last executing test programs:

10.807360621s ago: executing program 4 (id=625):
write$binfmt_misc(0xffffffffffffffff, 0x0, 0xfffffecc)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$eJzs3cFPG9kZAPBvBgiEkEDaHNqqbdI0bVpFscFJUJRTemlVRZGqRj31kFBwEMLGCJs00BzI/1CpkXpq/4QeKvVQKae97233tpfsYaXsbrSrsNIevJqxIYRgYDcES/j3k55m3jzj7z2sec98gF8APetcRKxFxLGIuBcRo+3rSbvEzVbJHvfyxaPp9RePppNoNu98luTt2bXY8jWZE+3nHIqIP/4u4i/Jm3HrK6vzU5VKealdLzaqi8X6yurluerUbHm2vFAqTU5Mjl+/cq10YGM9W/3P89/O3frT///3k2fvr/36b1m3RtptW8dxkFpDH9iMk+mPiFvvIlgX9LXHc6zbHeE7SSPiexFxPr//R6MvfzUBgKOs2RyN5ujWOgBw1KV5DixJC+1cwEikaaHQyuGdieG0Uqs3Lt2vLS/MtHJlYzGQ3p+rlMfbucKxGEiy+kR+/qpe2la/EhGnI+Lvg8fzemG6Vpnp5hsfAOhhJ7at/18OttZ/AOCIG+p2BwCAQ2f9B4DeY/0HgN5j/QeA3mP9B4DeY/0HgN5j/QeAnvKH27ez0lxvf/71zIOV5fnag8sz5fp8obo8XZiuLS0WZmu12fwze6p7PV+lVlucuBrLD4uNcr1RrK+s3q3Wlhcad/PP9b5bHjiUUQEAuzl99umHSUSs3Tiel9iyl4O1Go62tNsdALqmr9sdALrGbl/Qu/yMD+ywRe9rOv6J0JOD7wtwOC7+UP4fepX8P/Qu+X/oXfL/0LuazcSe/wDQY+T4Ab//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgG9vJC9JWmjvBT4SaVooRJyMiLEYSO7PVcrjEXEqIj4YHBjM6hPd7jQA8JbST5L2/l8XRy+MbG89lnw1mB8j4q//vPOPh1ONxtJEdv3zzeuNJ+3rpW70HwDYy8Y6vbGOb3j54tH0RjnM/jz/TWtz0Szueru0WvqjPz8OxUBEDH+RtOst2fuVvgOIv/Y4In6w0/iTPDcy1t75dHv8LPbJQ42fvhY/zdtax+x78f0D6Av0mqfZ/HNzp/svjXP5cef7fyifod7exvy3/sb8l27Of30d5r9z+41x9b3fd2x7HPGj/p3iJ5vxkw7xL+wz/kc//un5Tm3Nf0VcjJ3jb41VbFQXi/WV1ctz1anZ8mx5oVSanJgcv37lWqmY56iLG5nqN31649Kp3cY/3CH+0B7j/8U+x//vr+/9+We7xP/Vz3d+/c/sEj9bE3+5z/hTw//tuH13Fn+mw/j3ev0v7TP+s49XZ/b5UADgENRXVuenKpXykhMnTpxsnnR7ZgLetVc3fbd7AgAAAAAAAAAAAAAAdHIY/07U7TECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwdH0TAAD//yyP2UE=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0xffffffff, @loopback}, 0xffffffffffffff40)
quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000200)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x8001, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r5, &(0x7f0000000400)={0x2, 0x4e23, @private=0xa010100}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000040)=0x1b3a, 0x4)
setsockopt$sock_int(r5, 0x1, 0x29, &(0x7f0000000140)=0x9, 0x4)
sendto$inet(r5, &(0x7f0000000080)='m', 0x1, 0x0, 0x0, 0x0)
recvmsg(r5, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=""/200, 0xc8}, 0x2000)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x1b, &(0x7f00000000c0)={@dev}, 0x20)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r8], 0x20}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000340)=ANY=[@ANYRESHEX=r4, @ANYRESOCT=r2, @ANYRES64=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

3.650081286s ago: executing program 4 (id=711):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f00000001c0)={[{@quota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4bd, &(0x7f0000000f00)="$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")
socket$nl_route(0x10, 0x3, 0x0)
r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
close(r0)
open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
open(0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
inotify_init()
socket$packet(0x11, 0x3, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000140)={0x2, 0x4e22, @multicast2}, 0x10)
connect$inet(r1, 0x0, 0x0)
shutdown(r1, 0x0)
recvfrom$inet(r1, &(0x7f0000000180)=""/128, 0x80, 0x102, 0x0, 0x0)
socket(0xa, 0x3, 0x3a)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14)
socket(0x10, 0x3, 0x0)
rename(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file1\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)

3.354911892s ago: executing program 4 (id=718):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
r1 = open(&(0x7f0000000100)='./bus\x00', 0x400145042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800007, 0x12, r1, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x145842, 0x0)
fallocate(r2, 0x0, 0x0, 0xceec)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x0)
pread64(r0, &(0x7f00000031c0)=""/4120, 0x1018, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f0000000040))
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan3\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wpan3\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wpan0\x00', <r7=>0x0})
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r3, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x70, r4, 0x56773b5ab2c8d871, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x70}, 0x1, 0x0, 0x0, 0x40000c0}, 0x800)

3.247611761s ago: executing program 4 (id=722):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = dup(r0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x1c, 0x2, 0x6, 0x0, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
ioctl$PTP_EXTTS_REQUEST2(r1, 0xc0603d06, &(0x7f0000000040))
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r2, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x5, 0x0, 0x0, &(0x7f00000001c0), 0x3000000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x5, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x6}]})
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x81, 0x2, 0x9, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0x402, r3}, 0x38)
bpf$MAP_DELETE_BATCH(0x18, &(0x7f0000000080)={0x0, &(0x7f0000001640)=""/233, &(0x7f00000002c0), &(0x7f0000000440), 0x5, r3}, 0x38)
pipe2$watch_queue(&(0x7f0000000180), 0x80)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth0_macvtap\x00', <r5=>0x0})
bind$packet(r4, &(0x7f0000000140)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @remote}, 0x14)
clock_gettime(0x0, &(0x7f00000002c0))
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000500)='./file0\x00', 0x21000e, &(0x7f0000000280), 0xfe, 0x504, &(0x7f0000000a40)="$eJzs3V9rZGcZAPDnTDJrtpuaVL2ohdZiK9miO5M0tg1etBXFu4JS79eQTELIJBMyk3YTiqT4AQQRXfDKK28EP4Ag+xFkYcG9FxVFdFcvvFCPnDMn2ex4ZpPQ+bMkvx+8M+9555zzPG+yOfOeP3tOAJfWyxHxbkRMRMRrETFTtFeKEofdks338MFHK1nJPnn/b0kkRVtEXj12rVhsqvtWqr1/sLncbDZ2i+l6Z2un3t4/uLGxtbzeWG9sLy4uvLn01tIbS/MD6WfWr7e/+aef/PAX33r7N1/58Pc3/3L9+1nS3yg+L/oxcPfz12r2szg2GRG7wwg2BhNFf6rjTgQAgDPJxvifiYgv5uP/mZjIR3O53iHd1OizAwAAAAYhfWc6/p1EpAAAAMCF9U5ETEdSqRXXAkxHpVKrda/h/Vw8U2m22p0vr7X2tlezzyJmo1pZ22g25otramejmmTTC3n90fTrPdOLEfFcRPx45mo+XVtpNVfHffADAAAALolrPfv//5zp7v8DAAAAF8zsuBMAAAAAhq7f/n8y4jwAAACA4XH+HwAAAC60b7/3XlbSo+dfr36wv7fZ+uDGaqO9WdvaW6mttHZ3auut1np+z76t09bXbLV2vhrbe7fqnUa7U2/vH9zcau1td25ueH4gAAAAjMtzX7hzP4mIw69dzUvmSvYy0WcB1wrAhVE5z8x/HF4ewOj1+5oHLr7JcScAjM/huBMAxu2xW32UDApOXrzz2DGD3w4vJwAAYLDmPl9+/j/bBaiOOzlgqM51/h+4UJz/h8vrnOf/7w4rD2D0qkYAcOmd9qiPvjfvKDv/f6VsxjQ9dV0AAMBQTeclqdSKc4HTUanUahHP5v/Vv5qsbTQb8xHx6Yj43Uz1U9n0Qr5k4vGAAAAAAAAAAAAAAAAAAAAAAAAAAHBGaZpECgAAAFxoEZU/J8Xzv+ZmXp3uPT5wJfnXTBSP9PrwZ+//9NZyp7O7kLX//bi9c7tof30cRzAAAACAXkf76Uf78QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwSA8ffLRyVEYZ969fj4jZsviTMZW/T0U1Ip75RxKTJ5ZLImJiAPEPP46I58viJ1laMVtk0Ru/EhFXRxP/xTRNS+NfG0B8uMzuZNufd8v+/irxcv5e/vc/WZRPqv/2r3K8/Zvos/179owxXrj3q3rf+B9HvDBZvv05ip/0if9K2QpLfijf++7Bwf81dlce6c8j5kq/f5LHYtU7Wzv19v7BjY2t5fXGemN7cXHhzaW3lt5Ymq+vbTQbxWtpH3/04q//29P0n7Qr73/0iT97Sv9fzSrVE41pb5gi2L1bDz7brVZ7VpHHv/5K+e//+SfEz/5NfKn4Hsg+nzuqH3brJ730y7svlSZWxF/t0//Tfv/X+620x2vf+cEfzjgrADAC7f2DzeVms7E79MrtNE1HFUvl/JWj0d3QQkw9LT1VOa0yiCNbAADA0+bRoH/cmQAAAAAAAAAAAAAAAAAAAMDl1d6PyrBvJ9Yb83A8XQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeKL/BQAA//9PHd4N")
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000480)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r6=>r3}}, './file0\x00'})
write$cgroup_netprio_ifpriomap(r6, &(0x7f00000004c0)={'wlan1', 0x32, 0x39}, 0x8)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r7, 0x40086607, &(0x7f0000000080)={@id={0x64, 0x0, @d}})

1.851422275s ago: executing program 3 (id=743):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x0) (fail_nth: 19)

1.842297316s ago: executing program 3 (id=746):
r0 = socket$kcm(0x29, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x30, 0x1, 0x1, 0x301, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x828}]}, @CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}]}, 0x30}}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000480)="0696b37bbb0bfa15ccfffdbe45f5d1fda8ef60a4dde5b9594e3934db53d8e9d38ab96cb7d5bf99ff2e6c6c4125fce16d355ce21cea06ccc34c7622fb5edc8bbba237ebe497ea529e95f530dcd73999503056429f652793405b08e799142212cdbdfb72a03a4b828ea0dbd2e0c42dcfde9a3f43bb8d851c102bc8a022692f152cd3d78608605bde00002486af9b019706863d3068ef4dfc58eb6ed976fb1d2278bda86caadeea9c41b851e0097082a22f28a0c63f339cf2d24aa50e", 0xbb}, {&(0x7f0000000540)="e735271bed4634e7c075c22b9452772974ae7b646ff0391bbf564670d07a5f4da8ed787eda939baede5349b3826cf80bbab3e338c67d080252404ea55262a1fd13ffb19053b47da867cd29528aa9d671a18b8853fe39d5fa6838aabb2b60e8d3e68811b80a22463002cdd529f7a734e0887b95d444483b4f50ed096394b5b51d8a5bb1efa69b411c3158de2f", 0x8c}, {&(0x7f0000000280)="0ddcd15208b0495554100d01", 0xc}, {&(0x7f00000002c0)="de90c195e74524f568cae4b22e2708204507245ad09af0ff3b5a9c8cb61125e494a0c1d3f194d4676450b5fe34bfcbc37c", 0x31}, {&(0x7f0000000600)="b3", 0x1}], 0x5, &(0x7f0000002800)=ANY=[], 0x13e8}, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = fsopen(&(0x7f0000000000)='mqueue\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
ioctl$IOC_PR_CLEAR(r3, 0x401070cd, &(0x7f0000000040)={0x1})
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000002c0), 0x3)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cpuacct.usage_sys\x00', 0x275a, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = mq_open(&(0x7f00005a1ffb)='e\xeeQ\x92o', 0x42, 0x0, 0x0)
r7 = dup2(r6, r6)
mq_notify(r7, &(0x7f0000000000)={0x20000000, 0x4000000000003, 0x2})
write$binfmt_script(r5, &(0x7f000000e0c0), 0x10010)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, &(0x7f0000000240)=@ccm_128={{0x304}, "cdedbe27d7c9678a", "ed86a155b66f481507086fe637736e4c", "a2dc23ff", "842546172794808f"}, 0x28)
sendfile(r4, r5, &(0x7f0000000100), 0x10001)

1.442561652s ago: executing program 0 (id=749):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[], 0x1, 0x35a, &(0x7f0000000600)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x14}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x21000}], 0x2, 0x1800, 0xc000000, 0x3)

1.375801787s ago: executing program 3 (id=751):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x34000, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0202f302160000000000000000000000020009"], 0xb0}, 0x1, 0x7}, 0x0)

1.275535217s ago: executing program 2 (id=757):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x9a04, 0x4, 0x90, [0x0, 0x0, 0x20000940], 0x10d, 0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="0000e3ffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200"/143]}, 0x107)

1.275391386s ago: executing program 3 (id=758):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x17, 0x0, 0x8001, 0x7, 0x32ae, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x6, 0x1000088}, 0x0)
r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
socket$inet6_sctp(0xa, 0x1, 0x84)
fsopen(&(0x7f0000000000)='autofs\x00', 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @private2}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000580)={'ip6gre0\x00', <r2=>0x0})
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r3, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
sendto$packet(r3, 0x0, 0x0, 0x0, &(0x7f0000003340)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f00000000c0)='3', 0x0)
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000000)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}], 0x1)
ioctl$SG_GET_NUM_WAITING(r0, 0x227d, &(0x7f0000000000))
socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/kernel/address_bits', 0x0, 0x0)
read$usbmon(r4, &(0x7f0000000040)=""/81, 0x51)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x19f, &(0x7f0000000380)={[{@noquota}, {@noblock_validity}, {@jqfmt_vfsv0}, {@grpquota}, {@debug}, {@debug}, {@nogrpid}]}, 0x80, 0x557, &(0x7f0000001cc0)="$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")
r5 = fspick(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x1)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x0, 0x0)

1.274474247s ago: executing program 0 (id=759):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x1e, 0x0)

1.274381897s ago: executing program 2 (id=760):
openat$vsock(0xffffffffffffff9c, 0x0, 0x40100, 0x0)
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r1=>0x0})
r2 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r2, &(0x7f0000000000)={0x1d, r1, 0x3}, 0x18)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
io_uring_setup(0x396b, &(0x7f0000000180))
sendmsg$nl_route(r2, &(0x7f0000000a40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)=ANY=[@ANYRESHEX, @ANYRES32=r1, @ANYBLOB="08000100010000000800010000000000"], 0x28}}, 0x44004)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x13c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.274116767s ago: executing program 1 (id=761):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, 0x0)
close(r1)
writev(r0, 0x0, 0x0)
epoll_create1(0x0)
pipe2(0x0, 0x0)
r2 = io_uring_setup(0x3053, &(0x7f00000000c0))
r3 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r3, &(0x7f00000001c0)={0x2a, 0xffffffffffffffff}, 0xc)
read(r3, &(0x7f0000000180)=""/52, 0xfffffdef)
close_range(r2, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x5fd, &(0x7f0000000d00)="$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")
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1.147195208s ago: executing program 0 (id=762):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200db1fcad5000000000000000000850000001700000095"], &(0x7f0000000040)='syzkaller\x00', 0x5, 0x0, 0x0, 0x20000000}, 0x90)

1.146928248s ago: executing program 0 (id=763):
mkdir(&(0x7f0000000440)='./file0\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r0=>0xee01}}, './file0\x00'})
mount$cgroup(0x0, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740), 0x0, &(0x7f0000000080)={[{@subsystem='rdma'}, {@noprefix}, {}], [{@fowner_eq={'fowner', 0x3d, r0}}]})

1.145528298s ago: executing program 0 (id=764):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b70500000000000061107f000000000007000000000000009500000000000800"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x2a)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000540)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={[{@name={'name', 0x3d, 'uones-\xc1\x14\xeb\xc6\xc3\x8a\xe3t\xbc^OIG@E\xbf\xee\x91)\xda\xe8r)\xe6\x9cM\x05\xbfj\xa6\x95\x93\xd3\x04%\xe8\xc1\x00\x03\x8f=$\xa8\x0f\x0fO\xe8x\xedj\n\xcaF\x06k\xa3\xd9\xe7\x14\x9b\xeax\xb6L\xb4\xf2\xac8\xdeR\xf1\x1f%\xac\xccQq\x01\xe3\xebg\x91!~\n\xf9\xaa\x98\x9e\f\xb8\nE\xf42X=u\xcdK\x19D\xc2P\x91{2\xbf\xe5.D\x00>#r\xc2\x1f7]\x93\x87\xe9\x9c\x8c\x9dA\xae\xa7&\x1e%\'\xef\xb2\x8an\xe1\n\xff\xb1\x06\xb3R\xc8\xc6\xb1\x85m\xf1\xf6\xef\"\xa1\xb0\xb3W\xbc\fx\fYq\xd3\vb\x12.\xbcF2\x99\xaf#\x06\x0e\x81\xf7[ecq{)\xb8\"S\xebm\xe9\xbd:\xc19;\xd03\xeb\xd6*`\xb1\x9c\xb2\xf86V/\xfauJ\x8e@\x01\x00\x00\x00\xa4a\x9b\xcc\xe5\xa3I/\xa4\xbe\x01\x06\xb7\xa5Gy}\x02\xe6\xc9\x92\x06\x8f\xee\xc1\x00\xa3\x0f@\x04:\x12\xd7\xfd\x8e\xb6\xbaz7\xbc\n\a\x89l\xe1\xbdw`\xdd\xd9\xee*c\n6P \xd8\x88\xa7m\xb3,\xa0GI`3$\xc4\xa1\xeb\x81\x95z\xa9\xc4\xd3\x12\xe6\x8b\xccb\ta\xa0\xe2\xd6\x98\xa9\xa4r\xd20,\x14\xd1\x1aH.\x93=5\x8a\xc4C\xd961z\xd9\xee/YZ\x89n\xff<\xbd\xae\x99\xe6\x99v,}\xe9\xd0&\xd2\xbe/S\xcfr\x84\v{R\xbc\x00\xecD?>\xedc\xb0\xf3\xc5\xb1AC\x1e\xdeN\\\xc4J\x86\\\xc5\xc2$\xab\xf8\x19\x05\xe4\xee\f\xd5\xba\x85\xb5\x9e'}}]})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000000000001860000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180000000000e52e000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x63)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r1, 0x18000000000002a0, 0xe40, 0x0, &(0x7f00000002c0)="f6ea090003000060009ba538a44cc2", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x7, 0x110, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080005300000000faff0000940000000fad413e550000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r2}, 0x10)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8)
r5 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8a7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef)

1.129291069s ago: executing program 2 (id=765):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$TIPC_NL_NET_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0x14)
r3 = syz_open_dev$usbfs(&(0x7f0000000040), 0xc, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r3, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="0200a006002a17006000000002000020d3"])
ioctl$USBDEVFS_REAPURBNDELAY(r3, 0x4004550c, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r2}]}}}, @IFLA_MTU={0x8, 0x4, 0x5fa}]}, 0x44}}, 0x0)

1.00978819s ago: executing program 1 (id=766):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f00000003c0)={0x0, 0xfe, &(0x7f0000000380)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x0, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

947.730436ms ago: executing program 2 (id=767):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000080))
r1 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f00000000c0)="b3d3f9cd0a7c42a008f216c3c8f7f1c9df01e273cd3a4f1e20213e05dcf7856be29aa98ac8e0a48c54bcf691a4a032b9a46da65939de8431eab5a7d578aad3a7e312c86dddf4022d7927e0aaa5244d8b299e5af2375769a5850fc9d933317d81c4c651286e395f74baec03756b4bed08c5ddb85b167c23b8e9b1afb07939934d4dfcb9ca45fafe05399d613c9c040253322d8f7142c6922b5c977fdb3aab6ce159eddc5e53a21afdc3ed86e4aab7fd7e121b80698dab990d4ede7a539538a9d10326a3dd753590c4b292d81ec7490894614016768a854cad61225b4df93c22cef3d3a4b61431e3dfb36b12897cc08d2ef089323f474cabec1ea5da0114b65046")
socket$netlink(0x10, 0x3, 0x6)

924.809218ms ago: executing program 2 (id=768):
sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0}, 0x0)
socket$l2tp(0x2, 0x2, 0x73)
syz_io_uring_setup(0x73fd, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0xfdffffff}, &(0x7f0000000100), &(0x7f00000007c0))
syz_io_uring_setup(0xa94, &(0x7f0000000140), &(0x7f0000000040), &(0x7f00000005c0))
socket$packet(0x11, 0x3, 0x300)
socket(0x10, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000540)='./bus\x00', 0x10, &(0x7f0000000500)=ANY=[@ANYRES64=0x0], 0x81, 0x374, &(0x7f0000000980)="$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")
r2 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a0, 0x1c0, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x2d0, 0x20a, 0x278, 0x2d0, 0x278, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @empty, [], [], 'ipvlan0\x00', 'team_slave_0\x00', {}, {}, 0x6}, 0x0, 0x198, 0x1c0, 0x0, {}, [@common=@inet=@tcp={{0x30}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "6d93eb04697dfa39de04767f46614613a407abbf4ed2e83a63b484dbb3bf6b2a850e79009e2905d2f98ba19f91f3c9faee6d3686e9bee067f4e77d9ad66238750c4100d7ee97ec7646259d90edece6e9787a97bc956c01754c34c5c9518c46178ed5f9194454980e579c80eca35a58dc47d1d5e4ff6e216c724e88c702448587", 0x28}}]}, @common=@inet=@TCPMSS={0x28}}, {{@ipv6={@loopback, @dev, [], [], 'veth1_to_hsr\x00', 'pim6reg1\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500}, 0x48)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
write$cgroup_subtree(r3, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x803, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x3c1, 0x3, 0x358, 0x0, 0x4c, 0x1a, 0x160, 0x73, 0x288, 0x258, 0x258, 0x288, 0x258, 0x3, 0x0, {[{{@ipv6={@private0, @local, [], [], 'wg2\x00', 'macvlan1\x00', {}, {}, 0x73}, 0x0, 0x118, 0x160, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x3, 0x0, 0x7}}, @common=@unspec=@connlimit={{0x40}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x0, {@ipv4=@remote, 'team_slave_1\x00'}}}, {{@uncond, 0x0, 0xf8, 0x128, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@icmp6={{0x28}, {0x0, "e1f6"}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3b8)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x5, 0x7f, 0xe, 0x1, 0x1000, r1, 0x0, '\x00', 0x0, r2, 0x0, 0x3}, 0x48)
recvmsg(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)=[{&(0x7f0000005580)=""/4093, 0xffd}, {&(0x7f0000001600)=""/4093, 0xffd}, {&(0x7f0000003540)=""/4102, 0x1006}, {&(0x7f0000001480)=""/169, 0xa9}, {0x0}], 0x5}, 0x41)
r7 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r7, 0x545c, 0x0)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0xa, &(0x7f0000000a40), 0x4)
ioctl$TCSETSF(r7, 0x5404, &(0x7f0000000180)={0x945, 0x0, 0xd3, 0x0, 0x0, "371452d4c6c8725f10037465a35527a082b1f9"})

917.116598ms ago: executing program 3 (id=769):
syz_mount_image$ext4(&(0x7f0000000240)='ext3\x00', &(0x7f00000003c0)='./file0\x00', 0xc0ed000e, &(0x7f0000000440)={[{@jqfmt_vfsold}, {@nolazytime}, {@debug}, {@jqfmt_vfsold}, {@minixdf}, {@commit={'commit', 0x3d, 0x5}}, {@errors_remount}, {@acl}]}, 0xfe, 0x478, &(0x7f0000000940)="$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")

667.712721ms ago: executing program 3 (id=770):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000045c0)=0x8)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r2, 0x84, 0x6b, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c)
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0202f3021600000000000000000000000200090008000000e90000000000000003000600000000000200000000000000000000000000000002000100000000000000020200000020030005000000000002000000ac1414aa00000000000000000a00080008"], 0xb0}, 0x1, 0x7}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000400)=ANY=[], 0x254}}, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x300022, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
futex(0x0, 0x10b, 0x4, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

473.644618ms ago: executing program 1 (id=771):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x9a04, 0x4, 0x90, [0x0, 0x0, 0x20000940], 0x10d, 0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="0000e3ffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200"/143]}, 0x107)

458.426849ms ago: executing program 1 (id=772):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f00000000c0)={0x6, &(0x7f0000000080)=[{0x888b, 0x60}, {0x2, 0x3}, {0xf8, 0x101}, {0x9, 0x7631}, {0xd, 0xeb}, {0x9, 0xc022}]})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000022c0)={0x6, 0xb, &(0x7f0000001fc0)=@framed={{}, [@printk={@ld, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xac}}]}, &(0x7f0000002040)='GPL\x00', 0x5, 0xc9, &(0x7f0000002080)=""/201}, 0x90)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r3, 0x0, 0x6, &(0x7f0000000040)=0x633, 0x4)
sendto$inet(r3, &(0x7f00000003c0)="01fb94d37b663374", 0x8, 0x0, &(0x7f0000000200), 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000500)={'#! ', './file0', [{0x20, '/dev/ppp\x00'}, {0x20, 'GPL\x00'}, {0x20, 'rfc4106(gcm(aes))\x00'}, {0x20, 'rfc4106(\x942\xff\xff\xff\xff\xff\xff)\x00'}, {0x20, 'rfc4106(gcm(aes))\x00'}, {0x20, ' \x01\x00'}, {0x20, '}['}, {0x20, '}'}, {0x20, 'cgroup\x00'}, {0x20, '-\x14}$,/}+s![)($&..^[{%'}], 0xa, "19da40c4f7088c1e2931e86441084c6713b613b0f5c542905651a6fbf6ddcdd27430b419f64ee8d2a0a40ec1ab837c050bfbbd217172018854b3475d3f7c372caa468688880e096780f89b53dbe8464661cbffa57cd427b6970e8accd3026ee4dc6900a64839b8381e3c03ef5064fd2c21ce473ad6685c495318745f678d6de2b62f57fff520db2b9d30e223594ff609184fa193b0bafb63a79e7b8c44c218e23ecf713a31b06476f6809fa54ee0768e45909941534c44a600a098238c67c8dcfa52f12f2268be57f80d601729005b3fa9"}, 0x14b)
ioctl$TUNSETOFFLOAD(r4, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(r4, 0x40047451, 0x20004002)
syz_io_uring_setup(0x11ec, &(0x7f0000000240)={0x0, 0x0, 0x10100, 0x1}, &(0x7f0000000000), &(0x7f0000000200))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xf, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c1000003800090000000000000000f60200000004000000041001"], 0x101c}}, 0x0)
socket(0x10, 0x80002, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_IO(r5, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffb, 0xfe, 0x0, @buffer={0x0, 0x48, 0x0}, &(0x7f0000000800)="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", 0x0, 0x507f, 0x26, 0x0, 0x0})
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)=ANY=[@ANYBLOB="6400000002060500000000000000000000000000120003006269746d61703a69702c6d616100000005000100070000000900020073797a310000000018000780050003001f0000000c000180080001400300000005000500020000000500010006000000"], 0x64}}, 0x0)

359.502368ms ago: executing program 1 (id=773):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0) (async)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @mcast1}, 0x1c)
r1 = socket$inet6(0xa, 0x3, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000580), 0x1)
socket$inet6(0xa, 0x1, 0x0) (async)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r2, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r2, &(0x7f0000f65000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0xfffffefffbfbbfbe, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
bind$inet6(r2, &(0x7f0000000380)={0xa, 0x4e22, 0x8005aa5, @mcast2, 0x6}, 0x1c) (async)
bind$inet6(r2, &(0x7f0000000380)={0xa, 0x4e22, 0x8005aa5, @mcast2, 0x6}, 0x1c)
fcntl$notify(r1, 0x402, 0x8000000d)
getsockopt$inet6_buf(r2, 0x29, 0x6, 0x0, &(0x7f0000000080))
setsockopt$inet6_tcp_int(r2, 0x6, 0x1, &(0x7f0000000000), 0x4)
fsmount(0xffffffffffffffff, 0x0, 0x88) (async)
r3 = fsmount(0xffffffffffffffff, 0x0, 0x88)
socket$inet6(0xa, 0x2, 0x400) (async)
r4 = socket$inet6(0xa, 0x2, 0x400)
bind$inet6(r4, &(0x7f0000000540)={0xa, 0x4e22, 0x6, @loopback, 0x1}, 0xffffffffffffff68)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000010000100000000af060000000000000a38000000060a01040000000000000000000000000900010073797a30000000000900010073797a30000000000900010073797a3100000000140000001100010000000000000000000000000a"], 0x60}}, 0x0)
connect$unix(r3, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="24000000680009030000000000000000ff0000000000000008000a000000000004e00800"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="24000000680009030000000000000000ff0000000000000008000a000000000004e00800"], 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r7, &(0x7f0000000440)="e5857e026721e2ecc35e01c3ea1ead72c5444cb0d38f23d5fb30d02bd5b83a279107580e97bc8a2b2ef48b3db27b0ff19e96ab4d102d292c192bc657baf5ea6369430640071dcce4dcc65053a4c3648b0032b21ad8b37acdc8225d968e5acdbb60", 0x61, 0x4880, &(0x7f00000001c0)={0xa, 0x4e22, 0xf54e, @mcast1, 0x990}, 0x1c)
listen(0xffffffffffffffff, 0x0)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x1c, &(0x7f0000000140)="d954bafefd22d16323af53b19855b2741695fe6025f1", 0x16)
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd6007090200140600fe8000000000000000000000eeda1dc3ef22e6f7cddd793d1ee465000000bbfe80000000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
chmod(&(0x7f00000003c0)='./file0\x00', 0x114)

344.574489ms ago: executing program 1 (id=774):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000045c0)=0x8)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r2, 0x84, 0x6b, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c)
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0202f3021600000000000000000000000200090008000000e90000000000000003000600000000000200000000000000000000000000000002000100000000000000020200000020030005000000000002000000ac1414aa00000000000000000a00080008"], 0xb0}, 0x1, 0x7}, 0x0) (fail_nth: 1)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000400)=ANY=[], 0x254}}, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x300022, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$eJzs3MtrXFUYAPDv3jyaNrGTiqgtggGpFcVp2hSFrlrXooIuuuyYTErI9GEmggldpHWvLkRcFKR/guDeunAluKgLrX9BEYsU3bQuInce6dBkktjO9PTx+8GZe86c6XzfN5fOPQfmJoAn1kTxkEfsjYiTWUSp9XweEcON3kjESvN1t2+eny5aFqur7/+VRRYRt26en26/V9Y6jrYGIxFx9a0snv50fdz60vJ8pVarLrTGBxdPnztYX1p+fe505VT1VPXMkak3j0y9MTXVw1qvn/vw6xd+eefli5c/m3z3q90/ZXEsxlpznXX0ykRMrH0mnQYjotLrYIkMtOrprDMbTJgQAACbyjvWcM9GKQbizuKtFD/+mjQ5AAAAoCdWByJWAQAAgMdcZv8PAAAAj7n27wBu3Tw/3W5pf5HwYN04HhHjzfrb9zc3ZwZjpXEciaGI2PV3Fp23tWbNf3bfJopI3/1cLVr06T7kzaxciIjnNzr/WaP+8cZd3OvrzyNisgfxJ+4aP0r1H+tB/NT1A/BkunK8eSFbf/3L19Y/scH1b3CDa9e9SH39a6//bq9b/92pf6DL+u+9bcbY9++rV7vNda7/Tnz++0wRvzjeV1H/w40LEfsGN6o/W6s/61L/yW3GGJ2+fqnbXFF/UW+7Pej6Vy9H7I+N62/LNvv7RAdn52rVyeZjlxj7fzhxoFv8zvNftCJ+ey/wIBTnf1eX+rc6/+e2GWP8uT/3dpvbuv78j+Hsg0ZvuPXMJ5XFxYVDEcPZ2+ufP7x5Lu3XtN+jqP+Vlzb//79R/cV3wkrrcyj2Ahdax2J88a6Yo/sPf3vv9fdXUf/MPZ7/L7YZ45vvL33UbS51/QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8GvKIGIssL6/187xcjhiNiGdiV147W198bfbsx2dmirmI8RjKZ+dq1cmIKDXHWTE+1OjfGR++azwVEXsi4svSzsa4PH22NpO6eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANaMRsRYZHk5IvKI+KeU5+Vy6qwAAACAnhtPnQAAAADQd/b/AAAA8Piz/wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDP9rx45VoWEStHdzZaYbg1N5Q0M6Df8tQJAMkMpE4ASGYwdQJAMvb4QLbF/EjXmR09zwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAh9eBvVeuZRGxcnRnoxWGW3NDSTMD+i1PnQCQzEDqBIBkBlMnACRjjw9kW8yPdJ3Z0fNcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHh4jTValpcjIm/087xcjngqIsZjKJudq1UnI2J3RPxWGtpRjA+lThoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICeqy8tz1dqteqCjo6Ozlon9TcTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp1JeW5yu1WnWhnjoTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAILX60vJ8pVarLvSxk7pGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADS+S8AAP//szUGGQ==")
futex(0x0, 0x10b, 0x4, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

57.763525ms ago: executing program 0 (id=775):
openat$vsock(0xffffffffffffff9c, 0x0, 0x40100, 0x0)
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r1=>0x0})
r2 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r2, &(0x7f0000000000)={0x1d, r1, 0x3}, 0x18)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
io_uring_setup(0x396b, &(0x7f0000000180))
sendmsg$nl_route(r2, &(0x7f0000000a40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)=ANY=[@ANYRESHEX, @ANYRES32=r1, @ANYBLOB="08000100010000000800010000000000"], 0x28}}, 0x44004)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x13c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.32849ms ago: executing program 4 (id=776):
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x7b95b60e, 0x80)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40485404, &(0x7f0000000640)={{0x1, 0x0, 0x0, 0x3, 0xfff}})
write(r0, &(0x7f0000000140)="f5", 0x5)

943.41µs ago: executing program 2 (id=777):
r0 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r0, &(0x7f0000005dc0)=[{{0x0, 0x0, 0x0}}], 0x4000000000002b1, 0x0, 0x0) (async)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000140)='./file1\x00', 0x80c406, &(0x7f00000005c0)=ANY=[@ANYBLOB="646f74732c646f747300646d61736b3d30303030303030303003994db69d6fadd9fe8357bb9b326973636172642c0166733d6e6f7774066c655f726f2c6769643d8bde74b54a903862b1d491a0644fd032adf103782b3e6ab9bb8b7d5a0000008000000000831cac568a8781052c1f78a90d525fbffbbe712b3588cd20fd6b4fa30f99796b63d0000200006bf7964f30b515830fe521179cb856fcec51525e76986850e3c2079c07811902047009a8bd311ec4398a92a06f061a5a0ba1eb2b3db991e65cb55232662ecb874cb1ea47734fd6c56b06c03f20235fad7299622ac7c70fbb5466c8f69e506f15f9048273682c4abdddc8cbc849980b03000000000000000000000063e0c97554c132b6effff3b3e0c109c72f794db4da27b9108716f1877464f58d22d0ea6e75321d887a6a375c5cf8cce358a8df2720e76ce466c78c7901cc6071bc2eafaa394d4290e95d4db56b59ed5d9bd10d94b075a7ace6d3f19993baa452c9ecc39f61cc383b51b627ad3b736c045f8c784b64531d7535f784ce34998dee85b80f515bdeba72caeb00c76ae7cb06986d7e9f9fec03b990c1fc56d5161ae3c622a649f9f95781dd32bc8e4090861fcad6bed6a3be33f3602b136695e7543543b93f62312f5387cd4c6d1aa22271ec1be39d675c08f44ed601b6c8fbf92f448158194570618bfd504dfd0ff459eff7bc34e453816efefe372fcecc66f0956afbe155f1f53d0eff4872d6921804209e82af2ed0a588b8ebbef33bbbc3d495d110acf1a7537f33a8f5a82a29e2d6761b50d3db9dae0a9606eb4b0a92cdb504659776a21344b8fdc9ca3851a76938dd00e59cb1d1ad7ec9ac6e19d3244e209fd56e67caf895cf9f8507b063cac9ddc2ae46f7dff3f9b86b5b3838383015a502f3540a8a796580c78737b10f54977af5cee89e91cc54e21101973aed1e03820294e9811ef0c389ec53e04e14f226213fa4fd2f9c32cd317f936edcf16bffd78d69907336f1e4cf69c22d2e8f0a1caa2623483b45be9f59f1b74cd3f19a92db916f959d4bcb800c50bfabd4d63861e036ef6d614d46c31ab711ad2ead248d781e89017fc7c22d22be274e450e5f1837bf10921f4b117439ad4503f11682542bdba745be99", @ANYRES64=0x0, @ANYRES64], 0xff, 0x2a9, &(0x7f0000000a40)="$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") (async)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x1) (async)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) (async, rerun: 64)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000010c0)='cpuacct.usage_user\x00', 0x275a, 0x0) (async, rerun: 64)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000d00)={'#! ', './file0', [], 0xa, "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"/390}, 0x191) (async, rerun: 32)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000001080), 0x0, 0x4e8, &(0x7f0000002200)="$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") (rerun: 32)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
creat(&(0x7f0000000040)='./bus\x00', 0x0) (async, rerun: 32)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) (async, rerun: 32)
r1 = open(&(0x7f0000000040)='./bus\x00', 0x60142, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0xc901, &(0x7f00000000c0)={[{@mblk_io_submit}, {@init_itable}]}, 0x1, 0x4dc, &(0x7f0000000540)="$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") (async)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r2, 0x0) (async)
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) (async)
fallocate(r1, 0x10, 0x0, 0x2000) (async, rerun: 64)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (rerun: 64)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000180), 0x40010)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f00000000c0)={0x0, @local, 0x0, 0x0, 'none\x00', 0x38, 0x2032, 0x13}, 0x2c) (async)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="b4000000000000006910630a0000000004000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x2, 0x3f7, &(0x7f000000cf3d)=""/195}, 0x48) (async)
r3 = perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r3, 0xb)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='bdi_dirty_ratelimit\x00'}, 0x10) (async)
r5 = gettid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r5, r4, 0x0, 0x14, 0xfffffffffffffffe}, 0x42)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000dd0a000000df19832487da573954ec7eb01e304a00000063"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x68000000}, 0x48)

0s ago: executing program 4 (id=778):
r0 = socket$key(0xf, 0x3, 0x2)
ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, &(0x7f0000000040)={0x4, 0x48, [0xffffffffc825007f, 0x7ff, 0xfffffffffffffff7, 0x6], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0202f302160000000000000000000000020009"], 0xb0}, 0x1, 0x7}, 0x0)

kernel console output (not intermixed with test programs):

   54.514772][ T5152] name failslab, interval 1, probability 0, space 0, times 0
[   54.527536][ T5152] CPU: 0 UID: 0 PID: 5152 Comm: syz.3.446 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   54.538116][ T5152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   54.548274][ T5152] Call Trace:
[   54.551561][ T5152]  <TASK>
[   54.554477][ T5152]  dump_stack_lvl+0xf2/0x150
[   54.559136][ T5152]  dump_stack+0x15/0x20
[   54.563285][ T5152]  should_fail_ex+0x229/0x230
[   54.568005][ T5152]  ? vm_area_alloc+0x2c/0x130
[   54.572689][ T5152]  should_failslab+0x8f/0xb0
[   54.577349][ T5152]  kmem_cache_alloc_noprof+0x4c/0x290
[   54.582714][ T5152]  vm_area_alloc+0x2c/0x130
[   54.587225][ T5152]  mmap_region+0x88b/0x1620
[   54.591731][ T5152]  ? security_mmap_addr+0x4c/0x70
[   54.596759][ T5152]  ? __get_unmapped_area+0x2d1/0x300
[   54.602046][ T5152]  do_mmap+0x72a/0xb70
[   54.606156][ T5152]  ? security_mmap_file+0x128/0x150
[   54.611438][ T5152]  vm_mmap_pgoff+0x133/0x290
[   54.616022][ T5152]  ksys_mmap_pgoff+0xd0/0x340
[   54.620739][ T5152]  ? fpregs_assert_state_consistent+0x83/0xa0
[   54.626921][ T5152]  x64_sys_call+0x1884/0x2d60
[   54.631661][ T5152]  do_syscall_64+0xc9/0x1c0
[   54.636177][ T5152]  ? clear_bhb_loop+0x55/0xb0
[   54.640966][ T5152]  ? clear_bhb_loop+0x55/0xb0
[   54.645647][ T5152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.651617][ T5152] RIP: 0033:0x7fcb3d079a33
[   54.656025][ T5152] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   54.664795][ T5136] SELinux:  Context system_u:object_r:apt_var_lib_t:s0 is not valid (left unmapped).
[   54.675661][ T5152] RSP: 002b:00007fcb3bcf6e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   54.685355][   T29] audit: type=1400 audit(1723563350.283:402): avc:  denied  { relabelto } for  pid=5134 comm="syz.1.440" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:apt_var_lib_t:s0"
[   54.693549][ T5152] RAX: ffffffffffffffda RBX: 0000000000000535 RCX: 00007fcb3d079a33
[   54.721127][   T29] audit: type=1400 audit(1723563350.283:403): avc:  denied  { setattr } for  pid=5134 comm="syz.1.440" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:apt_var_lib_t:s0"
[   54.727576][ T5152] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   54.727629][ T5152] RBP: 0000000020000ac2 R08: 00000000ffffffff R09: 0000000000000000
[   54.727693][ T5152] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[   54.727705][ T5152] R13: 00007fcb3bcf6ef0 R14: 00007fcb3bcf6eb0 R15: 0000000020000800
[   54.727788][ T5152]  </TASK>
[   54.790958][   T28] veth1_macvtap: left promiscuous mode
[   54.796492][   T28] veth0_macvtap: left promiscuous mode
[   54.801984][   T28] veth1_vlan: left promiscuous mode
[   54.807255][   T28] veth0_vlan: left promiscuous mode
[   54.846374][ T5165] FAULT_INJECTION: forcing a failure.
[   54.846374][ T5165] name failslab, interval 1, probability 0, space 0, times 0
[   54.859019][ T5165] CPU: 0 UID: 0 PID: 5165 Comm: syz.2.450 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   54.869680][ T5165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   54.879715][ T5165] Call Trace:
[   54.883026][ T5165]  <TASK>
[   54.885935][ T5165]  dump_stack_lvl+0xf2/0x150
[   54.890622][ T5165]  dump_stack+0x15/0x20
[   54.894761][ T5165]  should_fail_ex+0x229/0x230
[   54.899426][ T5165]  ? __alloc_skb+0x10b/0x310
[   54.904063][ T5165]  should_failslab+0x8f/0xb0
[   54.908679][ T5165]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   54.914490][ T5165]  __alloc_skb+0x10b/0x310
[   54.918953][ T5165]  netlink_alloc_large_skb+0xad/0xe0
[   54.924345][ T5165]  netlink_sendmsg+0x3b4/0x6e0
[   54.929177][ T5165]  ? __pfx_netlink_sendmsg+0x10/0x10
[   54.934465][ T5165]  __sock_sendmsg+0x140/0x180
[   54.939150][ T5165]  ____sys_sendmsg+0x312/0x410
[   54.943966][ T5165]  __sys_sendmsg+0x1e9/0x280
[   54.948570][ T5165]  __x64_sys_sendmsg+0x46/0x50
[   54.953430][ T5165]  x64_sys_call+0x2689/0x2d60
[   54.958116][ T5165]  do_syscall_64+0xc9/0x1c0
[   54.962623][ T5165]  ? clear_bhb_loop+0x55/0xb0
[   54.967310][ T5165]  ? clear_bhb_loop+0x55/0xb0
[   54.972032][ T5165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.978015][ T5165] RIP: 0033:0x7f9e6d6e99f9
[   54.982475][ T5165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.002083][ T5165] RSP: 002b:00007f9e6c361038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   55.010567][ T5165] RAX: ffffffffffffffda RBX: 00007f9e6d885f80 RCX: 00007f9e6d6e99f9
[   55.018584][ T5165] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000003
[   55.026552][ T5165] RBP: 00007f9e6c361090 R08: 0000000000000000 R09: 0000000000000000
[   55.034521][ T5165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.042485][ T5165] R13: 0000000000000000 R14: 00007f9e6d885f80 R15: 00007ffdb96b4828
[   55.050461][ T5165]  </TASK>
[   55.067366][ T5170] loop3: detected capacity change from 0 to 8192
[   55.133443][   T28] team0 (unregistering): Port device team_slave_1 removed
[   55.144028][   T28] team0 (unregistering): Port device team_slave_0 removed
[   55.235479][ T5085] chnl_net:caif_netlink_parms(): no params data found
[   55.249389][ T5186] loop1: detected capacity change from 0 to 512
[   55.262520][ T5186] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   55.274810][ T5188] netlink: 28 bytes leftover after parsing attributes in process `syz.4.457'.
[   55.297529][ T5186] EXT4-fs (loop1): 1 orphan inode deleted
[   55.303252][ T5186] EXT4-fs (loop1): 1 truncate cleaned up
[   55.347521][ T5085] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.354633][ T5085] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.363415][ T5085] bridge_slave_0: entered allmulticast mode
[   55.370260][ T5186] loop1: detected capacity change from 512 to 11
[   55.392701][ T5085] bridge_slave_0: entered promiscuous mode
[   55.406731][ T5085] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.413920][ T5085] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.433565][ T5205] loop3: detected capacity change from 0 to 1024
[   55.455133][ T5085] bridge_slave_1: entered allmulticast mode
[   55.473875][ T5085] bridge_slave_1: entered promiscuous mode
[   55.480510][ T5206] netlink: 56 bytes leftover after parsing attributes in process `syz.1.458'.
[   55.519456][ T5085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.544661][ T5085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.560551][ T5216] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   55.576849][ T3659] EXT4-fs warning (device loop1): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -12 reading directory block
[   55.590924][ T3659] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5810: Out of memory
[   55.600973][ T3659] EXT4-fs error (device loop1): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[   55.622407][ T5192] bond0: entered promiscuous mode
[   55.627523][ T5192] bond_slave_0: entered promiscuous mode
[   55.633424][ T5192] bond_slave_1: entered promiscuous mode
[   55.645445][ T5085] team0: Port device team_slave_0 added
[   55.671782][ T5085] team0: Port device team_slave_1 added
[   55.695800][ T5085] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.702751][ T5085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.728661][ T5085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.739986][ T5085] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.747015][ T5085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.773048][ T5085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.819253][ T5085] hsr_slave_0: entered promiscuous mode
[   55.825656][ T5085] hsr_slave_1: entered promiscuous mode
[   55.831554][ T5085] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   55.839212][ T5085] Cannot create hsr debugfs directory
[   56.085845][ T5271] FAULT_INJECTION: forcing a failure.
[   56.085845][ T5271] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.099089][ T5271] CPU: 1 UID: 0 PID: 5271 Comm: syz.4.464 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   56.109666][ T5271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   56.119713][ T5271] Call Trace:
[   56.123044][ T5271]  <TASK>
[   56.125955][ T5271]  dump_stack_lvl+0xf2/0x150
[   56.130550][ T5271]  dump_stack+0x15/0x20
[   56.134709][ T5271]  should_fail_ex+0x229/0x230
[   56.139436][ T5271]  should_fail+0xb/0x10
[   56.143641][ T5271]  should_fail_usercopy+0x1a/0x20
[   56.148664][ T5271]  _copy_to_user+0x1e/0xa0
[   56.153074][ T5271]  sock_do_ioctl+0x222/0x260
[   56.157659][ T5271]  sock_ioctl+0x470/0x640
[   56.161980][ T5271]  ? __pfx_sock_ioctl+0x10/0x10
[   56.166904][ T5271]  __se_sys_ioctl+0xd3/0x150
[   56.171511][ T5271]  __x64_sys_ioctl+0x43/0x50
[   56.176091][ T5271]  x64_sys_call+0x15cc/0x2d60
[   56.180771][ T5271]  do_syscall_64+0xc9/0x1c0
[   56.185267][ T5271]  ? clear_bhb_loop+0x55/0xb0
[   56.189935][ T5271]  ? clear_bhb_loop+0x55/0xb0
[   56.194603][ T5271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.200487][ T5271] RIP: 0033:0x7ff0827799f9
[   56.204886][ T5271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.224614][ T5271] RSP: 002b:00007ff0813f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   56.233046][ T5271] RAX: ffffffffffffffda RBX: 00007ff082915f80 RCX: 00007ff0827799f9
[   56.241002][ T5271] RDX: 0000000020000080 RSI: 0000000000008933 RDI: 0000000000000003
[   56.248956][ T5271] RBP: 00007ff0813f7090 R08: 0000000000000000 R09: 0000000000000000
[   56.257308][ T5271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.265263][ T5271] R13: 0000000000000000 R14: 00007ff082915f80 R15: 00007ffe8f989ab8
[   56.273230][ T5271]  </TASK>
[   56.307141][ T5191] bond0: left promiscuous mode
[   56.311920][ T5191] bond_slave_0: left promiscuous mode
[   56.317426][ T5191] bond_slave_1: left promiscuous mode
[   56.344985][   T28] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.391087][ T5274] loop3: detected capacity change from 0 to 512
[   56.406500][ T5274] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   56.415629][ T5274] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   56.429276][ T5274] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[   56.445159][   T28] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.451844][ T5274] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   56.464268][ T5274] System zones: 0-2, 18-18, 34-34
[   56.470559][ T5274] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   56.497071][ T5248] chnl_net:caif_netlink_parms(): no params data found
[   56.506494][ T5085] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.513303][ T5274] EXT4-fs (loop3): 1 truncate cleaned up
[   56.520892][ T5085] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.530941][ T5274] EXT4-fs warning (device loop3): ext4_group_extend:1890: can't read last block, resize aborted
[   56.573824][   T28] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.614198][ T5303] loop2: detected capacity change from 0 to 4096
[   56.682239][ T5085] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.698616][ T5085] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   56.721253][   T28] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.799137][ T5330] loop3: detected capacity change from 0 to 128
[   56.808507][ T5248] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.815625][ T5248] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.836699][ T5248] bridge_slave_0: entered allmulticast mode
[   56.850389][ T5330] __find_get_block_slow() failed. block=144115188075855872, b_blocknr=0, b_state=0x00106019, b_size=4096, device sda1 blocksize: 4096
[   56.851764][ T5248] bridge_slave_0: entered promiscuous mode
[   56.871147][ T5330] grow_buffers: requested out-of-range block 144115188075855872 for device sda1
[   56.872047][ T5248] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.880264][ T5330] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[   56.887287][ T5248] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.904534][ T5248] bridge_slave_1: entered allmulticast mode
[   56.911227][ T5248] bridge_slave_1: entered promiscuous mode
[   56.919785][ T5293] loop4: detected capacity change from 0 to 512
[   56.927580][ T5293] EXT4-fs: quotafile must be on filesystem root
[   56.987153][ T5248] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.003941][ T5085] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.027087][   T28] bridge_slave_1: left allmulticast mode
[   57.032753][   T28] bridge_slave_1: left promiscuous mode
[   57.038514][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.052882][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   57.073223][   T28] bridge_slave_0: left allmulticast mode
[   57.078971][   T28] bridge_slave_0: left promiscuous mode
[   57.084600][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.093892][   T28] batman_adv: batadv0: Interface deactivated: gretap1
[   57.202804][ T5367] netlink: 12 bytes leftover after parsing attributes in process `syz.3.478'.
[   57.231718][   T28] batman_adv: batadv0: Removing interface: gretap1
[   57.287175][ T5380] loop3: detected capacity change from 0 to 1024
[   57.293026][ T5293] loop4: detected capacity change from 0 to 512
[   57.303499][ T5293] EXT4-fs (loop4): external journal device major/minor numbers have changed
[   57.312672][ T5293] syz.4.471: attempt to access beyond end of device
[   57.312672][ T5293] loop75: rw=0, sector=2, nr_sectors = 2 limit=0
[   57.336510][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   57.357343][ T5293] EXT4-fs (loop4): couldn't read superblock of external journal
[   57.366279][ T5380] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.369183][ T5388] loop2: detected capacity change from 0 to 128
[   57.383337][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   57.410482][   T28] bond0 (unregistering): Released all slaves
[   57.429357][ T5248] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.446363][ T5085] 8021q: adding VLAN 0 to HW filter on device team0
[   57.479093][ T3279] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.486157][ T3279] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.496559][ T5248] team0: Port device team_slave_0 added
[   57.504642][   T28] hsr_slave_0: left promiscuous mode
[   57.510325][   T28] hsr_slave_1: left promiscuous mode
[   57.517246][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   57.524624][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[   57.542006][ T5406] loop2: detected capacity change from 0 to 1024
[   57.552308][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   57.559808][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[   57.582090][   T28] veth1_macvtap: left promiscuous mode
[   57.587585][   T28] veth0_macvtap: left promiscuous mode
[   57.593165][   T28] veth1_vlan: left promiscuous mode
[   57.598518][   T28] veth0_vlan: left promiscuous mode
[   57.656201][ T5422] loop3: detected capacity change from 0 to 128
[   57.688557][ T5422] ext4 filesystem being mounted at /125/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   57.690844][ T5420] loop2: detected capacity change from 0 to 8192
[   57.787906][   T28] team0 (unregistering): Port device team_slave_1 removed
[   57.797866][   T28] team0 (unregistering): Port device team_slave_0 removed
[   57.831220][ T5248] team0: Port device team_slave_1 added
[   57.863435][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.870596][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.898425][ T5248] batman_adv: batadv0: Adding interface: batadv_slave_0
[   57.905415][ T5248] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.910249][   T29] audit: type=1400 audit(1723563353.543:404): avc:  denied  { execute } for  pid=5435 comm="syz.3.486" path="/127/bus" dev="tmpfs" ino=726 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   57.931358][ T5248] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   57.960686][ T5248] batman_adv: batadv0: Adding interface: batadv_slave_1
[   57.971277][ T5248] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.997230][ T5248] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.029896][ T5085] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   58.069565][ T5248] hsr_slave_0: entered promiscuous mode
[   58.085021][ T5248] hsr_slave_1: entered promiscuous mode
[   58.092360][ T5248] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.100379][ T5248] Cannot create hsr debugfs directory
[   58.142646][ T5085] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.177636][ T5467] loop2: detected capacity change from 0 to 128
[   58.253223][ T5475] loop2: detected capacity change from 0 to 1024
[   58.291661][ T5085] veth0_vlan: entered promiscuous mode
[   58.299709][ T5085] veth1_vlan: entered promiscuous mode
[   58.315898][ T5085] veth0_macvtap: entered promiscuous mode
[   58.332328][ T5085] veth1_macvtap: entered promiscuous mode
[   58.383137][ T5495] loop2: detected capacity change from 0 to 2048
[   58.391658][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.402097][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.411938][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.422388][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.432262][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   58.442676][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.453874][ T5085] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.461996][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.472601][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.482419][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.492880][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.502681][ T5085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   58.513081][ T5085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   58.523678][ T5085] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.528301][ T5502] loop2: detected capacity change from 0 to 736
[   58.545266][ T5502] FAULT_INJECTION: forcing a failure.
[   58.545266][ T5502] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.558321][ T5502] CPU: 1 UID: 0 PID: 5502 Comm: syz.2.495 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   58.559515][ T5085] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.568893][ T5502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   58.568930][ T5502] Call Trace:
[   58.568936][ T5502]  <TASK>
[   58.568942][ T5502]  dump_stack_lvl+0xf2/0x150
[   58.568996][ T5502]  dump_stack+0x15/0x20
[   58.577809][ T5085] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.587672][ T5502]  should_fail_ex+0x229/0x230
[   58.587704][ T5502]  should_fail+0xb/0x10
[   58.587799][ T5502]  should_fail_usercopy+0x1a/0x20
[   58.591069][ T5085] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.593971][ T5502]  _copy_to_user+0x1e/0xa0
[   58.598560][ T5085] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.602653][ T5502]  simple_read_from_buffer+0xa0/0x110
[   58.602678][ T5502]  proc_fail_nth_read+0xfc/0x140
[   58.657353][ T5502]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   58.662910][ T5502]  vfs_read+0x1a2/0x6e0
[   58.667075][ T5502]  ? mntput+0x49/0x70
[   58.671064][ T5502]  ksys_read+0xeb/0x1b0
[   58.675229][ T5502]  __x64_sys_read+0x42/0x50
[   58.679802][ T5502]  x64_sys_call+0x27d3/0x2d60
[   58.684526][ T5502]  do_syscall_64+0xc9/0x1c0
[   58.689040][ T5502]  ? clear_bhb_loop+0x55/0xb0
[   58.693728][ T5502]  ? clear_bhb_loop+0x55/0xb0
[   58.698426][ T5502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.704425][ T5502] RIP: 0033:0x7f9e6d6e843c
[   58.708848][ T5502] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[   58.728532][ T5502] RSP: 002b:00007f9e6c361030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   58.736927][ T5502] RAX: ffffffffffffffda RBX: 00007f9e6d885f80 RCX: 00007f9e6d6e843c
[   58.744902][ T5502] RDX: 000000000000000f RSI: 00007f9e6c3610a0 RDI: 000000000000000b
[   58.752862][ T5502] RBP: 00007f9e6c361090 R08: 0000000000000000 R09: 0000000000000000
[   58.760812][ T5502] R10: 0000000000001100 R11: 0000000000000246 R12: 0000000000000001
[   58.768762][ T5502] R13: 0000000000000000 R14: 00007f9e6d885f80 R15: 00007ffdb96b4828
[   58.776713][ T5502]  </TASK>
[   58.858572][ T5248] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   58.886838][ T5530] netlink: 'syz.0.433': attribute type 21 has an invalid length.
[   58.888917][ T5528] xt_AUDIT: Audit type out of range (valid range: 0..2)
[   58.894578][ T5530] netlink: 'syz.0.433': attribute type 15 has an invalid length.
[   58.909289][ T5530] netlink: 164 bytes leftover after parsing attributes in process `syz.0.433'.
[   58.918245][ T5530] IPv6: NLM_F_CREATE should be specified when creating new route
[   58.931897][ T5530] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   58.939118][ T5530] IPv6: NLM_F_CREATE should be set when creating new route
[   58.946438][ T5530] IPv6: NLM_F_CREATE should be set when creating new route
[   58.950492][ T5537] loop2: detected capacity change from 0 to 128
[   58.953609][ T5530] IPv6: NLM_F_CREATE should be set when creating new route
[   58.969577][ T5248] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   59.007143][ T5541] loop0: detected capacity change from 0 to 1024
[   59.015770][ T5248] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   59.040112][ T5248] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   59.137122][ T5248] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.142752][ T5556] loop3: detected capacity change from 0 to 2048
[   59.147665][   T29] audit: type=1400 audit(1723563354.793:405): avc:  denied  { read } for  pid=5562 comm="iou-wrk-5563" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   59.189375][ T5563] loop0: detected capacity change from 0 to 2048
[   59.199627][ T5248] 8021q: adding VLAN 0 to HW filter on device team0
[   59.212701][   T56] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.219778][   T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.238929][ T3358] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.246043][ T3358] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.248437][   T29] audit: type=1400 audit(1723563354.893:406): avc:  denied  { bind } for  pid=5562 comm="syz.0.505" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   59.273585][   T29] audit: type=1400 audit(1723563354.913:407): avc:  denied  { write } for  pid=5562 comm="syz.0.505" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   59.303282][ T5563] EXT4-fs error (device loop0): ext4_search_dir:1505: inode #2: block 16: comm syz.0.505: bad entry in directory: inode out of bounds - offset=44, inode=185, rec_len=16, size=2048 fake=0
[   59.315866][ T5580] loop3: detected capacity change from 0 to 2048
[   59.329647][ T5563] EXT4-fs error (device loop0): ext4_find_dest_de:2067: inode #2: block 16: comm syz.0.505: bad entry in directory: inode out of bounds - offset=44, inode=185, rec_len=16, size=2048 fake=0
[   59.358554][ T5578] netlink: 'syz.2.507': attribute type 10 has an invalid length.
[   59.386486][ T5248] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.471286][ T5248] veth0_vlan: entered promiscuous mode
[   59.482932][ T5248] veth1_vlan: entered promiscuous mode
[   59.500447][ T5248] veth0_macvtap: entered promiscuous mode
[   59.508485][ T5248] veth1_macvtap: entered promiscuous mode
[   59.519644][ T5248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.530159][ T5248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.540032][ T5248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.550606][ T5248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.555293][ T5596] loop3: detected capacity change from 0 to 128
[   59.560455][ T5248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.577252][ T5248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.587134][ T5248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.590611][   T29] audit: type=1400 audit(1723563355.233:408): avc:  denied  { create } for  pid=5593 comm="syz.0.509" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   59.597592][ T5248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.630224][ T5248] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.651366][ T5248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.661900][ T5248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.671670][ T5597] loop0: detected capacity change from 0 to 1024
[   59.671748][ T5248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.688567][ T5248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.698391][ T5248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.699821][ T5597] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   59.708883][ T5248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.708897][ T5248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.708909][ T5248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.722585][   T29] audit: type=1400 audit(1723563355.273:409): avc:  denied  { bind } for  pid=5593 comm="syz.0.509" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   59.740262][ T5248] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.747683][   T29] audit: type=1400 audit(1723563355.273:410): avc:  denied  { listen } for  pid=5593 comm="syz.0.509" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   59.803600][ T5248] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.812525][ T5248] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.821454][ T5248] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.830217][ T5248] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.878206][ T5605] netlink: 16 bytes leftover after parsing attributes in process `syz.3.513'.
[   59.897454][ T5609] loop1: detected capacity change from 0 to 128
[   59.913053][   T29] audit: type=1400 audit(1723563355.553:411): avc:  denied  { accept } for  pid=5593 comm="syz.0.509" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   59.949137][ T5614] netlink: 16 bytes leftover after parsing attributes in process `syz.4.516'.
[   59.966657][ T5609] ext4 filesystem being mounted at /0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   59.976251][ T5614] FAULT_INJECTION: forcing a failure.
[   59.976251][ T5614] name failslab, interval 1, probability 0, space 0, times 0
[   60.011070][ T5614] CPU: 0 UID: 0 PID: 5614 Comm: syz.4.516 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   60.021662][ T5614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   60.031753][ T5614] Call Trace:
[   60.035055][ T5614]  <TASK>
[   60.037967][ T5614]  dump_stack_lvl+0xf2/0x150
[   60.042592][ T5614]  dump_stack+0x15/0x20
[   60.046759][ T5614]  should_fail_ex+0x229/0x230
[   60.051428][ T5614]  ? __alloc_skb+0x10b/0x310
[   60.056064][ T5614]  should_failslab+0x8f/0xb0
[   60.060645][ T5614]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   60.066518][ T5614]  __alloc_skb+0x10b/0x310
[   60.070919][ T5614]  netlink_ack+0xef/0x4f0
[   60.075248][ T5614]  netlink_rcv_skb+0x19c/0x230
[   60.080095][ T5614]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[   60.085545][ T5614]  xfrm_netlink_rcv+0x47/0x60
[   60.090219][ T5614]  netlink_unicast+0x593/0x670
[   60.094970][ T5614]  netlink_sendmsg+0x5cc/0x6e0
[   60.099721][ T5614]  ? __pfx_netlink_sendmsg+0x10/0x10
[   60.104993][ T5614]  __sock_sendmsg+0x140/0x180
[   60.109730][ T5614]  ____sys_sendmsg+0x312/0x410
[   60.114485][ T5614]  __sys_sendmsg+0x1e9/0x280
[   60.119085][ T5614]  __x64_sys_sendmsg+0x46/0x50
[   60.123860][ T5614]  x64_sys_call+0x2689/0x2d60
[   60.128533][ T5614]  do_syscall_64+0xc9/0x1c0
[   60.133031][ T5614]  ? clear_bhb_loop+0x55/0xb0
[   60.137803][ T5614]  ? clear_bhb_loop+0x55/0xb0
[   60.142522][ T5614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.148441][ T5614] RIP: 0033:0x7ff0827799f9
[   60.152846][ T5614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.172501][ T5614] RSP: 002b:00007ff0813f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   60.180964][ T5614] RAX: ffffffffffffffda RBX: 00007ff082915f80 RCX: 00007ff0827799f9
[   60.188920][ T5614] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   60.196947][ T5614] RBP: 00007ff0813f7090 R08: 0000000000000000 R09: 0000000000000000
[   60.204902][ T5614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   60.212857][ T5614] R13: 0000000000000000 R14: 00007ff082915f80 R15: 00007ffe8f989ab8
[   60.220816][ T5614]  </TASK>
[   60.238244][ T5617] loop3: detected capacity change from 0 to 2048
[   60.298156][ T5630] loop4: detected capacity change from 0 to 736
[   60.358093][ T5640] loop0: detected capacity change from 0 to 128
[   60.366378][ T5637] loop3: detected capacity change from 0 to 512
[   60.375063][ T5637] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[   60.400239][ T5642] loop1: detected capacity change from 0 to 164
[   60.405825][ T5629] loop2: detected capacity change from 0 to 512
[   60.410511][ T5642] Unable to read rock-ridge attributes
[   60.429621][ T5629] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   60.438712][ T5629] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   60.457574][ T5644] xt_SECMARK: invalid security context 'unconfined'
[   60.464252][   T29] audit: type=1400 audit(1723563356.093:412): avc:  denied  { mount } for  pid=5635 comm="syz.3.523" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   60.488732][ T5648] loop4: detected capacity change from 0 to 512
[   60.509382][   T29] audit: type=1400 audit(1723563356.153:413): avc:  denied  { unmount } for  pid=3262 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   60.511370][ T5651] loop0: detected capacity change from 0 to 1024
[   60.538508][ T5653] loop3: detected capacity change from 0 to 512
[   60.544859][ T5629] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[   60.554531][ T5648] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   60.564522][ T5629] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   60.565450][ T5653] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   60.573497][ T5629] System zones: 0-2, 18-18, 34-34
[   60.582946][ T5648] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.524: corrupted in-inode xattr: e_name out of bounds
[   60.600301][ T5629] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   60.604755][ T5648] EXT4-fs (loop4): 1 truncate cleaned up
[   60.619907][ T5629] EXT4-fs (loop2): 1 truncate cleaned up
[   60.635706][ T5653] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.646360][ T5629] EXT4-fs warning (device loop2): ext4_group_extend:1890: can't read last block, resize aborted
[   60.655350][ T5653] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   60.713544][ T4043] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   60.736061][ T4043] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   60.756455][ T4043] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   60.778809][ T4043] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   60.802438][   T29] audit: type=1400 audit(1723563356.443:414): avc:  denied  { mounton } for  pid=5673 comm="syz.3.535" path="/140/file1" dev="tmpfs" ino=799 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   60.815647][ T4043] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   60.828757][ T5662] netlink: 'syz.1.530': attribute type 10 has an invalid length.
[   60.857668][ T4043] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   60.887702][ T4043] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   60.893384][ T5677] loop2: detected capacity change from 0 to 128
[   60.928469][ T4043] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   60.940399][ T5681] loop3: detected capacity change from 0 to 128
[   60.950978][ T4043] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor: path /61/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   60.989739][ T4043] EXT4-fs error (device loop4): ext4_empty_dir:3126: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[   61.009468][ T5684] FAULT_INJECTION: forcing a failure.
[   61.009468][ T5684] name failslab, interval 1, probability 0, space 0, times 0
[   61.022101][ T5684] CPU: 1 UID: 0 PID: 5684 Comm: syz.0.538 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   61.032688][ T5684] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   61.042731][ T5684] Call Trace:
[   61.046009][ T5684]  <TASK>
[   61.048924][ T5684]  dump_stack_lvl+0xf2/0x150
[   61.053593][ T5684]  dump_stack+0x15/0x20
[   61.057782][ T5684]  should_fail_ex+0x229/0x230
[   61.062453][ T5684]  ? skb_clone+0x154/0x1f0
[   61.066860][ T5684]  should_failslab+0x8f/0xb0
[   61.071444][ T5684]  kmem_cache_alloc_noprof+0x4c/0x290
[   61.076808][ T5684]  skb_clone+0x154/0x1f0
[   61.081109][ T5684]  __netlink_deliver_tap+0x2bd/0x4c0
[   61.086429][ T5684]  netlink_unicast+0x641/0x670
[   61.091197][ T5684]  netlink_sendmsg+0x5cc/0x6e0
[   61.095951][ T5684]  ? __pfx_netlink_sendmsg+0x10/0x10
[   61.101221][ T5684]  __sock_sendmsg+0x140/0x180
[   61.106104][ T5684]  ____sys_sendmsg+0x312/0x410
[   61.110874][ T5684]  __sys_sendmsg+0x1e9/0x280
[   61.115459][ T5684]  __x64_sys_sendmsg+0x46/0x50
[   61.120230][ T5684]  x64_sys_call+0x2689/0x2d60
[   61.124978][ T5684]  do_syscall_64+0xc9/0x1c0
[   61.129507][ T5684]  ? clear_bhb_loop+0x55/0xb0
[   61.134274][ T5684]  ? clear_bhb_loop+0x55/0xb0
[   61.139040][ T5684]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.144924][ T5684] RIP: 0033:0x7f46e02499f9
[   61.149321][ T5684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.168920][ T5684] RSP: 002b:00007f46deec7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   61.177339][ T5684] RAX: ffffffffffffffda RBX: 00007f46e03e5f80 RCX: 00007f46e02499f9
[   61.185347][ T5684] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   61.193365][ T5684] RBP: 00007f46deec7090 R08: 0000000000000000 R09: 0000000000000000
[   61.201322][ T5684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.209277][ T5684] R13: 0000000000000000 R14: 00007f46e03e5f80 R15: 00007ffea1655fb8
[   61.217239][ T5684]  </TASK>
[   61.265461][ T5689] loop3: detected capacity change from 0 to 128
[   61.307932][ T5689] syz.3.540: attempt to access beyond end of device
[   61.307932][ T5689] loop3: rw=34817, sector=121, nr_sectors = 260 limit=128
[   61.327953][ T5691] loop0: detected capacity change from 0 to 512
[   61.336253][ T3358] kworker/u8:7: attempt to access beyond end of device
[   61.336253][ T3358] loop3: rw=1, sector=385, nr_sectors = 656 limit=128
[   61.338847][ T5691] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   61.358775][ T5691] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   61.363548][ T5693] loop3: detected capacity change from 0 to 512
[   61.374995][ T5693] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   61.383256][ T5691] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[   61.392428][ T5691] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   61.400753][ T5691] System zones: 0-2, 18-18, 34-34
[   61.402521][ T5693] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.416660][ T5691] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   61.422716][ T5693] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   61.431766][ T5691] EXT4-fs (loop0): 1 truncate cleaned up
[   61.529901][ T3358] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.583819][ T3358] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.610061][ T5720] loop2: detected capacity change from 0 to 128
[   61.648334][ T3358] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.670091][ T5727] netlink: 24 bytes leftover after parsing attributes in process `syz.0.552'.
[   61.698238][ T5730] loop1: detected capacity change from 0 to 512
[   61.706713][ T3358] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.728508][ T5730] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   61.729207][ T5733] loop2: detected capacity change from 0 to 512
[   61.741304][ T5737] loop0: detected capacity change from 0 to 512
[   61.750835][ T5733] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   61.759970][ T5733] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   61.763629][ T5737] EXT4-fs (loop0): orphan cleanup on readonly fs
[   61.775703][ T5737] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.556: bg 0: block 248: padding at end of block bitmap is not set
[   61.778754][ T5733] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[   61.799422][ T5733] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   61.805915][ T5730] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.808043][ T5733] System zones: 0-2, 18-18, 34-34
[   61.823486][ T5733] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   61.824192][ T5737] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.556: Failed to acquire dquot type 1
[   61.841579][ T5733] EXT4-fs (loop2): 1 truncate cleaned up
[   61.858396][ T5737] EXT4-fs (loop0): 1 truncate cleaned up
[   61.881392][ T5737] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[   61.882155][ T5730] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   61.927459][ T5737] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   61.930263][ T5748] loop2: detected capacity change from 0 to 2048
[   61.952288][ T3358] bridge_slave_1: left allmulticast mode
[   61.958016][ T3358] bridge_slave_1: left promiscuous mode
[   61.963634][ T3358] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.998148][ T3358] bridge_slave_0: left allmulticast mode
[   62.003821][ T3358] bridge_slave_0: left promiscuous mode
[   62.009526][ T3358] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.041666][ T5764] loop2: detected capacity change from 0 to 1024
[   62.155514][ T5775] loop2: detected capacity change from 0 to 128
[   62.179314][ T3358] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   62.193855][ T3358] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   62.204306][ T3358] bond0 (unregistering): Released all slaves
[   62.239012][ T5762] netlink: 'syz.1.558': attribute type 10 has an invalid length.
[   62.246846][ T5710] chnl_net:caif_netlink_parms(): no params data found
[   62.304240][ T3358] hsr_slave_0: left promiscuous mode
[   62.310672][ T3358] hsr_slave_1: left promiscuous mode
[   62.317874][ T3358] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   62.325313][ T3358] batman_adv: batadv0: Removing interface: batadv_slave_0
[   62.338775][ T3358] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   62.346262][ T3358] batman_adv: batadv0: Removing interface: batadv_slave_1
[   62.356834][ T3358] veth1_macvtap: left promiscuous mode
[   62.362318][ T3358] veth0_macvtap: left promiscuous mode
[   62.367855][ T3358] veth1_vlan: left promiscuous mode
[   62.373076][ T3358] veth0_vlan: left promiscuous mode
[   62.418222][ T5809] netlink: 12 bytes leftover after parsing attributes in process `syz.2.565'.
[   62.481985][ T5813] loop0: detected capacity change from 0 to 512
[   62.489357][ T5813] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   62.513608][ T5815] loop2: detected capacity change from 0 to 2048
[   62.529576][ T5813] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.557430][ T3358] team0 (unregistering): Port device team_slave_1 removed
[   62.563531][ T5821] FAULT_INJECTION: forcing a failure.
[   62.563531][ T5821] name failslab, interval 1, probability 0, space 0, times 0
[   62.577177][ T5821] CPU: 1 UID: 0 PID: 5821 Comm: syz.2.569 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   62.587804][ T5821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   62.597858][ T5821] Call Trace:
[   62.601115][ T5821]  <TASK>
[   62.604024][ T5821]  dump_stack_lvl+0xf2/0x150
[   62.608630][ T5821]  dump_stack+0x15/0x20
[   62.612823][ T5821]  should_fail_ex+0x229/0x230
[   62.617661][ T5821]  ? getname_flags+0x81/0x3b0
[   62.622318][ T5821]  should_failslab+0x8f/0xb0
[   62.626978][ T5821]  kmem_cache_alloc_noprof+0x4c/0x290
[   62.632404][ T5821]  getname_flags+0x81/0x3b0
[   62.636884][ T5821]  getname+0x17/0x20
[   62.640755][ T5821]  do_sys_openat2+0x67/0x120
[   62.645323][ T5821]  __x64_sys_openat+0xf3/0x120
[   62.650071][ T5821]  x64_sys_call+0x1025/0x2d60
[   62.654731][ T5821]  do_syscall_64+0xc9/0x1c0
[   62.659238][ T5821]  ? clear_bhb_loop+0x55/0xb0
[   62.663900][ T5821]  ? clear_bhb_loop+0x55/0xb0
[   62.668556][ T5821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.674485][ T5821] RIP: 0033:0x7f9e6d6e99f9
[   62.678875][ T5821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.698580][ T5821] RSP: 002b:00007f9e6c361038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   62.707013][ T5821] RAX: ffffffffffffffda RBX: 00007f9e6d885f80 RCX: 00007f9e6d6e99f9
[   62.715013][ T5821] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c
[   62.722972][ T5821] RBP: 00007f9e6c361090 R08: 0000000000000000 R09: 0000000000000000
[   62.730929][ T5821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.738880][ T5821] R13: 0000000000000001 R14: 00007f9e6d885f80 R15: 00007ffdb96b4828
[   62.746847][ T5821]  </TASK>
[   62.750168][ T3358] team0 (unregistering): Port device team_slave_0 removed
[   62.789468][ T5710] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.796684][ T5710] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.803805][ T5710] bridge_slave_0: entered allmulticast mode
[   62.810388][ T5710] bridge_slave_0: entered promiscuous mode
[   62.818082][ T5826] loop2: detected capacity change from 0 to 128
[   62.827802][ T5826] ext4 filesystem being mounted at /128/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   62.829647][ T5813] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   62.865215][ T5710] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.881356][ T5710] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.889363][ T5710] bridge_slave_1: entered allmulticast mode
[   62.895982][ T5710] bridge_slave_1: entered promiscuous mode
[   62.925679][ T5710] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.971849][ T5710] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.998355][ T5710] team0: Port device team_slave_0 added
[   63.019710][ T5710] team0: Port device team_slave_1 added
[   63.051247][ T5839] loop0: detected capacity change from 0 to 128
[   63.055512][ T5710] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.064430][ T5710] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.090502][ T5710] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.132447][ T5710] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.139416][ T5710] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.165548][ T5710] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.269423][ T5861] loop0: detected capacity change from 0 to 2048
[   63.277862][ T5862] netlink: 40 bytes leftover after parsing attributes in process `syz.3.579'.
[   63.294623][ T5862] loop3: detected capacity change from 0 to 256
[   63.304307][ T5710] hsr_slave_0: entered promiscuous mode
[   63.315082][ T5710] hsr_slave_1: entered promiscuous mode
[   63.327709][ T5862] FAT-fs (loop3): Directory bread(block 64) failed
[   63.334346][ T5862] FAT-fs (loop3): Directory bread(block 65) failed
[   63.361552][ T5862] FAT-fs (loop3): Directory bread(block 66) failed
[   63.361731][ T5865] netlink: 576 bytes leftover after parsing attributes in process `syz.2.580'.
[   63.378956][ T5862] FAT-fs (loop3): Directory bread(block 67) failed
[   63.388236][ T5862] FAT-fs (loop3): Directory bread(block 68) failed
[   63.415360][ T5862] FAT-fs (loop3): Directory bread(block 69) failed
[   63.421960][ T5862] FAT-fs (loop3): Directory bread(block 70) failed
[   63.454304][ T5862] FAT-fs (loop3): Directory bread(block 71) failed
[   63.467650][ T5862] FAT-fs (loop3): Directory bread(block 72) failed
[   63.475991][ T5862] FAT-fs (loop3): Directory bread(block 73) failed
[   63.484240][ T5874] loop0: detected capacity change from 0 to 512
[   63.505469][ T5874] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   63.506665][ T5862] x_tables: unsorted underflow at hook 3
[   63.546182][ T5874] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.570983][ T5874] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   63.622424][ T5883] loop0: detected capacity change from 0 to 128
[   63.701174][ T5710] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   63.709645][ T5710] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   63.718964][ T5710] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   63.727996][ T5710] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   63.767539][ T5710] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.779689][ T5710] 8021q: adding VLAN 0 to HW filter on device team0
[   63.807941][ T3358] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.815089][ T3358] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.826165][ T3358] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.833207][ T3358] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.849833][ T5710] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   63.860318][ T5710] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   63.873909][ T5892] xt_AUDIT: Audit type out of range (valid range: 0..2)
[   63.938610][ T5900] FAULT_INJECTION: forcing a failure.
[   63.938610][ T5900] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.948777][ T5710] 8021q: adding VLAN 0 to HW filter on device batadv0
[   63.951779][ T5900] CPU: 1 UID: 0 PID: 5900 Comm: syz.0.589 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   63.969072][ T5900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   63.979175][ T5900] Call Trace:
[   63.982496][ T5900]  <TASK>
[   63.985425][ T5900]  dump_stack_lvl+0xf2/0x150
[   63.990049][ T5900]  dump_stack+0x15/0x20
[   63.994209][ T5900]  should_fail_ex+0x229/0x230
[   63.998898][ T5900]  should_fail+0xb/0x10
[   64.003113][ T5900]  should_fail_usercopy+0x1a/0x20
[   64.008149][ T5900]  _copy_to_user+0x1e/0xa0
[   64.012610][ T5900]  sctp_getsockopt_probe_interval+0x31b/0x3a0
[   64.018721][ T5900]  sctp_getsockopt+0x701/0xab0
[   64.023602][ T5900]  sock_common_getsockopt+0x5b/0x70
[   64.028880][ T5900]  do_sock_getsockopt+0x121/0x1a0
[   64.033906][ T5900]  ? __pfx_sock_common_getsockopt+0x10/0x10
[   64.039857][ T5900]  __sys_getsockopt+0x19a/0x210
[   64.044713][ T5900]  __x64_sys_getsockopt+0x66/0x80
[   64.049787][ T5900]  x64_sys_call+0x11cd/0x2d60
[   64.054471][ T5900]  do_syscall_64+0xc9/0x1c0
[   64.059053][ T5900]  ? clear_bhb_loop+0x55/0xb0
[   64.063740][ T5900]  ? clear_bhb_loop+0x55/0xb0
[   64.068465][ T5900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.074359][ T5900] RIP: 0033:0x7f46e02499f9
[   64.078810][ T5900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.098447][ T5900] RSP: 002b:00007f46deec7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   64.106899][ T5900] RAX: ffffffffffffffda RBX: 00007f46e03e5f80 RCX: 00007f46e02499f9
[   64.114870][ T5900] RDX: 0000000000000085 RSI: 0000000000000084 RDI: 0000000000000003
[   64.117487][ T5710] veth0_vlan: entered promiscuous mode
[   64.122825][ T5900] RBP: 00007f46deec7090 R08: 0000000020000000 R09: 0000000000000000
[   64.122840][ T5900] R10: 0000000020003140 R11: 0000000000000246 R12: 0000000000000001
[   64.122854][ T5900] R13: 0000000000000000 R14: 00007f46e03e5f80 R15: 00007ffea1655fb8
[   64.143241][ T5710] veth1_vlan: entered promiscuous mode
[   64.144193][ T5900]  </TASK>
[   64.181163][ T5710] veth0_macvtap: entered promiscuous mode
[   64.189795][ T5710] veth1_macvtap: entered promiscuous mode
[   64.203069][ T5710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.213794][ T5710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.223849][ T5710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.234376][ T5710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.244237][ T5710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.254698][ T5710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.264591][ T5710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.275196][ T5710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.286843][ T5710] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.296567][ T5710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.307056][ T5710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.316905][ T5710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.327371][ T5710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.337174][ T5710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.347663][ T5710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.348067][ T5916] loop0: detected capacity change from 0 to 2048
[   64.357458][ T5710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.357474][ T5710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.385012][ T5710] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.400010][ T5710] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.408808][ T5710] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.417587][ T5710] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.426365][ T5710] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.451113][ T5918] netlink: 'syz.1.592': attribute type 21 has an invalid length.
[   64.458978][ T5918] netlink: 'syz.1.592': attribute type 15 has an invalid length.
[   64.461851][ T5922] loop3: detected capacity change from 0 to 736
[   64.466761][ T5918] netlink: 164 bytes leftover after parsing attributes in process `syz.1.592'.
[   64.481883][ T5918] IPv6: NLM_F_CREATE should be specified when creating new route
[   64.490946][ T5918] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   64.498223][ T5918] IPv6: NLM_F_CREATE should be set when creating new route
[   64.505420][ T5918] IPv6: NLM_F_CREATE should be set when creating new route
[   64.512629][ T5918] IPv6: NLM_F_CREATE should be set when creating new route
[   64.545302][ T5926] netlink: 'syz.3.595': attribute type 10 has an invalid length.
[   64.547855][ T5927] loop0: detected capacity change from 0 to 512
[   64.583614][ T5927] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   64.597165][ T5933] loop3: detected capacity change from 0 to 1024
[   64.609411][ T5936] loop1: detected capacity change from 0 to 512
[   64.610049][ T5933] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[   64.617058][ T5939] loop4: detected capacity change from 0 to 164
[   64.641673][ T5933] loop3: detected capacity change from 0 to 1024
[   64.643545][ T5936] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.599: casefold flag without casefold feature
[   64.650343][ T5933] EXT4-fs: Ignoring removed nomblk_io_submit option
[   64.662210][ T5927] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.678903][ T5933] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   64.690826][ T5936] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.599: couldn't read orphan inode 15 (err -117)
[   64.745322][ T5927] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   64.763649][ T5933] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   64.773887][ T5933] System zones: 0-1, 3-36
[   64.777520][ T5953] netlink: 4 bytes leftover after parsing attributes in process `syz.4.604'.
[   64.791300][   T29] kauditd_printk_skb: 20 callbacks suppressed
[   64.791347][   T29] audit: type=1400 audit(1723563360.433:432): avc:  denied  { unmount } for  pid=5952 comm="syz.4.604" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   64.797631][ T5955] loop1: detected capacity change from 0 to 2048
[   64.823894][ T5933] 9pnet_fd: Insufficient options for proto=fd
[   64.860377][   T29] audit: type=1400 audit(1723563360.503:433): avc:  denied  { write } for  pid=5928 comm="syz.3.597" path="socket:[13095]" dev="sockfs" ino=13095 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   64.985753][ T5967] netlink: 'syz.1.607': attribute type 10 has an invalid length.
[   65.079843][ T5974] loop3: detected capacity change from 0 to 8192
[   65.123233][ T5976] loop1: detected capacity change from 0 to 512
[   65.142936][ T5976] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   65.152227][ T5976] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   65.223343][ T5976] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[   65.246098][ T5976] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   65.264990][ T5976] System zones: 0-2, 18-18, 34-34
[   65.370830][ T5976] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   65.452229][ T5976] EXT4-fs (loop1): 1 truncate cleaned up
[   65.492643][ T5976] EXT4-fs mount: 140 callbacks suppressed
[   65.492655][ T5976] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.618052][ T5248] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.675270][   T29] audit: type=1400 audit(1723563361.323:434): avc:  denied  { bind } for  pid=5983 comm="syz.1.614" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   65.675986][ T5986] netlink: 80 bytes leftover after parsing attributes in process `syz.1.614'.
[   65.703764][ T5986] netlink: 80 bytes leftover after parsing attributes in process `syz.1.614'.
[   65.711212][   T29] audit: type=1400 audit(1723563361.323:435): avc:  denied  { connect } for  pid=5983 comm="syz.1.614" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   65.732560][   T29] audit: type=1400 audit(1723563361.323:436): avc:  denied  { write } for  pid=5983 comm="syz.1.614" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   65.778842][ T5988] loop1: detected capacity change from 0 to 512
[   65.790477][ T5988] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   65.829245][ T5988] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.838705][ T5991] bond1: entered promiscuous mode
[   65.846760][ T5991] bond1: entered allmulticast mode
[   65.854180][ T5988] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.862303][ T5991] 8021q: adding VLAN 0 to HW filter on device bond1
[   65.891424][ T5988] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   65.956454][ T5996] loop0: detected capacity change from 0 to 2048
[   65.963773][ T5248] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.019547][ T6001] loop3: detected capacity change from 0 to 128
[   66.039172][ T6005] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   66.040032][ T5996] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.135761][ T6005] loop1: detected capacity change from 0 to 512
[   66.153240][ T6008] netlink: 'syz.2.621': attribute type 10 has an invalid length.
[   66.171509][ T6001] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   66.185197][ T5085] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.200049][ T6008] loop2: detected capacity change from 0 to 512
[   66.207379][   T29] audit: type=1400 audit(1723563361.843:437): avc:  denied  { create } for  pid=6004 comm="syz.1.618" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[   66.208010][   T29] audit: type=1400 audit(1723563361.843:438): avc:  denied  { associate } for  pid=6004 comm="syz.1.618" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon=2321202E2F6367726F75702F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[   66.299982][   T29] audit: type=1400 audit(1723563361.843:439): avc:  denied  { mounton } for  pid=6004 comm="syz.1.618" path=2F31382F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 dev="tmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[   66.301761][ T6001] ext4 filesystem being mounted at /159/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   66.516312][ T6005] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.529607][ T6005] ext4 filesystem being mounted at /18/w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.562406][ T6008] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.593919][ T6005] EXT4-fs error (device loop1): ext4_add_entry:2435: inode #2: comm syz.1.618: Directory hole found for htree leaf block 0
[   66.612204][ T6008] ext4 filesystem being mounted at /136/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.628684][ T3262] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   66.719195][ T6017] loop0: detected capacity change from 0 to 8192
[   66.740771][ T6021] loop4: detected capacity change from 0 to 512
[   66.755235][ T6022] bond1: entered promiscuous mode
[   66.760400][ T6022] bond1: entered allmulticast mode
[   66.766171][ T6022] 8021q: adding VLAN 0 to HW filter on device bond1
[   67.207069][ T6022] bond1 (unregistering): Released all slaves
[   67.218959][ T6021] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.236646][ T6021] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   67.390275][ T5248] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.634841][    C1] sched: RT throttling activated
[   68.666049][   T29] audit: type=1400 audit(1723563364.303:440): avc:  denied  { rmdir } for  pid=5248 comm="syz-executor" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 dev="tmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C65306161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[   68.667643][ T3260] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.075628][ T6032] bond1: entered promiscuous mode
[   69.080763][ T6032] bond1: entered allmulticast mode
[   69.092707][ T6032] 8021q: adding VLAN 0 to HW filter on device bond1
[   69.111385][ T6036] loop0: detected capacity change from 0 to 128
[   69.120823][ T6036] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   69.135115][ T6036] ext4 filesystem being mounted at /39/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   69.177124][ T6042] loop1: detected capacity change from 0 to 1024
[   69.220542][ T6050] loop3: detected capacity change from 0 to 512
[   69.228653][ T6052] loop2: detected capacity change from 0 to 512
[   69.237206][ T6052] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   69.247453][ T6050] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   69.285729][ T6050] EXT4-fs (loop3): 1 orphan inode deleted
[   69.291478][ T6050] EXT4-fs (loop3): 1 truncate cleaned up
[   69.297822][ T6050] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.298954][ T5085] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   69.321004][ T6052] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.337962][ T6052] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.354971][ T6052] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   69.383425][ T3260] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.426338][ T6050] loop3: detected capacity change from 512 to 11
[   69.452896][ T6050] netlink: 56 bytes leftover after parsing attributes in process `syz.3.633'.
[   69.465813][ T6062] loop2: detected capacity change from 0 to 8192
[   69.480212][ T3262] EXT4-fs warning (device loop3): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -12 reading directory block
[   69.495289][ T6065] loop0: detected capacity change from 0 to 128
[   69.505859][ T3262] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5810: Out of memory
[   69.531680][ T3262] EXT4-fs error (device loop3): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[   69.552861][ T3262] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.573265][ T6071] netlink: 12 bytes leftover after parsing attributes in process `syz.2.640'.
[   69.589161][ T6071] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6071 comm=syz.2.640
[   69.653610][ T6069] netlink: 'syz.1.639': attribute type 10 has an invalid length.
[   69.664398][ T6069] loop1: detected capacity change from 0 to 512
[   69.686614][ T6069] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.699257][ T6069] ext4 filesystem being mounted at /22/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.815250][   T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   69.825578][   T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.856199][ T6087] netlink: 'syz.2.647': attribute type 21 has an invalid length.
[   69.863987][ T6087] netlink: 'syz.2.647': attribute type 15 has an invalid length.
[   69.871763][ T6087] netlink: 160 bytes leftover after parsing attributes in process `syz.2.647'.
[   69.881375][ T6087] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   69.891910][   T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   69.902406][   T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.939330][   T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   69.949717][   T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.966716][   T29] audit: type=1400 audit(1723563365.613:441): avc:  denied  { read } for  pid=6094 comm="syz.2.648" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   70.000554][   T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   70.010955][   T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.038467][ T6085] chnl_net:caif_netlink_parms(): no params data found
[   70.069697][ T6101] loop2: detected capacity change from 0 to 8192
[   70.107485][   T11] bridge_slave_1: left allmulticast mode
[   70.112012][   T29] audit: type=1400 audit(1723563365.753:442): avc:  denied  { ioctl } for  pid=6107 comm="syz.2.651" path="socket:[14428]" dev="sockfs" ino=14428 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   70.113122][   T11] bridge_slave_1: left promiscuous mode
[   70.143363][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.150918][   T11] bridge_slave_0: left allmulticast mode
[   70.156671][   T11] bridge_slave_0: left promiscuous mode
[   70.162498][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.199595][ T6113] FAULT_INJECTION: forcing a failure.
[   70.199595][ T6113] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.212724][ T6113] CPU: 0 UID: 0 PID: 6113 Comm: syz.0.652 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   70.223328][ T6113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   70.233390][ T6113] Call Trace:
[   70.236650][ T6113]  <TASK>
[   70.239633][ T6113]  dump_stack_lvl+0xf2/0x150
[   70.244220][ T6113]  dump_stack+0x15/0x20
[   70.248365][ T6113]  should_fail_ex+0x229/0x230
[   70.253089][ T6113]  should_fail+0xb/0x10
[   70.257245][ T6113]  should_fail_usercopy+0x1a/0x20
[   70.262264][ T6113]  strncpy_from_user+0x25/0x270
[   70.267199][ T6113]  ? kmem_cache_alloc_noprof+0x10c/0x290
[   70.272888][ T6113]  getname_flags+0xb0/0x3b0
[   70.277435][ T6113]  getname+0x17/0x20
[   70.281318][ T6113]  do_sys_openat2+0x67/0x120
[   70.285896][ T6113]  __x64_sys_creat+0x66/0x90
[   70.290479][ T6113]  x64_sys_call+0x2cbf/0x2d60
[   70.295144][ T6113]  do_syscall_64+0xc9/0x1c0
[   70.299641][ T6113]  ? clear_bhb_loop+0x55/0xb0
[   70.304307][ T6113]  ? clear_bhb_loop+0x55/0xb0
[   70.308973][ T6113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.314863][ T6113] RIP: 0033:0x7f46e02499f9
[   70.319265][ T6113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.338934][ T6113] RSP: 002b:00007f46deec7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   70.347356][ T6113] RAX: ffffffffffffffda RBX: 00007f46e03e5f80 RCX: 00007f46e02499f9
[   70.355332][ T6113] RDX: 0000000000000000 RSI: 0000000000000408 RDI: 0000000020000600
[   70.363333][ T6113] RBP: 00007f46deec7090 R08: 0000000000000000 R09: 0000000000000000
[   70.371286][ T6113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.379241][ T6113] R13: 0000000000000000 R14: 00007f46e03e5f80 R15: 00007ffea1655fb8
[   70.387199][ T6113]  </TASK>
[   70.417311][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   70.427527][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   70.437250][   T11] bond0 (unregistering): Released all slaves
[   70.445744][   T11] bond1 (unregistering): Released all slaves
[   70.470563][ T6085] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.477687][ T6085] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.484749][ T6085] bridge_slave_0: entered allmulticast mode
[   70.491083][ T6085] bridge_slave_0: entered promiscuous mode
[   70.498761][ T6085] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.506113][ T6085] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.513365][ T6085] bridge_slave_1: entered allmulticast mode
[   70.520935][ T6085] bridge_slave_1: entered promiscuous mode
[   70.530520][ T5248] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.547049][ T6085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.558291][   T11] hsr_slave_0: left promiscuous mode
[   70.564283][   T11] hsr_slave_1: left promiscuous mode
[   70.571322][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   70.578839][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[   70.586590][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   70.594081][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[   70.607382][   T11] veth1_macvtap: left promiscuous mode
[   70.610318][ T6130] loop2: detected capacity change from 0 to 512
[   70.612860][   T11] veth0_macvtap: left promiscuous mode
[   70.612956][   T11] veth1_vlan: left promiscuous mode
[   70.630020][   T11] veth0_vlan: left promiscuous mode
[   70.632118][ T6130] EXT4-fs (loop2): orphan cleanup on readonly fs
[   70.642456][ T6130] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.659: corrupted in-inode xattr: bad e_name length
[   70.656349][ T6130] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.659: couldn't read orphan inode 15 (err -117)
[   70.668653][ T6130] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.729429][ T6133] loop1: detected capacity change from 0 to 8192
[   70.745290][ T6134] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[   70.788376][   T11] team0 (unregistering): Port device team_slave_1 removed
[   70.798247][   T11] team0 (unregistering): Port device team_slave_0 removed
[   70.832783][ T6085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.852785][ T6085] team0: Port device team_slave_0 added
[   70.859218][ T6085] team0: Port device team_slave_1 added
[   70.874090][ T6085] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.881089][ T6085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.907085][ T6085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.920382][ T6085] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.927372][ T6085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.953335][ T6085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.969456][   T29] audit: type=1400 audit(1723563366.613:443): avc:  denied  { create } for  pid=6135 comm="syz.1.661" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[   70.999171][ T6085] hsr_slave_0: entered promiscuous mode
[   71.005456][ T6085] hsr_slave_1: entered promiscuous mode
[   71.011188][ T6085] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   71.018789][ T6085] Cannot create hsr debugfs directory
[   71.052031][   T29] audit: type=1400 audit(1723563366.693:444): avc:  denied  { unmount } for  pid=5248 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   71.188266][   T11] IPVS: stop unused estimator thread 0...
[   71.224635][ T6143] loop1: detected capacity change from 0 to 4096
[   71.391213][ T6085] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   71.401347][ T6085] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   71.411616][ T6085] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   71.422001][ T6085] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   71.456021][ T3260] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.496896][ T6085] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.518203][ T6085] 8021q: adding VLAN 0 to HW filter on device team0
[   71.527691][   T55] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.534878][   T55] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.557362][ T6085] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   71.567823][ T6085] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   71.583139][   T55] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.590252][   T55] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.671822][ T6085] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.739038][ T6085] veth0_vlan: entered promiscuous mode
[   71.747168][ T6085] veth1_vlan: entered promiscuous mode
[   71.762421][ T6085] veth0_macvtap: entered promiscuous mode
[   71.769904][ T6085] veth1_macvtap: entered promiscuous mode
[   71.779489][ T6085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.790034][ T6085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.799865][ T6085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.810306][ T6085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.820109][ T6085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.830554][ T6085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.840437][ T6085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.850860][ T6085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.861568][ T6085] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.873627][ T6182] netlink: 'syz.2.667': attribute type 10 has an invalid length.
[   71.881955][ T6085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.884707][ T6182] loop2: detected capacity change from 0 to 512
[   71.892504][ T6085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.908585][ T6085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.916498][ T6182] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.919039][ T6085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.932338][ T6182] ext4 filesystem being mounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.941242][ T6085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.961862][ T6085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.971978][ T6085] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.982609][ T6085] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.993460][ T6085] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.002632][ T6085] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.011379][ T6085] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.020200][ T6085] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.029109][ T6085] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.075474][ T6192] loop3: detected capacity change from 0 to 512
[   72.082429][ T6192] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.107131][ T6192] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.120002][ T6192] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.135803][ T6192] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   72.162344][ T6085] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.189915][ T6197] loop0: detected capacity change from 0 to 8192
[   72.217796][ T6216] loop3: detected capacity change from 0 to 512
[   72.226722][   T29] audit: type=1400 audit(1723563367.873:445): avc:  denied  { bind } for  pid=6224 comm="syz.0.673" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   72.255485][ T6216] EXT4-fs (loop3): orphan cleanup on readonly fs
[   72.262054][ T6216] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.672: corrupted in-inode xattr: bad e_name length
[   72.276025][ T6216] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.672: couldn't read orphan inode 15 (err -117)
[   72.288749][ T6216] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   72.456985][ T6248] loop0: detected capacity change from 0 to 128
[   72.596141][ T3260] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.615443][ T6263] loop2: detected capacity change from 0 to 512
[   72.622306][ T6263] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.622710][ T6265] loop0: detected capacity change from 0 to 256
[   72.636513][ T6263] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.650504][ T6263] ext4 filesystem being mounted at /156/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.666018][ T6263] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   72.687395][ T3260] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.703980][   T29] audit: type=1400 audit(1723563368.343:446): avc:  denied  { ioctl } for  pid=6268 comm="syz.2.683" path="socket:[14642]" dev="sockfs" ino=14642 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   72.748501][ T6275] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[   72.749980][ T6273] IPVS: stopping master sync thread 6275 ...
[   72.783322][   T29] audit: type=1400 audit(1723563368.423:447): avc:  denied  { read } for  pid=6279 comm="syz.0.685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   72.855713][ T6290] loop0: detected capacity change from 0 to 512
[   72.863307][ T6290] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.690: casefold flag without casefold feature
[   72.876056][ T6290] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.690: couldn't read orphan inode 15 (err -117)
[   72.888358][ T6290] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.902128][   T29] audit: type=1400 audit(1723563368.543:448): avc:  denied  { setopt } for  pid=6289 comm="syz.0.690" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   72.911264][ T6290] netlink: 28 bytes leftover after parsing attributes in process `syz.0.690'.
[   72.931085][ T6290] netlink: 28 bytes leftover after parsing attributes in process `syz.0.690'.
[   72.958516][ T6297] FAULT_INJECTION: forcing a failure.
[   72.958516][ T6297] name failslab, interval 1, probability 0, space 0, times 0
[   72.971152][ T6297] CPU: 1 UID: 0 PID: 6297 Comm: syz.1.691 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   72.978806][ T6299] loop2: detected capacity change from 0 to 512
[   72.981726][ T6297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   72.981739][ T6297] Call Trace:
[   72.981745][ T6297]  <TASK>
[   72.981752][ T6297]  dump_stack_lvl+0xf2/0x150
[   73.008754][ T6297]  dump_stack+0x15/0x20
[   73.012904][ T6297]  should_fail_ex+0x229/0x230
[   73.017622][ T6297]  ? alloc_empty_file+0xd0/0x310
[   73.022549][ T6297]  should_failslab+0x8f/0xb0
[   73.027132][ T6297]  kmem_cache_alloc_noprof+0x4c/0x290
[   73.032491][ T6297]  ? mntput+0x49/0x70
[   73.036505][ T6297]  alloc_empty_file+0xd0/0x310
[   73.041260][ T6297]  path_openat+0x6a/0x1f10
[   73.045744][ T6297]  ? _parse_integer_limit+0x167/0x180
[   73.051173][ T6297]  ? _parse_integer+0x27/0x30
[   73.055835][ T6297]  ? kstrtoull+0x110/0x140
[   73.060237][ T6297]  ? kstrtouint+0x77/0xc0
[   73.064581][ T6297]  do_filp_open+0xf7/0x200
[   73.068994][ T6297]  do_sys_openat2+0xab/0x120
[   73.073692][ T6297]  __x64_sys_openat+0xf3/0x120
[   73.078468][ T6297]  x64_sys_call+0x1025/0x2d60
[   73.083285][ T6297]  do_syscall_64+0xc9/0x1c0
[   73.087781][ T6297]  ? clear_bhb_loop+0x55/0xb0
[   73.092448][ T6297]  ? clear_bhb_loop+0x55/0xb0
[   73.097116][ T6297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.103016][ T6297] RIP: 0033:0x7f00c5f899f9
[   73.107421][ T6297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.127054][ T6297] RSP: 002b:00007f00c4c07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   73.135462][ T6297] RAX: ffffffffffffffda RBX: 00007f00c6125f80 RCX: 00007f00c5f899f9
[   73.143421][ T6297] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c
[   73.151388][ T6297] RBP: 00007f00c4c07090 R08: 0000000000000000 R09: 0000000000000000
[   73.159420][ T6297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.167378][ T6297] R13: 0000000000000001 R14: 00007f00c6125f80 R15: 00007ffed3b47ad8
[   73.175341][ T6297]  </TASK>
[   73.181866][ T6299] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   73.194884][ T6085] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.210455][ T6301] loop1: detected capacity change from 0 to 164
[   73.212684][ T6304] loop3: detected capacity change from 0 to 256
[   73.223642][ T6304] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   73.235758][ T6299] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.249088][ T6299] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.263416][ T6304] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   73.277275][ T6299] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   73.288059][ T6314] netlink: 'syz.1.698': attribute type 4 has an invalid length.
[   73.294619][ T5085] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.317570][ T3260] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.338808][ T6321] loop2: detected capacity change from 0 to 512
[   73.345345][ T6321] ext3: Unknown parameter 'uid'
[   73.448904][ T6330] loop3: detected capacity change from 0 to 1024
[   73.458509][ T6330] EXT4-fs: Ignoring removed orlov option
[   73.471793][ T6334] netlink: 'syz.1.704': attribute type 21 has an invalid length.
[   73.479552][ T6334] netlink: 'syz.1.704': attribute type 15 has an invalid length.
[   73.487284][ T6334] netlink: 160 bytes leftover after parsing attributes in process `syz.1.704'.
[   73.496700][ T6334] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   73.509819][ T6330] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.543088][ T6340] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   73.544344][ T6343] FAULT_INJECTION: forcing a failure.
[   73.544344][ T6343] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.566499][ T6343] CPU: 0 UID: 0 PID: 6343 Comm: syz.1.706 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   73.577082][ T6343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   73.587123][ T6343] Call Trace:
[   73.590464][ T6343]  <TASK>
[   73.593381][ T6343]  dump_stack_lvl+0xf2/0x150
[   73.598024][ T6343]  dump_stack+0x15/0x20
[   73.602223][ T6343]  should_fail_ex+0x229/0x230
[   73.606926][ T6343]  should_fail+0xb/0x10
[   73.611106][ T6343]  should_fail_usercopy+0x1a/0x20
[   73.616171][ T6343]  _copy_to_user+0x1e/0xa0
[   73.620579][ T6343]  simple_read_from_buffer+0xa0/0x110
[   73.625943][ T6343]  proc_fail_nth_read+0xfc/0x140
[   73.630923][ T6343]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   73.636459][ T6343]  vfs_read+0x1a2/0x6e0
[   73.640646][ T6343]  ? __rcu_read_unlock+0x4e/0x70
[   73.645635][ T6343]  ? __fget_files+0x1da/0x210
[   73.650322][ T6343]  ksys_read+0xeb/0x1b0
[   73.654549][ T6343]  __x64_sys_read+0x42/0x50
[   73.659107][ T6343]  x64_sys_call+0x27d3/0x2d60
[   73.663866][ T6343]  do_syscall_64+0xc9/0x1c0
[   73.668448][ T6343]  ? clear_bhb_loop+0x55/0xb0
[   73.673115][ T6343]  ? clear_bhb_loop+0x55/0xb0
[   73.677878][ T6343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.683840][ T6343] RIP: 0033:0x7f00c5f8843c
[   73.688302][ T6343] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[   73.707897][ T6343] RSP: 002b:00007f00c4c07030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   73.716369][ T6343] RAX: ffffffffffffffda RBX: 00007f00c6125f80 RCX: 00007f00c5f8843c
[   73.724336][ T6343] RDX: 000000000000000f RSI: 00007f00c4c070a0 RDI: 0000000000000004
[   73.732308][ T6343] RBP: 00007f00c4c07090 R08: 0000000000000000 R09: 0000000000000000
[   73.740263][ T6343] R10: 0000000020003140 R11: 0000000000000246 R12: 0000000000000001
[   73.748254][ T6343] R13: 0000000000000000 R14: 00007f00c6125f80 R15: 00007ffed3b47ad8
[   73.756282][ T6343]  </TASK>
[   73.782187][ T6348] netlink: 28 bytes leftover after parsing attributes in process `'.
[   73.782350][ T6348] netlink: 140 bytes leftover after parsing attributes in process `'.
[   73.790482][   T29] audit: type=1400 audit(1723563369.392:449): avc:  denied  { listen } for  pid=6347 comm="syz.0.708" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   73.856687][   T29] audit: type=1400 audit(1723563369.410:450): avc:  denied  { create } for  pid=6320 comm="syz.2.701" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=appletalk_socket permissive=1
[   73.879110][ T5710] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.923403][ T6085] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.935253][ T6361] loop4: detected capacity change from 0 to 512
[   73.956648][ T6361] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   73.982277][ T6366] bond1: entered promiscuous mode
[   73.987516][ T6366] bond1: entered allmulticast mode
[   73.993023][ T6366] 8021q: adding VLAN 0 to HW filter on device bond1
[   74.016388][ T6361] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.019676][ T6364] netlink: 24 bytes leftover after parsing attributes in process `syz.0.715'.
[   74.032209][ T6361] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.051014][ T6372] loop1: detected capacity change from 0 to 512
[   74.060048][ T6372] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   74.069144][ T6372] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   74.082320][ T6361] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   74.096894][ T6372] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[   74.116402][ T6372] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   74.133945][ T6372] System zones: 0-2, 18-18, 34-34
[   74.140614][ T5710] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.158048][ T6372] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   74.190752][ T6372] EXT4-fs (loop1): 1 truncate cleaned up
[   74.195577][ T6381] netlink: 44 bytes leftover after parsing attributes in process `syz.0.720'.
[   74.201879][ T6372] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.225170][ T6384] loop3: detected capacity change from 0 to 512
[   74.242746][ T6384] EXT4-fs: Ignoring removed nomblk_io_submit option
[   74.249362][ T6372] EXT4-fs warning (device loop1): ext4_group_extend:1890: can't read last block, resize aborted
[   74.281813][ T6384] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2812: inode #11: comm syz.3.721: corrupted xattr block 95: invalid header
[   74.301287][ T5248] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.307513][ T6384] EXT4-fs (loop3): Remounting filesystem read-only
[   74.316723][ T6384] EXT4-fs warning (device loop3): ext4_evict_inode:254: couldn't mark inode dirty (err -5)
[   74.326774][ T6384] EXT4-fs (loop3): 1 orphan inode deleted
[   74.333483][ T6384] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.345573][ T6384] SELinux: (dev loop3, type ext4) getxattr errno 5
[   74.352592][ T6384] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.384561][ T6392] smc: adding net device pimreg with user defined pnetid SYZ1
[   74.399286][ T6392] pimreg: entered allmulticast mode
[   74.421893][ T6411] loop3: detected capacity change from 0 to 512
[   74.436253][ T6411] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   74.444482][ T6411] EXT4-fs (loop3): bad geometry: first data block is 0 with a 1k block and cluster size
[   74.457123][ T6416] loop2: detected capacity change from 0 to 512
[   74.473211][ T6416] EXT4-fs (loop2): orphan cleanup on readonly fs
[   74.481580][ T6416] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.731: corrupted in-inode xattr: bad e_name length
[   74.496962][ T6416] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.731: couldn't read orphan inode 15 (err -117)
[   74.509217][ T6416] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   74.545417][ T6420] random: crng reseeded on system resumption
[   74.580602][ T6423] FAULT_INJECTION: forcing a failure.
[   74.580602][ T6423] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.593691][ T6423] CPU: 0 UID: 0 PID: 6423 Comm: syz.1.733 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   74.604276][ T6423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   74.614386][ T6423] Call Trace:
[   74.617655][ T6423]  <TASK>
[   74.620581][ T6423]  dump_stack_lvl+0xf2/0x150
[   74.625218][ T6423]  dump_stack+0x15/0x20
[   74.629397][ T6423]  should_fail_ex+0x229/0x230
[   74.634084][ T6423]  should_fail+0xb/0x10
[   74.638286][ T6423]  should_fail_usercopy+0x1a/0x20
[   74.643333][ T6423]  _copy_from_user+0x1e/0xd0
[   74.647975][ T6423]  __se_sys_memfd_create+0x26b/0x600
[   74.653397][ T6423]  __x64_sys_memfd_create+0x31/0x40
[   74.658604][ T6423]  x64_sys_call+0x2891/0x2d60
[   74.663346][ T6423]  do_syscall_64+0xc9/0x1c0
[   74.667904][ T6423]  ? clear_bhb_loop+0x55/0xb0
[   74.672654][ T6423]  ? clear_bhb_loop+0x55/0xb0
[   74.677396][ T6423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.683303][ T6423] RIP: 0033:0x7f00c5f899f9
[   74.687834][ T6423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.707463][ T6423] RSP: 002b:00007f00c4c06e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   74.715861][ T6423] RAX: ffffffffffffffda RBX: 0000000000000b80 RCX: 00007f00c5f899f9
[   74.723875][ T6423] RDX: 00007f00c4c06ef0 RSI: 0000000000000000 RDI: 00007f00c5ff80b3
[   74.731831][ T6423] RBP: 0000000020000c40 R08: 00007f00c4c06bb7 R09: 00007f00c4c06e40
[   74.739791][ T6423] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000bc0
[   74.747790][ T6423] R13: 00007f00c4c06ef0 R14: 00007f00c4c06eb0 R15: 0000000020000c00
[   74.755754][ T6423]  </TASK>
[   74.784219][ T6425] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[   74.820379][ T6428] loop3: detected capacity change from 0 to 2048
[   74.830468][ T6432] netlink: 16 bytes leftover after parsing attributes in process `syz.0.736'.
[   74.841629][ T6428] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.864447][ T6428] FAULT_INJECTION: forcing a failure.
[   74.864447][ T6428] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.877505][ T6428] CPU: 1 UID: 0 PID: 6428 Comm: syz.3.734 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   74.888087][ T6428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   74.898174][ T6428] Call Trace:
[   74.901437][ T6428]  <TASK>
[   74.904357][ T6428]  dump_stack_lvl+0xf2/0x150
[   74.908983][ T6428]  dump_stack+0x15/0x20
[   74.913132][ T6428]  should_fail_ex+0x229/0x230
[   74.917829][ T6428]  should_fail+0xb/0x10
[   74.921982][ T6428]  should_fail_usercopy+0x1a/0x20
[   74.927067][ T6428]  strncpy_from_user+0x25/0x270
[   74.931969][ T6428]  ? kmem_cache_alloc_noprof+0x10c/0x290
[   74.937592][ T6428]  getname_flags+0xb0/0x3b0
[   74.942139][ T6428]  __x64_sys_mkdirat+0x41/0x60
[   74.946945][ T6428]  x64_sys_call+0x2cd3/0x2d60
[   74.951611][ T6428]  do_syscall_64+0xc9/0x1c0
[   74.956236][ T6428]  ? clear_bhb_loop+0x55/0xb0
[   74.960963][ T6428]  ? clear_bhb_loop+0x55/0xb0
[   74.965628][ T6428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.971513][ T6428] RIP: 0033:0x7f7e693a99f9
[   74.975963][ T6428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.995616][ T6428] RSP: 002b:00007f7e68021038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   75.004271][ T6428] RAX: ffffffffffffffda RBX: 00007f7e69545f80 RCX: 00007f7e693a99f9
[   75.012228][ T6428] RDX: 0000000000000000 RSI: 0000000020002040 RDI: ffffffffffffff9c
[   75.020255][ T6428] RBP: 00007f7e68021090 R08: 0000000000000000 R09: 0000000000000000
[   75.028208][ T6428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.036195][ T6428] R13: 0000000000000000 R14: 00007f7e69545f80 R15: 00007ffca96c9aa8
[   75.044215][ T6428]  </TASK>
[   75.051541][ T6436] netlink: 20 bytes leftover after parsing attributes in process `syz.0.737'.
[   75.060619][ T6436] netlink: 8 bytes leftover after parsing attributes in process `syz.0.737'.
[   75.092613][ T6085] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.106088][ T6442] FAULT_INJECTION: forcing a failure.
[   75.106088][ T6442] name failslab, interval 1, probability 0, space 0, times 0
[   75.118714][ T6442] CPU: 0 UID: 0 PID: 6442 Comm: syz.0.739 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   75.129296][ T6442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   75.139347][ T6442] Call Trace:
[   75.139832][ T6444] loop3: detected capacity change from 0 to 2048
[   75.142678][ T6442]  <TASK>
[   75.142686][ T6442]  dump_stack_lvl+0xf2/0x150
[   75.156635][ T6442]  dump_stack+0x15/0x20
[   75.159430][ T6446] loop1: detected capacity change from 0 to 1024
[   75.160790][ T6442]  should_fail_ex+0x229/0x230
[   75.167743][ T6446] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   75.171746][ T6442]  ? __anon_vma_prepare+0x73/0x310
[   75.182635][ T6446] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[   75.187640][ T6442]  should_failslab+0x8f/0xb0
[   75.199070][ T6446] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   75.201720][ T6442]  kmem_cache_alloc_noprof+0x4c/0x290
[   75.211786][ T6446] EXT4-fs (loop1): external journal device major/minor numbers have changed
[   75.217091][ T6442]  ? __rcu_read_lock+0x36/0x50
[   75.225753][ T6446] EXT4-fs (loop1): filesystem has both journal inode and journal device!
[   75.230460][ T6442]  __anon_vma_prepare+0x73/0x310
[   75.230485][ T6442]  ? handle_mm_fault+0x1b01/0x2940
[   75.241779][ T6444] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.243784][ T6442]  handle_mm_fault+0x1b09/0x2940
[   75.265902][ T6442]  ? mas_walk+0x204/0x320
[   75.270216][ T6442]  exc_page_fault+0x3b9/0x650
[   75.274873][ T6442]  asm_exc_page_fault+0x26/0x30
[   75.279703][ T6442] RIP: 0033:0x7f46e010db63
[   75.284097][ T6442] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   75.303759][ T6442] RSP: 002b:00007f46deec64a0 EFLAGS: 00010202
[   75.309798][ T6442] RAX: 0000000000008000 RBX: 00007f46deec6540 RCX: 00007f46d6aa7000
[   75.317743][ T6442] RDX: 00007f46deec66e0 RSI: 0000000000000001 RDI: 00007f46deec65e0
[   75.325745][ T6442] RBP: 0000000000000102 R08: 0000000000000006 R09: 0000000000000018
[   75.333702][ T6442] R10: 0000000000000022 R11: 00007f46deec6540 R12: 0000000000000001
[   75.341650][ T6442] R13: 00007f46e02cb7e0 R14: 0000000000000001 R15: 00007f46deec65e0
[   75.349669][ T6442]  </TASK>
[   75.352842][ T6442] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   75.353499][ T6085] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.372377][ T6442] loop0: detected capacity change from 0 to 736
[   75.376591][ T6446] netlink: 'syz.1.740': attribute type 10 has an invalid length.
[   75.379304][ T3260] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.400688][ T6446] team0: Port device netdevsim1 added
[   75.406858][ T6451] netlink: 164 bytes leftover after parsing attributes in process `syz.3.741'.
[   75.417549][ T6446] netlink: 'syz.1.740': attribute type 10 has an invalid length.
[   75.428849][ T6454] netlink: 16 bytes leftover after parsing attributes in process `syz.3.743'.
[   75.429163][ T6446] team0: Port device netdevsim1 removed
[   75.445248][ T6446] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[   75.452481][ T6454] FAULT_INJECTION: forcing a failure.
[   75.452481][ T6454] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   75.467283][ T6454] CPU: 0 UID: 0 PID: 6454 Comm: syz.3.743 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   75.477863][ T6454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   75.487926][ T6454] Call Trace:
[   75.491189][ T6454]  <TASK>
[   75.494099][ T6454]  dump_stack_lvl+0xf2/0x150
[   75.498715][ T6454]  dump_stack+0x15/0x20
[   75.502851][ T6454]  should_fail_ex+0x229/0x230
[   75.507507][ T6454]  should_fail+0xb/0x10
[   75.511655][ T6454]  should_fail_usercopy+0x1a/0x20
[   75.516696][ T6454]  _copy_to_user+0x1e/0xa0
[   75.521170][ T6454]  simple_read_from_buffer+0xa0/0x110
[   75.526671][ T6454]  proc_fail_nth_read+0xfc/0x140
[   75.531608][ T6454]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   75.537142][ T6454]  vfs_read+0x1a2/0x6e0
[   75.541390][ T6454]  ? __rcu_read_unlock+0x4e/0x70
[   75.546343][ T6454]  ? __fget_files+0x1da/0x210
[   75.551065][ T6454]  ksys_read+0xeb/0x1b0
[   75.555332][ T6454]  __x64_sys_read+0x42/0x50
[   75.559816][ T6454]  x64_sys_call+0x27d3/0x2d60
[   75.564474][ T6454]  do_syscall_64+0xc9/0x1c0
[   75.569043][ T6454]  ? clear_bhb_loop+0x55/0xb0
[   75.573697][ T6454]  ? clear_bhb_loop+0x55/0xb0
[   75.578364][ T6454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.584237][ T6454] RIP: 0033:0x7f7e693a843c
[   75.588628][ T6454] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[   75.608217][ T6454] RSP: 002b:00007f7e68021030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   75.616631][ T6454] RAX: ffffffffffffffda RBX: 00007f7e69545f80 RCX: 00007f7e693a843c
[   75.624604][ T6454] RDX: 000000000000000f RSI: 00007f7e680210a0 RDI: 0000000000000004
[   75.632551][ T6454] RBP: 00007f7e68021090 R08: 0000000000000000 R09: 0000000000000000
[   75.640505][ T6454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   75.648536][ T6454] R13: 0000000000000000 R14: 00007f7e69545f80 R15: 00007ffca96c9aa8
[   75.656486][ T6454]  </TASK>
[   75.672085][ T6458] loop1: detected capacity change from 0 to 128
[   75.683693][ T6458] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   75.694820][ T6464] FAULT_INJECTION: forcing a failure.
[   75.694820][ T6464] name failslab, interval 1, probability 0, space 0, times 0
[   75.696081][ T6458] ext4 filesystem being mounted at /49/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   75.708333][ T6464] CPU: 0 UID: 0 PID: 6464 Comm: syz.0.747 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   75.750717][ T6464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   75.760851][ T6464] Call Trace:
[   75.764155][ T6464]  <TASK>
[   75.767070][ T6464]  dump_stack_lvl+0xf2/0x150
[   75.771728][ T6464]  dump_stack+0x15/0x20
[   75.775957][ T6464]  should_fail_ex+0x229/0x230
[   75.780626][ T6464]  ? crypto_create_tfm_node+0x57/0x230
[   75.786077][ T6464]  should_failslab+0x8f/0xb0
[   75.790706][ T6464]  __kmalloc_node_noprof+0xa8/0x380
[   75.795916][ T6464]  crypto_create_tfm_node+0x57/0x230
[   75.801253][ T6464]  ? crypto_alg_mod_lookup+0x26c/0x4f0
[   75.806704][ T6464]  crypto_alloc_tfm_node+0xd1/0x240
[   75.811893][ T6464]  crypto_alloc_aead+0x2f/0x40
[   75.816645][ T6464]  esp_init_state+0x233/0x960
[   75.821313][ T6464]  __xfrm_init_state+0x772/0xa90
[   75.826243][ T6464]  xfrm_add_sa+0x1bb2/0x2010
[   75.830914][ T6464]  xfrm_user_rcv_msg+0x4a3/0x5c0
[   75.835866][ T6464]  ? __kfree_skb+0x102/0x150
[   75.840443][ T6464]  ? consume_skb+0x57/0x180
[   75.844937][ T6464]  netlink_rcv_skb+0x12c/0x230
[   75.849700][ T6464]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[   75.855223][ T6464]  xfrm_netlink_rcv+0x47/0x60
[   75.859897][ T6464]  netlink_unicast+0x593/0x670
[   75.864645][ T6464]  netlink_sendmsg+0x5cc/0x6e0
[   75.869442][ T6464]  ? __pfx_netlink_sendmsg+0x10/0x10
[   75.874714][ T6464]  __sock_sendmsg+0x140/0x180
[   75.879475][ T6464]  ____sys_sendmsg+0x312/0x410
[   75.884297][ T6464]  __sys_sendmsg+0x1e9/0x280
[   75.888927][ T6464]  __x64_sys_sendmsg+0x46/0x50
[   75.893714][ T6464]  x64_sys_call+0x2689/0x2d60
[   75.898390][ T6464]  do_syscall_64+0xc9/0x1c0
[   75.902888][ T6464]  ? clear_bhb_loop+0x55/0xb0
[   75.907555][ T6464]  ? clear_bhb_loop+0x55/0xb0
[   75.912237][ T6464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.918192][ T6464] RIP: 0033:0x7f46e02499f9
[   75.922661][ T6464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.942308][ T6464] RSP: 002b:00007f46deec7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.950705][ T6464] RAX: ffffffffffffffda RBX: 00007f46e03e5f80 RCX: 00007f46e02499f9
[   75.958664][ T6464] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   75.966663][ T6464] RBP: 00007f46deec7090 R08: 0000000000000000 R09: 0000000000000000
[   75.974670][ T6464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.982625][ T6464] R13: 0000000000000000 R14: 00007f46e03e5f80 R15: 00007ffea1655fb8
[   75.990638][ T6464]  </TASK>
[   75.993939][   T29] kauditd_printk_skb: 18 callbacks suppressed
[   75.993952][   T29] audit: type=1400 audit(1723563371.173:469): avc:  denied  { append open } for  pid=6456 comm="syz.1.745" path="/49/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/memory.events" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   76.045374][   T29] audit: type=1400 audit(1723563371.173:470): avc:  denied  { read write } for  pid=6456 comm="syz.1.745" name="memory.events" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   76.073732][ T5248] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   76.082954][ T6466] loop0: detected capacity change from 0 to 128
[   76.099459][   T29] audit: type=1400 audit(1723563371.533:471): avc:  denied  { mount } for  pid=6465 comm="syz.0.749" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   76.123102][   T29] audit: type=1400 audit(1723563371.552:472): avc:  denied  { setopt } for  pid=6470 comm="syz.2.752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   76.168233][   T29] audit: type=1400 audit(1723563371.589:473): avc:  denied  { audit_write } for  pid=6479 comm="syz.1.755" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   76.189291][   T29] audit: type=1107 audit(1723563371.589:474): pid=6479 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   76.206785][ T6466] syz.0.749: attempt to access beyond end of device
[   76.206785][ T6466] loop0: rw=34817, sector=121, nr_sectors = 260 limit=128
[   76.234616][   T29] audit: type=1400 audit(1723563371.653:475): avc:  denied  { unmount } for  pid=5085 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   76.249326][ T6489] loop3: detected capacity change from 0 to 512
[   76.262431][ T3279] kworker/u8:6: attempt to access beyond end of device
[   76.262431][ T3279] loop0: rw=1, sector=385, nr_sectors = 656 limit=128
[   76.263316][   T29] audit: type=1400 audit(1723563371.681:476): avc:  denied  { read } for  pid=6491 comm="syz.1.761" path="socket:[15974]" dev="sockfs" ino=15974 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   76.299718][ T6489] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   76.309834][ T6489] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c018, mo2=0002]
[   76.318168][ T6489] EXT4-fs (loop3): orphan cleanup on readonly fs
[   76.333335][ T6498] loop1: detected capacity change from 0 to 2048
[   76.339308][ T6502] cgroup: Unknown subsys name 'fowner'
[   76.340549][ T6489] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   76.357231][ T6504] cgroup: Invalid name
[   76.361271][ T6489] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   76.384487][ T6489] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #13: comm syz.3.758: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   76.404427][ T6489] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.758: couldn't read orphan inode 13 (err -117)
[   76.406738][ T6498]  loop1: p1 < > p4
[   76.424351][ T6498] loop1: p4 size 8388608 extends beyond EOD, truncated
[   76.434487][ T6489] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.448279][ T6506] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   76.455625][ T6506] vhci_hcd: invalid port number 23
[   76.467834][ T6506] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[   76.502012][ T6489] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[   76.524391][ T6489] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c018, mo2=0002]
[   76.542021][ T6489] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   76.562442][ T6508] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.594045][ T6085] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.602600][ T6513] loop2: detected capacity change from 0 to 256
[   76.616766][ T6513] FAT-fs (loop2): Directory bread(block 64) failed
[   76.623322][ T6513] FAT-fs (loop2): Directory bread(block 65) failed
[   76.642416][ T6513] FAT-fs (loop2): Directory bread(block 66) failed
[   76.650900][ T6508] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.662149][ T6513] FAT-fs (loop2): Directory bread(block 67) failed
[   76.668718][ T6513] FAT-fs (loop2): Directory bread(block 68) failed
[   76.676681][ T6513] FAT-fs (loop2): Directory bread(block 69) failed
[   76.683348][ T6513] FAT-fs (loop2): Directory bread(block 70) failed
[   76.692314][ T6513] FAT-fs (loop2): Directory bread(block 71) failed
[   76.698838][ T6513] FAT-fs (loop2): Directory bread(block 72) failed
[   76.700907][ T6515] loop3: detected capacity change from 0 to 512
[   76.706209][ T6513] FAT-fs (loop2): Directory bread(block 73) failed
[   76.726255][ T6515] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   76.727536][ T6508] bond0: (slave netdevsim1): Releasing backup interface
[   76.744499][ T6508] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.755168][ T6515] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   76.764968][ T6515] EXT4-fs (loop3): group descriptors corrupted!
[   76.771629][ T6513] xt_TCPMSS: Only works on TCP SYN packets
[   76.823070][ T6508] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.892675][ T6508] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.912630][ T6508] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.941903][ T6508] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.957814][ T6508] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.984904][ T6533] loop3: detected capacity change from 0 to 4096
[   77.116486][   T29] audit: type=1400 audit(1723563372.466:477): avc:  denied  { mount } for  pid=6542 comm="syz.1.773" name="/" dev="configfs" ino=212 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   77.166350][   T29] audit: type=1400 audit(1723563372.512:478): avc:  denied  { unmount } for  pid=5248 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   77.249272][ T6551] FAULT_INJECTION: forcing a failure.
[   77.249272][ T6551] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.262328][ T6551] CPU: 0 UID: 0 PID: 6551 Comm: syz.1.774 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   77.272937][ T6551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   77.283008][ T6551] Call Trace:
[   77.286280][ T6551]  <TASK>
[   77.289202][ T6551]  dump_stack_lvl+0xf2/0x150
[   77.293898][ T6551]  dump_stack+0x15/0x20
[   77.298107][ T6551]  should_fail_ex+0x229/0x230
[   77.302803][ T6551]  should_fail+0xb/0x10
[   77.306965][ T6551]  should_fail_usercopy+0x1a/0x20
[   77.312005][ T6551]  _copy_from_user+0x1e/0xd0
[   77.316588][ T6551]  copy_msghdr_from_user+0x54/0x2a0
[   77.321870][ T6551]  __sys_sendmsg+0x17d/0x280
[   77.326528][ T6551]  __x64_sys_sendmsg+0x46/0x50
[   77.331313][ T6551]  x64_sys_call+0x2689/0x2d60
[   77.335999][ T6551]  do_syscall_64+0xc9/0x1c0
[   77.340501][ T6551]  ? clear_bhb_loop+0x55/0xb0
[   77.345168][ T6551]  ? clear_bhb_loop+0x55/0xb0
[   77.349863][ T6551]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.355766][ T6551] RIP: 0033:0x7f00c5f899f9
[   77.360234][ T6551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.379825][ T6551] RSP: 002b:00007f00c4be6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   77.388221][ T6551] RAX: ffffffffffffffda RBX: 00007f00c6126058 RCX: 00007f00c5f899f9
[   77.396177][ T6551] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000005
[   77.404151][ T6551] RBP: 00007f00c4be6090 R08: 0000000000000000 R09: 0000000000000000
[   77.412104][ T6551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.420114][ T6551] R13: 0000000000000001 R14: 00007f00c6126058 R15: 00007ffed3b47ad8
[   77.428079][ T6551]  </TASK>
[   77.446618][ T6552] loop1: detected capacity change from 0 to 4096
[   77.516164][ T6562] ==================================================================
[   77.524246][ T6562] BUG: KCSAN: data-race in mas_wr_modify / mtree_range_walk
[   77.530006][ T6569] xt_AUDIT: Audit type out of range (valid range: 0..2)
[   77.531521][ T6562] 
[   77.531528][ T6562] write to 0xffff888104530260 of 8 bytes by task 6557 on cpu 1:
[   77.548381][ T6562]  mas_wr_modify+0x155c/0x3c90
[   77.553144][ T6562]  mas_wr_store_entry+0x250/0x390
[   77.558167][ T6562]  mas_store_prealloc+0x151/0x2b0
[   77.563188][ T6562]  vma_expand+0x57f/0x660
[   77.567502][ T6562]  mmap_region+0x80c/0x1620
[   77.571991][ T6562]  do_mmap+0x72a/0xb70
[   77.576046][ T6562]  vm_mmap_pgoff+0x133/0x290
[   77.580623][ T6562]  ksys_mmap_pgoff+0xd0/0x340
[   77.585284][ T6562]  x64_sys_call+0x1884/0x2d60
[   77.589947][ T6562]  do_syscall_64+0xc9/0x1c0
[   77.594441][ T6562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.600323][ T6562] 
[   77.602632][ T6562] read to 0xffff888104530260 of 8 bytes by task 6562 on cpu 0:
[   77.610154][ T6562]  mtree_range_walk+0x1b4/0x460
[   77.614986][ T6562]  mas_walk+0x16e/0x320
[   77.619135][ T6562]  lock_vma_under_rcu+0x84/0x260
[   77.624062][ T6562]  exc_page_fault+0x150/0x650
[   77.628725][ T6562]  asm_exc_page_fault+0x26/0x30
[   77.633561][ T6562] 
[   77.635862][ T6562] value changed: 0x00007f9e63eddfff -> 0x00007f9e63ebcfff
[   77.642946][ T6562] 
[   77.645248][ T6562] Reported by Kernel Concurrency Sanitizer on:
[   77.651376][ T6562] CPU: 0 UID: 0 PID: 6562 Comm: syz.2.777 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[   77.661944][ T6562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   77.671980][ T6562] ==================================================================