left promiscuous mode
[  169.524635][ T3276] veth0_vlan: left promiscuous mode
[  169.530639][ T3276] veth1_macvtap: left promiscuous mode
[  169.536159][ T3276] veth0_macvtap: left promiscuous mode
[  169.541729][ T3276] veth1_vlan: left promiscuous mode
[  169.546968][ T3276] veth0_vlan: left promiscuous mode
[  169.696019][ T3276] team0 (unregistering): Port device team_slave_1 removed
[  169.706120][ T3276] team0 (unregistering): Port device team_slave_0 removed
[  169.774562][ T3276] team0 (unregistering): Port device team_slave_1 removed
[  169.785527][ T3276] team0 (unregistering): Port device team_slave_0 removed
[  169.825299][T11283] team0: Port device team_slave_1 added
[  169.847398][T11283] batman_adv: batadv0: Adding interface: batadv_slave_0
[  169.854344][T11283] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.880580][T11283] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  169.893727][T11283] batman_adv: batadv0: Adding interface: batadv_slave_1
[  169.900748][T11283] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.926733][T11283] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  169.969430][T11283] hsr_slave_0: entered promiscuous mode
[  169.976031][T11283] hsr_slave_1: entered promiscuous mode
[  169.982041][T11283] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  169.990142][T11283] Cannot create hsr debugfs directory
[  170.001594][   T29] audit: type=1326 audit(1722026056.340:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.4.2583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1bf87299 code=0x7ffc0000
[  170.025159][   T29] audit: type=1326 audit(1722026056.340:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.4.2583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1bf87299 code=0x7ffc0000
[  170.048842][   T29] audit: type=1326 audit(1722026056.340:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.4.2583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa1bf87299 code=0x7ffc0000
[  170.073604][   T29] audit: type=1326 audit(1722026056.370:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.4.2583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1bf87299 code=0x7ffc0000
[  170.097092][   T29] audit: type=1326 audit(1722026056.370:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.4.2583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa1bf87299 code=0x7ffc0000
[  170.174714][T11402] loop3: detected capacity change from 0 to 1024
[  170.179384][T11403] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2583'.
[  170.183185][T11402] EXT4-fs: Ignoring removed nobh option
[  170.196073][T11402] EXT4-fs: Ignoring removed orlov option
[  170.208033][T11402] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.276337][T10731] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.484473][T11440] loop3: detected capacity change from 0 to 2048
[  170.585849][T11450] loop3: detected capacity change from 0 to 128
[  170.592484][T11450] vfat: Unknown parameter '�!Qu:fmask'
[  170.609454][T11450] loop3: detected capacity change from 0 to 512
[  170.616313][T11450] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  170.634847][T11450] EXT4-fs (loop3): 1 truncate cleaned up
[  170.642111][T11450] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.648862][T11283] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  170.663926][T11283] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  170.672558][T11283] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  170.683029][T11283] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  170.690567][T10731] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.711378][T11272] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  170.727887][T11272] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  170.745986][T11272] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  170.764863][T11283] 8021q: adding VLAN 0 to HW filter on device bond0
[  170.772599][T11272] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  170.803836][T11283] 8021q: adding VLAN 0 to HW filter on device team0
[  170.831669][ T3338] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.838854][ T3338] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.848607][ T3338] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.855701][ T3338] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.882604][T11272] 8021q: adding VLAN 0 to HW filter on device bond0
[  170.907711][T11272] 8021q: adding VLAN 0 to HW filter on device team0
[  170.922285][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.929392][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.945918][    C1] eth0: bad gso: type: 1, size: 1408
[  170.946327][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.958287][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.982810][T11464] loop4: detected capacity change from 0 to 2048
[  171.110009][T11476] loop4: detected capacity change from 0 to 1024
[  171.114543][T11283] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.123614][T11476] ext4: Unknown parameter 'subj_user'
[  171.151705][T11272] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.279773][T11493] loop4: detected capacity change from 0 to 128
[  171.290667][T11493] vfat: Unknown parameter '�!Qu:fmask'
[  171.314711][T11283] veth0_vlan: entered promiscuous mode
[  171.334101][T11283] veth1_vlan: entered promiscuous mode
[  171.367278][T11493] loop4: detected capacity change from 0 to 512
[  171.374695][T11272] veth0_vlan: entered promiscuous mode
[  171.386367][T11272] veth1_vlan: entered promiscuous mode
[  171.392329][T11493] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  171.415032][T11493] EXT4-fs (loop4): 1 truncate cleaned up
[  171.420018][T11283] veth0_macvtap: entered promiscuous mode
[  171.421055][T11493] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.434318][T11272] veth0_macvtap: entered promiscuous mode
[  171.474823][T11283] veth1_macvtap: entered promiscuous mode
[  171.489878][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.509687][T11272] veth1_macvtap: entered promiscuous mode
[  171.521360][T11283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.531830][T11283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.541756][T11283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.552319][T11283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.562153][T11283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.572681][T11283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.589009][T11283] batman_adv: batadv0: Interface activated: batadv_slave_0
[  171.603282][T11283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.613798][T11283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.623826][T11283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.634275][T11283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.644173][T11283] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.654632][T11283] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.667887][T11283] batman_adv: batadv0: Interface activated: batadv_slave_1
[  171.689780][T11497] loop4: detected capacity change from 0 to 1024
[  171.692106][T11272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.706816][T11272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.716737][T11272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.727271][T11272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.737179][T11272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.747716][T11272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.757701][T11272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.768196][T11272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.785216][T11497] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.785459][T11272] batman_adv: batadv0: Interface activated: batadv_slave_0
[  171.816704][T11283] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  171.825501][T11283] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  171.834204][T11283] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  171.842945][T11283] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  171.851942][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.875619][T11272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.886175][T11272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.896023][T11272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.906559][T11272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.916454][T11272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.926907][T11272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.936760][T11272] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.947218][T11272] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.961347][T11272] batman_adv: batadv0: Interface activated: batadv_slave_1
[  171.970253][T11272] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  171.979066][T11272] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  171.987791][T11272] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  171.996563][T11272] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  172.021017][   T29] kauditd_printk_skb: 19 callbacks suppressed
[  172.021033][   T29] audit: type=1400 audit(1722026058.360:900): avc:  denied  { setopt } for  pid=11510 comm="syz.4.2612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  172.074602][T11514] loop3: detected capacity change from 0 to 512
[  172.086710][   T29] audit: type=1400 audit(1722026058.430:901): avc:  denied  { unmount } for  pid=11099 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  172.108044][T11514] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  172.127573][T11514] EXT4-fs (loop3): Remounting filesystem read-only
[  172.134649][T11514] EXT4-fs (loop3): 1 truncate cleaned up
[  172.143987][T11514] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.148342][   T29] audit: type=1400 audit(1722026058.480:902): avc:  denied  { accept } for  pid=11518 comm="syz.4.2614" lport=38089 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  172.158038][T11514] SELinux: (dev loop3, type ext4) getxattr errno 5
[  172.178996][   T29] audit: type=1400 audit(1722026058.480:903): avc:  denied  { read } for  pid=11518 comm="syz.4.2614" lport=38089 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  172.186815][T11514] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.218982][   T29] audit: type=1400 audit(1722026058.560:904): avc:  denied  { setopt } for  pid=11518 comm="syz.4.2614" lport=38089 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  172.220552][T11523] loop2: detected capacity change from 0 to 512
[  172.243777][   T29] audit: type=1400 audit(1722026058.590:905): avc:  denied  { write } for  pid=11518 comm="syz.4.2614" lport=38089 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  172.283281][T11523] EXT4-fs (loop2): blocks per group (71) and clusters per group (32768) inconsistent
[  172.287963][T11519] loop4: detected capacity change from 0 to 512
[  172.315623][T11519] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.2614: casefold flag without casefold feature
[  172.342746][T11519] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.2614: couldn't read orphan inode 15 (err -117)
[  172.359557][T11536] loop1: detected capacity change from 0 to 1024
[  172.364096][T11523] loop2: detected capacity change from 0 to 512
[  172.366484][T11536] ext4: Unknown parameter 'subj_user'
[  172.381814][T11519] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.403861][T11523] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  172.422988][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.433513][T11523] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.450593][   T29] audit: type=1326 audit(1722026058.790:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11522 comm="syz.2.2551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36bf727299 code=0x7ffc0000
[  172.474055][   T29] audit: type=1326 audit(1722026058.790:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11522 comm="syz.2.2551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f36bf727299 code=0x7ffc0000
[  172.497548][   T29] audit: type=1326 audit(1722026058.790:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11522 comm="syz.2.2551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36bf727299 code=0x7ffc0000
[  172.521051][   T29] audit: type=1326 audit(1722026058.790:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11522 comm="syz.2.2551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f36bf727299 code=0x7ffc0000
[  172.554518][T11544] loop4: detected capacity change from 0 to 1024
[  172.561314][T11544] EXT4-fs: Ignoring removed nobh option
[  172.562176][T11283] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  172.566909][T11544] EXT4-fs: Ignoring removed orlov option
[  172.586724][T11544] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.599653][T11550] loop2: detected capacity change from 0 to 1024
[  172.606705][T11550] ext4: Unknown parameter 'subj_user'
[  172.685446][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.866678][T11565] loop4: detected capacity change from 0 to 512
[  172.910403][T11576] 9pnet_fd: Insufficient options for proto=fd
[  172.929328][T11565] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  172.949927][T11565] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.001973][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  173.095408][T11588] FAULT_INJECTION: forcing a failure.
[  173.095408][T11588] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  173.108679][T11588] CPU: 0 UID: 0 PID: 11588 Comm: syz.4.2631 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  173.119167][T11588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  173.129285][T11588] Call Trace:
[  173.132566][T11588]  <TASK>
[  173.135511][T11588]  dump_stack_lvl+0xf2/0x150
[  173.140142][T11588]  dump_stack+0x15/0x20
[  173.144327][T11588]  should_fail_ex+0x229/0x230
[  173.149035][T11588]  should_fail_alloc_page+0xfd/0x110
[  173.154464][T11588]  __alloc_pages_noprof+0x109/0x360
[  173.159754][T11588]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  173.165180][T11588]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  173.170631][T11588]  do_wp_page+0x62b/0x22c0
[  173.175107][T11588]  ? __rcu_read_lock+0x36/0x50
[  173.180029][T11588]  handle_mm_fault+0xbf0/0x2940
[  173.184901][T11588]  exc_page_fault+0x296/0x650
[  173.189607][T11588]  asm_exc_page_fault+0x26/0x30
[  173.194558][T11588] RIP: 0010:rep_movs_alternative+0x4a/0x70
[  173.200392][T11588] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[  173.220089][T11588] RSP: 0018:ffffc90000f03ae0 EFLAGS: 00050206
[  173.226165][T11588] RAX: ffff8881160b6d80 RBX: 0000000020003100 RCX: 0000000000000100
[  173.234221][T11588] RDX: 0000000000000000 RSI: ffff888129d18f00 RDI: 0000000020004000
[  173.242210][T11588] RBP: ffffc90000f03da8 R08: 0000000080000000 R09: 0000000000000000
[  173.250202][T11588] R10: 0001888129d18000 R11: 0001888129d18fff R12: 0000000000001000
[  173.258200][T11588] R13: 0000000020004100 R14: ffffc90000f03db8 R15: ffff888129d18000
[  173.266196][T11588]  _copy_to_iter+0x137/0xaf0
[  173.270860][T11588]  ? _raw_spin_unlock+0x26/0x50
[  173.275744][T11588]  ? free_unref_page+0x23e/0x510
[  173.280843][T11588]  copy_page_to_iter+0x171/0x2b0
[  173.285842][T11588]  pipe_read+0x29b/0x890
[  173.290105][T11588]  ? __pfx_autoremove_wake_function+0x10/0x10
[  173.296345][T11588]  do_iter_readv_writev+0x3b0/0x470
[  173.301562][T11588]  vfs_readv+0x1e5/0x660
[  173.305830][T11588]  do_readv+0xf8/0x220
[  173.309918][T11588]  __x64_sys_readv+0x45/0x50
[  173.314593][T11588]  x64_sys_call+0x2838/0x2e00
[  173.319353][T11588]  do_syscall_64+0xc9/0x1c0
[  173.323910][T11588]  ? clear_bhb_loop+0x55/0xb0
[  173.328703][T11588]  ? clear_bhb_loop+0x55/0xb0
[  173.333479][T11588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.339415][T11588] RIP: 0033:0x7faa1bf87299
[  173.343896][T11588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.363595][T11588] RSP: 002b:00007faa1ac07048 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  173.372081][T11588] RAX: ffffffffffffffda RBX: 00007faa1c115f80 RCX: 00007faa1bf87299
[  173.380101][T11588] RDX: 0000000000000001 RSI: 0000000020000680 RDI: 0000000000000003
[  173.388073][T11588] RBP: 00007faa1ac070a0 R08: 0000000000000000 R09: 0000000000000000
[  173.396061][T11588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.404051][T11588] R13: 000000000000000b R14: 00007faa1c115f80 R15: 00007ffeb1f15da8
[  173.412043][T11588]  </TASK>
[  173.460060][T11603] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2636'.
[  173.527463][T11618] FAULT_INJECTION: forcing a failure.
[  173.527463][T11618] name failslab, interval 1, probability 0, space 0, times 0
[  173.540229][T11618] CPU: 1 UID: 0 PID: 11618 Comm: syz.1.2641 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  173.550654][T11618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  173.560754][T11618] Call Trace:
[  173.564047][T11618]  <TASK>
[  173.567045][T11618]  dump_stack_lvl+0xf2/0x150
[  173.571655][T11618]  dump_stack+0x15/0x20
[  173.575872][T11618]  should_fail_ex+0x229/0x230
[  173.580662][T11618]  ? audit_log_start+0x34c/0x6b0
[  173.585613][T11618]  should_failslab+0x8f/0xb0
[  173.590220][T11618]  kmem_cache_alloc_noprof+0x4c/0x290
[  173.595639][T11618]  audit_log_start+0x34c/0x6b0
[  173.600458][T11618]  ? __bpf_prog_run32+0x74/0xa0
[  173.605325][T11618]  audit_seccomp+0x4b/0x130
[  173.609939][T11618]  __seccomp_filter+0x6fa/0x1180
[  173.614891][T11618]  ? proc_fail_nth_write+0x12d/0x160
[  173.620193][T11618]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  173.625886][T11618]  ? vfs_write+0x5a5/0x900
[  173.630358][T11618]  __secure_computing+0x9f/0x1c0
[  173.635334][T11618]  syscall_trace_enter+0xd1/0x1f0
[  173.640433][T11618]  do_syscall_64+0xaa/0x1c0
[  173.644965][T11618]  ? clear_bhb_loop+0x55/0xb0
[  173.649661][T11618]  ? clear_bhb_loop+0x55/0xb0
[  173.654348][T11618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.660358][T11618] RIP: 0033:0x7f96eb757299
[  173.664775][T11618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.684402][T11618] RSP: 002b:00007f96ea3d7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  173.692820][T11618] RAX: ffffffffffffffda RBX: 00007f96eb8e5f80 RCX: 00007f96eb757299
[  173.700795][T11618] RDX: 000000000000006e RSI: 0000000020003000 RDI: 0000000000000003
[  173.708822][T11618] RBP: 00007f96ea3d70a0 R08: 0000000000000000 R09: 0000000000000000
[  173.716796][T11618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.724770][T11618] R13: 000000000000000b R14: 00007f96eb8e5f80 R15: 00007fff30f49178
[  173.732751][T11618]  </TASK>
[  174.013493][T11648] FAULT_INJECTION: forcing a failure.
[  174.013493][T11648] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  174.026660][T11648] CPU: 0 UID: 0 PID: 11648 Comm: syz.4.2651 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  174.037120][T11648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  174.047249][T11648] Call Trace:
[  174.050538][T11648]  <TASK>
[  174.053472][T11648]  dump_stack_lvl+0xf2/0x150
[  174.058165][T11648]  dump_stack+0x15/0x20
[  174.062351][T11648]  should_fail_ex+0x229/0x230
[  174.067127][T11648]  should_fail+0xb/0x10
[  174.071321][T11648]  should_fail_usercopy+0x1a/0x20
[  174.076406][T11648]  _copy_from_iter+0xd3/0xb00
[  174.081112][T11648]  ? ___kmalloc_large_node+0xba/0x120
[  174.086560][T11648]  ? __kmalloc_large_node_noprof+0x17/0xa0
[  174.092411][T11648]  ? __virt_addr_valid+0x1ed/0x250
[  174.097648][T11648]  ? __check_object_size+0x35b/0x510
[  174.102979][T11648]  bcm_tx_setup+0x3cb/0xd30
[  174.107507][T11648]  bcm_sendmsg+0x38b/0x470
[  174.111941][T11648]  ? __pfx_bcm_sendmsg+0x10/0x10
[  174.116952][T11648]  __sock_sendmsg+0x140/0x180
[  174.121669][T11648]  ____sys_sendmsg+0x312/0x410
[  174.126595][T11648]  __sys_sendmsg+0x1e9/0x280
[  174.131227][T11648]  __x64_sys_sendmsg+0x46/0x50
[  174.136005][T11648]  x64_sys_call+0x26f8/0x2e00
[  174.140748][T11648]  do_syscall_64+0xc9/0x1c0
[  174.145316][T11648]  ? clear_bhb_loop+0x55/0xb0
[  174.150007][T11648]  ? clear_bhb_loop+0x55/0xb0
[  174.154705][T11648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.160610][T11648] RIP: 0033:0x7faa1bf87299
[  174.165087][T11648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.184703][T11648] RSP: 002b:00007faa1ac07048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.193216][T11648] RAX: ffffffffffffffda RBX: 00007faa1c115f80 RCX: 00007faa1bf87299
[  174.201195][T11648] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000004
[  174.209235][T11648] RBP: 00007faa1ac070a0 R08: 0000000000000000 R09: 0000000000000000
[  174.217237][T11648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.225373][T11648] R13: 000000000000000b R14: 00007faa1c115f80 R15: 00007ffeb1f15da8
[  174.233396][T11648]  </TASK>
[  174.343400][T11657] loop4: detected capacity change from 0 to 2048
[  174.537604][T11660] loop4: detected capacity change from 0 to 512
[  174.575191][T11660] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  174.591118][T11660] EXT4-fs (loop4): mount failed
[  174.606745][T11660] loop4: detected capacity change from 0 to 128
[  174.613187][T11660] vfat: Unknown parameter './file0'
[  174.639529][T11666] loop1: detected capacity change from 0 to 512
[  174.649081][T11666] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  174.656436][T11668] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2656'.
[  174.669624][T11666] loop1: detected capacity change from 0 to 1024
[  174.676511][T11666] EXT4-fs: Ignoring removed orlov option
[  174.682271][T11666] EXT4-fs: Ignoring removed nomblk_io_submit option
[  174.690164][T11666] EXT4-fs warning (device loop1): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[  174.700482][T11670] loop3: detected capacity change from 0 to 1024
[  174.709497][T11670] ext4: Unknown parameter 'subj_user'
[  174.716619][T11666] Cannot find del_set index 0 as target
[  174.753768][T11675] loop3: detected capacity change from 0 to 128
[  174.760499][T11675] vfat: Unknown parameter '�!Qu:fmask'
[  174.778298][T11675] loop3: detected capacity change from 0 to 512
[  174.787066][T11675] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  174.797162][T11677] netlink: 'syz.4.2659': attribute type 21 has an invalid length.
[  174.799504][T11675] EXT4-fs (loop3): 1 truncate cleaned up
[  174.811283][T11675] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.856843][T10731] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.889322][T11687] loop4: detected capacity change from 0 to 2048
[  175.096260][T11700] loop4: detected capacity change from 0 to 128
[  175.102900][T11700] vfat: Unknown parameter '�!Qu:fmask'
[  175.121908][T11700] loop4: detected capacity change from 0 to 512
[  175.129213][T11700] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  175.141709][T11700] EXT4-fs (loop4): 1 truncate cleaned up
[  175.143476][T11702] syzkaller0: entered promiscuous mode
[  175.149026][T11700] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.152907][T11702] syzkaller0: entered allmulticast mode
[  175.196287][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.386122][T11718] loop2: detected capacity change from 0 to 1024
[  175.393011][T11718] EXT4-fs: Ignoring removed orlov option
[  175.398785][T11718] EXT4-fs: Ignoring removed nomblk_io_submit option
[  175.418856][T11718] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.577442][T11283] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.591721][T11733] loop1: detected capacity change from 0 to 512
[  175.609397][T11733] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  175.636592][T11733] EXT4-fs (loop1): 1 truncate cleaned up
[  175.642853][T11733] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.761067][T11272] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.840421][T11761] loop1: detected capacity change from 0 to 1024
[  175.849881][T11761] EXT4-fs: Ignoring removed orlov option
[  175.855630][T11761] EXT4-fs: Ignoring removed nomblk_io_submit option
[  175.877820][T11761] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.940663][T11272] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.982480][T11789] loop1: detected capacity change from 0 to 1024
[  175.991419][T11789] EXT4-fs: Ignoring removed nobh option
[  175.997095][T11789] EXT4-fs: Ignoring removed orlov option
[  176.018778][T11796] netlink: 'syz.3.2688': attribute type 1 has an invalid length.
[  176.027859][T11789] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.064853][T11272] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.096553][T11807] loop1: detected capacity change from 0 to 128
[  176.109705][T11807] vfat: Unknown parameter '�!Qu:fmask'
[  176.235306][T11807] loop1: detected capacity change from 0 to 512
[  176.242816][T11807] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  176.256537][T11807] EXT4-fs (loop1): 1 truncate cleaned up
[  176.753129][T11900] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  176.766814][T11900] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2691'.
[  176.897722][T11921] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  176.939854][T11933] FAULT_INJECTION: forcing a failure.
[  176.939854][T11933] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.953122][T11933] CPU: 0 UID: 0 PID: 11933 Comm: syz.3.2693 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  176.963653][T11933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  176.973778][T11933] Call Trace:
[  176.977155][T11933]  <TASK>
[  176.980106][T11933]  dump_stack_lvl+0xf2/0x150
[  176.984783][T11933]  dump_stack+0x15/0x20
[  176.989104][T11933]  should_fail_ex+0x229/0x230
[  176.993819][T11933]  should_fail+0xb/0x10
[  176.998011][T11933]  should_fail_usercopy+0x1a/0x20
[  177.003106][T11933]  _copy_to_user+0x1e/0xa0
[  177.007560][T11933]  simple_read_from_buffer+0xa0/0x110
[  177.012943][T11933]  proc_fail_nth_read+0xfc/0x140
[  177.017982][T11933]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  177.023547][T11933]  vfs_read+0x1a2/0x6e0
[  177.027747][T11933]  ? __rcu_read_unlock+0x4e/0x70
[  177.032704][T11933]  ? __fget_files+0x1da/0x210
[  177.037406][T11933]  ksys_read+0xeb/0x1b0
[  177.041578][T11933]  __x64_sys_read+0x42/0x50
[  177.046119][T11933]  x64_sys_call+0x2a36/0x2e00
[  177.050856][T11933]  do_syscall_64+0xc9/0x1c0
[  177.055436][T11933]  ? clear_bhb_loop+0x55/0xb0
[  177.060210][T11933]  ? clear_bhb_loop+0x55/0xb0
[  177.064981][T11933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.070884][T11933] RIP: 0033:0x7fc1433f5d7c
[  177.075366][T11933] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  177.095087][T11933] RSP: 002b:00007fc142077040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  177.103670][T11933] RAX: ffffffffffffffda RBX: 00007fc143585f80 RCX: 00007fc1433f5d7c
[  177.111650][T11933] RDX: 000000000000000f RSI: 00007fc1420770b0 RDI: 0000000000000003
[  177.119623][T11933] RBP: 00007fc1420770a0 R08: 0000000000000000 R09: 0000000000000000
[  177.127669][T11933] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  177.135639][T11933] R13: 000000000000000b R14: 00007fc143585f80 R15: 00007ffe3e8ca008
[  177.143666][T11933]  </TASK>
[  177.188854][T11945] netlink: 'syz.3.2697': attribute type 21 has an invalid length.
[  177.199164][T11945] devpts: called with bogus options
[  177.200829][   T29] kauditd_printk_skb: 35 callbacks suppressed
[  177.200895][   T29] audit: type=1400 audit(1722026063.540:942): avc:  denied  { mount } for  pid=11944 comm="syz.3.2697" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  177.232750][   T29] audit: type=1400 audit(1722026063.540:943): avc:  denied  { remount } for  pid=11944 comm="syz.3.2697" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  177.280106][T11954] netlink: 'syz.1.2700': attribute type 1 has an invalid length.
[  177.288991][   T29] audit: type=1400 audit(1722026063.630:944): avc:  denied  { unmount } for  pid=10731 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  177.304051][T11951] loop4: detected capacity change from 0 to 2048
[  177.343419][T11954] loop1: detected capacity change from 0 to 4096
[  177.350347][T11954] EXT4-fs: Ignoring removed nobh option
[  177.355970][T11961] loop2: detected capacity change from 0 to 512
[  177.365233][T11954] Quota error (device loop1): find_block_dqentry: Quota for id 0 referenced but not present
[  177.375452][T11954] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  177.384925][T11954] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.2700: Failed to acquire dquot type 1
[  177.398856][T11961] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.426203][T11969] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2705'.
[  177.447013][T11971] loop1: detected capacity change from 0 to 128
[  177.453657][T11971] vfat: Unknown parameter '�!Qu:fmask'
[  177.486580][T11971] loop1: detected capacity change from 0 to 512
[  177.493380][T11971] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  177.504562][T11971] EXT4-fs (loop1): 1 truncate cleaned up
[  177.552202][   T29] audit: type=1400 audit(1722026063.890:945): avc:  denied  { ioctl } for  pid=11972 comm="syz.2.2707" path="socket:[41836]" dev="sockfs" ino=41836 ioctlcmd=0x941f scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  177.582527][T11983] loop1: detected capacity change from 0 to 512
[  177.583202][T11980] usb usb9: usbfs: process 11980 (syz.4.2710) did not claim interface 0 before use
[  177.589430][T11983] EXT4-fs: Ignoring removed nobh option
[  177.599479][T11980] usb usb9: selecting invalid altsetting 21783
[  177.616755][T11983] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  177.632528][T11983] EXT4-fs (loop1): 1 truncate cleaned up
[  177.690137][T11998] loop4: detected capacity change from 0 to 512
[  177.710305][T11990] loop2: detected capacity change from 0 to 2048
[  177.713636][T11998] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  177.733433][T11998] EXT4-fs (loop4): Remounting filesystem read-only
[  177.740045][T11998] EXT4-fs (loop4): 1 truncate cleaned up
[  177.748214][T11998] SELinux: (dev loop4, type ext4) getxattr errno 5
[  177.785634][T12004] 9pnet_fd: Insufficient options for proto=fd
[  177.828145][T12004] loop1: detected capacity change from 0 to 512
[  177.859260][T12004] ext4 filesystem being mounted at /22/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  177.878480][T12019] loop2: detected capacity change from 0 to 512
[  177.885418][T12019] EXT4-fs: Ignoring removed nobh option
[  177.891502][T12019] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  177.903230][T12019] EXT4-fs (loop2): 1 truncate cleaned up
[  177.941683][T12026] loop2: detected capacity change from 0 to 1024
[  177.948883][T12026] ext4: Unknown parameter 'subj_user'
[  177.963737][T12030] loop4: detected capacity change from 0 to 128
[  177.976914][T12030] vfat: Unknown parameter '�!Qu:fmask'
[  178.004386][T12036] loop2: detected capacity change from 0 to 512
[  178.014578][T12030] loop4: detected capacity change from 0 to 512
[  178.022014][T12030] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  178.036295][T12030] EXT4-fs (loop4): 1 truncate cleaned up
[  178.046848][T12036] ext4 filesystem being mounted at /21/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  178.104484][T12047] loop4: detected capacity change from 0 to 128
[  178.111461][T12047] vfat: Unknown parameter '�!Qu:fmask'
[  178.132274][T12047] loop4: detected capacity change from 0 to 512
[  178.139162][T12047] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  178.165188][T12047] EXT4-fs (loop4): 1 truncate cleaned up
[  178.180448][T12055] loop3: detected capacity change from 0 to 512
[  178.195279][T12055] EXT4-fs: Ignoring removed nobh option
[  178.203432][T12055] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  178.217145][T12051] loop2: detected capacity change from 0 to 2048
[  178.224640][T12055] EXT4-fs (loop3): 1 truncate cleaned up
[  178.285325][T12068] sctp: [Deprecated]: syz.4.2742 (pid 12068) Use of struct sctp_assoc_value in delayed_ack socket option.
[  178.285325][T12068] Use struct sctp_sack_info instead
[  178.331864][T12071] FAULT_INJECTION: forcing a failure.
[  178.331864][T12071] name failslab, interval 1, probability 0, space 0, times 0
[  178.344516][T12071] CPU: 1 UID: 0 PID: 12071 Comm: syz.3.2743 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  178.354973][T12071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  178.365043][T12071] Call Trace:
[  178.368351][T12071]  <TASK>
[  178.371352][T12071]  dump_stack_lvl+0xf2/0x150
[  178.375971][T12071]  dump_stack+0x15/0x20
[  178.380254][T12071]  should_fail_ex+0x229/0x230
[  178.384966][T12071]  ? getname_flags+0x81/0x3b0
[  178.389673][T12071]  should_failslab+0x8f/0xb0
[  178.394363][T12071]  kmem_cache_alloc_noprof+0x4c/0x290
[  178.399765][T12071]  getname_flags+0x81/0x3b0
[  178.404287][T12071]  __x64_sys_symlinkat+0x43/0x70
[  178.408235][T12080] loop2: detected capacity change from 0 to 512
[  178.409233][T12071]  x64_sys_call+0x14d7/0x2e00
[  178.420251][T12071]  do_syscall_64+0xc9/0x1c0
[  178.424783][T12071]  ? clear_bhb_loop+0x55/0xb0
[  178.429494][T12071]  ? clear_bhb_loop+0x55/0xb0
[  178.434266][T12071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.440222][T12071] RIP: 0033:0x7fc1433f7299
[  178.444648][T12071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.464373][T12071] RSP: 002b:00007fc142077048 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  178.472805][T12071] RAX: ffffffffffffffda RBX: 00007fc143585f80 RCX: 00007fc1433f7299
[  178.480830][T12071] RDX: 0000000020000000 RSI: ffffffffffffff9c RDI: 0000000020001040
[  178.488806][T12071] RBP: 00007fc1420770a0 R08: 0000000000000000 R09: 0000000000000000
[  178.496782][T12071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.504758][T12071] R13: 000000000000000b R14: 00007fc143585f80 R15: 00007ffe3e8ca008
[  178.512755][T12071]  </TASK>
[  178.516399][T12080] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[  178.516491][T12080] EXT4-fs: failed to create workqueue
[  178.531521][T12080] EXT4-fs (loop2): mount failed
[  178.609068][T12088] loop1: detected capacity change from 0 to 512
[  178.638024][T12088] EXT4-fs: Ignoring removed nobh option
[  178.647367][T12088] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  178.677873][T12088] EXT4-fs (loop1): 1 truncate cleaned up
[  178.729120][    C1] eth0: bad gso: type: 1, size: 1408
[  178.736311][    C1] eth0: bad gso: type: 1, size: 1408
[  178.773787][T12101] sctp: [Deprecated]: syz.1.2754 (pid 12101) Use of struct sctp_assoc_value in delayed_ack socket option.
[  178.773787][T12101] Use struct sctp_sack_info instead
[  179.097818][T11419] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.121728][T12105] chnl_net:caif_netlink_parms(): no params data found
[  179.193236][T11419] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.206434][T12105] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.213539][T12105] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.220847][T12105] bridge_slave_0: entered allmulticast mode
[  179.229113][T12105] bridge_slave_0: entered promiscuous mode
[  179.246686][T11419] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.258067][T12128] netlink: 'syz.0.2762': attribute type 21 has an invalid length.
[  179.266100][T12105] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.273304][T12105] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.281203][T12105] bridge_slave_1: entered allmulticast mode
[  179.288392][T12105] bridge_slave_1: entered promiscuous mode
[  179.294474][T12128] devpts: called with bogus options
[  179.309566][T11419] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.335166][T12133] loop2: detected capacity change from 0 to 1024
[  179.346184][T12133] ext4: Unknown parameter 'subj_user'
[  179.357454][T12105] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  179.379213][    C1] eth0: bad gso: type: 1, size: 1408
[  179.385731][T12105] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  179.404183][T11419] bridge_slave_1: left allmulticast mode
[  179.409996][T11419] bridge_slave_1: left promiscuous mode
[  179.415755][T11419] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.426528][T12143] FAULT_INJECTION: forcing a failure.
[  179.426528][T12143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.439728][T12143] CPU: 0 UID: 0 PID: 12143 Comm: syz.0.2766 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  179.450215][T12143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  179.460276][T12143] Call Trace:
[  179.463580][T12143]  <TASK>
[  179.466512][T12143]  dump_stack_lvl+0xf2/0x150
[  179.471201][T12143]  dump_stack+0x15/0x20
[  179.475381][T12143]  should_fail_ex+0x229/0x230
[  179.480075][T12143]  should_fail+0xb/0x10
[  179.484287][T12143]  should_fail_usercopy+0x1a/0x20
[  179.489345][T12143]  _copy_from_user+0x1e/0xd0
[  179.494074][T12143]  copy_msghdr_from_user+0x54/0x2a0
[  179.499298][T12143]  __sys_sendmsg+0x17d/0x280
[  179.503916][T12143]  __x64_sys_sendmsg+0x46/0x50
[  179.508695][T12143]  x64_sys_call+0x26f8/0x2e00
[  179.513455][T12143]  do_syscall_64+0xc9/0x1c0
[  179.517973][T12143]  ? clear_bhb_loop+0x55/0xb0
[  179.522666][T12143]  ? clear_bhb_loop+0x55/0xb0
[  179.527360][T12143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.533302][T12143] RIP: 0033:0x7f8f0da87299
[  179.537784][T12143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.557395][T12143] RSP: 002b:00007f8f0c707048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  179.565809][T12143] RAX: ffffffffffffffda RBX: 00007f8f0dc15f80 RCX: 00007f8f0da87299
[  179.573812][T12143] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  179.581787][T12143] RBP: 00007f8f0c7070a0 R08: 0000000000000000 R09: 0000000000000000
[  179.589761][T12143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.597735][T12143] R13: 000000000000000b R14: 00007f8f0dc15f80 R15: 00007ffc37814a28
[  179.605717][T12143]  </TASK>
[  179.623033][T11419] bridge_slave_0: left allmulticast mode
[  179.628937][T11419] bridge_slave_0: left promiscuous mode
[  179.634837][T11419] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.758375][T11419] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  179.769062][   T29] audit: type=1400 audit(1722026066.120:946): avc:  denied  { map } for  pid=12167 comm="syz.2.2776" path="socket:[43294]" dev="sockfs" ino=43294 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  179.769082][T11419] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  179.801404][T12169] devpts: called with bogus options
[  179.808493][T11419] bond0 (unregistering): Released all slaves
[  179.832752][T12166] netlink: 'syz.3.2775': attribute type 21 has an invalid length.
[  179.842623][T12105] team0: Port device team_slave_0 added
[  179.849531][T12105] team0: Port device team_slave_1 added
[  179.879579][T12105] batman_adv: batadv0: Adding interface: batadv_slave_0
[  179.883466][T12174] loop2: detected capacity change from 0 to 128
[  179.886670][T12105] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  179.919014][T12105] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  179.920898][T12174] vfat: Unknown parameter '�!Qu:fmask'
[  179.951523][T11419] hsr_slave_0: left promiscuous mode
[  179.959253][T11419] hsr_slave_1: left promiscuous mode
[  179.966327][T12174] loop2: detected capacity change from 0 to 512
[  179.976226][T11419] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  179.983674][T11419] batman_adv: batadv0: Removing interface: batadv_slave_0
[  179.994204][T12174] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  180.004627][T11419] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  180.012071][T11419] batman_adv: batadv0: Removing interface: batadv_slave_1
[  180.027570][T12174] EXT4-fs (loop2): 1 truncate cleaned up
[  180.036287][T11419] veth1_macvtap: left promiscuous mode
[  180.041802][T11419] veth0_macvtap: left promiscuous mode
[  180.047389][T11419] veth1_vlan: left promiscuous mode
[  180.052712][T11419] veth0_vlan: left promiscuous mode
[  180.265064][T11419] team0 (unregistering): Port device team_slave_1 removed
[  180.284543][T11419] team0 (unregistering): Port device team_slave_0 removed
[  180.324579][T12196] loop4: detected capacity change from 0 to 512
[  180.333369][T12196] EXT4-fs: Ignoring removed nobh option
[  180.339484][T12196] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  180.352273][T12196] EXT4-fs (loop4): 1 truncate cleaned up
[  180.422010][T12105] batman_adv: batadv0: Adding interface: batadv_slave_1
[  180.429013][T12105] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  180.455097][T12105] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  180.501934][T12105] hsr_slave_0: entered promiscuous mode
[  180.508290][T12105] hsr_slave_1: entered promiscuous mode
[  180.516003][T12199] loop4: detected capacity change from 0 to 2048
[  180.522717][T12199] EXT4-fs: Ignoring removed mblk_io_submit option
[  180.530417][T12105] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  180.539360][T12105] Cannot create hsr debugfs directory
[  180.561408][T12199] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2787: bg 0: block 234: padding at end of block bitmap is not set
[  180.574392][T12201] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  180.586495][T12199] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 117
[  180.593868][T12201] loop3: detected capacity change from 0 to 128
[  180.603637][T12199] EXT4-fs (loop4): This should not happen!! Data will be lost
[  180.603637][T12199] 
[  180.689454][T12209] loop2: detected capacity change from 0 to 512
[  180.693159][T12209] EXT4-fs (loop2): 1 truncate cleaned up
[  180.696547][T12209] EXT4-fs error (device loop2): ext4_add_entry:2435: inode #2: comm syz.2.2790: Directory hole found for htree leaf block 0
[  180.721166][T12209] EXT4-fs (loop2): Remounting filesystem read-only
[  180.726852][T12215] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2792'.
[  180.784463][T12218] loop2: detected capacity change from 0 to 128
[  180.784638][T12218] vfat: Unknown parameter '�!Qu:fmask'
[  180.797025][T12220] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2794'.
[  180.821068][T12219] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2794'.
[  180.823617][T12218] loop2: detected capacity change from 0 to 512
[  180.863552][T12218] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  180.877834][T12218] EXT4-fs (loop2): 1 truncate cleaned up
[  181.163087][T12105] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  181.193076][T12105] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  181.199833][T12105] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  181.224085][T12105] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  181.301245][T12105] 8021q: adding VLAN 0 to HW filter on device bond0
[  181.316010][T12105] 8021q: adding VLAN 0 to HW filter on device team0
[  181.334891][ T3350] bridge0: port 1(bridge_slave_0) entered blocking state
[  181.334945][ T3350] bridge0: port 1(bridge_slave_0) entered forwarding state
[  181.345811][ T3350] bridge0: port 2(bridge_slave_1) entered blocking state
[  181.345854][ T3350] bridge0: port 2(bridge_slave_1) entered forwarding state
[  181.402927][T12246] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2804'.
[  181.423403][T12244] 9pnet: Could not find request transport: fd�rfdno=#�|��o�q��&b�h�K��һ͂�؂�Yʘ����U��1)j/I��ƾ���|���Cə�����9
@~7�e���������� x
[  181.432844][T12252] loop2: detected capacity change from 0 to 128
[  181.446163][   T29] audit: type=1326 audit(1722026067.790:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12243 comm="syz.3.2803" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc1433f7299 code=0x0
[  181.464756][T12252] vfat: Unknown parameter '�!Qu:fmask'
[  181.495386][T12105] 8021q: adding VLAN 0 to HW filter on device batadv0
[  181.506673][T12252] loop2: detected capacity change from 0 to 512
[  181.513659][T12252] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  181.535944][T12252] EXT4-fs (loop2): 1 truncate cleaned up
[  181.618764][T12105] veth0_vlan: entered promiscuous mode
[  181.630375][T12105] veth1_vlan: entered promiscuous mode
[  181.661501][T12105] veth0_macvtap: entered promiscuous mode
[  181.669529][T12105] veth1_macvtap: entered promiscuous mode
[  181.678674][T12278] loop4: detected capacity change from 0 to 1024
[  181.680395][T12105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.695934][T12105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.705401][T12278] ext4: Unknown parameter 'subj_user'
[  181.705757][T12105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.721627][T12105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.731528][T12105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.742004][T12105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.745500][T12284] netlink: 196 bytes leftover after parsing attributes in process `syz.0.2815'.
[  181.751849][T12105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.771394][T12105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.788870][T12105] batman_adv: batadv0: Interface activated: batadv_slave_0
[  181.796525][   T29] audit: type=1326 audit(1722026068.130:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12283 comm="syz.0.2815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f0da87299 code=0x7ffc0000
[  181.820063][   T29] audit: type=1326 audit(1722026068.130:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12283 comm="syz.0.2815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f8f0da87299 code=0x7ffc0000
[  181.851861][T12105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  181.862413][T12105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.872255][T12105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  181.882847][T12105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.892677][T12105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  181.903130][T12105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.912985][T12105] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  181.923528][T12105] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.940492][T12105] batman_adv: batadv0: Interface activated: batadv_slave_1
[  181.958413][T12105] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  181.967331][T12105] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  181.976137][T12105] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  181.984830][T12105] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  182.031688][T12299] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2819'.
[  182.131620][T12305] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2756'.
[  182.140573][T12305] netlink: 'syz.1.2756': attribute type 18 has an invalid length.
[  182.157178][T12305] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  182.165928][T12305] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  182.174728][T12305] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  182.183587][T12305] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  182.207439][T12305] vxlan0: entered promiscuous mode
[  182.336545][T12324] loop1: detected capacity change from 0 to 128
[  182.343159][T12324] vfat: Unknown parameter '�!Qu:fmask'
[  182.417919][T12324] loop1: detected capacity change from 0 to 512
[  182.435848][T12324] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  182.487264][T12324] EXT4-fs (loop1): 1 truncate cleaned up
[  182.492084][T12332] sctp: [Deprecated]: syz.3.2831 (pid 12332) Use of struct sctp_assoc_value in delayed_ack socket option.
[  182.492084][T12332] Use struct sctp_sack_info instead
[  182.630596][T12337] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2833'.
[  182.642066][T12339] sctp: [Deprecated]: syz.1.2834 (pid 12339) Use of struct sctp_assoc_value in delayed_ack socket option.
[  182.642066][T12339] Use struct sctp_sack_info instead
[  182.758564][T12343] loop1: detected capacity change from 0 to 512
[  182.773153][T12343] EXT4-fs: Ignoring removed nobh option
[  182.788916][T12343] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  182.814669][T12343] EXT4-fs (loop1): 1 truncate cleaned up
[  182.822697][T12345] loop3: detected capacity change from 0 to 256
[  182.958065][   T29] kauditd_printk_skb: 15 callbacks suppressed
[  182.958084][   T29] audit: type=1400 audit(1722026069.300:965): avc:  denied  { watch } for  pid=12344 comm="syz.3.2837" path="/79/file0/file0" dev="loop3" ino=97 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  183.013352][   T29] audit: type=1400 audit(1722026069.330:966): avc:  denied  { execute } for  pid=12344 comm="syz.3.2837" path="pipe:[44333]" dev="pipefs" ino=44333 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  183.036849][   T29] audit: type=1400 audit(1722026069.330:967): avc:  denied  { mount } for  pid=12347 comm="syz.2.2838" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  183.086730][T12364] FAULT_INJECTION: forcing a failure.
[  183.086730][T12364] name failslab, interval 1, probability 0, space 0, times 0
[  183.099548][T12364] CPU: 0 UID: 0 PID: 12364 Comm: syz.3.2842 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  183.110018][T12364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  183.120147][T12364] Call Trace:
[  183.123429][T12364]  <TASK>
[  183.126363][T12364]  dump_stack_lvl+0xf2/0x150
[  183.130980][T12364]  dump_stack+0x15/0x20
[  183.135194][T12364]  should_fail_ex+0x229/0x230
[  183.139945][T12364]  ? __d_alloc+0x3d/0x340
[  183.144291][T12364]  should_failslab+0x8f/0xb0
[  183.148901][T12364]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[  183.154653][T12364]  __d_alloc+0x3d/0x340
[  183.158830][T12364]  d_alloc_pseudo+0x1e/0x80
[  183.163348][T12364]  alloc_file_pseudo+0x70/0x140
[  183.168215][T12364]  __shmem_file_setup+0x1bb/0x1f0
[  183.173320][T12364]  shmem_file_setup+0x3b/0x50
[  183.178016][T12364]  __se_sys_memfd_create+0x31d/0x600
[  183.183324][T12364]  __x64_sys_memfd_create+0x31/0x40
[  183.188729][T12364]  x64_sys_call+0x1163/0x2e00
[  183.193419][T12364]  do_syscall_64+0xc9/0x1c0
[  183.198046][T12364]  ? clear_bhb_loop+0x55/0xb0
[  183.202735][T12364]  ? clear_bhb_loop+0x55/0xb0
[  183.207464][T12364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.213367][T12364] RIP: 0033:0x7fc1433f7299
[  183.217782][T12364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.237471][T12364] RSP: 002b:00007fc142076e28 EFLAGS: 00000206 ORIG_RAX: 000000000000013f
[  183.245949][T12364] RAX: ffffffffffffffda RBX: 0000000000000455 RCX: 00007fc1433f7299
[  183.254004][T12364] RDX: 00007fc142076f00 RSI: 0000000000000000 RDI: 00007fc143465094
[  183.261980][T12364] RBP: 0000000020000a80 R08: 00007fc142076bc7 R09: 00007fc142076e50
[  183.270026][T12364] R10: 000000000000000a R11: 0000000000000206 R12: 0000000020000000
[  183.278001][T12364] R13: 00007fc142076f00 R14: 00007fc142076ec0 R15: 0000000020000340
[  183.285979][T12364]  </TASK>
[  183.298695][T12363] netlink: 'syz.1.2843': attribute type 21 has an invalid length.
[  183.307929][T12363] devpts: called with bogus options
[  183.365101][T12372] loop3: detected capacity change from 0 to 4096
[  183.376578][T12380] loop1: detected capacity change from 0 to 512
[  183.388563][T12380] ext4 filesystem being mounted at /9/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  183.403729][T12372] audit: audit_lost=3 audit_rate_limit=0 audit_backlog_limit=64
[  183.411428][T12372] audit: out of memory in audit_log_start
[  183.420979][T12380] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2850'.
[  183.440285][   T29] audit: type=1400 audit(1722026069.780:968): avc:  denied  { bind } for  pid=12379 comm="syz.1.2850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  183.469224][   T29] audit: type=1400 audit(1722026069.810:969): avc:  denied  { listen } for  pid=12379 comm="syz.1.2850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  183.488260][T12388] sctp: [Deprecated]: syz.3.2851 (pid 12388) Use of struct sctp_assoc_value in delayed_ack socket option.
[  183.488260][T12388] Use struct sctp_sack_info instead
[  183.687936][   T29] audit: type=1400 audit(1722026070.030:970): avc:  denied  { unmount } for  pid=11283 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  183.755477][   T29] audit: type=1326 audit(1722026070.100:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12401 comm="syz.0.2856" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8f0da87299 code=0x0
[  183.779218][T12409] loop2: detected capacity change from 0 to 1024
[  183.787212][T12409] ext4: Unknown parameter 'subj_user'
[  183.907474][T12416] FAULT_INJECTION: forcing a failure.
[  183.907474][T12416] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  183.920789][T12416] CPU: 0 UID: 0 PID: 12416 Comm: syz.2.2859 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  183.931444][T12416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  183.941517][T12416] Call Trace:
[  183.944884][T12416]  <TASK>
[  183.947822][T12416]  dump_stack_lvl+0xf2/0x150
[  183.952493][T12416]  dump_stack+0x15/0x20
[  183.956678][T12416]  should_fail_ex+0x229/0x230
[  183.961410][T12416]  should_fail+0xb/0x10
[  183.965595][T12416]  should_fail_usercopy+0x1a/0x20
[  183.970706][T12416]  _copy_from_user+0x1e/0xd0
[  183.975323][T12416]  copy_msghdr_from_user+0x54/0x2a0
[  183.980580][T12416]  __sys_sendmsg+0x17d/0x280
[  183.985204][T12416]  __x64_sys_sendmsg+0x46/0x50
[  183.990101][T12416]  x64_sys_call+0x26f8/0x2e00
[  183.994796][T12416]  do_syscall_64+0xc9/0x1c0
[  183.999323][T12416]  ? clear_bhb_loop+0x55/0xb0
[  184.004059][T12416]  ? clear_bhb_loop+0x55/0xb0
[  184.008775][T12416]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.014746][T12416] RIP: 0033:0x7f36bf727299
[  184.019225][T12416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.038856][T12416] RSP: 002b:00007f36be3a7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  184.047317][T12416] RAX: ffffffffffffffda RBX: 00007f36bf8b5f80 RCX: 00007f36bf727299
[  184.055393][T12416] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  184.063376][T12416] RBP: 00007f36be3a70a0 R08: 0000000000000000 R09: 0000000000000000
[  184.071373][T12416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  184.079400][T12416] R13: 000000000000000b R14: 00007f36bf8b5f80 R15: 00007ffd25bb5458
[  184.087439][T12416]  </TASK>
[  184.209875][T12425] sctp: [Deprecated]: syz.4.2862 (pid 12425) Use of struct sctp_assoc_value in delayed_ack socket option.
[  184.209875][T12425] Use struct sctp_sack_info instead
[  184.241711][T12428] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2863'.
[  184.267913][T12429] team0 (unregistering): Port device team_slave_0 removed
[  184.282144][T12429] team0 (unregistering): Port device team_slave_1 removed
[  184.389135][T12441] loop1: detected capacity change from 0 to 1024
[  184.402628][T12441] ext4: Unknown parameter 'subj_user'
[  184.436261][T12452] sctp: [Deprecated]: syz.2.2873 (pid 12452) Use of struct sctp_assoc_value in delayed_ack socket option.
[  184.436261][T12452] Use struct sctp_sack_info instead
[  184.439732][T12449] loop3: detected capacity change from 0 to 2048
[  184.461378][T12449] EXT4-fs: Ignoring removed mblk_io_submit option
[  184.498314][T12449] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2872: bg 0: block 234: padding at end of block bitmap is not set
[  184.522087][T12449] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 117
[  184.534516][T12449] EXT4-fs (loop3): This should not happen!! Data will be lost
[  184.534516][T12449] 
[  184.553583][   T29] audit: type=1326 audit(1722026070.890:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12469 comm="syz.1.2879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28238f7299 code=0x7ffc0000
[  184.689903][T12487] netlink: 'syz.2.2885': attribute type 21 has an invalid length.
[  184.702683][T12484] sctp: [Deprecated]: syz.4.2886 (pid 12484) Use of struct sctp_assoc_value in delayed_ack socket option.
[  184.702683][T12484] Use struct sctp_sack_info instead
[  184.706151][T12487] devpts: called with bogus options
[  184.780716][T12495] loop2: detected capacity change from 0 to 256
[  184.780989][T12495] vfat: Bad value for 'fmask'
[  184.815653][T12490] loop1: detected capacity change from 0 to 1024
[  184.866948][T12504] xt_nfacct: accounting object `syz0' does not exists
[  184.916345][T12507] loop1: detected capacity change from 0 to 2048
[  185.031057][T12511] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  185.031790][T12511] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  185.214488][T12517] loop1: detected capacity change from 0 to 8192
[  185.291018][T12519] loop1: detected capacity change from 0 to 512
[  185.297768][T12519] EXT4-fs: Ignoring removed nobh option
[  185.304163][T12519] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  185.315641][T12519] EXT4-fs (loop1): 1 truncate cleaned up
[  185.378298][T12529] sctp: [Deprecated]: syz.1.2898 (pid 12529) Use of struct sctp_assoc_value in delayed_ack socket option.
[  185.378298][T12529] Use struct sctp_sack_info instead
[  185.550394][T12561] FAULT_INJECTION: forcing a failure.
[  185.550394][T12561] name failslab, interval 1, probability 0, space 0, times 0
[  185.563311][T12561] CPU: 0 UID: 0 PID: 12561 Comm: syz.0.2910 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  185.573837][T12561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  185.577206][T12563] sctp: [Deprecated]: syz.1.2911 (pid 12563) Use of struct sctp_assoc_value in delayed_ack socket option.
[  185.577206][T12563] Use struct sctp_sack_info instead
[  185.584004][T12561] Call Trace:
[  185.584015][T12561]  <TASK>
[  185.584024][T12561]  dump_stack_lvl+0xf2/0x150
[  185.611141][T12561]  dump_stack+0x15/0x20
[  185.615332][T12561]  should_fail_ex+0x229/0x230
[  185.620122][T12561]  ? __alloc_skb+0x10b/0x310
[  185.624804][T12561]  should_failslab+0x8f/0xb0
[  185.629434][T12561]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  185.635309][T12561]  __alloc_skb+0x10b/0x310
[  185.639744][T12561]  netlink_alloc_large_skb+0xad/0xe0
[  185.645126][T12561]  netlink_sendmsg+0x3b4/0x6e0
[  185.650036][T12561]  ? __pfx_netlink_sendmsg+0x10/0x10
[  185.655396][T12561]  __sock_sendmsg+0x140/0x180
[  185.660110][T12561]  ____sys_sendmsg+0x312/0x410
[  185.664918][T12561]  __sys_sendmsg+0x1e9/0x280
[  185.669611][T12561]  __x64_sys_sendmsg+0x46/0x50
[  185.674418][T12561]  x64_sys_call+0x26f8/0x2e00
[  185.679168][T12561]  do_syscall_64+0xc9/0x1c0
[  185.683696][T12561]  ? clear_bhb_loop+0x55/0xb0
[  185.688487][T12561]  ? clear_bhb_loop+0x55/0xb0
[  185.693249][T12561]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.699202][T12561] RIP: 0033:0x7f8f0da87299
[  185.703677][T12561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.723317][T12561] RSP: 002b:00007f8f0c707048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  185.731785][T12561] RAX: ffffffffffffffda RBX: 00007f8f0dc15f80 RCX: 00007f8f0da87299
[  185.739811][T12561] RDX: 0000000000000000 RSI: 00000000200005c0 RDI: 0000000000000004
[  185.747868][T12561] RBP: 00007f8f0c7070a0 R08: 0000000000000000 R09: 0000000000000000
[  185.755883][T12561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.763947][T12561] R13: 000000000000000b R14: 00007f8f0dc15f80 R15: 00007ffc37814a28
[  185.771932][T12561]  </TASK>
[  185.783272][T12573] netlink: 'syz.1.2912': attribute type 21 has an invalid length.
[  185.792136][T12573] devpts: called with bogus options
[  185.837746][T12583] __nla_validate_parse: 2 callbacks suppressed
[  185.837761][T12583] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2918'.
[  185.865208][T12586] loop4: detected capacity change from 0 to 1024
[  185.873458][T12586] ext4: Unknown parameter 'subj_user'
[  185.896359][T12593] loop1: detected capacity change from 0 to 128
[  185.911840][T12593] vfat: Unknown parameter '�!Qu:fmask'
[  185.938626][T12593] loop1: detected capacity change from 0 to 512
[  185.947875][T12597] sctp: [Deprecated]: syz.2.2923 (pid 12597) Use of struct sctp_assoc_value in delayed_ack socket option.
[  185.947875][T12597] Use struct sctp_sack_info instead
[  185.948382][T12593] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  185.983028][T12593] EXT4-fs (loop1): 1 truncate cleaned up
[  186.010455][T12609] loop4: detected capacity change from 0 to 128
[  186.018037][T12609] vfat: Unknown parameter '�!Qu:fmask'
[  186.027722][T12609] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  186.057302][T12609] loop4: detected capacity change from 0 to 512
[  186.061825][T12611] loop2: detected capacity change from 0 to 1024
[  186.071289][T12609] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  186.072994][T12611] EXT4-fs: Ignoring removed nomblk_io_submit option
[  186.095474][T12614] loop1: detected capacity change from 0 to 256
[  186.102305][T12609] EXT4-fs (loop4): 1 truncate cleaned up
[  186.156063][T12611] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  186.217649][T12611] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c09c, mo2=0003]
[  186.227440][T12611] System zones: 0-1, 3-36
[  186.407364][T12637] loop2: detected capacity change from 0 to 1024
[  186.418694][T12637] ext4: Unknown parameter 'subj_user'
[  186.426885][T12638] loop1: detected capacity change from 0 to 2048
[  186.444042][T12644] loop4: detected capacity change from 0 to 128
[  186.450731][T12644] vfat: Unknown parameter '�!Qu:fmask'
[  186.471842][T12644] loop4: detected capacity change from 0 to 512
[  186.479745][T12644] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  186.511816][T12644] EXT4-fs (loop4): 1 truncate cleaned up
[  186.653582][T12657] loop1: detected capacity change from 0 to 256
[  186.667133][T12657] FAULT_INJECTION: forcing a failure.
[  186.667133][T12657] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.680375][T12657] CPU: 0 UID: 0 PID: 12657 Comm: syz.1.2945 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  186.690832][T12657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  186.700979][T12657] Call Trace:
[  186.704270][T12657]  <TASK>
[  186.707213][T12657]  dump_stack_lvl+0xf2/0x150
[  186.711904][T12657]  dump_stack+0x15/0x20
[  186.716095][T12657]  should_fail_ex+0x229/0x230
[  186.720850][T12657]  should_fail+0xb/0x10
[  186.725037][T12657]  should_fail_usercopy+0x1a/0x20
[  186.730192][T12657]  strncpy_from_user+0x25/0x270
[  186.735077][T12657]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  186.740745][T12657]  getname_flags+0xb0/0x3b0
[  186.745345][T12657]  __x64_sys_mkdirat+0x41/0x60
[  186.746134][T12662] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2947'.
[  186.750197][T12657]  x64_sys_call+0x2cde/0x2e00
[  186.763823][T12657]  do_syscall_64+0xc9/0x1c0
[  186.768370][T12657]  ? clear_bhb_loop+0x55/0xb0
[  186.773071][T12657]  ? clear_bhb_loop+0x55/0xb0
[  186.777980][T12657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.783966][T12657] RIP: 0033:0x7f28238f7299
[  186.788410][T12657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.797004][T12662] (unnamed net_device) (uninitialized): option ad_actor_system: mode dependency failed, not supported in mode balance-rr(0)
[  186.808038][T12657] RSP: 002b:00007f2822577048 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  186.808065][T12657] RAX: ffffffffffffffda RBX: 00007f2823a85f80 RCX: 00007f28238f7299
[  186.837402][T12657] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000004
[  186.845383][T12657] RBP: 00007f28225770a0 R08: 0000000000000000 R09: 0000000000000000
[  186.853363][T12657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.861455][T12657] R13: 000000000000000b R14: 00007f2823a85f80 R15: 00007fff1ef24198
[  186.869437][T12657]  </TASK>
[  186.916416][T12668] loop4: detected capacity change from 0 to 256
[  186.953853][T12668] vfat: Unknown parameter ''
[  186.971988][T12681] loop2: detected capacity change from 0 to 128
[  186.984668][T12675] loop1: detected capacity change from 0 to 2048
[  187.001042][T12681] vfat: Unknown parameter '�!Qu:fmask'
[  187.006298][T12683] loop4: detected capacity change from 0 to 1024
[  187.013699][T12683] ext4: Unknown parameter 'subj_user'
[  187.020864][T12679] loop3: detected capacity change from 0 to 256
[  187.046547][T12679] vfat: Unknown parameter 's'
[  187.054313][T12681] loop2: detected capacity change from 0 to 512
[  187.065707][T12679] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  187.077225][T12681] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  187.080718][T12679] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2953'.
[  187.100161][T12681] EXT4-fs (loop2): 1 truncate cleaned up
[  187.155590][T12695] FAULT_INJECTION: forcing a failure.
[  187.155590][T12695] name failslab, interval 1, probability 0, space 0, times 0
[  187.168778][T12695] CPU: 1 UID: 0 PID: 12695 Comm: syz.4.2959 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  187.179222][T12695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  187.189293][T12695] Call Trace:
[  187.192638][T12695]  <TASK>
[  187.195575][T12695]  dump_stack_lvl+0xf2/0x150
[  187.200202][T12695]  dump_stack+0x15/0x20
[  187.204394][T12695]  should_fail_ex+0x229/0x230
[  187.209118][T12695]  ? copy_net_ns+0xe0/0x510
[  187.213736][T12695]  should_failslab+0x8f/0xb0
[  187.218400][T12695]  __kmalloc_noprof+0xa5/0x370
[  187.223256][T12695]  copy_net_ns+0xe0/0x510
[  187.227617][T12695]  ? copy_cgroup_ns+0x2e0/0x370
[  187.232497][T12695]  create_new_namespaces+0x228/0x430
[  187.237824][T12695]  unshare_nsproxy_namespaces+0xe6/0x120
[  187.243497][T12695]  ksys_unshare+0x3da/0x720
[  187.248085][T12695]  ? ksys_write+0x178/0x1b0
[  187.252629][T12695]  __x64_sys_unshare+0x1f/0x30
[  187.257420][T12695]  x64_sys_call+0x2c8e/0x2e00
[  187.262191][T12695]  do_syscall_64+0xc9/0x1c0
[  187.266792][T12695]  ? clear_bhb_loop+0x55/0xb0
[  187.271493][T12695]  ? clear_bhb_loop+0x55/0xb0
[  187.276249][T12695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.282160][T12695] RIP: 0033:0x7faa1bf87299
[  187.286666][T12695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.306328][T12695] RSP: 002b:00007faa1ac07048 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  187.314748][T12695] RAX: ffffffffffffffda RBX: 00007faa1c115f80 RCX: 00007faa1bf87299
[  187.322726][T12695] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042000000
[  187.330701][T12695] RBP: 00007faa1ac070a0 R08: 0000000000000000 R09: 0000000000000000
[  187.338766][T12695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.346746][T12695] R13: 000000000000000b R14: 00007faa1c115f80 R15: 00007ffeb1f15da8
[  187.354796][T12695]  </TASK>
[  187.365034][T12713] loop1: detected capacity change from 0 to 512
[  187.373179][T12714] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  187.386007][T12713] ext4 filesystem being mounted at /40/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  187.434436][T12720] loop2: detected capacity change from 0 to 2048
[  187.566178][T12727] loop2: detected capacity change from 0 to 8192
[  187.667430][T12730] loop2: detected capacity change from 0 to 1024
[  187.674620][T12730] ext4: Unknown parameter 'subj_user'
[  187.868322][T12744] FAULT_INJECTION: forcing a failure.
[  187.868322][T12744] name failslab, interval 1, probability 0, space 0, times 0
[  187.881023][T12744] CPU: 1 UID: 0 PID: 12744 Comm: syz.3.2973 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  187.891471][T12744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  187.901540][T12744] Call Trace:
[  187.904859][T12744]  <TASK>
[  187.907826][T12744]  dump_stack_lvl+0xf2/0x150
[  187.912528][T12744]  dump_stack+0x15/0x20
[  187.916714][T12744]  should_fail_ex+0x229/0x230
[  187.921551][T12744]  ? __kvmalloc_node_noprof+0x72/0x170
[  187.927066][T12744]  should_failslab+0x8f/0xb0
[  187.931866][T12744]  __kmalloc_node_noprof+0xa8/0x380
[  187.937203][T12744]  __kvmalloc_node_noprof+0x72/0x170
[  187.942608][T12744]  alloc_netdev_mqs+0x9d/0x8d0
[  187.947388][T12744]  ? __pfx_ip6_tnl_dev_setup+0x10/0x10
[  187.952907][T12744]  ? sized_strscpy+0x13a/0x170
[  187.957693][T12744]  ip6_tnl_locate+0x335/0x420
[  187.962441][T12744]  ip6_tnl_siocdevprivate+0x4c0/0x770
[  187.967857][T12744]  ? __pfx_ip6_tnl_siocdevprivate+0x10/0x10
[  187.973790][T12744]  dev_ifsioc+0x84e/0xa10
[  187.978268][T12744]  dev_ioctl+0x8e9/0xab0
[  187.982565][T12744]  sock_ioctl+0x5c0/0x640
[  187.986944][T12744]  ? __pfx_sock_ioctl+0x10/0x10
[  187.991892][T12744]  __se_sys_ioctl+0xd3/0x150
[  187.996517][T12744]  __x64_sys_ioctl+0x43/0x50
[  188.001152][T12744]  x64_sys_call+0x1688/0x2e00
[  188.005858][T12744]  do_syscall_64+0xc9/0x1c0
[  188.010486][T12744]  ? clear_bhb_loop+0x55/0xb0
[  188.015207][T12744]  ? clear_bhb_loop+0x55/0xb0
[  188.019918][T12744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.025825][T12744] RIP: 0033:0x7fc1433f7299
[  188.030250][T12744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.049955][T12744] RSP: 002b:00007fc142077048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  188.058374][T12744] RAX: ffffffffffffffda RBX: 00007fc143585f80 RCX: 00007fc1433f7299
[  188.066343][T12744] RDX: 0000000020000040 RSI: 00000000000089f1 RDI: 0000000000000005
[  188.074490][T12744] RBP: 00007fc1420770a0 R08: 0000000000000000 R09: 0000000000000000
[  188.082565][T12744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.090533][T12744] R13: 000000000000000b R14: 00007fc143585f80 R15: 00007ffe3e8ca008
[  188.098598][T12744]  </TASK>
[  188.117325][T12105] EXT4-fs unmount: 63 callbacks suppressed
[  188.117342][T12105] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.190528][T12758] loop1: detected capacity change from 0 to 2048
[  188.227699][T12756] loop3: detected capacity change from 0 to 1764
[  188.249979][T12767] loop2: detected capacity change from 0 to 1024
[  188.257627][T12767] ext4: Unknown parameter 'subj_user'
[  188.294399][T12771] loop3: detected capacity change from 0 to 256
[  188.316249][T12771] vfat: Unknown parameter 's'
[  188.328326][T12771] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  188.345921][T12771] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2982'.
[  188.357421][   T29] kauditd_printk_skb: 12 callbacks suppressed
[  188.357437][   T29] audit: type=1326 audit(1722026074.700:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12769 comm="syz.3.2982" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc1433f7299 code=0x0
[  188.366087][T12779] loop4: detected capacity change from 0 to 512
[  188.396534][T12779] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  188.417845][T12781] batadv0: entered promiscuous mode
[  188.424705][T12781] macvtap0: entered promiscuous mode
[  188.430448][T12779] EXT4-fs (loop4): invalid journal inode
[  188.437197][T12781] macvtap0: left promiscuous mode
[  188.442560][T12779] EXT4-fs (loop4): can't get journal size
[  188.449733][T12781] batadv0: left promiscuous mode
[  188.456144][T12779] EXT4-fs (loop4): 1 truncate cleaned up
[  188.463147][T12779] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.475422][T12788] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2990'.
[  188.484518][T12788] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2990'.
[  188.495870][T12788] FAULT_INJECTION: forcing a failure.
[  188.495870][T12788] name failslab, interval 1, probability 0, space 0, times 0
[  188.501790][T12779] No source specified
[  188.508561][T12788] CPU: 1 UID: 0 PID: 12788 Comm: syz.1.2990 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  188.512552][   T29] audit: type=1400 audit(1722026074.840:986): avc:  denied  { mounton } for  pid=12778 comm="syz.4.2986" path="/99/file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  188.522928][T12788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  188.522945][T12788] Call Trace:
[  188.522954][T12788]  <TASK>
[  188.522962][T12788]  dump_stack_lvl+0xf2/0x150
[  188.523004][T12788]  dump_stack+0x15/0x20
[  188.523035][T12788]  should_fail_ex+0x229/0x230
[  188.596804][T12788]  ? __kvmalloc_node_noprof+0x72/0x170
[  188.602280][T12788]  should_failslab+0x8f/0xb0
[  188.606886][T12788]  __kmalloc_node_noprof+0xa8/0x380
[  188.612095][T12788]  __kvmalloc_node_noprof+0x72/0x170
[  188.617492][T12788]  alloc_netdev_mqs+0x6b6/0x8d0
[  188.622350][T12788]  rtnl_create_link+0x233/0x680
[  188.627286][T12788]  rtnl_newlink+0xe12/0x1690
[  188.631984][T12788]  ? __list_del_entry_valid_or_report+0x5f/0xf0
[  188.638231][T12788]  ? _raw_spin_unlock+0x26/0x50
[  188.643091][T12788]  ? __mutex_lock+0x221/0x8e0
[  188.647770][T12788]  ? __pfx_rtnl_newlink+0x10/0x10
[  188.652795][T12788]  rtnetlink_rcv_msg+0x6aa/0x710
[  188.657741][T12788]  ? ref_tracker_free+0x3a5/0x410
[  188.662859][T12788]  ? __dev_queue_xmit+0x161/0x1fe0
[  188.668031][T12788]  netlink_rcv_skb+0x12c/0x230
[  188.672880][T12788]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  188.678436][T12788]  rtnetlink_rcv+0x1c/0x30
[  188.681763][   T29] audit: type=1400 audit(1722026075.020:987): avc:  denied  { rename } for  pid=12778 comm="syz.4.2986" name="file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  188.682860][T12788]  netlink_unicast+0x593/0x670
[  188.682890][T12788]  netlink_sendmsg+0x5cc/0x6e0
[  188.708811][   T29] audit: type=1326 audit(1722026075.050:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12778 comm="syz.4.2986" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faa1bf87299 code=0x0
[  188.709889][T12788]  ? __pfx_netlink_sendmsg+0x10/0x10
[  188.742666][T12788]  __sock_sendmsg+0x140/0x180
[  188.747358][T12788]  ____sys_sendmsg+0x312/0x410
[  188.752168][T12788]  __sys_sendmsg+0x1e9/0x280
[  188.756811][T12788]  __x64_sys_sendmsg+0x46/0x50
[  188.761600][T12788]  x64_sys_call+0x26f8/0x2e00
[  188.766337][T12788]  do_syscall_64+0xc9/0x1c0
[  188.770862][T12788]  ? clear_bhb_loop+0x55/0xb0
[  188.775581][T12788]  ? clear_bhb_loop+0x55/0xb0
[  188.780324][T12788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.786263][T12788] RIP: 0033:0x7f28238f7299
[  188.790688][T12788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.810298][T12788] RSP: 002b:00007f2822577048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  188.818707][T12788] RAX: ffffffffffffffda RBX: 00007f2823a85f80 RCX: 00007f28238f7299
[  188.826740][T12788] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000007
[  188.834785][T12788] RBP: 00007f28225770a0 R08: 0000000000000000 R09: 0000000000000000
[  188.842754][T12788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  188.850723][T12788] R13: 000000000000000b R14: 00007f2823a85f80 R15: 00007fff1ef24198
[  188.858706][T12788]  </TASK>
[  188.862578][T12790] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  188.923051][T12797] loop2: detected capacity change from 0 to 8192
[  188.923256][T12803] usb usb5: usbfs: process 12803 (syz.1.2995) did not claim interface 0 before use
[  188.931028][T12797] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  189.086359][T12803] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2995'.
[  189.098947][T12803] batadv0: entered promiscuous mode
[  189.229726][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.268577][T12816] loop1: detected capacity change from 0 to 1024
[  189.293018][T12816] ext4: Unknown parameter 'subj_user'
[  189.375185][T12831] sctp: [Deprecated]: syz.3.3003 (pid 12831) Use of struct sctp_assoc_value in delayed_ack socket option.
[  189.375185][T12831] Use struct sctp_sack_info instead
[  189.505359][T12836] loop1: detected capacity change from 0 to 256
[  189.520343][T12836] vfat: Unknown parameter 's'
[  189.542564][T12836] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  189.581048][T12836] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3006'.
[  189.615761][   T29] audit: type=1326 audit(1722026075.960:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12835 comm="syz.1.3006" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f28238f7299 code=0x0
[  189.659183][T12842] loop4: detected capacity change from 0 to 8192
[  189.720672][T12843] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  189.758720][T12845] loop4: detected capacity change from 0 to 512
[  189.773445][T12845] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  189.796196][T12845] EXT4-fs (loop4): invalid journal inode
[  189.808218][T12845] EXT4-fs (loop4): can't get journal size
[  189.815970][T12845] EXT4-fs (loop4): 1 truncate cleaned up
[  189.828418][T12845] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.865549][T12845] No source specified
[  189.890427][   T29] audit: type=1326 audit(1722026076.230:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12844 comm="syz.4.3009" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7faa1bf87299 code=0x0
[  190.031820][T12852] netlink: 'syz.0.3012': attribute type 27 has an invalid length.
[  190.040853][T12852] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3012'.
[  190.064694][T12854] FAULT_INJECTION: forcing a failure.
[  190.064694][T12854] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.077934][T12854] CPU: 0 UID: 0 PID: 12854 Comm: syz.0.3013 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  190.088377][T12854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  190.098441][T12854] Call Trace:
[  190.101731][T12854]  <TASK>
[  190.104665][T12854]  dump_stack_lvl+0xf2/0x150
[  190.109295][T12854]  dump_stack+0x15/0x20
[  190.113488][T12854]  should_fail_ex+0x229/0x230
[  190.118198][T12854]  should_fail+0xb/0x10
[  190.122457][T12854]  should_fail_usercopy+0x1a/0x20
[  190.127520][T12854]  _copy_from_user+0x1e/0xd0
[  190.132142][T12854]  copy_msghdr_from_user+0x54/0x2a0
[  190.137530][T12854]  __sys_sendmsg+0x17d/0x280
[  190.142184][T12854]  __x64_sys_sendmsg+0x46/0x50
[  190.146969][T12854]  x64_sys_call+0x26f8/0x2e00
[  190.151690][T12854]  do_syscall_64+0xc9/0x1c0
[  190.156262][T12854]  ? clear_bhb_loop+0x55/0xb0
[  190.160964][T12854]  ? clear_bhb_loop+0x55/0xb0
[  190.165667][T12854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.171633][T12854] RIP: 0033:0x7f8f0da87299
[  190.176119][T12854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.195800][T12854] RSP: 002b:00007f8f0c707048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  190.204283][T12854] RAX: ffffffffffffffda RBX: 00007f8f0dc15f80 RCX: 00007f8f0da87299
[  190.212266][T12854] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003
[  190.220254][T12854] RBP: 00007f8f0c7070a0 R08: 0000000000000000 R09: 0000000000000000
[  190.228235][T12854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.236229][T12854] R13: 000000000000000b R14: 00007f8f0dc15f80 R15: 00007ffc37814a28
[  190.244226][T12854]  </TASK>
[  190.303579][T12861] loop3: detected capacity change from 0 to 1024
[  190.310747][T12861] ext4: Unknown parameter 'subj_user'
[  190.362477][T12867] netlink: 'syz.1.3018': attribute type 21 has an invalid length.
[  190.384910][T12867] devpts: called with bogus options
[  190.460339][    C1] eth0: bad gso: type: 1, size: 1408
[  190.623830][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.638903][T12895] loop1: detected capacity change from 0 to 1024
[  190.648223][T12899] loop2: detected capacity change from 0 to 256
[  190.665208][T12895] ext4: Unknown parameter 'subj_user'
[  190.667879][T12899] vfat: Unknown parameter 's'
[  190.706409][T12904] netlink: 'syz.0.3033': attribute type 21 has an invalid length.
[  190.714584][T12899] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  190.727957][T12904] devpts: called with bogus options
[  190.728061][T12899] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3031'.
[  190.744174][   T29] audit: type=1326 audit(1722026077.080:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12898 comm="syz.2.3031" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36bf727299 code=0x0
[  190.838888][   T29] audit: type=1326 audit(1722026077.180:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12919 comm="syz.0.3039" exe="/root/syz-executor" sig=31 arch=c000003e syscall=317 compat=0 ip=0x7f8f0da87299 code=0x0
[  190.868672][T12918] loop4: detected capacity change from 0 to 4096
[  190.881244][T12923] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  190.885542][T12918] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.927145][T11099] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.102907][T12941] loop4: detected capacity change from 0 to 1024
[  191.120040][T12941] ext4: Unknown parameter 'subj_user'
[  191.319023][T12948] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3049'.
[  191.375892][    C1] eth0: bad gso: type: 1, size: 1408
[  191.384844][T12964] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=12964 comm=syz.1.3054
[  191.460635][T12978] loop4: detected capacity change from 0 to 1024
[  191.467824][T12978] ext4: Unknown parameter 'subj_user'
[  191.469093][T12980] loop2: detected capacity change from 0 to 128
[  191.482330][T12980] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  191.496230][T12980] ext4 filesystem being mounted at /95/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  191.614661][T12991] netlink: 'syz.4.3063': attribute type 21 has an invalid length.
[  191.623416][T12991] devpts: called with bogus options
[  191.658592][T12996] veth0_vlan: entered allmulticast mode
[  191.711632][   T29] audit: type=1400 audit(1722026078.050:993): avc:  denied  { bind } for  pid=12995 comm="syz.4.3065" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  191.775825][T12995] delete_channel: no stack
[  192.045891][T11283] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  192.208119][T13020] netlink: 'syz.2.3075': attribute type 21 has an invalid length.
[  192.241722][T13020] devpts: called with bogus options
[  192.343250][T13034] ip6_vti0: entered promiscuous mode
[  192.355325][   T29] audit: type=1400 audit(1722026078.700:994): avc:  denied  { create } for  pid=13035 comm="syz.0.3082" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  192.361256][T13034] vlan2: entered promiscuous mode
[  192.401537][T13034] ip6_vti0: left promiscuous mode
[  192.556430][T13052] loop2: detected capacity change from 0 to 512
[  192.591000][T13052] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.659495][T13052] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.679840][T13049] loop3: detected capacity change from 0 to 8192
[  192.705994][T13052] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3090'.
[  192.913531][T11283] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.993138][T13098] loop1: detected capacity change from 0 to 8192
[  193.190125][T13128] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3121'.
[  193.260451][T13136] loop1: detected capacity change from 0 to 256
[  193.274353][T13136] vfat: Unknown parameter 's'
[  193.281038][T13136] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  193.293777][T13136] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3124'.
[  193.462806][T13143] loop2: detected capacity change from 0 to 8192
[  193.674166][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  193.674218][   T29] audit: type=1400 audit(1722026080.010:998): avc:  denied  { setcheckreqprot } for  pid=13147 comm="syz.2.3129" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  193.790084][T13158] loop3: detected capacity change from 0 to 2048
[  193.875646][T13165] loop3: detected capacity change from 0 to 512
[  193.882330][T13165] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  193.891406][T13165] EXT4-fs (loop3): invalid journal inode
[  193.898287][T13165] EXT4-fs (loop3): can't get journal size
[  193.904856][T13165] EXT4-fs (loop3): 1 truncate cleaned up
[  193.910987][T13165] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.931566][T13165] No source specified
[  193.949332][T10731] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.997215][T13173] sctp: [Deprecated]: syz.3.3137 (pid 13173) Use of struct sctp_assoc_value in delayed_ack socket option.
[  193.997215][T13173] Use struct sctp_sack_info instead
[  194.111114][T13181] loop1: detected capacity change from 0 to 1024
[  194.119363][T13181] ext4: Unknown parameter 'subj_user'
[  194.184130][T13189] FAULT_INJECTION: forcing a failure.
[  194.184130][T13189] name failslab, interval 1, probability 0, space 0, times 0
[  194.197315][T13189] CPU: 0 UID: 0 PID: 13189 Comm: syz.3.3144 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  194.207872][T13189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  194.217940][T13189] Call Trace:
[  194.221213][T13189]  <TASK>
[  194.224182][T13189]  dump_stack_lvl+0xf2/0x150
[  194.228782][T13189]  dump_stack+0x15/0x20
[  194.233009][T13189]  should_fail_ex+0x229/0x230
[  194.237742][T13189]  ? page_pool_create_percpu+0x4d/0x460
[  194.243356][T13189]  should_failslab+0x8f/0xb0
[  194.247955][T13189]  __kmalloc_cache_node_noprof+0x50/0x2b0
[  194.253815][T13189]  page_pool_create_percpu+0x4d/0x460
[  194.259371][T13189]  page_pool_create+0x1a/0x20
[  194.264061][T13189]  bpf_test_run_xdp_live+0x124/0x1000
[  194.269524][T13189]  ? avc_has_perm+0xd4/0x160
[  194.274211][T13189]  ? selinux_file_open+0x34c/0x3b0
[  194.279369][T13189]  ? path_openat+0x19bc/0x1f10
[  194.284241][T13189]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  194.290212][T13189]  ? bpf_test_init+0x140/0x170
[  194.294974][T13189]  bpf_prog_test_run_xdp+0x51d/0x890
[  194.300271][T13189]  ? __fget_files+0x1da/0x210
[  194.304967][T13189]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  194.310804][T13189]  bpf_prog_test_run+0x26d/0x3e0
[  194.315753][T13189]  __sys_bpf+0x400/0x7a0
[  194.320072][T13189]  __x64_sys_bpf+0x43/0x50
[  194.324579][T13189]  x64_sys_call+0x23d5/0x2e00
[  194.329274][T13189]  do_syscall_64+0xc9/0x1c0
[  194.333814][T13189]  ? clear_bhb_loop+0x55/0xb0
[  194.338551][T13189]  ? clear_bhb_loop+0x55/0xb0
[  194.343241][T13189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.349211][T13189] RIP: 0033:0x7fc1433f7299
[  194.353665][T13189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.373275][T13189] RSP: 002b:00007fc142077048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  194.381705][T13189] RAX: ffffffffffffffda RBX: 00007fc143585f80 RCX: 00007fc1433f7299
[  194.389837][T13189] RDX: 0000000000000050 RSI: 0000000020000000 RDI: 000000000000000a
[  194.397840][T13189] RBP: 00007fc1420770a0 R08: 0000000000000000 R09: 0000000000000000
[  194.405849][T13189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.413832][T13189] R13: 000000000000000b R14: 00007fc143585f80 R15: 00007ffe3e8ca008
[  194.421829][T13189]  </TASK>
[  194.447193][T13192] loop1: detected capacity change from 0 to 512
[  194.453717][T13192] EXT4-fs: Ignoring removed i_version option
[  194.461300][T13192] EXT4-fs (loop1): 1 truncate cleaned up
[  194.468513][T13192] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.490911][T12105] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.498933][T13197] loop3: detected capacity change from 0 to 512
[  194.506621][T13197] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  194.516530][T13197] EXT4-fs (loop3): invalid journal inode
[  194.522234][T13197] EXT4-fs (loop3): can't get journal size
[  194.528873][T13197] EXT4-fs (loop3): 1 truncate cleaned up
[  194.537242][T13197] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.551337][T13204] FAULT_INJECTION: forcing a failure.
[  194.551337][T13204] name failslab, interval 1, probability 0, space 0, times 0
[  194.564081][T13204] CPU: 0 UID: 0 PID: 13204 Comm: syz.1.3150 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  194.565857][T13197] No source specified
[  194.574496][T13204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  194.574513][T13204] Call Trace:
[  194.574522][T13204]  <TASK>
[  194.574561][T13204]  dump_stack_lvl+0xf2/0x150
[  194.574598][T13204]  dump_stack+0x15/0x20
[  194.603777][T13204]  should_fail_ex+0x229/0x230
[  194.608551][T13204]  ? sctp_add_bind_addr+0x6f/0x1e0
[  194.613758][T13204]  should_failslab+0x8f/0xb0
[  194.618373][T13204]  __kmalloc_cache_noprof+0x4b/0x2a0
[  194.623767][T13204]  sctp_add_bind_addr+0x6f/0x1e0
[  194.628751][T13204]  sctp_copy_local_addr_list+0x19b/0x220
[  194.634475][T13204]  sctp_copy_one_addr+0x83/0x410
[  194.639517][T13204]  sctp_bind_addr_copy+0x81/0x2b0
[  194.644601][T13204]  sctp_assoc_set_bind_addr_from_ep+0xc0/0xd0
[  194.650885][T13204]  sctp_connect_new_asoc+0x1d0/0x3b0
[  194.656198][T13204]  sctp_sendmsg+0xf05/0x1920
[  194.660818][T13204]  ? __pfx_sctp_sendmsg+0x10/0x10
[  194.665857][T13204]  inet_sendmsg+0xc5/0xd0
[  194.670270][T13204]  __sock_sendmsg+0x102/0x180
[  194.675047][T13204]  __sys_sendto+0x1e5/0x260
[  194.679613][T13204]  __x64_sys_sendto+0x78/0x90
[  194.684326][T13204]  x64_sys_call+0x2bc6/0x2e00
[  194.689016][T13204]  do_syscall_64+0xc9/0x1c0
[  194.693539][T13204]  ? clear_bhb_loop+0x55/0xb0
[  194.698232][T13204]  ? clear_bhb_loop+0x55/0xb0
[  194.702925][T13204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.708833][T13204] RIP: 0033:0x7f28238f7299
[  194.713323][T13204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.732945][T13204] RSP: 002b:00007f2822577048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  194.741429][T13204] RAX: ffffffffffffffda RBX: 00007f2823a85f80 RCX: 00007f28238f7299
[  194.749542][T13204] RDX: 0000000000000001 RSI: 0000000020847fff RDI: 0000000000000004
[  194.757516][T13204] RBP: 00007f28225770a0 R08: 000000002005ffe4 R09: 0000000000000073
[  194.765505][T13204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  194.773516][T13204] R13: 000000000000000b R14: 00007f2823a85f80 R15: 00007fff1ef24198
[  194.781493][T13204]  </TASK>
[  194.800153][T10731] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.884317][    C1] eth0: bad gso: type: 1, size: 1408
[  194.890288][    C1] eth0: bad gso: type: 1, size: 1408
[  194.906288][T13211] loop3: detected capacity change from 0 to 8192
[  194.924629][T13219] 9pnet: Could not find request transport: tcp��@��$ ��/��W�GyA]J�u�I\�Ee�/ċw��^�gwGC
[  194.924629][T13219] �+�{���
�4��/v�L$N�®��8���:�7�
[  194.949655][T13219] loop1: detected capacity change from 0 to 2048
[  194.956848][T13219] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  194.959514][T13223] IPv6: NLM_F_CREATE should be specified when creating new route
[  194.966686][T13219] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  194.986253][T13224] netlink: 'syz.0.3158': attribute type 33 has an invalid length.
[  194.989212][T13219] EXT4-fs (loop1): failed to initialize system zone (-117)
[  194.994066][T13224] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3158'.
[  195.001462][T13219] EXT4-fs (loop1): mount failed
[  195.015207][T13224] batadv0: entered promiscuous mode
[  195.015227][T13224] batadv0: entered allmulticast mode
[  195.017241][T13224] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  195.048348][T13219] netlink: 'syz.1.3157': attribute type 27 has an invalid length.
[  195.049454][T13219] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3157'.
[  195.082327][T13230] loop1: detected capacity change from 0 to 512
[  195.089045][T13230] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  195.097722][T13230] EXT4-fs (loop1): invalid journal inode
[  195.103422][T13230] EXT4-fs (loop1): can't get journal size
[  195.110959][T13230] EXT4-fs (loop1): 1 truncate cleaned up
[  195.117763][T13230] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.117971][T13232] netlink: 'syz.3.3162': attribute type 21 has an invalid length.
[  195.137542][T13230] No source specified
[  195.141774][T13232] devpts: called with bogus options
[  195.158912][T12105] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.245549][T13250] loop3: detected capacity change from 0 to 2048
[  195.265269][T13254] loop1: detected capacity change from 0 to 8192
[  195.338553][T13262] netlink: 'syz.3.3174': attribute type 21 has an invalid length.
[  195.347703][T13262] devpts: called with bogus options
[  195.363786][T13266] loop1: detected capacity change from 0 to 128
[  195.369891][T13268] FAULT_INJECTION: forcing a failure.
[  195.369891][T13268] name failslab, interval 1, probability 0, space 0, times 0
[  195.370632][T13266] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  195.382773][T13268] CPU: 1 UID: 0 PID: 13268 Comm: syz.3.3177 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  195.395731][T13266] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  195.404848][T13268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  195.404868][T13268] Call Trace:
[  195.404876][T13268]  <TASK>
[  195.404885][T13268]  dump_stack_lvl+0xf2/0x150
[  195.426337][   T29] audit: type=1400 audit(1722026081.770:999): avc:  denied  { map } for  pid=13265 comm="syz.1.3176" path="socket:[48314]" dev="sockfs" ino=48314 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  195.427248][T13268]  dump_stack+0x15/0x20
[  195.430191][   T29] audit: type=1400 audit(1722026081.770:1000): avc:  denied  { read } for  pid=13265 comm="syz.1.3176" path="socket:[48314]" dev="sockfs" ino=48314 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  195.434758][T13268]  should_fail_ex+0x229/0x230
[  195.490264][T13268]  ? __d_alloc+0x3d/0x340
[  195.494599][T13268]  should_failslab+0x8f/0xb0
[  195.499271][T13268]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[  195.505065][T13268]  __d_alloc+0x3d/0x340
[  195.509243][T13268]  d_alloc_pseudo+0x1e/0x80
[  195.513839][T13268]  alloc_file_pseudo+0x70/0x140
[  195.518832][T13268]  __shmem_file_setup+0x1bb/0x1f0
[  195.523884][T13268]  shmem_file_setup+0x3b/0x50
[  195.528586][T13268]  __se_sys_memfd_create+0x31d/0x600
[  195.533896][T13268]  __x64_sys_memfd_create+0x31/0x40
[  195.539117][T13268]  x64_sys_call+0x1163/0x2e00
[  195.543918][T13268]  do_syscall_64+0xc9/0x1c0
[  195.548430][T13268]  ? clear_bhb_loop+0x55/0xb0
[  195.553143][T13268]  ? clear_bhb_loop+0x55/0xb0
[  195.557824][T13268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.563779][T13268] RIP: 0033:0x7fc1433f7299
[  195.568227][T13268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.587985][T13268] RSP: 002b:00007fc142076e28 EFLAGS: 00000206 ORIG_RAX: 000000000000013f
[  195.596395][T13268] RAX: ffffffffffffffda RBX: 000000000000043e RCX: 00007fc1433f7299
[  195.604363][T13268] RDX: 00007fc142076f00 RSI: 0000000000000000 RDI: 00007fc143465094
[  195.612469][T13268] RBP: 0000000020000340 R08: 00007fc142076bc7 R09: 00007fc142076e50
[  195.620478][T13268] R10: 000000000000000a R11: 0000000000000206 R12: 0000000020000000
[  195.628444][T13268] R13: 00007fc142076f00 R14: 00007fc142076ec0 R15: 0000000020000280
[  195.636502][T13268]  </TASK>
[  195.639691][T11419] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  195.695833][   T29] audit: type=1400 audit(1722026082.040:1001): avc:  denied  { mount } for  pid=13278 comm="syz.1.3181" name="/" dev="gadgetfs" ino=47387 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  195.800474][T13283] loop1: detected capacity change from 0 to 8192
[  195.859514][T13299] FAULT_INJECTION: forcing a failure.
[  195.859514][T13299] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  195.872638][T13299] CPU: 0 UID: 0 PID: 13299 Comm: syz.1.3189 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  195.883119][T13299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  195.884684][T13300] FAULT_INJECTION: forcing a failure.
[  195.884684][T13300] name failslab, interval 1, probability 0, space 0, times 0
[  195.893362][T13299] Call Trace:
[  195.893372][T13299]  <TASK>
[  195.893381][T13299]  dump_stack_lvl+0xf2/0x150
[  195.916852][T13299]  dump_stack+0x15/0x20
[  195.921029][T13299]  should_fail_ex+0x229/0x230
[  195.925724][T13299]  should_fail+0xb/0x10
[  195.929919][T13299]  should_fail_usercopy+0x1a/0x20
[  195.935191][T13299]  _copy_to_user+0x1e/0xa0
[  195.939649][T13299]  msr_read+0xf8/0x180
[  195.943817][T13299]  ? __pfx_msr_read+0x10/0x10
[  195.948599][T13299]  vfs_read+0x1a2/0x6e0
[  195.952842][T13299]  ? __rcu_read_unlock+0x4e/0x70
[  195.957787][T13299]  ? __fget_files+0x1da/0x210
[  195.962644][T13299]  ksys_read+0xeb/0x1b0
[  195.966927][T13299]  __x64_sys_read+0x42/0x50
[  195.971469][T13299]  x64_sys_call+0x2a36/0x2e00
[  195.976163][T13299]  do_syscall_64+0xc9/0x1c0
[  195.980718][T13299]  ? clear_bhb_loop+0x55/0xb0
[  195.985518][T13299]  ? clear_bhb_loop+0x55/0xb0
[  195.990283][T13299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.996282][T13299] RIP: 0033:0x7f28238f7299
[  196.000698][T13299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.020461][T13299] RSP: 002b:00007f2822577048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  196.028896][T13299] RAX: ffffffffffffffda RBX: 00007f2823a85f80 RCX: 00007f28238f7299
[  196.036870][T13299] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 000000000000000b
[  196.045002][T13299] RBP: 00007f28225770a0 R08: 0000000000000000 R09: 0000000000000000
[  196.052975][T13299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  196.060948][T13299] R13: 000000000000000b R14: 00007f2823a85f80 R15: 00007fff1ef24198
[  196.068928][T13299]  </TASK>
[  196.072007][T13300] CPU: 1 UID: 0 PID: 13300 Comm: syz.3.3187 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  196.082536][T13300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  196.092600][T13300] Call Trace:
[  196.095982][T13300]  <TASK>
[  196.098914][T13300]  dump_stack_lvl+0xf2/0x150
[  196.103553][T13300]  dump_stack+0x15/0x20
[  196.107824][T13300]  should_fail_ex+0x229/0x230
[  196.112527][T13300]  ? v9fs_session_init+0x79/0xda0
[  196.117606][T13300]  should_failslab+0x8f/0xb0
[  196.122217][T13300]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[  196.128630][T13300]  kstrdup+0x3a/0x80
[  196.132532][T13300]  v9fs_session_init+0x79/0xda0
[  196.137607][T13300]  ? __rcu_read_unlock+0x4e/0x70
[  196.142572][T13300]  ? __rcu_read_unlock+0x4e/0x70
[  196.147615][T13300]  ? v9fs_mount+0x53/0x560
[  196.152091][T13300]  ? __kmalloc_cache_noprof+0x20c/0x2a0
[  196.157651][T13300]  v9fs_mount+0x69/0x560
[  196.161980][T13300]  ? __pfx_v9fs_mount+0x10/0x10
[  196.166841][T13300]  legacy_get_tree+0x77/0xd0
[  196.171453][T13300]  vfs_get_tree+0x56/0x1d0
[  196.176005][T13300]  do_new_mount+0x227/0x690
[  196.180529][T13300]  path_mount+0x49b/0xb30
[  196.184959][T13300]  __se_sys_mount+0x27c/0x2d0
[  196.189657][T13300]  __x64_sys_mount+0x67/0x80
[  196.194269][T13300]  x64_sys_call+0xd11/0x2e00
[  196.198890][T13300]  do_syscall_64+0xc9/0x1c0
[  196.203418][T13300]  ? clear_bhb_loop+0x55/0xb0
[  196.208111][T13300]  ? clear_bhb_loop+0x55/0xb0
[  196.212800][T13300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.218794][T13300] RIP: 0033:0x7fc1433f7299
[  196.223217][T13300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.242971][T13300] RSP: 002b:00007fc142056048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  196.251444][T13300] RAX: ffffffffffffffda RBX: 00007fc143586058 RCX: 00007fc1433f7299
[  196.259423][T13300] RDX: 0000000020000080 RSI: 0000000020000300 RDI: 0000000000000000
[  196.267397][T13300] RBP: 00007fc1420560a0 R08: 0000000020000140 R09: 0000000000000000
[  196.275427][T13300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  196.283471][T13300] R13: 000000000000006e R14: 00007fc143586058 R15: 00007ffe3e8ca008
[  196.291453][T13300]  </TASK>
[  196.301570][T13299] loop1: detected capacity change from 0 to 512
[  196.308172][T13299] EXT4-fs: Ignoring removed bh option
[  196.327184][T13299] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.337593][T13307] No source specified
[  196.339987][T13299] ext4 filesystem being mounted at /98/w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8 supports timestamps until 2038-01-19 (0x7fffffff)
[  196.364435][T13299] EXT4-fs error (device loop1): ext4_add_entry:2435: inode #2: comm syz.1.3189: Directory hole found for htree leaf block 0
[  196.390532][T12105] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.408758][T13314] loop1: detected capacity change from 0 to 128
[  196.415307][T13314] vfat: Unknown parameter '�!Qu:fmask'
[  196.430953][T13314] loop1: detected capacity change from 0 to 512
[  196.437891][T13314] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  196.449511][T13314] EXT4-fs (loop1): 1 truncate cleaned up
[  196.455708][T13314] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.494750][T12105] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.539174][T13332] loop1: detected capacity change from 0 to 2048
[  196.694148][   T29] audit: type=1400 audit(1722026083.030:1002): avc:  denied  { execute } for  pid=13348 comm="syz.1.3202" path="/101/file0/bus" dev="ramfs" ino=48463 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  196.717991][T13349] vcan0: tx drop: invalid da for name 0x0000000000000001
[  196.737632][T13351] loop3: detected capacity change from 0 to 1024
[  196.742533][   T29] audit: type=1400 audit(1722026083.030:1003): avc:  denied  { shutdown } for  pid=13346 comm="syz.2.3203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  196.745783][T13355] loop2: detected capacity change from 0 to 128
[  196.764213][   T29] audit: type=1400 audit(1722026083.070:1004): avc:  denied  { setopt } for  pid=13348 comm="syz.1.3202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  196.771262][T13351] ext4: Unknown parameter 'subj_user'
[  196.791887][   T29] audit: type=1400 audit(1722026083.120:1005): avc:  denied  { unmount } for  pid=12105 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  196.798511][T13355] vfat: Unknown parameter '�!Qu:fmask'
[  196.841703][T13355] loop2: detected capacity change from 0 to 512
[  196.865416][T13355] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  196.889388][T13355] EXT4-fs (loop2): 1 truncate cleaned up
[  196.896699][T13355] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.961392][T11283] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.993886][T13370] loop1: detected capacity change from 0 to 2048
[  197.024560][T13384] loop3: detected capacity change from 0 to 1024
[  197.031324][T13384] ext4: Unknown parameter 'subj_user'
[  197.114655][T13397] loop2: detected capacity change from 0 to 128
[  197.130288][T13397] vfat: Unknown parameter '�!Qu:fmask'
[  197.145705][T13397] loop2: detected capacity change from 0 to 512
[  197.152477][T13397] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  197.165544][T13397] EXT4-fs (loop2): 1 truncate cleaned up
[  197.171600][T13397] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.184549][T13406] loop3: detected capacity change from 0 to 512
[  197.191797][T13398] ==================================================================
[  197.197843][T13406] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.199893][T13398] BUG: KCSAN: data-race in delete_from_page_cache_batch / folio_mapping
[  197.212500][T13406] ext4 filesystem being mounted at /159/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  197.220590][T13398] 
[  197.220599][T13398] write to 0xffffea000494fa98 of 8 bytes by task 13406 on cpu 0:
[  197.220619][T13398]  delete_from_page_cache_batch+0x308/0x700
[  197.246800][T13398]  truncate_inode_pages_range+0x1c5/0x6b0
[  197.252548][T13398]  truncate_inode_pages+0x24/0x30
[  197.257597][T13398]  set_blocksize+0x267/0x280
[  197.262287][T13398]  sb_set_blocksize+0x2c/0xb0
[  197.266974][T13398]  ext4_fill_super+0xdca/0x39e0
[  197.271838][T13398]  get_tree_bdev+0x256/0x2e0
[  197.276448][T13398]  ext4_get_tree+0x1c/0x30
[  197.280879][T13398]  vfs_get_tree+0x56/0x1d0
[  197.285300][T13398]  do_new_mount+0x227/0x690
[  197.289823][T13398]  path_mount+0x49b/0xb30
[  197.294169][T13398]  __se_sys_mount+0x27c/0x2d0
[  197.298869][T13398]  __x64_sys_mount+0x67/0x80
[  197.303481][T13398]  x64_sys_call+0xd11/0x2e00
[  197.308091][T13398]  do_syscall_64+0xc9/0x1c0
[  197.312629][T13398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.318549][T13398] 
[  197.320885][T13398] read to 0xffffea000494fa98 of 8 bytes by task 13398 on cpu 1:
[  197.328534][T13398]  folio_mapping+0x97/0x110
[  197.333067][T13398]  lru_add_fn+0x89/0x440
[  197.337340][T13398]  folio_batch_move_lru+0x15f/0x230
[  197.342568][T13398]  lru_add_drain_cpu+0x77/0x260
[  197.347450][T13398]  lru_add_drain+0x26/0x80
[  197.351897][T13398]  free_pages_and_swap_cache+0x69/0x410
[  197.357477][T13398]  tlb_flush_mmu+0x2cf/0x440
[  197.362100][T13398]  unmap_page_range+0x1e8c/0x2210
[  197.367143][T13398]  unmap_single_vma+0x142/0x1d0
[  197.372005][T13398]  unmap_vmas+0x18d/0x2b0
[  197.376353][T13398]  exit_mmap+0x18f/0x710
[  197.380619][T13398]  __mmput+0x28/0x1b0
[  197.384634][T13398]  mmput+0x4c/0x60
[  197.388383][T13398]  exit_mm+0xe4/0x190
[  197.392381][T13398]  do_exit+0x55e/0x1720
[  197.396554][T13398]  do_group_exit+0x142/0x150
[  197.401169][T13398]  __x64_sys_exit_group+0x1f/0x20
[  197.406219][T13398]  x64_sys_call+0x2df4/0x2e00
[  197.410917][T13398]  do_syscall_64+0xc9/0x1c0
[  197.415443][T13398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.421358][T13398] 
[  197.423691][T13398] value changed: 0xffff8881004c1e18 -> 0x0000000000000000
[  197.430804][T13398] 
[  197.433129][T13398] Reported by Kernel Concurrency Sanitizer on:
[  197.439284][T13398] CPU: 1 UID: 0 PID: 13398 Comm: syz.1.3225 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  197.449706][T13398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  197.459777][T13398] ==================================================================
[  197.503424][T11283] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.547431][   T29] audit: type=1400 audit(1722026083.890:1006): avc:  denied  { setattr } for  pid=13405 comm="syz.3.3228" name="qrtr-tun" dev="devtmpfs" ino=232 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  197.548067][T13406] sctp: [Deprecated]: syz.3.3228 (pid 13406) Use of int in max_burst socket option deprecated.
[  197.548067][T13406] Use struct sctp_assoc_value instead
[  197.589852][T13406] qrtr: Invalid version 0
[  197.612914][T10731] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.