last executing test programs:

6.87578541s ago: executing program 2 (id=1429):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x2, 0x0, 0x10001, 0x0, 0xfffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb8, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380), 0x4}, 0x800, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/fscreate\x00')
writev(r1, &(0x7f0000000480)=[{&(0x7f0000000580)="1789a99126094f970bcbbca6b4ec62ac82a4366d159ce37a990106dfb2a011167db62be1642e88b9584ba24f4e46ca7e6757b12ac345895d2efd73055ecae1802ba9215b3388fe177341dccde02c1b5e381159d6ef704fb967652ed6175528c9be9bc8bdd076a69853edc400857675936decd7de8971cba7fb63a2bf72782ce1653858e210a0aceb822039a842ab76efb1496a817a01b1447b03431c1b58ecc4490a9afa38ce152100b8f87ba66d3409cd9ddf7d06cc755f9b49a6472288c22489b32a7c9353444f6fd07032a2eeaf97f208eb7c42", 0xd5}, {&(0x7f0000000740)="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", 0x170}, {&(0x7f0000000680)="0ec0668ecefe2008d36844e8cd6675067471a44bb4d24cea77e4bcd77ec2441681e81ad01fb7efc590b90015c3ecedcbed09048b2eb9f7c732f9cc76d0a5025bf82f995a000000", 0x47}], 0x3)
socket$packet(0x11, 0x0, 0x300)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0xc0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x18, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = perf_event_open(&(0x7f00000003c0)={0x4, 0x80, 0x26, 0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, @perf_config_ext, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fc}, 0x0, 0x0, 0xffffffffffffffff, 0x5)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007bdfd57ab6789d719471978fe521168af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r3, @ANYRES64=r0, @ANYRESDEC=r3], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000cf}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r4)
r5 = openat$misdntimer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IMADDTIMER(r5, 0x80044940, &(0x7f0000000080)=0x14)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x6}]})
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r6, 0x0, 0x2100)
r7 = socket$phonet_pipe(0x23, 0x5, 0x2)
dup3(r7, r5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, 0x0, 0x0)
r8 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$x25(r8, &(0x7f0000000200)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x2, 0x2}}, 0x12)
read$rfkill(r1, 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x400448e0, &(0x7f0000000000)="4e4f15e0716bbf3f03fceb3844c93215a8084d1c1f34424d0a0a89443646d7dca76be3c0cd196366084b9fe0d176d2ec62")
socket$phonet_pipe(0x23, 0x5, 0x2)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)

6.01886934s ago: executing program 2 (id=1445):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r0 = open(&(0x7f0000000040)='./bus\x00', 0x145142, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000200de030000000000000001040000000e0000f1850000000e00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001100)={&(0x7f00000010c0)='mm_page_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000040)='./bus\x00', 0x10103e, 0x0)
ftruncate(r2, 0x20cf01)
socket$nl_rdma(0x10, 0x3, 0x14)
sendfile(r0, r0, 0x0, 0x0)

5.980465583s ago: executing program 2 (id=1446):
r0 = perf_event_open(&(0x7f0000001a00)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xe, 0xd}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x1800000000000000}, 0x0)

5.884380281s ago: executing program 2 (id=1449):
socket$inet6(0xa, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xd, 0x8, &(0x7f00000003c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {}, {0x85, 0x0, 0x0, 0x39}}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

4.522463252s ago: executing program 2 (id=1474):
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = socket(0x10, 0x3, 0x0)
bind$netlink(r2, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
write(r2, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000b4bffc), 0x4)
write(r2, &(0x7f0000000000)='\"', 0x1)
recvmmsg(r2, &(0x7f0000000780), 0x3ffffffffffff81, 0x2, 0x0)

3.155145763s ago: executing program 3 (id=1495):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x0, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) (async)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCSCLOCKID(r1, 0x400445a0, &(0x7f0000000240)=0x7) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000006, 0x10012, r2, 0x0) (async)
ioctl$EVIOCSCLOCKID(r1, 0x400445a0, &(0x7f00000000c0))
r3 = socket(0x10, 0x3, 0x0)
r4 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xf, 0x0, 0x1}, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mount_setattr(r2, 0x0, 0x0, 0x0, 0x0) (async)
r5 = syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00') (async)
unshare(0x68060200)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r6, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @dev}, {0x2, 0x0, @empty}, 0x2a0}) (async)
ioctl$sock_inet_SIOCDELRT(r6, 0x890c, &(0x7f0000000080)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @multicast2}, {0x2, 0x0, @empty}, 0xab852ebbeefbd6b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x1, 0x803, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[], 0x40}}, 0x0)
creat(0x0, 0xda) (async)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000140)={0x2, 0x44, 0x1c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000300)='),^-\x00') (async)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x401, 0x4222, 0x100, 0x1040, 0xffffffffffffffff, 0xe462, '\x00', r9, r0, 0x2, 0x5, 0x4, 0xa}, 0x48) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x0, 0x734, 0x3ffc000, 0x600, 0xffffffffffffffff, 0xa907, '\x00', r9, r5, 0x2, 0x5, 0x3, 0x3}, 0x48) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=@gettaction={0x1c, 0x32, 0xfe3dff98c0cdc937, 0x0, 0x0, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x40}]}, 0x1c}}, 0x0) (async)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(0xffffffffffffffff, 0x40186f40, 0x20000502)

2.853978348s ago: executing program 2 (id=1496):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000050000000d00000004000084050000000b0000000100001fe7b74cb891b3692321a2ab53b57400000000800b00000000000000100000001000000008000000100000000d00"], 0x0, 0x59, 0x0, 0x0, 0x2}, 0x20)
r0 = socket$inet6(0xa, 0x6, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000080)=0x5, 0x4)
bind$inet6(r0, &(0x7f0000000480)={0xa, 0x0, 0x0, @mcast1={0xff, 0x4}}, 0x1c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0xf3a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)={'#! ', './file0'}, 0xb)
ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000180)={0x2c, 0xf, 0x15, 0x18, 0x5, 0x28, 0x3, 0xa1, 0xffffffffffffffff})
listen(r0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000000)={0x0, <r3=>0x0})
sched_setscheduler(r3, 0x7, &(0x7f0000000080)=0x7)

2.373379187s ago: executing program 3 (id=1501):
socket$inet_sctp(0x2, 0x0, 0x84)
socket(0x2, 0x80805, 0x0)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000380)={0x1, &(0x7f00000002c0)=[{0x6}]}, 0x10)
sendmsg$nl_route_sched(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0xfff1)

2.321213981s ago: executing program 3 (id=1502):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0xfffc, 0x0, @loopback}], 0x1c)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0xfffc, @dev}], 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0xfffc, @remote}], 0x10)
sendmmsg$inet6(r2, &(0x7f000000cf00)=[{{&(0x7f00000084c0)={0xa, 0xfffc, 0x0, @loopback}, 0x1c, &(0x7f0000008900)=[{&(0x7f0000008500)="88", 0x1}], 0x1}}], 0x1, 0x0)
sendmmsg$inet6(r1, &(0x7f000000cf00)=[{{&(0x7f00000084c0)={0xa, 0xfffc, 0x0, @loopback}, 0x1c, &(0x7f0000008900)=[{&(0x7f0000008500)="88", 0xff12}], 0x1}}], 0x1, 0x0)
sendmmsg$inet6(r0, &(0x7f000000cf00)=[{{&(0x7f00000084c0)={0xa, 0xfffc, 0x0, @loopback={0xf00}}, 0x1c, &(0x7f0000008900)=[{&(0x7f0000008500)="88", 0xff12}], 0x1}}], 0x1, 0x0)

1.468478811s ago: executing program 3 (id=1516):
syz_open_dev$evdev(0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000040)={'\x00', 0x0, 0x1, 0x80000000})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x8c)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
mkdir(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x18, 0x14, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000ff0f0000000000000002000038110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000850000000500000018460000faffffff0000000000000000186b0000070000000000000008000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f00000004c0)='GPL\x00', 0x7, 0x1000, &(0x7f0000001180)=""/4096, 0x41100, 0x39, '\x00', 0x0, 0x0, r2, 0x8, &(0x7f0000000540)={0x5, 0x3}, 0x8, 0x10, &(0x7f0000000680)={0x0, 0x3, 0x0, 0x40}, 0x10, 0x0, 0x0, 0x8, 0x0, &(0x7f00000006c0)=[{0x3, 0x1, 0xb, 0x9}, {0x4, 0x5, 0xa, 0xc}, {0x0, 0x1, 0x6, 0x4}, {0x3, 0x3, 0x4, 0x4}, {0x5, 0x3, 0x10, 0x9}, {0x1, 0x5, 0x2, 0xb}, {0x2, 0x5, 0x7, 0xa}, {0x1, 0x5, 0x5, 0x8}], 0x10, 0xcb3f}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={0x0}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_usbip_server_init(0x3)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_SET_FLAGS(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0xfeae, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYRES64, @ANYRES32=r3], 0x18}, 0x1, 0x0, 0x0, 0x8040}, 0x4048801)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_int(r4, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)

1.413388735s ago: executing program 4 (id=1519):
socket$inet(0x2, 0x0, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000000c0)='vlan0\x00', 0x10)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f00007b8000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)
mremap(&(0x7f0000b08000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f00001e4000/0x2000)=nil)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000300)={<r1=>0x0, @in6={{0xa, 0x4e20, 0x3, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, 0xffffffa8}}}, &(0x7f0000000080)=0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f00000001c0)={r1, @in={{0x2, 0x4e20, @loopback}}, [0x80000001, 0xd, 0x2, 0x9, 0x3f, 0x4, 0xe1, 0x5, 0x5, 0x3ff, 0x85, 0x1, 0x7, 0x7fffffffffffffff, 0x9]}, &(0x7f0000000180)=0xfee4)
remap_file_pages(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_opts(r2, 0x0, 0x22, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x12200, 0x8)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'pim6reg\x00'})
socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'rose0\x00', <r4=>0x0})
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x0, &(0x7f00000005c0), 0x1, 0x53d, &(0x7f0000000600)="$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")
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x5881d554b7a97307, r4, 0x1, 0x0, 0x6, @remote}, 0x14)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r6 = getpid()
process_vm_readv(r6, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r7 = memfd_create(&(0x7f0000000b40)='\xb9\x8f\xf3e\t\xa9\xff\vty\x01s\t\x00u(\xc9\xb7\xc5\xebE\x97x\x00\xb4\x8f]??\xf2\xee\x11Kc\x11v\x16T\x7f\xd0\x1a\x1c\x80m\xb8\xae\\\x96\xab\x8a\xe0\x86w\xff\x99g\x06\xd3\xa6.\n\xfa\xf9\xefD\x82\xc5%\xe3\x96<\x83i\x96\xaaT\xef\xa2\x14\xf0\xbfa(\xe1\xd9\xdb\x0f\x1d\x0f1U\x8d\x87\x1f\x8e>\xe2r\x14\xd4J\xa61\x95$B\xf9\xa4N\xb5\xcc\xb2\xafQ\x81\xda\xbf\x03\xba|\xee\xec\xe6g\x17Q\x04\x01\xf0\xa9\x9d(\xb6\x17&~\x1c9-\v\xa9\xfa\x9f\xd4\xadn\xd0<\aT\xce', 0x7)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r7, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x8)
socket$nl_route(0x10, 0x3, 0x0)

1.364051659s ago: executing program 0 (id=1521):
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
unshare(0x20020000)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x100)
ioperm(0x6, 0x6, 0x400000000)
unshare(0x20000)
move_mount(r0, &(0x7f0000001800)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c0000003b000900000000000000000001000000180004804e000500fe8000000000000000000000000000aa"], 0x2c}}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000100)={0x3, &(0x7f0000000040)=[{0x45}, {0x64}, {0x6, 0x0, 0x0, 0xffffefff}]}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x64, 0x64, 0x7, [@func={0x3, 0x0, 0x0, 0xc, 0x3}, @func_proto={0x0, 0x8, 0x0, 0xd, 0x0, [{}, {0x7, 0x4}, {0xe, 0x5}, {0xf, 0x1}, {0x0, 0x3}, {0x9, 0x5}, {0xd, 0x5}, {0x1, 0x3}]}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x2}]}, {0x0, [0x0, 0x0, 0x61, 0x30, 0x30]}}, 0x0, 0x83}, 0x20)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
setresuid(0xee01, 0x0, 0xee00)
setreuid(0x0, 0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r4, 0x84, 0x6e, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000080)={0x2, [0x0, 0x0]}, &(0x7f0000000180)=0xc)
close(0xffffffffffffffff)
r5 = socket$netlink(0x10, 0x3, 0x14)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r7, &(0x7f0000000040)="14000000140005b7ffccca38b9000000040860eb", 0x14)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x5c}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000001040)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1.155362796s ago: executing program 0 (id=1523):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
getpid()
bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xda00)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r3=>0xffffffffffffffff})
recvmsg$unix(r3, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc02082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
sendmsg$unix(r2, &(0x7f0000000740)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r5, &(0x7f00000004c0)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a06030000002300000000"], 0xfdef)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000180)={0x2}, 0x8)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r0, 0xe0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000001c0)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0xa4, &(0x7f0000000280)=[{}, {}, {}], 0x18, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0x83, 0x8, 0x8, &(0x7f0000000340)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f00000001c0)='./file2\x00', 0x200484, &(0x7f00000005c0)={[{@journal_async_commit}, {@init_itable}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2000068}}, {@norecovery}, {@discard}, {@quota}], [{@smackfstransmute={'smackfstransmute', 0x3d, '\n/#'}}, {@audit}]}, 0x3, 0x439, &(0x7f0000001840)="$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")
open(0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0)
pwritev2(r6, &(0x7f00000001c0)=[{&(0x7f0000000200)='y', 0x1}], 0x1, 0x8003, 0x0, 0x0)

1.085668842s ago: executing program 4 (id=1524):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r0, 0x4) (async)
listen(r0, 0x4)
accept(r0, &(0x7f0000000080)=@can, 0x0) (async)
accept(r0, &(0x7f0000000080)=@can, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) (async)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000300)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}}}, 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f00000002c0)="3200000002000000", 0x8)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x400000000, 0x0, 0x1000, 0x0, 0xfffffffe, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$key(0xf, 0x3, 0x2)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)={0x50, r3, 0x20, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x400, 0x42}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7ffb}, @NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xd1f1}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xb404}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xfff}]}, 0x50}, 0x1, 0x0, 0x0, 0x2004c881}, 0x800)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01010000000000000000020000000900010073797a3000000000080002400000000098000000030a01020000000000000000020000000900010073797a30000000000900030073797a32000000006b00030091abc12404cf378042f26c43f91f"], 0xfc}}, 0x0) (async)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01010000000000000000020000000900010073797a3000000000080002400000000098000000030a01020000000000000000020000000900010073797a30000000000900030073797a32000000006b00030091abc12404cf378042f26c43f91f"], 0xfc}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r7=>0x0})
r8 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r8, &(0x7f0000000040)={0xa, 0x4e20, 0x1}, 0x1c)
listen(r8, 0x80080400)
r9 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r9, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback=0x7f000002}, 0x10)
getsockopt$inet_int(r9, 0x10d, 0xcf, &(0x7f0000000000), 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000055002f03020000000000000007000000", @ANYRES32=r7, @ANYBLOB="200001"], 0x38}}, 0x0) (async)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="3800000055002f03020000000000000007000000", @ANYRES32=r7, @ANYBLOB="200001"], 0x38}}, 0x0)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f0000000300)=ANY=[@ANYBLOB="0200000003"], 0x8)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140), 0x0)
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="8b"], 0x53) (async)
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) (async)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)

980.82644ms ago: executing program 4 (id=1525):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000001dc0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020732500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000085000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vxcan0\x00', <r2=>0x0})
sendmsg$can_raw(r0, &(0x7f0000000000)={&(0x7f00000000c0)={0x1d, r2}, 0x10, &(0x7f0000000140)={&(0x7f0000000180)=@can={{0x0, 0x0, 0x1}, 0x0, 0x0, 0x4, 0x0, "1b2bc764c7ed2890"}, 0x10}, 0x2}, 0x0)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14}, 0x14}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x2b, 0x4, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r4}, &(0x7f0000000440), &(0x7f0000000480)=r3}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r4, &(0x7f0000000100)}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000400), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000900), 0x111}}, 0x20)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
r5 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = socket(0x2, 0x80805, 0x0)
io_uring_setup(0x4f08, &(0x7f0000000340))
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r7, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r7, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x6e)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r7, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4c23, @empty}}, 0xfffffffe, 0x0, 0x0, 0xf401, 0x54, 0x40000}, 0x9c)
r8 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r6, 0x84, 0x7b, &(0x7f0000000540)={r9}, 0x8)
getsockopt$inet_sctp_SCTP_RTOINFO(r5, 0x84, 0x0, &(0x7f0000000240)={r9, 0x2, 0x7f, 0x1ff}, &(0x7f0000000280)=0x10)

956.342692ms ago: executing program 4 (id=1526):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)={0x1c, 0x5e, 0xe25, 0x0, 0x0, "", [@nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x26ff, 0x0, 0x0, @u32=0x6}]}]}, 0x1c}], 0x1}, 0x0)

944.467083ms ago: executing program 4 (id=1527):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x2, 0x0, 0x10001, 0x0, 0xfffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb8, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380), 0x4}, 0x800, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='attr/fscreate\x00')
writev(r1, &(0x7f0000000480)=[{&(0x7f0000000580)="1789a99126094f970bcbbca6b4ec62ac82a4366d159ce37a990106dfb2a011167db62be1642e88b9584ba24f4e46ca7e6757b12ac345895d2efd73055ecae1802ba9215b3388fe177341dccde02c1b5e381159d6ef704fb967652ed6175528c9be9bc8bdd076a69853edc400857675936decd7de8971cba7fb63a2bf72782ce1653858e210a0aceb822039a842ab76efb1496a817a01b1447b03431c1b58ecc4490a9afa38ce152100b8f87ba66d3409cd9ddf7d06cc755f9b49a6472288c22489b32a7c9353444f6fd07032a2eeaf97f208eb7c42", 0xd5}, {&(0x7f0000000740)="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", 0x170}, {&(0x7f0000000680)="0ec0668ecefe2008d36844e8cd6675067471a44bb4d24cea77e4bcd77ec2441681e81ad01fb7efc590b90015c3ecedcbed09048b2eb9f7c732f9cc76d0a5025bf82f995a000000", 0x47}], 0x3)
socket$packet(0x11, 0x0, 0x300)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0xc0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x18, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = perf_event_open(&(0x7f00000003c0)={0x4, 0x80, 0x26, 0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, @perf_config_ext, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fc}, 0x0, 0x0, 0xffffffffffffffff, 0x5)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007bdfd57ab6789d719471978fe521168af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r3, @ANYRES64=r0, @ANYRESDEC=r3], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000cf}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r4)
r5 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(0xffffffffffffffff, 0x80044940, &(0x7f0000000080)=0x14)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x6}]})
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r6, 0x0, 0x2100)
r7 = socket$phonet_pipe(0x23, 0x5, 0x2)
dup3(r7, r5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, 0x0, 0x0)
r8 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$x25(r8, &(0x7f0000000200)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x2, 0x2}}, 0x12)
read$rfkill(r1, 0x0, 0x0)
ioctl$sock_bt_hci(r1, 0x400448e0, &(0x7f0000000000)="4e4f15e0716bbf3f03fceb3844c93215a8084d1c1f34424d0a0a89443646d7dca76be3c0cd196366084b9fe0d176d2ec62")
socket$phonet_pipe(0x23, 0x5, 0x2)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)

424.734726ms ago: executing program 1 (id=1529):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0x3c, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x8}]}}}]}, 0x3c}}, 0x0) (fail_nth: 2)

306.402395ms ago: executing program 0 (id=1530):
r0 = socket(0x11, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt(r0, 0x1, 0x4, &(0x7f0000002840)=""/186, &(0x7f0000000200)=0xba)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000980)="f3", 0x1}], 0x1)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0xfdef)
write(0xffffffffffffffff, 0x0, 0x15)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000a80)={&(0x7f0000000340), 0xc, &(0x7f0000000a40)={&(0x7f00000003c0)={0x14, 0x0, 0x201, 0x70bd27, 0x0, {}, [""]}, 0x10}}, 0x0)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000f80)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000900)={&(0x7f0000000e80)={0xa8, r3, 0x10, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_CQM={0x44, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x7}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x235}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x3d}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x6}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x31d}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x1}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0xffffff91}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x5b}]}, @NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x7fff}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x375}]}, @NL80211_ATTR_CQM={0xc, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x38}]}, @NL80211_ATTR_CQM={0x4}, @NL80211_ATTR_CQM={0x2c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x28, 0x1, [0x8a1d, 0xfffffffe, 0x5, 0x5, 0x5, 0xffffffad, 0xf3, 0x2000, 0xed40]}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x851}, 0x800)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
close(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x12}, &(0x7f0000000200))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085100000010000000020646c2500000000002020207b1a00fe00000000bda100000000000007010000f8ffff06b702000008000000b70300000000000085000000760000009500"/104], &(0x7f0000000180)='GPL\x00', 0x9, 0x88, &(0x7f0000000000)=""/136}, 0x90)
clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x0)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000500))
unshare(0x40000000)

229.041172ms ago: executing program 1 (id=1531):
socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
socket(0x10, 0x3, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$TCSETS(r0, 0x89f3, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89000)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000080)={0x0, 0x0, 0x20000}, 0x20)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r3, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x1, 0x4)
sendmsg$inet6(r3, &(0x7f0000000040)={&(0x7f0000000340)={0xa, 0x4e24, 0x1000000080000, @loopback}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=[@dstopts_2292={{0x18}}], 0x18}, 0x0)
move_mount(r2, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x121)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
socket$kcm(0x10, 0x2, 0x4)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000000380)={0xa, 0x14e24, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c)
connect$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e27, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000680)="ac9e0e521e42a5de6b4140c422f1a74852a3c7553589bd551423c2eb529fcad406c672ab8a2fc87fe343c66a83e0e2940241caec01c64c8c95e5de6d", 0x3c}, {&(0x7f00000000c0)="9b8b0a3d30e44e25", 0x8}, {&(0x7f00000001c0)='@', 0x1}], 0x3}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000001280)="14", 0x1}], 0x1, &(0x7f00000016c0)=ANY=[], 0x210}}], 0x2, 0xc8000)
mkdir(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cf84ded40224edc5465a932b77e74e802a0d42bc6099ad23"], 0x0}, 0x90)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r7)
sendmsg$NLBL_MGMT_C_ADDDEF(r7, &(0x7f0000000100)={0x0, 0x8, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="58010000", @ANYRES16=r8, @ANYBLOB="0100000000000000000002000000080002000500000008000700e000000208000800ac1434002c010100"], 0x158}}, 0x0)

195.362434ms ago: executing program 1 (id=1532):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000e40)={0x48, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}]}, 0x48}}, 0xff80)

163.623647ms ago: executing program 1 (id=1533):
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
unshare(0x20020000)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x100)
ioperm(0x6, 0x6, 0x400000000)
unshare(0x20000)
move_mount(r0, &(0x7f0000001800)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c0000003b000900000000000000000001000000180004804e000500fe8000000000000000000000000000aa"], 0x2c}}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000100)={0x3, &(0x7f0000000040)=[{0x45}, {0x64}, {0x6, 0x0, 0x0, 0xffffefff}]}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x64, 0x64, 0x7, [@func={0x3, 0x0, 0x0, 0xc, 0x3}, @func_proto={0x0, 0x8, 0x0, 0xd, 0x0, [{}, {0x7, 0x4}, {0xe, 0x5}, {0xf, 0x1}, {0x0, 0x3}, {0x9, 0x5}, {0xd, 0x5}, {0x1, 0x3}]}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x2}]}, {0x0, [0x0, 0x0, 0x61, 0x30, 0x30]}}, 0x0, 0x83}, 0x20)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
setresuid(0xee01, 0x0, 0xee00)
setreuid(0x0, 0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r4, 0x84, 0x6e, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000080)={0x2, [0x0, 0x0]}, &(0x7f0000000180)=0xc)
close(0xffffffffffffffff)
r5 = socket$netlink(0x10, 0x3, 0x14)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r7, &(0x7f0000000040)="14000000140005b7ffccca38b9000000040860eb", 0x14)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x5c}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000001040)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

162.635437ms ago: executing program 1 (id=1534):
unshare(0x68040200)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x2}, 0x0)
r1 = socket(0xa, 0x3, 0x3a)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000200)='mm_page_free\x00', r2}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000540), 0x84)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r3, 0x0)
perf_event_open(&(0x7f0000000400)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

96.650402ms ago: executing program 3 (id=1535):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x0, {}, [{0x50, 0x1, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x5}}]}, {0x4, 0x4}, {0xc}, {0xc, 0x8, {0xe4}}}}]}]}, 0x64}}, 0x0)

59.583155ms ago: executing program 3 (id=1536):
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000f4)
syz_usb_connect(0x0, 0x4f, &(0x7f00000004c0)=ANY=[@ANYBLOB="12010000a6ff0540cdabeecdb9050000000109023d00020000000009049c00030103510009050a00000003000009050313c085bb26e609be49a1751ef530c9e500000000000725010300000009050f9f414a9ab3fddfafac47285086a08d845d0b7f295e4c6346d273dd18f7744a5a07bbda45fd932df6c0e97a3ab69b90b4cd34af486af45642d062a316a9103237a77c275b3cca7229dff2a6a81f3b5bf2caf4989a6812aef356304be7b4315a9ed2e4387ff30986ad76b31ca9cfb8077f8bcb0d654ad0d5de155859eb6e711c83aca364820ae5caed0f2cb467f94fcfc06eb9743929879278ad3dd60e"], 0x0)

59.065465ms ago: executing program 4 (id=1537):
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x0)
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$setsig(r0, 0xa, 0x21)
fcntl$setlease(r0, 0x400, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f00000000c0)=@framed, &(0x7f00000001c0)='GPL\x00', 0x4}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0, r1}, 0x10)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c)
r2 = syz_io_uring_setup(0x6908, &(0x7f0000000340), &(0x7f0000000140), &(0x7f0000000100))
r3 = io_uring_setup(0x7058, &(0x7f0000000040))
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x1a, 0x20000002, r4)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x8, 0x1, 0x68}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe}, 0x80)
ioctl$EVIOCSFF(r0, 0x40304580, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3804402, &(0x7f0000000600)={[{@user_xattr}, {@data_err_abort}, {@resuid}, {@errors_remount}, {@norecovery}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x5}}, {@noinit_itable}, {@nomblk_io_submit}, {@grpquota}, {@nogrpid}]}, 0x1, 0x54f, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbZdnamc8HbnvOvTc995t7v6fn5iQkgKE1kf0oRLwcEd8kEQfbto1GvnFibb/V+1dnsyWJRuPTv5JI8nWt/ZP89/688lJE/PZVxPHCxnZryysLpXI5Xczrk/XKpcna8sqJC5XSfDqfXpyemTn19sz0e+++M7BY3zj7z/ef3P7w1NdHV7/75e6hm0mcjgP5tvY4nsC19spETOTPyVicfmTHqQE0tpMk230A9GUkz/OxyPqAgzGSZz3w//dlRDSAIZXIfxhSrXFA695+QPfBz417H6zdAG2Mf3TttZHY07w32reaPHRnlN3vjg+g/ayNX/+8dTNbYnCvQwBs6dr1iDg5Orqx/0vy/q9/J3vY59E29H/w7NzOxj9vdhr/FNbHP9Fh/LO/Q+72Y+v8L9wdQDNdZeO/9zuOf9cnrcZH8toLzTHfWHL+QjnN+rYXI+JYjO3O6pvN55xavdPotq19/JctWfutsWB+HHdHdz/8mLlSvfQkMbe7dz3ilY7j32T9/Ccdzn/2fJztsY0j6a3Xum3bOv6nq/FTxOsdz/+DGa1k8/nJyeb1MNm6Kjb6+8aR37u1v93xZ+d/3+bxjyft87W1x2/jxz3/pt229Xv970o+a5Z35euulOr1xamIXcnHG9dPP3hsq97aP4v/2NHN+79O1//eiPi8x/hvHP751f7jf7qy+Oce6/w/fuHOR1/80K393s7/W83SsXxNL/1frwf4JM8dAAAAAAAA7DSFiDgQSaG4Xi4UisW193ccjn2FcrVWP36+unRxLpqflR2PsUJrpvtg2/shpvL3w7bq04/UZyLiUER8O7K3WS/OVstz2x08AAAAAAAAAAAAAAAAAAAA7BD7u3z+P/PHyHYfHfDU+cpvGF5b5v8gvukJ2JH8/4fhJf9heMl/GF7yH4aX/IfhJf9heMl/GF7yHwAAAAAAAAAAAAAAAAAAAAAAAAAAAAbq7Jkz2dJYvX91NqvPXV5eWqhePjGX1haKlaXZ4mx18VJxvlqdL6fF2Wplq79XrlYvTU3H0pXJelqrT9aWV85VqksX6+cuVErz6bl07JlEBQAAAAAAAAAAAAAAAAAAAM+X2vLKQqlcThcVFPoqjO6Mw1AYcGG7eyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeOC/AAAA///ktDiZ")
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r6 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="032786dd0501100e0341f00000006000000601002f0081e949b93897bc3b0000000000007d01ff020000000000000000000000000001120022eb"], 0xfdef)

37.916477ms ago: executing program 0 (id=1538):
socket$packet(0x11, 0x2, 0x300)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$rds(0x15, 0x5, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x260, 0xf8, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1c8, 0xffffffff, 0xffffffff, 0x1c8, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'veth1\x00', 'veth0_to_team\x00'}, 0x6, 0x98, 0xf8, 0x0, {0xf800}, [@common=@unspec=@cgroup0={{0x28}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff}}}}, {{@ip={@remote, @dev, 0x0, 0x0, 'team0\x00', 'batadv_slave_0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0)

1.10487ms ago: executing program 0 (id=1539):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f00000029c0)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000500)=[@rdma_dest={0x18, 0x10c}, @rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x3ffe08}}], 0x48}, 0x0)

928.02µs ago: executing program 0 (id=1540):
socket$netlink(0x10, 0x3, 0x10) (async, rerun: 32)
r0 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) (async)
sendto$inet(r1, &(0x7f0000000300)="ab", 0x1, 0x0, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
sendmsg$inet_sctp(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000280)='\x00', 0x1}], 0x1, &(0x7f0000000b40)=ANY=[@ANYBLOB="2000000000ee00000000000002000000000341000000000000000000", @ANYBLOB="e13c1a4efa6f5cb83c985fd8525516c0db8d55eb5d7ea3cfd1e0f447d5d1cb1444a4aa2a985378d11fe96fcc563f3c095720f0f28857052db18da1a88212d3db0421719b27ab6cec5e166b9f29e48cd6a1cd47a5be5cac6cc5dcafb9ad35e59fbff9a926af5082318a9c3487f6311c90e996a4a1a3acae467aacab4d9f65021381c12697c5c4ed7353e442c3120e91cc0d9269d20c7a55b9024fc20d74f86122e9674d"], 0x20}, 0x0) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000005000000000000000018040000", @ANYRES16=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000a704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bind$nfc_llcp(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[], 0x1c}}, 0x0) (async)
ioctl$sock_SIOCBRDELBR(r3, 0x89a2, &(0x7f0000000000)='bridge0\x00') (async, rerun: 64)
syz_emit_ethernet(0x5f8, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x0) (async, rerun: 64)
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async, rerun: 32)
unshare(0x20000400) (async, rerun: 32)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) (async, rerun: 64)
fchdir(0xffffffffffffffff) (async, rerun: 64)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) (async)
r4 = inotify_init1(0x1000)
fcntl$setown(r4, 0x8, 0xffffffffffffffff) (async)
fcntl$getownex(r4, 0x10, &(0x7f0000000140)={0x0, <r5=>0x0})
syz_open_procfs(r5, &(0x7f0000000040)='fd/4\x00')
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(0xffffffffffffffff, 0x40086610, &(0x7f0000000180)={@id={0x40000, 0x0, @auto="21d5f9d42e9e826835f9a9eaa6ecf63c"}}) (async)
msgget$private(0x0, 0x0) (async)
msgsnd(0x0, &(0x7f0000000b40)=ANY=[], 0x8, 0x0)
msgsnd(0x0, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r4], 0x8, 0x0) (async)
syz_open_dev$evdev(&(0x7f00000003c0), 0x3, 0x101000)

0s ago: executing program 1 (id=1541):
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00')
r0 = syz_clone(0x0, 0x0, 0xffffffffffffff9d, 0x0, 0x0, 0x0)
syz_pidfd_open(r0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x7, 0x4, 0x18, 0xa042}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x2, 0x5}, 0x48)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="44000000104c030400"/20, @ANYRES32=0x0, @ANYBLOB="0500000000000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x44}}, 0x0)

kernel console output (not intermixed with test programs):

phan inode 13 (err -117)
[  101.282477][ T7655] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.296585][ T7655] netem: unknown loss type 0
[  101.301184][ T7655] netem: change failed
[  101.322047][ T7643] loop0: detected capacity change from 0 to 65536
[  101.329229][ T6116] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.377482][ T7661] loop2: detected capacity change from 0 to 512
[  101.396860][ T7661] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.411708][ T7663] loop1: detected capacity change from 0 to 2048
[  101.413390][ T7661] ext4 filesystem being mounted at /85/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  101.431941][ T7661] netlink: 108 bytes leftover after parsing attributes in process `syz.2.1164'.
[  101.446721][ T7663]  loop1: p2 < >
[  101.462602][ T6116] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.481654][ T7673] loop2: detected capacity change from 0 to 512
[  101.489882][ T7673] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.1167: bad orphan inode 17
[  101.492243][ T7675] loop0: detected capacity change from 0 to 512
[  101.501465][ T7673] ext4_test_bit(bit=16, block=4) = 1
[  101.506695][ T7677] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1165'.
[  101.511489][ T7673] is_bad_inode(inode)=0
[  101.524968][ T7673] NEXT_ORPHAN(inode)=0
[  101.529049][ T7673] max_ino=32
[  101.532138][ T7675] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  101.532444][ T7673] i_nlink=1
[  101.534077][ T7673] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.545854][ T7675] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #16: comm syz.0.1169: invalid indirect mapped block 512 (level 0)
[  101.562647][ T7673] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1167: bg 0: block 7: invalid block bitmap
[  101.572372][ T7675] EXT4-fs (loop0): Remounting filesystem read-only
[  101.591682][ T7675] EXT4-fs (loop0): 1 orphan inode deleted
[  101.597468][ T7675] EXT4-fs (loop0): 1 truncate cleaned up
[  101.603775][ T6116] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.605419][ T7675] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.625428][ T7675] SELinux: (dev loop0, type ext4) getxattr errno 5
[  101.632532][ T7675] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.638046][ T7680] loop2: detected capacity change from 0 to 1024
[  101.650796][ T7680] EXT4-fs: Ignoring removed orlov option
[  101.656613][ T7680] EXT4-fs: Ignoring removed nomblk_io_submit option
[  101.674058][ T7680] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  101.686117][ T7680] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1170'.
[  101.699496][ T7680] bridge0: port 3(hsr0) entered blocking state
[  101.705756][ T7680] bridge0: port 3(hsr0) entered disabled state
[  101.712389][ T7680] hsr0: entered allmulticast mode
[  101.717571][ T7680] hsr_slave_0: entered allmulticast mode
[  101.723397][ T7680] hsr_slave_1: entered allmulticast mode
[  101.729860][ T7680] hsr0: entered promiscuous mode
[  101.735704][ T7680] bridge0: port 3(hsr0) entered blocking state
[  101.742011][ T7680] bridge0: port 3(hsr0) entered forwarding state
[  101.753031][ T7680] netlink: 296 bytes leftover after parsing attributes in process `syz.2.1170'.
[  101.776149][ T7686] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1172'.
[  101.786130][ T7686] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=7686 comm=syz.2.1172
[  102.312335][   T29] kauditd_printk_skb: 15 callbacks suppressed
[  102.312424][   T29] audit: type=1400 audit(1722143499.840:1027): avc:  denied  { connect } for  pid=7721 comm="syz.1.1184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  102.473487][ T7742] Cannot find del_set index 0 as target
[  102.600792][ T7751] loop3: detected capacity change from 0 to 128
[  102.607303][ T7751] vfat: Unknown parameter '
[  102.607303][ T7751] '
[  102.625356][ T4121] IPVS: starting estimator thread 0...
[  102.640258][   T29] audit: type=1326 audit(1722143500.170:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7750 comm="syz.3.1193" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1276147299 code=0x0
[  102.723807][ T7752] IPVS: using max 3120 ests per chain, 156000 per kthread
[  102.757337][ T7756] FAULT_INJECTION: forcing a failure.
[  102.757337][ T7756] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  102.770637][ T7756] CPU: 1 UID: 0 PID: 7756 Comm: syz.3.1194 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  102.780970][ T7756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  102.791034][ T7756] Call Trace:
[  102.794457][ T7756]  <TASK>
[  102.797380][ T7756]  dump_stack_lvl+0xf2/0x150
[  102.801982][ T7756]  dump_stack+0x15/0x20
[  102.806220][ T7756]  should_fail_ex+0x229/0x230
[  102.810994][ T7756]  should_fail_alloc_page+0xfd/0x110
[  102.816343][ T7756]  __alloc_pages_noprof+0x109/0x360
[  102.821736][ T7756]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  102.827196][ T7756]  folio_alloc_mpol_noprof+0x36/0x70
[  102.832613][ T7756]  shmem_get_folio_gfp+0x3eb/0xd80
[  102.837850][ T7756]  shmem_write_begin+0xa0/0x1c0
[  102.842777][ T7756]  generic_perform_write+0x1b4/0x580
[  102.848155][ T7756]  shmem_file_write_iter+0xc8/0xf0
[  102.853280][ T7756]  vfs_write+0x78f/0x900
[  102.857524][ T7756]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  102.863332][ T7756]  ksys_write+0xeb/0x1b0
[  102.867610][ T7756]  __x64_sys_write+0x42/0x50
[  102.872206][ T7756]  x64_sys_call+0x2a40/0x2e00
[  102.876927][ T7756]  do_syscall_64+0xc9/0x1c0
[  102.881507][ T7756]  ? clear_bhb_loop+0x55/0xb0
[  102.886215][ T7756]  ? clear_bhb_loop+0x55/0xb0
[  102.890942][ T7756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.896833][ T7756] RIP: 0033:0x7f1276145e1f
[  102.901256][ T7756] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  102.920941][ T7756] RSP: 002b:00007f1274dc6e00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  102.929344][ T7756] RAX: ffffffffffffffda RBX: 0000000000100000 RCX: 00007f1276145e1f
[  102.937313][ T7756] RDX: 0000000000100000 RSI: 00007f126c9a7000 RDI: 0000000000000004
[  102.945338][ T7756] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000007a9
[  102.953294][ T7756] R10: 00000000000003c0 R11: 0000000000000293 R12: 0000000000000004
[  102.961252][ T7756] R13: 00007f1274dc6f00 R14: 00007f1274dc6ec0 R15: 00007f126c9a7000
[  102.969300][ T7756]  </TASK>
[  102.991958][ T7760] bridge: RTM_NEWNEIGH with invalid state 0x0
[  103.001059][ T7758] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks
[  103.078057][ T7769] loop3: detected capacity change from 0 to 1024
[  103.087158][ T7769] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  103.095699][ T7769] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  103.106991][ T7769] EXT4-fs (loop3): can't mount with journal_async_commit, fs mounted w/o journal
[  103.128365][   T29] audit: type=1326 audit(1722143500.660:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7772 comm="syz.3.1201" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1276147299 code=0x0
[  103.177904][ T7776] vlan2: entered promiscuous mode
[  103.183317][ T7776] team0: entered promiscuous mode
[  103.188597][ T7776] team_slave_0: entered promiscuous mode
[  103.194598][ T7776] team_slave_1: entered promiscuous mode
[  103.205181][ T7776] team0: Device vlan2 is already an upper device of the team interface
[  103.212857][ T7778] FAULT_INJECTION: forcing a failure.
[  103.212857][ T7778] name failslab, interval 1, probability 0, space 0, times 0
[  103.223835][ T7785] loop1: detected capacity change from 0 to 512
[  103.226795][ T7778] CPU: 1 UID: 0 PID: 7778 Comm: syz.2.1203 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  103.242674][ T7778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  103.252720][ T7778] Call Trace:
[  103.255995][ T7778]  <TASK>
[  103.258926][ T7778]  dump_stack_lvl+0xf2/0x150
[  103.263552][ T7778]  dump_stack+0x15/0x20
[  103.267791][ T7778]  should_fail_ex+0x229/0x230
[  103.272574][ T7778]  ? __kvmalloc_node_noprof+0x72/0x170
[  103.278028][ T7778]  should_failslab+0x8f/0xb0
[  103.282639][ T7778]  __kmalloc_node_noprof+0xa8/0x380
[  103.287946][ T7778]  __kvmalloc_node_noprof+0x72/0x170
[  103.293222][ T7778]  xt_alloc_entry_offsets+0x47/0x50
[  103.298408][ T7778]  translate_table+0xa3/0x1040
[  103.303169][ T7778]  ? __kvmalloc_node_noprof+0x72/0x170
[  103.308707][ T7778]  ? _copy_from_user+0x9a/0xd0
[  103.313523][ T7778]  do_ip6t_set_ctl+0x7cc/0x8c0
[  103.318359][ T7778]  ? kstrtoull+0x110/0x140
[  103.322766][ T7778]  ? __rcu_read_unlock+0x4e/0x70
[  103.327836][ T7778]  nf_setsockopt+0x195/0x1b0
[  103.332422][ T7778]  ipv6_setsockopt+0x126/0x140
[  103.337229][ T7778]  dccp_setsockopt+0xe1/0xc40
[  103.341893][ T7778]  sock_common_setsockopt+0x64/0x80
[  103.347112][ T7778]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  103.353082][ T7778]  __sys_setsockopt+0x1d8/0x250
[  103.357974][ T7778]  __x64_sys_setsockopt+0x66/0x80
[  103.362986][ T7778]  x64_sys_call+0x2a0e/0x2e00
[  103.367654][ T7778]  do_syscall_64+0xc9/0x1c0
[  103.372236][ T7778]  ? clear_bhb_loop+0x55/0xb0
[  103.376916][ T7778]  ? clear_bhb_loop+0x55/0xb0
[  103.381700][ T7778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.387659][ T7778] RIP: 0033:0x7f7f33767299
[  103.392063][ T7778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.411694][ T7778] RSP: 002b:00007f7f323e7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  103.420159][ T7778] RAX: ffffffffffffffda RBX: 00007f7f338f5f80 RCX: 00007f7f33767299
[  103.428463][ T7778] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000008
[  103.436417][ T7778] RBP: 00007f7f323e70a0 R08: 0000000000000520 R09: 0000000000000000
[  103.444466][ T7778] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  103.452423][ T7778] R13: 000000000000000b R14: 00007f7f338f5f80 R15: 00007ffcc3ae7cc8
[  103.460534][ T7778]  </TASK>
[  103.467985][ T7776] team0: left promiscuous mode
[  103.469436][ T7780] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  103.472777][ T7776] team_slave_0: left promiscuous mode
[  103.472835][ T7776] team_slave_1: left promiscuous mode
[  103.479308][ T7780] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  103.479481][ T7780] vhci_hcd vhci_hcd.0: Device attached
[  103.485489][ T7785] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  103.526582][ T7785] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.532293][ T7791] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1205'.
[  103.539214][ T7785] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.576387][ T7024] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.833831][ T4115] usb 7-1: new high-speed USB device number 4 using vhci_hcd
[  103.859098][ T7813] loop2: detected capacity change from 0 to 512
[  103.865762][ T7813] ext3: Unknown parameter 'smackfstransmute'
[  103.960924][ T7783] vhci_hcd: connection reset by peer
[  103.966654][   T40] vhci_hcd: stop threads
[  103.970968][   T40] vhci_hcd: release socket
[  103.975473][   T40] vhci_hcd: disconnect device
[  104.463388][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  104.493005][ T7817] loop3: detected capacity change from 0 to 128
[  104.495678][ T7819] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7819 comm=syz.1.1214
[  104.499623][ T7817] vfat: Unknown parameter '
[  104.499623][ T7817] '
[  104.609908][ T7822] validate_nla: 1 callbacks suppressed
[  104.609924][ T7822] netlink: 'syz.3.1215': attribute type 4 has an invalid length.
[  104.642899][ T7823] netlink: 'syz.3.1215': attribute type 4 has an invalid length.
[  104.665319][ T7826] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  104.698762][ T7828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1217'.
[  104.750110][ T7831] loop2: detected capacity change from 0 to 1764
[  104.758233][   T29] audit: type=1400 audit(1722143502.290:1030): avc:  denied  { mount } for  pid=7830 comm="syz.2.1218" name="/" dev="loop2" ino=1920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  104.794870][   T29] audit: type=1400 audit(1722143502.330:1031): avc:  denied  { unmount } for  pid=6116 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  104.846928][ T7836] IPv6: Can't replace route, no match found
[  104.957420][ T7842] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1222'.
[  104.966432][ T7842] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1222'.
[  104.977390][ T7842] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1222'.
[  104.986458][ T7842] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1222'.
[  104.998067][ T7842] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 34107 - 0
[  105.007196][ T7842] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 34107 - 0
[  105.015989][ T7842] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 34107 - 0
[  105.024918][ T7842] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 34107 - 0
[  105.036262][ T7842] geneve2: entered allmulticast mode
[  105.060665][   T29] audit: type=1326 audit(1722143502.590:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7843 comm="syz.2.1223" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7f33767299 code=0x0
[  105.118086][ T7845] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  105.124770][ T7845] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  105.132389][ T7845] vhci_hcd vhci_hcd.0: Device attached
[  105.401512][ T7853] loop1: detected capacity change from 0 to 128
[  105.408558][ T7853] vfat: Unknown parameter '
[  105.408558][ T7853] '
[  105.423743][ T4096] usb 5-1: new high-speed USB device number 3 using vhci_hcd
[  105.445146][   T29] audit: type=1400 audit(1722143502.980:1033): avc:  denied  { create } for  pid=7856 comm="syz.1.1227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  105.468156][ T7859] loop3: detected capacity change from 0 to 512
[  105.475123][ T7859] ext3: Unknown parameter 'smackfstransmute'
[  105.483604][ T7861] 9pnet_fd: Insufficient options for proto=fd
[  105.593152][   T29] audit: type=1400 audit(1722143503.120:1034): avc:  denied  { getopt } for  pid=7860 comm="syz.1.1228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  105.817402][ T7866] loop1: detected capacity change from 0 to 1764
[  105.892506][ T7846] vhci_hcd: connection reset by peer
[  105.898565][   T50] vhci_hcd: stop threads
[  105.902921][   T50] vhci_hcd: release socket
[  105.907772][   T50] vhci_hcd: disconnect device
[  106.043597][ T7879] loop4: detected capacity change from 0 to 256
[  106.067980][ T7881] loop4: detected capacity change from 0 to 256
[  106.077098][ T7881] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1235'.
[  106.185781][ T7884] loop4: detected capacity change from 0 to 128
[  106.299376][ T7898] ALSA: seq fatal error: cannot create timer (-22)
[  106.368431][ T7902] loop4: detected capacity change from 0 to 1764
[  106.407175][ T7904] loop4: detected capacity change from 0 to 1024
[  106.428256][ T7906] loop2: detected capacity change from 0 to 512
[  106.435793][ T7906] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  106.436606][ T7904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.628866][ T7913] SELinux:  Context unconfined is not valid (left unmapped).
[  106.628866][   T29] audit: type=1400 audit(1722143504.160:1035): avc:  denied  { relabelfrom } for  pid=7903 comm="syz.4.1242" name="NETLINK" dev="sockfs" ino=21458 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  106.660931][   T29] audit: type=1400 audit(1722143504.170:1036): avc:  denied  { relabelto } for  pid=7903 comm="syz.4.1242" name="NETLINK" dev="sockfs" ino=21458 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=netlink_route_socket permissive=1 trawcon="unconfined"
[  106.841162][ T7925] loop3: detected capacity change from 0 to 512
[  106.852075][ T7924] loop3: detected capacity change from 0 to 512
[  106.860132][ T7924] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.1249: casefold flag without casefold feature
[  106.873435][ T7924] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1249: couldn't read orphan inode 15 (err -117)
[  106.885914][ T7924] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.898490][ T7924] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.1249: Directory hole found for htree leaf block 0
[  106.911802][ T7928] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.1249: Directory hole found for htree leaf block 0
[  106.931533][ T6658] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.947873][ T7935] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1250'.
[  106.967985][ T7937] FAULT_INJECTION: forcing a failure.
[  106.967985][ T7937] name failslab, interval 1, probability 0, space 0, times 0
[  106.980648][ T7937] CPU: 0 UID: 0 PID: 7937 Comm: syz.3.1251 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  106.990995][ T7937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  107.001035][ T7937] Call Trace:
[  107.004305][ T7937]  <TASK>
[  107.007276][ T7937]  dump_stack_lvl+0xf2/0x150
[  107.011876][ T7937]  dump_stack+0x15/0x20
[  107.016042][ T7937]  should_fail_ex+0x229/0x230
[  107.020775][ T7937]  ? __kernfs_new_node+0x6a/0x380
[  107.025799][ T7937]  should_failslab+0x8f/0xb0
[  107.030390][ T7937]  kmem_cache_alloc_noprof+0x4c/0x290
[  107.035778][ T7937]  __kernfs_new_node+0x6a/0x380
[  107.040689][ T7937]  ? rb_insert_color+0x263/0x290
[  107.045649][ T7937]  ? up_write+0x30/0xf0
[  107.049791][ T7937]  ? kernfs_activate+0x256/0x270
[  107.054723][ T7937]  kernfs_new_node+0xc8/0x140
[  107.059390][ T7937]  __kernfs_create_file+0x49/0x180
[  107.064592][ T7937]  ? __pfx_dev_attr_store+0x10/0x10
[  107.069864][ T7937]  sysfs_add_file_mode_ns+0x136/0x1c0
[  107.075235][ T7937]  internal_create_group+0x464/0x9b0
[  107.080501][ T7937]  sysfs_create_groups+0x3c/0xe0
[  107.085542][ T7937]  device_add_attrs+0x69/0x400
[  107.090304][ T7937]  ? kobject_put+0x107/0x180
[  107.094881][ T7937]  device_add+0x38d/0x790
[  107.099193][ T7937]  netdev_register_kobject+0x100/0x230
[  107.104764][ T7937]  register_netdevice+0x910/0xe30
[  107.109784][ T7937]  br_dev_newlink+0x25/0xe0
[  107.114320][ T7937]  ? __pfx_br_dev_newlink+0x10/0x10
[  107.119527][ T7937]  rtnl_newlink+0xeff/0x1690
[  107.124113][ T7937]  ? security_capable+0x64/0x80
[  107.129043][ T7937]  ? ns_capable+0x7d/0xb0
[  107.133509][ T7937]  ? __pfx_rtnl_newlink+0x10/0x10
[  107.138515][ T7937]  rtnetlink_rcv_msg+0x6aa/0x710
[  107.143437][ T7937]  ? ref_tracker_free+0x3a5/0x410
[  107.148449][ T7937]  ? __dev_queue_xmit+0x161/0x1fe0
[  107.153548][ T7937]  netlink_rcv_skb+0x12c/0x230
[  107.158372][ T7937]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  107.163968][ T7937]  rtnetlink_rcv+0x1c/0x30
[  107.168386][ T7937]  netlink_unicast+0x593/0x670
[  107.173222][ T7937]  netlink_sendmsg+0x5cc/0x6e0
[  107.177971][ T7937]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.183316][ T7937]  __sock_sendmsg+0x140/0x180
[  107.188007][ T7937]  ____sys_sendmsg+0x312/0x410
[  107.192766][ T7937]  __sys_sendmsg+0x1e9/0x280
[  107.197345][ T7937]  __x64_sys_sendmsg+0x46/0x50
[  107.202153][ T7937]  x64_sys_call+0x26f8/0x2e00
[  107.206869][ T7937]  do_syscall_64+0xc9/0x1c0
[  107.211429][ T7937]  ? clear_bhb_loop+0x55/0xb0
[  107.216096][ T7937]  ? clear_bhb_loop+0x55/0xb0
[  107.220800][ T7937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.226750][ T7937] RIP: 0033:0x7f1276147299
[  107.231152][ T7937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.250919][ T7937] RSP: 002b:00007f1274dc7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  107.259541][ T7937] RAX: ffffffffffffffda RBX: 00007f12762d5f80 RCX: 00007f1276147299
[  107.267845][ T7937] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  107.275877][ T7937] RBP: 00007f1274dc70a0 R08: 0000000000000000 R09: 0000000000000000
[  107.283835][ T7937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  107.291879][ T7937] R13: 000000000000000b R14: 00007f12762d5f80 R15: 00007ffcf1b09c28
[  107.299923][ T7937]  </TASK>
[  107.308017][ T4630] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.330335][ T7939] loop4: detected capacity change from 0 to 512
[  107.338327][ T7939] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1252: corrupted in-inode xattr: invalid ea_ino
[  107.354485][ T7939] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1252: couldn't read orphan inode 15 (err -117)
[  107.370330][ T7939] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.372466][ T7941] loop2: detected capacity change from 0 to 1764
[  107.392221][ T7939] EXT4-fs error (device loop4): ext4_find_dest_de:2067: inode #2: block 13: comm syz.4.1252: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  107.413494][ T7944] loop3: detected capacity change from 0 to 512
[  107.422232][ T7944] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  107.509146][ T7949] EXT4-fs error (device loop4): ext4_find_dest_de:2067: inode #2: block 13: comm syz.4.1252: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  107.531966][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  107.531979][   T29] audit: type=1400 audit(1722143505.060:1039): avc:  denied  { watch } for  pid=7938 comm="syz.4.1252" path="/204/file0" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  107.532126][ T7949] EXT4-fs error (device loop4): ext4_lookup:1815: inode #2: comm syz.4.1252: deleted inode referenced: 15
[  107.600326][ T7959] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  107.614456][ T7956] process 'syz.3.1257' launched './file0' with NULL argv: empty string added
[  107.624718][   T29] audit: type=1400 audit(1722143505.160:1040): avc:  denied  { execute_no_trans } for  pid=7952 comm="syz.3.1257" path="/99/file0" dev="tmpfs" ino=570 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  107.722347][ T7966] vlan2: entered promiscuous mode
[  107.728418][ T7966] bond0: entered promiscuous mode
[  107.733565][ T7966] bond_slave_0: entered promiscuous mode
[  107.739347][ T7966] bond_slave_1: entered promiscuous mode
[  107.745182][ T7966] netdevsim netdevsim1 netdevsim1: entered promiscuous mode
[  107.753961][ T7966] bond0: left promiscuous mode
[  107.758809][ T7966] bond_slave_0: left promiscuous mode
[  107.764395][ T7966] bond_slave_1: left promiscuous mode
[  107.770015][ T7966] netdevsim netdevsim1 netdevsim1: left promiscuous mode
[  107.939901][ T4630] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.000971][ T7970] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1262'.
[  108.012144][ T7970] vxlan0: entered allmulticast mode
[  108.065783][ T7978] loop4: detected capacity change from 0 to 1764
[  108.088866][ T7980] loop4: detected capacity change from 0 to 512
[  108.095688][ T7980] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  108.135113][   T29] audit: type=1326 audit(1722143505.670:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7983 comm="syz.4.1268" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f70de3d7299 code=0x0
[  108.397734][   T29] audit: type=1326 audit(1722143505.930:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7986 comm="syz.2.1269" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f33767299 code=0x0
[  108.943814][ T4115] vhci_hcd: vhci_device speed not set
[  108.998159][ T7999] tipc: Started in network mode
[  109.003152][ T7999] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711
[  109.012231][ T7999] tipc: Enabled bearer <udp:syz0>, priority 10
[  109.161610][ T8006] loop4: detected capacity change from 0 to 512
[  109.168183][ T8006] ext3: Unknown parameter 'smackfstransmute'
[  109.191389][ T8007] vlan3: entered promiscuous mode
[  109.196543][ T8007] team0: entered promiscuous mode
[  109.201596][ T8007] team_slave_0: entered promiscuous mode
[  109.207360][ T8007] team_slave_1: entered promiscuous mode
[  109.213097][ T8007] netdevsim netdevsim2 netdevsim1: entered promiscuous mode
[  109.223037][ T8007] team0: Device vlan3 is already an upper device of the team interface
[  109.232068][ T8007] team0: left promiscuous mode
[  109.236892][ T8007] team_slave_0: left promiscuous mode
[  109.242367][ T8007] team_slave_1: left promiscuous mode
[  109.247866][ T8007] netdevsim netdevsim2 netdevsim1: left promiscuous mode
[  109.264400][ T8009] SELinux: security_context_str_to_sid () failed with errno=-22
[  109.287034][ T8011] loop3: detected capacity change from 0 to 512
[  109.293968][ T8011] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  109.334460][ T8015] loop3: detected capacity change from 0 to 2048
[  109.355395][ T8015] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.376403][ T6658] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.416925][ T8021] loop3: detected capacity change from 0 to 128
[  109.423364][ T8021] vfat: Unknown parameter ''
[  109.459033][ T8023] loop3: detected capacity change from 0 to 256
[  109.567996][ T8025] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  109.567996][ T8025] The task syz.3.1282 (8025) triggered the difference, watch for misbehavior.
[  109.918980][ T8029] FAULT_INJECTION: forcing a failure.
[  109.918980][ T8029] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  109.932258][ T8029] CPU: 1 UID: 0 PID: 8029 Comm: syz.1.1284 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  109.942603][ T8029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  109.952672][ T8029] Call Trace:
[  109.956031][ T8029]  <TASK>
[  109.958961][ T8029]  dump_stack_lvl+0xf2/0x150
[  109.963585][ T8029]  dump_stack+0x15/0x20
[  109.967752][ T8029]  should_fail_ex+0x229/0x230
[  109.972453][ T8029]  should_fail_alloc_page+0xfd/0x110
[  109.977977][ T8029]  __alloc_pages_noprof+0x109/0x360
[  109.981331][ T8036] loop0: detected capacity change from 0 to 512
[  109.983248][ T8029]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  109.994965][ T8029]  folio_alloc_mpol_noprof+0x36/0x70
[  109.996745][ T8036] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  110.000303][ T8029]  shmem_get_folio_gfp+0x3eb/0xd80
[  110.015038][ T8029]  shmem_write_begin+0xa0/0x1c0
[  110.019889][ T8029]  generic_perform_write+0x1b4/0x580
[  110.025168][ T8029]  shmem_file_write_iter+0xc8/0xf0
[  110.030333][ T8029]  vfs_write+0x78f/0x900
[  110.034574][ T8029]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  110.040536][ T8029]  ksys_write+0xeb/0x1b0
[  110.044827][ T8029]  __x64_sys_write+0x42/0x50
[  110.049417][ T8029]  x64_sys_call+0x2a40/0x2e00
[  110.054165][ T8029]  do_syscall_64+0xc9/0x1c0
[  110.058661][ T8029]  ? clear_bhb_loop+0x55/0xb0
[  110.063355][ T8029]  ? clear_bhb_loop+0x55/0xb0
[  110.068081][ T8029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.074017][ T8029] RIP: 0033:0x7f596afd5e1f
[  110.078423][ T8029] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  110.098302][ T8029] RSP: 002b:00007f5969c56e00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  110.106797][ T8029] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f596afd5e1f
[  110.114772][ T8029] RDX: 0000000000040000 RSI: 00007f5961837000 RDI: 0000000000000004
[  110.122733][ T8029] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000528
[  110.130745][ T8029] R10: 00000000000007c2 R11: 0000000000000293 R12: 0000000000000004
[  110.138790][ T8029] R13: 00007f5969c56f00 R14: 00007f5969c56ec0 R15: 00007f5961837000
[  110.146829][ T8029]  </TASK>
[  110.168908][ T8039] loop2: detected capacity change from 0 to 512
[  110.176136][ T8039] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  110.200131][ T8041] loop1: detected capacity change from 0 to 2048
[  110.209642][ T8039] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.223205][ T8039] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.228554][ T3334] tipc: Node number set to 4269801488
[  110.244033][ T8041] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.273662][ T7024] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.293251][ T6116] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.314632][ T8053] loop0: detected capacity change from 0 to 1024
[  110.329877][   T29] audit: type=1326 audit(1722143507.860:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8055 comm="syz.1.1292" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f596afd7299 code=0x0
[  110.363577][ T8060] veth0_to_team: entered promiscuous mode
[  110.372040][ T8053] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.412092][ T8064] loop2: detected capacity change from 0 to 2048
[  110.428924][   T29] audit: type=1400 audit(1722143507.960:1044): avc:  denied  { write } for  pid=8066 comm="syz.3.1298" path="socket:[22708]" dev="sockfs" ino=22708 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  110.464797][ T8064] ext4: Unknown parameter 'uid<00000000000000000000'
[  110.502930][ T8064] xt_TPROXY: Can be used only with -p tcp or -p udp
[  110.545703][ T4096] vhci_hcd: vhci_device speed not set
[  110.552417][ T6206] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.566041][   T29] audit: type=1326 audit(1722143508.100:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8073 comm="syz.2.1300" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f33767299 code=0x0
[  110.608422][ T8077] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1301'.
[  110.610218][   T29] audit: type=1400 audit(1722143508.140:1046): avc:  denied  { setopt } for  pid=8075 comm="syz.0.1299" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  110.620298][ T8078] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1299'.
[  110.678593][ T8078] bridge0: port 3(vlan2) entered blocking state
[  110.684944][ T8078] bridge0: port 3(vlan2) entered disabled state
[  110.694441][   T29] audit: type=1400 audit(1722143508.150:1047): avc:  denied  { shutdown } for  pid=8075 comm="syz.0.1299" laddr=::ffff:172.20.20.10 lport=135 faddr=::ffff:172.20.20.0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  110.695292][ T8081] loop3: detected capacity change from 0 to 2048
[  110.729237][ T8078] vlan2: entered allmulticast mode
[  110.734518][ T8078] geneve0: entered allmulticast mode
[  110.740628][ T8078] vlan2: entered promiscuous mode
[  110.745711][ T8078] geneve0: entered promiscuous mode
[  110.753465][ T8078] bridge0: port 3(vlan2) entered blocking state
[  110.759786][ T8078] bridge0: port 3(vlan2) entered forwarding state
[  110.782899][ T8081] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.830433][ T6658] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.851169][ T8088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1304'.
[  110.908705][ T8092] loop0: detected capacity change from 0 to 764
[  110.921200][ T8092] iso9660: Unknown parameter '/proc/self/attr/exec'
[  110.986919][ T8100] loop0: detected capacity change from 0 to 512
[  110.994222][ T8100] EXT4-fs (loop0): blocks per group (71) and clusters per group (20800) inconsistent
[  111.031390][   T29] audit: type=1326 audit(1722143508.560:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8097 comm="syz.3.1309" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1276147299 code=0x0
[  111.115514][ T8105] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1312'.
[  111.189190][ T8110] loop4: detected capacity change from 0 to 2048
[  111.204941][ T8110] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.265866][ T4630] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.334588][ T8122] loop4: detected capacity change from 0 to 1024
[  111.341372][ T8122] EXT4-fs: Ignoring removed orlov option
[  111.347105][ T8122] EXT4-fs: Ignoring removed nomblk_io_submit option
[  111.365112][ T8122] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.416924][ T8126] FAULT_INJECTION: forcing a failure.
[  111.416924][ T8126] name failslab, interval 1, probability 0, space 0, times 0
[  111.429647][ T8126] CPU: 0 UID: 0 PID: 8126 Comm: syz.2.1320 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  111.439982][ T8126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  111.450096][ T8126] Call Trace:
[  111.453383][ T8126]  <TASK>
[  111.456305][ T8126]  dump_stack_lvl+0xf2/0x150
[  111.460897][ T8126]  dump_stack+0x15/0x20
[  111.465122][ T8126]  should_fail_ex+0x229/0x230
[  111.469852][ T8126]  ? skb_clone+0x154/0x1f0
[  111.474262][ T8126]  should_failslab+0x8f/0xb0
[  111.478945][ T8126]  kmem_cache_alloc_noprof+0x4c/0x290
[  111.484319][ T8126]  skb_clone+0x154/0x1f0
[  111.488598][ T8126]  __netlink_deliver_tap+0x2bd/0x4c0
[  111.493930][ T8126]  netlink_unicast+0x641/0x670
[  111.498683][ T8126]  netlink_sendmsg+0x5cc/0x6e0
[  111.503477][ T8126]  ? __pfx_netlink_sendmsg+0x10/0x10
[  111.508765][ T8126]  __sock_sendmsg+0x140/0x180
[  111.513507][ T8126]  ____sys_sendmsg+0x312/0x410
[  111.518267][ T8126]  __sys_sendmsg+0x1e9/0x280
[  111.522901][ T8126]  __x64_sys_sendmsg+0x46/0x50
[  111.527665][ T8126]  x64_sys_call+0x26f8/0x2e00
[  111.532372][ T8126]  do_syscall_64+0xc9/0x1c0
[  111.537020][ T8126]  ? clear_bhb_loop+0x55/0xb0
[  111.541757][ T8126]  ? clear_bhb_loop+0x55/0xb0
[  111.546427][ T8126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.552340][ T8126] RIP: 0033:0x7f7f33767299
[  111.556745][ T8126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.576350][ T8126] RSP: 002b:00007f7f323e7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  111.584749][ T8126] RAX: ffffffffffffffda RBX: 00007f7f338f5f80 RCX: 00007f7f33767299
[  111.592708][ T8126] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  111.600670][ T8126] RBP: 00007f7f323e70a0 R08: 0000000000000000 R09: 0000000000000000
[  111.608833][ T8126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.616941][ T8126] R13: 000000000000000b R14: 00007f7f338f5f80 R15: 00007ffcc3ae7cc8
[  111.624903][ T8126]  </TASK>
[  111.628670][ T8126] veth0_to_team: entered promiscuous mode
[  111.650365][ T8129] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1321'.
[  111.704974][ T8134] bridge0: port 4(syz_tun) entered blocking state
[  111.711562][ T8134] bridge0: port 4(syz_tun) entered disabled state
[  111.718614][ T8134] syz_tun: entered allmulticast mode
[  111.724491][ T8134] syz_tun: entered promiscuous mode
[  111.730030][ T8134] bridge0: port 4(syz_tun) entered blocking state
[  111.736539][ T8134] bridge0: port 4(syz_tun) entered forwarding state
[  111.751534][ T8137] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1323'.
[  111.778875][ T8141] loop2: detected capacity change from 0 to 2048
[  111.795226][ T8141] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.818970][ T6116] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.847931][ T8145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1327'.
[  111.990155][ T8156] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1328'.
[  112.033330][ T8158] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1331'.
[  112.051216][ T8158] loop3: detected capacity change from 0 to 512
[  112.067297][ T8158] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.082033][ T8158] ext4 filesystem being mounted at /121/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  112.183482][ T4630] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.195668][ T6658] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.240751][ T8162] loop3: detected capacity change from 0 to 1024
[  112.247842][ T8162] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  112.258601][ T8162] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.281204][ T6658] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.301245][ T8175] loop3: detected capacity change from 0 to 256
[  112.315533][ T8175] FAT-fs (loop3): Directory bread(block 64) failed
[  112.322118][ T8175] FAT-fs (loop3): Directory bread(block 65) failed
[  112.329176][ T8175] FAT-fs (loop3): Directory bread(block 66) failed
[  112.336784][ T8175] FAT-fs (loop3): Directory bread(block 67) failed
[  112.343326][ T8175] FAT-fs (loop3): Directory bread(block 68) failed
[  112.349882][ T8175] FAT-fs (loop3): Directory bread(block 69) failed
[  112.356685][ T8175] FAT-fs (loop3): Directory bread(block 70) failed
[  112.363228][ T8175] FAT-fs (loop3): Directory bread(block 71) failed
[  112.366791][ T8178] loop4: detected capacity change from 0 to 512
[  112.370118][ T8175] FAT-fs (loop3): Directory bread(block 72) failed
[  112.376441][ T8178] ext3: Unknown parameter 'smackfstransmute'
[  112.384440][ T8175] FAT-fs (loop3): Directory bread(block 73) failed
[  112.404822][ T8175] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1335'.
[  112.695763][ T8200] FAULT_INJECTION: forcing a failure.
[  112.695763][ T8200] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  112.697694][ T8202] FAULT_INJECTION: forcing a failure.
[  112.697694][ T8202] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  112.709052][ T8200] CPU: 1 UID: 0 PID: 8200 Comm: syz.2.1343 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  112.732540][ T8200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  112.742656][ T8200] Call Trace:
[  112.745984][ T8200]  <TASK>
[  112.748900][ T8200]  dump_stack_lvl+0xf2/0x150
[  112.753523][ T8200]  dump_stack+0x15/0x20
[  112.757667][ T8200]  should_fail_ex+0x229/0x230
[  112.762369][ T8200]  should_fail_alloc_page+0xfd/0x110
[  112.767861][ T8200]  __alloc_pages_noprof+0x109/0x360
[  112.773141][ T8200]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  112.778502][ T8200]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  112.783987][ T8200]  handle_mm_fault+0xd6d/0x2940
[  112.788832][ T8200]  ? mas_walk+0x204/0x320
[  112.793243][ T8200]  exc_page_fault+0x3b9/0x650
[  112.797989][ T8200]  asm_exc_page_fault+0x26/0x30
[  112.802907][ T8200] RIP: 0033:0x7f7f3371467b
[  112.807309][ T8200] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[  112.827078][ T8200] RSP: 002b:00007f7f323e4e20 EFLAGS: 00010246
[  112.833179][ T8200] RAX: 00007f7f323e6f40 RBX: 00007f7f338c5620 RCX: 0000000000000000
[  112.841176][ T8200] RDX: 00007f7f323e6f88 RSI: 00007f7f337c5900 RDI: 00007f7f323e4e40
[  112.849143][ T8200] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  112.857312][ T8200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.865282][ T8200] R13: 000000000000000b R14: 00007f7f338f5f80 R15: 00007ffcc3ae7cc8
[  112.873247][ T8200]  </TASK>
[  112.876267][ T8202] CPU: 0 UID: 0 PID: 8202 Comm: syz.0.1344 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  112.876551][ T8200] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  112.886583][ T8202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  112.886596][ T8202] Call Trace:
[  112.886603][ T8202]  <TASK>
[  112.886609][ T8202]  dump_stack_lvl+0xf2/0x150
[  112.886640][ T8202]  dump_stack+0x15/0x20
[  112.886663][ T8202]  should_fail_ex+0x229/0x230
[  112.886688][ T8202]  should_fail_alloc_page+0xfd/0x110
[  112.886714][ T8202]  __alloc_pages_noprof+0x109/0x360
[  112.886742][ T8202]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  112.886766][ T8202]  alloc_pages_noprof+0xe1/0x100
[  112.886787][ T8202]  __pud_alloc+0x4b/0x3e0
[  112.886809][ T8202]  ? percpu_counter_add_batch+0xc6/0x140
[  112.954535][ T8202]  copy_page_range+0x371e/0x38c0
[  112.959468][ T8202]  ? mod_objcg_state+0x2ea/0x4f0
[  112.964407][ T8202]  ? mas_wr_walk_descend+0x359/0x410
[  112.969687][ T8202]  ? mas_wr_end_piv+0x15f/0x480
[  112.974535][ T8202]  ? mas_wr_store_entry+0x250/0x390
[  112.979737][ T8202]  copy_mm+0x973/0x10e0
[  112.983885][ T8202]  copy_process+0xee1/0x1f90
[  112.988472][ T8202]  kernel_clone+0x167/0x5e0
[  112.992961][ T8202]  ? vfs_write+0x5a5/0x900
[  112.997373][ T8202]  __x64_sys_clone+0xe8/0x120
[  113.002040][ T8202]  x64_sys_call+0x2dc4/0x2e00
[  113.006716][ T8202]  do_syscall_64+0xc9/0x1c0
[  113.011213][ T8202]  ? clear_bhb_loop+0x55/0xb0
[  113.015972][ T8202]  ? clear_bhb_loop+0x55/0xb0
[  113.020641][ T8202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.026616][ T8202] RIP: 0033:0x7feb10287299
[  113.031018][ T8202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.050705][ T8202] RSP: 002b:00007feb0ef06ff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  113.059107][ T8202] RAX: ffffffffffffffda RBX: 00007feb10415f80 RCX: 00007feb10287299
[  113.067166][ T8202] RDX: 0000000000000000 RSI: fffffffffffffea0 RDI: 0000000000000000
[  113.075327][ T8202] RBP: 00007feb0ef070a0 R08: 0000000000000000 R09: 0000000000000000
[  113.083284][ T8202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  113.091243][ T8202] R13: 000000000000000b R14: 00007feb10415f80 R15: 00007ffdea378838
[  113.099205][ T8202]  </TASK>
[  113.118766][ T8204] loop0: detected capacity change from 0 to 128
[  113.127309][ T8204] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  113.140861][ T8204] ext4 filesystem being mounted at /121/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.155424][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  113.155435][   T29] audit: type=1400 audit(1722143510.690:1056): avc:  denied  { getopt } for  pid=8203 comm="syz.0.1345" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  113.174888][ T8204] pim6reg: entered allmulticast mode
[  113.190271][ T8204] macvlan1: entered allmulticast mode
[  113.195724][ T8204] veth1_vlan: entered allmulticast mode
[  113.208798][ T6206] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  113.272037][ T8226] loop4: detected capacity change from 0 to 512
[  113.281226][ T8222] loop0: detected capacity change from 0 to 8192
[  113.287173][ T8226] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.288538][ T8222] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  113.300711][ T8226] ext4 filesystem being mounted at /231/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  113.353778][ T4630] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.373464][ T8231] netlink: 'syz.4.1356': attribute type 3 has an invalid length.
[  113.382533][   T29] audit: type=1400 audit(1722143510.910:1057): avc:  denied  { tracepoint } for  pid=8230 comm="syz.4.1356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  113.443281][ T8229] FAULT_INJECTION: forcing a failure.
[  113.443281][ T8229] name failslab, interval 1, probability 0, space 0, times 0
[  113.455921][ T8229] CPU: 0 UID: 0 PID: 8229 Comm: syz.0.1353 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  113.466374][ T8229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  113.476460][ T8229] Call Trace:
[  113.479731][ T8229]  <TASK>
[  113.482741][ T8229]  dump_stack_lvl+0xf2/0x150
[  113.487385][ T8229]  dump_stack+0x15/0x20
[  113.491630][ T8229]  should_fail_ex+0x229/0x230
[  113.496370][ T8229]  ? fat_cache_add+0x1e5/0x490
[  113.501182][ T8229]  should_failslab+0x8f/0xb0
[  113.505764][ T8229]  kmem_cache_alloc_noprof+0x4c/0x290
[  113.511300][ T8229]  ? fat_ent_read+0x3e0/0x5a0
[  113.516014][ T8229]  fat_cache_add+0x1e5/0x490
[  113.520698][ T8229]  fat_get_cluster+0x61a/0x830
[  113.525540][ T8229]  fat_truncate_blocks+0x271/0x530
[  113.530638][ T8229]  fat_write_begin+0xd0/0xf0
[  113.535261][ T8229]  cont_write_begin+0x186/0x6b0
[  113.540196][ T8229]  fat_write_begin+0x61/0xf0
[  113.544850][ T8229]  ? __pfx_fat_get_block+0x10/0x10
[  113.549942][ T8229]  generic_perform_write+0x1b4/0x580
[  113.555219][ T8229]  __generic_file_write_iter+0xa1/0x120
[  113.560817][ T8229]  generic_file_write_iter+0x7d/0x1d0
[  113.566242][ T8229]  vfs_write+0x78f/0x900
[  113.570467][ T8229]  ? __pfx_generic_file_write_iter+0x10/0x10
[  113.576588][ T8229]  ksys_write+0xeb/0x1b0
[  113.580818][ T8229]  __x64_sys_write+0x42/0x50
[  113.585424][ T8229]  x64_sys_call+0x2a40/0x2e00
[  113.590105][ T8229]  do_syscall_64+0xc9/0x1c0
[  113.594601][ T8229]  ? clear_bhb_loop+0x55/0xb0
[  113.599283][ T8229]  ? clear_bhb_loop+0x55/0xb0
[  113.603943][ T8229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.609864][ T8229] RIP: 0033:0x7feb10287299
[  113.614262][ T8229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.633916][ T8229] RSP: 002b:00007feb0eee6048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  113.642386][ T8229] RAX: ffffffffffffffda RBX: 00007feb10416058 RCX: 00007feb10287299
[  113.650603][ T8229] RDX: 000000000000fd14 RSI: 0000000020000240 RDI: 0000000000000004
[  113.658768][ T8229] RBP: 00007feb0eee60a0 R08: 0000000000000000 R09: 0000000000000000
[  113.666732][ T8229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  113.674701][ T8229] R13: 000000000000006e R14: 00007feb10416058 R15: 00007ffdea378838
[  113.682886][ T8229]  </TASK>
[  113.703503][ T8232] loop4: detected capacity change from 0 to 2048
[  113.747539][ T8238] loop3: detected capacity change from 0 to 512
[  113.754190][ T8238] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  113.766259][ T8239] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  113.766887][ T8232] GPT:first_usable_lbas don't match.
[  113.781090][ T8232] GPT:34 != 290
[  113.784628][ T8232] GPT: Use GNU Parted to correct GPT errors.
[  113.790900][ T8232]  loop4: p1 p2 p3
[  114.000669][ T8260] loop3: detected capacity change from 0 to 256
[  114.048795][ T8263] loop2: detected capacity change from 0 to 512
[  114.055905][ T8263] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  114.069397][ T8265] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8265 comm=syz.3.1369
[  114.082860][ T8263] EXT4-fs (loop2): 1 truncate cleaned up
[  114.091361][ T8263] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.103675][   T29] audit: type=1400 audit(1722143511.630:1058): avc:  denied  { read } for  pid=8264 comm="syz.3.1369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  114.108927][ T8265] loop3: detected capacity change from 0 to 256
[  114.231577][ T8265] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=36 sclass=netlink_tcpdiag_socket pid=8265 comm=syz.3.1369
[  114.510929][ T8277] loop4: detected capacity change from 0 to 8192
[  114.551600][   T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.553258][ T8277]  loop4: p1 p2 p3 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p2
[  114.573769][ T8277] loop4: p1 start 4177526784 is beyond EOD, truncated
[  114.671646][ T8277] loop4: p2 start 8388612 is beyond EOD, truncated
[  114.682927][ T8277] loop4: p4 size 32937 extends beyond EOD, truncated
[  114.690572][ T8277] loop4: p5 start 4177526784 is beyond EOD, truncated
[  114.697475][ T8277] loop4: p6 start 8388612 is beyond EOD, truncated
[  114.704027][ T8277] loop4: p7 size 32937 extends beyond EOD, truncated
[  114.724279][ T8277] loop4: p8 start 4177526784 is beyond EOD, truncated
[  114.731164][ T8277] loop4: p9 start 8388612 is beyond EOD, truncated
[  114.737915][ T8277] loop4: p10 size 32937 extends beyond EOD, truncated
[  114.748161][   T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.754295][ T8277] loop4: p11 start 4177526784 is beyond EOD, truncated
[  114.765414][ T8277] loop4: p12 start 8388612 is beyond EOD, truncated
[  114.772011][ T8277] loop4: p13 size 32937 extends beyond EOD, truncated
[  114.779389][ T8277] loop4: p14 start 4177526784 is beyond EOD, truncated
[  114.786313][ T8277] loop4: p15 start 8388612 is beyond EOD, truncated
[  114.792917][ T8277] loop4: p16 size 32937 extends beyond EOD, truncated
[  114.814154][ T8277] loop4: p17 start 4177526784 is beyond EOD, truncated
[  114.821122][ T8277] loop4: p18 start 8388612 is beyond EOD, truncated
[  114.827787][ T8277] loop4: p19 size 32937 extends beyond EOD, truncated
[  114.835254][ T8277] loop4: p20 start 4177526784 is beyond EOD, truncated
[  114.842164][ T8277] loop4: p21 start 8388612 is beyond EOD, truncated
[  114.848822][ T8277] loop4: p22 size 32937 extends beyond EOD, truncated
[  114.857763][ T8277] loop4: p23 start 4177526784 is beyond EOD, truncated
[  114.864897][ T8277] loop4: p24 start 8388612 is beyond EOD, truncated
[  114.871553][ T8277] loop4: p25 size 32937 extends beyond EOD, truncated
[  114.881819][   T11] bond0: (slave netdevsim1): Releasing backup interface
[  114.893338][   T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.905125][ T8277] loop4: p26 start 4177526784 is beyond EOD, truncated
[  114.912115][ T8277] loop4: p27 start 8388612 is beyond EOD, truncated
[  114.918961][ T8277] loop4: p28 size 32937 extends beyond EOD, truncated
[  114.931521][ T8277] loop4: p29 start 4177526784 is beyond EOD, truncated
[  114.938554][ T8277] loop4: p30 start 8388612 is beyond EOD, truncated
[  114.945661][ T8277] loop4: p31 size 32937 extends beyond EOD, truncated
[  114.964025][ T8277] loop4: p32 start 4177526784 is beyond EOD, truncated
[  114.970999][ T8277] loop4: p33 start 8388612 is beyond EOD, truncated
[  114.977868][ T8277] loop4: p34 size 32937 extends beyond EOD, truncated
[  114.996250][ T8277] loop4: p35 start 4177526784 is beyond EOD, truncated
[  115.003341][ T8277] loop4: p36 start 8388612 is beyond EOD, truncated
[  115.010016][ T8277] loop4: p37 size 32937 extends beyond EOD, truncated
[  115.018401][   T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.030901][ T8277] loop4: p38 start 4177526784 is beyond EOD, truncated
[  115.033373][ T6116] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.037898][ T8277] loop4: p39 start 8388612 is beyond EOD, truncated
[  115.053506][ T8277] loop4: p40 size 32937 extends beyond EOD, truncated
[  115.067121][ T8277] loop4: p41 start 4177526784 is beyond EOD, truncated
[  115.074132][ T8277] loop4: p42 start 8388612 is beyond EOD, truncated
[  115.080779][ T8277] loop4: p43 size 32937 extends beyond EOD, truncated
[  115.090883][ T8277] loop4: p44 start 4177526784 is beyond EOD, truncated
[  115.097875][ T8277] loop4: p45 start 8388612 is beyond EOD, truncated
[  115.104532][ T8277] loop4: p46 size 32937 extends beyond EOD, truncated
[  115.114534][ T8277] loop4: p47 start 4177526784 is beyond EOD, truncated
[  115.121417][ T8277] loop4: p48 start 8388612 is beyond EOD, truncated
[  115.128080][ T8277] loop4: p49 size 32937 extends beyond EOD, truncated
[  115.138161][ T8277] loop4: p50 start 4177526784 is beyond EOD, truncated
[  115.145075][ T8277] loop4: p51 start 8388612 is beyond EOD, truncated
[  115.151847][ T8277] loop4: p52 size 32937 extends beyond EOD, truncated
[  115.160197][ T8277] loop4: p53 start 4177526784 is beyond EOD, truncated
[  115.167098][ T8277] loop4: p54 start 8388612 is beyond EOD, truncated
[  115.173964][ T8277] loop4: p55 size 32937 extends beyond EOD, truncated
[  115.183060][ T8277] loop4: p56 start 4177526784 is beyond EOD, truncated
[  115.190017][ T8277] loop4: p57 start 8388612 is beyond EOD, truncated
[  115.196648][ T8277] loop4: p58 size 32937 extends beyond EOD, truncated
[  115.212678][   T11] bridge_slave_1: left allmulticast mode
[  115.218465][   T11] bridge_slave_1: left promiscuous mode
[  115.218825][ T8277] loop4: p59 start 4177526784 is beyond EOD, truncated
[  115.224243][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.230966][ T8277] loop4: p60 start 8388612 is beyond EOD, truncated
[  115.230982][ T8277] loop4: p61 size 32937 extends beyond EOD, truncated
[  115.236762][ T8277] loop4: p62 start 4177526784 is beyond EOD, truncated
[  115.258273][ T8277] loop4: p63 start 8388612 is beyond EOD, truncated
[  115.264889][ T8277] loop4: p64 size 32937 extends beyond EOD, truncated
[  115.272616][   T11] bridge_slave_0: left allmulticast mode
[  115.272956][ T8277] loop4: p65 start 4177526784 is beyond EOD, truncated
[  115.278286][   T11] bridge_slave_0: left promiscuous mode
[  115.285121][ T8277] loop4: p66 start 8388612 is beyond EOD, truncated
[  115.285137][ T8277] loop4: p67 size 32937 extends beyond EOD, truncated
[  115.285536][ T8277] loop4: p68 start 4177526784 is beyond EOD, 
[  115.290803][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.297321][ T8277] truncated
[  115.320516][ T8277] loop4: p69 start 8388612 is beyond EOD, truncated
[  115.327177][ T8277] loop4: p70 size 32937 extends beyond EOD, truncated
[  115.334587][ T8277] loop4: p71 start 4177526784 is beyond EOD, truncated
[  115.341476][ T8277] loop4: p72 start 8388612 is beyond EOD, truncated
[  115.348331][ T8277] loop4: p73 size 32937 extends beyond EOD, truncated
[  115.355564][ T8277] loop4: p74 start 4177526784 is beyond EOD, truncated
[  115.362514][ T8277] loop4: p75 start 8388612 is beyond EOD, truncated
[  115.369152][ T8277] loop4: p76 size 32937 extends beyond EOD, truncated
[  115.378638][ T8277] loop4: p77 start 4177526784 is beyond EOD, truncated
[  115.385556][ T8277] loop4: p78 start 8388612 is beyond EOD, truncated
[  115.392156][ T8277] loop4: p79 size 32937 extends beyond EOD, truncated
[  115.399544][ T8277] loop4: p80 start 4177526784 is beyond EOD, truncated
[  115.406618][ T8277] loop4: p81 start 8388612 is beyond EOD, truncated
[  115.413252][ T8277] loop4: p82 size 32937 extends beyond EOD, truncated
[  115.420559][ T8277] loop4: p83 start 4177526784 is beyond EOD, truncated
[  115.427562][ T8277] loop4: p84 start 8388612 is beyond EOD, truncated
[  115.434195][ T8277] loop4: p85 size 32937 extends beyond EOD, truncated
[  115.442332][ T8277] loop4: p86 start 4177526784 is beyond EOD, truncated
[  115.449400][ T8277] loop4: p87 start 8388612 is beyond EOD, truncated
[  115.456007][ T8277] loop4: p88 size 32937 extends beyond EOD, truncated
[  115.463185][ T8277] loop4: p89 start 4177526784 is beyond EOD, truncated
[  115.470062][ T8277] loop4: p90 start 8388612 is beyond EOD, truncated
[  115.476667][ T8277] loop4: p91 size 32937 extends beyond EOD, truncated
[  115.484631][ T8277] loop4: p92 start 4177526784 is beyond EOD, truncated
[  115.491596][ T8277] loop4: p93 start 8388612 is beyond EOD, truncated
[  115.498274][ T8277] loop4: p94 size 32937 extends beyond EOD, truncated
[  115.506142][ T8277] loop4: p95 start 4177526784 is beyond EOD, truncated
[  115.513007][ T8277] loop4: p96 start 8388612 is beyond EOD, truncated
[  115.519788][ T8277] loop4: p97 size 32937 extends beyond EOD, truncated
[  115.527179][ T8277] loop4: p98 start 4177526784 is beyond EOD, truncated
[  115.534037][ T8277] loop4: p99 start 8388612 is beyond EOD, truncated
[  115.540639][ T8277] loop4: p100 size 32937 extends beyond EOD, truncated
[  115.548548][ T8277] loop4: p101 start 4177526784 is beyond EOD, truncated
[  115.555642][ T8277] loop4: p102 start 8388612 is beyond EOD, truncated
[  115.562312][ T8277] loop4: p103 size 32937 extends beyond EOD, truncated
[  115.569697][ T8277] loop4: p104 start 4177526784 is beyond EOD, truncated
[  115.571023][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  115.576658][ T8277] loop4: p105 start 8388612 is beyond EOD, truncated
[  115.591913][ T8277] loop4: p106 size 32937 extends beyond EOD, truncated
[  115.599277][ T8277] loop4: p107 start 4177526784 is beyond EOD, truncated
[  115.606318][ T8277] loop4: p108 start 8388612 is beyond EOD, truncated
[  115.613053][ T8277] loop4: p109 size 32937 extends beyond EOD, truncated
[  115.620248][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  115.620254][ T8277] loop4: p110 start 4177526784 is beyond EOD, truncated
[  115.620274][ T8277] loop4: p111 start 8388612 is beyond EOD, truncated
[  115.620290][ T8277] loop4: p112 size 32937 extends beyond EOD, truncated
[  115.620710][ T8277] loop4: p113 start 4177526784 is beyond EOD, truncated
[  115.656331][ T8277] loop4: p114 start 8388612 is beyond EOD, truncated
[  115.663001][ T8277] loop4: p115 size 32937 extends beyond EOD, truncated
[  115.670964][ T8277] loop4: p116 start 4177526784 is beyond EOD, truncated
[  115.671871][   T11] bond0 (unregistering): Released all slaves
[  115.677956][ T8277] loop4: p117 start 8388612 is beyond EOD, truncated
[  115.690626][ T8277] loop4: p118 size 32937 extends beyond EOD, truncated
[  115.698725][ T8277] loop4: p119 start 4177526784 is beyond EOD, truncated
[  115.704485][ T8298] team_slave_0: entered promiscuous mode
[  115.705792][ T8277] loop4: p120 start 8388612 is beyond EOD, 
[  115.711390][ T8298] team_slave_1: entered promiscuous mode
[  115.711622][ T8298] vlan3: entered promiscuous mode
[  115.717296][ T8277] truncated
[  115.717302][ T8277] loop4: p121 size 32937 extends beyond EOD, truncated
[  115.717673][ T8277] loop4: p122 start 4177526784 is beyond EOD, 
[  115.722975][ T8298] team0: entered promiscuous mode
[  115.727985][ T8277] truncated
[  115.752404][ T8277] loop4: p123 start 8388612 is beyond EOD, truncated
[  115.759104][ T8277] loop4: p124 size 32937 extends beyond EOD, truncated
[  115.766114][ T8298] team0: left promiscuous mode
[  115.766430][ T8277] loop4: p125 start 4177526784 is beyond EOD, truncated
[  115.771124][ T8298] team_slave_0: left promiscuous mode
[  115.777838][ T8277] loop4: p126 start 8388612 is beyond EOD, 
[  115.783177][ T8298] team_slave_1: left promiscuous mode
[  115.794551][ T8277] truncated
[  115.797752][ T8277] loop4: p127 size 32937 extends beyond EOD, truncated
[  115.805628][ T8277] loop4: p128 start 4177526784 is beyond EOD, truncated
[  115.812800][ T8277] loop4: p129 start 8388612 is beyond EOD, truncated
[  115.819490][ T8277] loop4: p130 size 32937 extends beyond EOD, truncated
[  115.826781][ T8277] loop4: p131 start 4177526784 is beyond EOD, truncated
[  115.833771][ T8277] loop4: p132 start 8388612 is beyond EOD, truncated
[  115.840482][ T8277] loop4: p133 size 32937 extends beyond EOD, truncated
[  115.844201][   T11] IPVS: stopping backup sync thread 8239 ...
[  115.847776][ T8277] loop4: p134 start 4177526784 is beyond EOD, truncated
[  115.854518][ T8279] chnl_net:caif_netlink_parms(): no params data found
[  115.860330][ T8277] loop4: p135 start 8388612 is beyond EOD, truncated
[  115.874040][ T8277] loop4: p136 size 32937 extends beyond EOD, truncated
[  115.881419][ T8277] loop4: p137 start 4177526784 is beyond EOD, truncated
[  115.888433][ T8277] loop4: p138 start 8388612 is beyond EOD, truncated
[  115.895212][ T8277] loop4: p139 size 32937 extends beyond EOD, truncated
[  115.902376][ T8277] loop4: p140 start 4177526784 is beyond EOD, truncated
[  115.909425][ T8277] loop4: p141 start 8388612 is beyond EOD, truncated
[  115.916336][ T8277] loop4: p142 size 32937 extends beyond EOD, truncated
[  115.923432][   T11] hsr_slave_0: left promiscuous mode
[  115.924665][ T8277] loop4: p143 start 4177526784 is beyond EOD, truncated
[  115.935921][ T8277] loop4: p144 start 8388612 is beyond EOD, truncated
[  115.942597][ T8277] loop4: p145 size 32937 extends beyond EOD, truncated
[  115.949586][   T11] hsr_slave_1: left promiscuous mode
[  115.949971][ T8277] loop4: p146 start 4177526784 is beyond EOD, truncated
[  115.962010][ T8277] loop4: p147 start 8388612 is beyond EOD, truncated
[  115.968709][ T8277] loop4: p148 size 32937 extends beyond EOD, truncated
[  115.975805][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  115.976040][ T8277] loop4: p149 start 4177526784 is beyond EOD, truncated
[  115.983271][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  115.997361][ T8277] loop4: p150 start 8388612 is beyond EOD, truncated
[  116.004175][ T8277] loop4: p151 size 32937 extends beyond EOD, truncated
[  116.011407][ T8277] loop4: p152 start 4177526784 is beyond EOD, truncated
[  116.011612][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  116.018368][ T8277] loop4: p153 start 8388612 is beyond EOD, truncated
[  116.018386][ T8277] loop4: p154 size 32937 extends beyond EOD, 
[  116.025779][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  116.032509][ T8277] truncated
[  116.035255][ T8277] loop4: p155 start 4177526784 is beyond EOD, 
[  116.040613][ T8304] loop2: detected capacity change from 0 to 256
[  116.045687][ T8277] truncated
[  116.064495][ T8277] loop4: p156 start 8388612 is beyond EOD, truncated
[  116.071226][ T8277] loop4: p157 size 32937 extends beyond EOD, truncated
[  116.082168][   T11] veth1_macvtap: left promiscuous mode
[  116.087729][   T11] veth0_macvtap: left promiscuous mode
[  116.093242][   T11] veth1_vlan: left promiscuous mode
[  116.098550][   T11] veth0_vlan: left promiscuous mode
[  116.100768][ T8277] loop4: p158 start 4177526784 is beyond EOD, truncated
[  116.110872][ T8277] loop4: p159 start 8388612 is beyond EOD, truncated
[  116.117603][ T8277] loop4: p160 size 32937 extends beyond EOD, truncated
[  116.125128][ T8277] loop4: p161 start 4177526784 is beyond EOD, truncated
[  116.132072][ T8277] loop4: p162 start 8388612 is beyond EOD, truncated
[  116.138861][ T8277] loop4: p163 size 32937 extends beyond EOD, truncated
[  116.147859][ T8277] loop4: p164 start 4177526784 is beyond EOD, truncated
[  116.154952][ T8277] loop4: p165 start 8388612 is beyond EOD, truncated
[  116.161969][ T8277] loop4: p166 size 32937 extends beyond EOD, truncated
[  116.169431][ T8277] loop4: p167 start 4177526784 is beyond EOD, truncated
[  116.176484][ T8277] loop4: p168 start 8388612 is beyond EOD, truncated
[  116.183197][ T8277] loop4: p169 size 32937 extends beyond EOD, truncated
[  116.190506][ T8277] loop4: p170 start 4177526784 is beyond EOD, truncated
[  116.197575][ T8277] loop4: p171 start 8388612 is beyond EOD, truncated
[  116.204343][ T8277] loop4: p172 size 32937 extends beyond EOD, truncated
[  116.211736][ T8277] loop4: p173 start 4177526784 is beyond EOD, truncated
[  116.218715][ T8277] loop4: p174 start 8388612 is beyond EOD, truncated
[  116.225473][ T8277] loop4: p175 size 32937 extends beyond EOD, truncated
[  116.233795][ T8277] loop4: p176 start 4177526784 is beyond EOD, truncated
[  116.240882][ T8277] loop4: p177 start 8388612 is beyond EOD, truncated
[  116.247625][ T8277] loop4: p178 size 32937 extends beyond EOD, truncated
[  116.257932][ T8277] loop4: p179 start 4177526784 is beyond EOD, truncated
[  116.264992][ T8277] loop4: p180 start 8388612 is beyond EOD, truncated
[  116.271734][ T8277] loop4: p181 size 32937 extends beyond EOD, truncated
[  116.282616][ T8310] __nla_validate_parse: 5 callbacks suppressed
[  116.282628][ T8310] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1381'.
[  116.297740][ T8310] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1381'.
[  116.300089][ T8277] loop4: p182 start 4177526784 is beyond EOD, truncated
[  116.313746][ T8277] loop4: p183 start 8388612 is beyond EOD, truncated
[  116.320466][ T8277] loop4: p184 size 32937 extends beyond EOD, truncated
[  116.328644][ T8277] loop4: p185 start 4177526784 is beyond EOD, truncated
[  116.329988][   T11] team0 (unregistering): Port device team_slave_1 removed
[  116.335777][ T8277] loop4: p186 start 8388612 is beyond EOD, truncated
[  116.349649][ T8277] loop4: p187 size 32937 extends beyond EOD, truncated
[  116.357259][   T11] team0 (unregistering): Port device team_slave_0 removed
[  116.357310][ T8277] loop4: p188 start 4177526784 is beyond EOD, truncated
[  116.371449][ T8277] loop4: p189 start 8388612 is beyond EOD, truncated
[  116.378161][ T8277] loop4: p190 size 32937 extends beyond EOD, truncated
[  116.386144][ T8277] loop4: p191 start 4177526784 is beyond EOD, truncated
[  116.393104][ T8277] loop4: p192 start 8388612 is beyond EOD, truncated
[  116.399828][ T8277] loop4: p193 size 32937 extends beyond EOD, truncated
[  116.407383][ T8277] loop4: p194 start 4177526784 is beyond EOD, truncated
[  116.414390][ T8277] loop4: p195 start 8388612 is beyond EOD, truncated
[  116.421161][ T8277] loop4: p196 size 32937 extends beyond EOD, truncated
[  116.429577][ T8277] loop4: p197 start 4177526784 is beyond EOD, truncated
[  116.436631][ T8277] loop4: p198 start 8388612 is beyond EOD, truncated
[  116.443320][ T8277] loop4: p199 size 32937 extends beyond EOD, truncated
[  116.452912][ T8277] loop4: p200 start 4177526784 is beyond EOD, truncated
[  116.460015][ T8277] loop4: p201 start 8388612 is beyond EOD, truncated
[  116.466891][ T8277] loop4: p202 size 32937 extends beyond EOD, truncated
[  116.475674][ T8277] loop4: p203 start 4177526784 is beyond EOD, truncated
[  116.482745][ T8277] loop4: p204 start 8388612 is beyond EOD, truncated
[  116.489512][ T8277] loop4: p205 size 32937 extends beyond EOD, truncated
[  116.497570][ T8277] loop4: p206 start 4177526784 is beyond EOD, truncated
[  116.504760][ T8277] loop4: p207 start 8388612 is beyond EOD, truncated
[  116.511487][ T8277] loop4: p208 size 32937 extends beyond EOD, truncated
[  116.522786][ T8277] loop4: p209 start 4177526784 is beyond EOD, truncated
[  116.527297][ T8319] loop0: detected capacity change from 0 to 128
[  116.529940][ T8277] loop4: p210 start 8388612 is beyond EOD, truncated
[  116.542434][ T8319] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  116.542892][ T8277] loop4: p211 size 32937 extends beyond EOD, truncated
[  116.543354][ T8277] loop4: p212 start 4177526784 is beyond EOD, 
[  116.555885][ T8319] ext4 filesystem being mounted at /131/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  116.561894][ T8277] truncated
[  116.572687][ T8319] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:406: inode #2: comm syz.0.1383: No space for directory leaf checksum. Please run e2fsck -D.
[  116.578519][ T8277] loop4: p213 start 8388612 is beyond EOD, 
[  116.581610][ T8319] EXT4-fs error (device loop0): __ext4_find_entry:1652: inode #2: comm syz.0.1383: checksumming directory block 0
[  116.596902][ T8277] truncated
[  116.618407][ T8277] loop4: p214 size 32937 extends beyond EOD, truncated
[  116.626110][ T8279] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.626401][ T8277] loop4: p215 start 4177526784 is beyond EOD, truncated
[  116.633268][ T8279] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.640189][ T8277] loop4: p216 start 8388612 is beyond EOD, truncated
[  116.640206][ T8277] loop4: p217 size 32937 extends beyond EOD, truncated
[  116.640621][ T8277] loop4: p218 start 4177526784 is beyond EOD, 
[  116.647520][ T8279] bridge_slave_0: entered allmulticast mode
[  116.654126][ T8277] truncated
[  116.654132][ T8277] loop4: p219 start 8388612 is beyond EOD, 
[  116.661988][ T8279] bridge_slave_0: entered promiscuous mode
[  116.667119][ T8277] truncated
[  116.667126][ T8277] loop4: p220 size 32937 extends beyond EOD, truncated
[  116.699259][ T8277] loop4: p221 start 4177526784 is beyond EOD, truncated
[  116.699474][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:172.20.20.170]:2. Sending cookies.
[  116.706381][ T8277] loop4: p222 start 8388612 is beyond EOD, truncated
[  116.723756][ T8277] loop4: p223 size 32937 extends beyond EOD, truncated
[  116.725689][ T8279] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.737770][ T8279] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.740891][ T8277] loop4: p224 start 4177526784 is beyond EOD, truncated
[  116.746817][ T8279] bridge_slave_1: entered allmulticast mode
[  116.751958][ T8277] loop4: p225 start 8388612 is beyond EOD, truncated
[  116.758461][ T8279] bridge_slave_1: entered promiscuous mode
[  116.764783][ T8277] loop4: p226 size 32937 extends beyond EOD, truncated
[  116.778456][ T8277] loop4: p227 start 4177526784 is beyond EOD, truncated
[  116.783340][ T6206] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  116.785796][ T8277] loop4: p228 start 8388612 is beyond EOD, truncated
[  116.801353][ T8277] loop4: p229 size 32937 extends beyond EOD, truncated
[  116.809073][ T8277] loop4: p230 start 4177526784 is beyond EOD, truncated
[  116.816272][ T8277] loop4: p231 start 8388612 is beyond EOD, truncated
[  116.822926][ T8277] loop4: p232 size 32937 extends beyond EOD, truncated
[  116.830238][ T8277] loop4: p233 start 4177526784 is beyond EOD, truncated
[  116.832195][ T8279] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  116.837334][ T8277] loop4: p234 start 8388612 is beyond EOD, truncated
[  116.846844][ T8325] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1384'.
[  116.852984][ T8277] loop4: p235 size 32937 extends beyond EOD, truncated
[  116.866427][ T8325] xfrm1: entered promiscuous mode
[  116.869709][ T8277] loop4: p236 start 4177526784 is beyond EOD, truncated
[  116.873831][ T8325] xfrm1: entered allmulticast mode
[  116.880732][ T8277] loop4: p237 start 8388612 is beyond EOD, truncated
[  116.880748][ T8277] loop4: p238 size 32937 extends beyond EOD, truncated
[  116.881145][ T8277] loop4: p239 start 4177526784 is beyond EOD, truncated
[  116.900724][ T8279] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  116.906713][ T8277] loop4: p240 start 8388612 is beyond EOD, truncated
[  116.922463][ T8277] loop4: p241 size 32937 extends beyond EOD, truncated
[  116.929843][ T8277] loop4: p242 start 4177526784 is beyond EOD, truncated
[  116.936827][ T8277] loop4: p243 start 8388612 is beyond EOD, truncated
[  116.943653][ T8277] loop4: p244 size 32937 extends beyond EOD, truncated
[  116.951223][ T8277] loop4: p245 start 4177526784 is beyond EOD, truncated
[  116.958317][ T8277] loop4: p246 start 8388612 is beyond EOD, truncated
[  116.965155][ T8277] loop4: p247 size 32937 extends beyond EOD, truncated
[  116.972777][ T8277] loop4: p248 start 4177526784 is beyond EOD, truncated
[  116.973834][ T8279] team0: Port device team_slave_0 added
[  116.979765][ T8277] loop4: p249 start 8388612 is beyond EOD, truncated
[  116.979780][ T8277] loop4: p250 size 32937 extends beyond EOD, truncated
[  117.004581][ T8279] team0: Port device team_slave_1 added
[  117.007932][ T8277] loop4: p251 start 4177526784 is beyond EOD, truncated
[  117.017231][ T8277] loop4: p252 start 8388612 is beyond EOD, truncated
[  117.024068][ T8277] loop4: p253 size 32937 extends beyond EOD, truncated
[  117.035132][ T8277] loop4: p254 start 4177526784 is beyond EOD, truncated
[  117.035411][   T29] audit: type=1326 audit(1722143514.570:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8330 comm="syz.0.1386" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feb10287299 code=0x0
[  117.042204][ T8277] loop4: p255 start 8388612 is beyond EOD, truncated
[  117.072782][ T8279] batman_adv: batadv0: Adding interface: batadv_slave_0
[  117.079834][ T8279] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  117.106009][ T8279] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  117.122197][ T8279] batman_adv: batadv0: Adding interface: batadv_slave_1
[  117.129191][ T8279] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  117.155204][ T8279] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  117.180340][ T8279] hsr_slave_0: entered promiscuous mode
[  117.188382][ T8279] hsr_slave_1: entered promiscuous mode
[  117.194373][ T8279] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  117.202041][ T8279] Cannot create hsr debugfs directory
[  117.220457][   T11] IPVS: stop unused estimator thread 0...
[  117.440941][   T29] audit: type=1400 audit(1722143514.970:1060): avc:  denied  { bind } for  pid=8345 comm="syz.4.1391" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  117.542742][ T8279] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  117.551977][ T8279] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  117.562067][ T8279] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  117.570669][ T8279] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  117.621476][ T8279] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.635083][ T8279] 8021q: adding VLAN 0 to HW filter on device team0
[  117.649826][ T4122] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.654675][ T8355] RDS: rds_bind could not find a transport for ::ffff:172.30.0.5, load rds_tcp or rds_rdma?
[  117.656981][ T4122] bridge0: port 1(bridge_slave_0) entered forwarding state
[  117.669867][   T29] audit: type=1400 audit(1722143515.200:1061): avc:  denied  { ioctl } for  pid=8354 comm="syz.4.1394" path="/dev/usbmon1" dev="devtmpfs" ino=119 ioctlcmd=0x9205 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  117.676992][ T4122] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.706618][ T4122] bridge0: port 2(bridge_slave_1) entered forwarding state
[  117.724027][ T8357] loop4: detected capacity change from 0 to 512
[  117.730613][ T8357] ext4: Unknown parameter 'fowner<00000000000000000000'
[  117.777324][ T8365] macvlan3: entered allmulticast mode
[  117.783217][ T8365] team_slave_0: entered promiscuous mode
[  117.788883][ T8365] team_slave_1: entered promiscuous mode
[  117.794602][ T8365] team0: entered allmulticast mode
[  117.799704][ T8365] team_slave_0: entered allmulticast mode
[  117.805453][ T8365] team_slave_1: entered allmulticast mode
[  117.811513][ T8365] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  117.821021][ T8365] macvlan3: entered promiscuous mode
[  117.826347][ T8365] team0: entered promiscuous mode
[  117.832291][ T8365] bond0: (slave macvlan3): Enslaving as an active interface with an up link
[  117.846192][ T8279] 8021q: adding VLAN 0 to HW filter on device batadv0
[  117.889250][ T8373] FAULT_INJECTION: forcing a failure.
[  117.889250][ T8373] name failslab, interval 1, probability 0, space 0, times 0
[  117.902046][ T8373] CPU: 1 UID: 0 PID: 8373 Comm: syz.4.1399 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  117.912463][ T8373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  117.922510][ T8373] Call Trace:
[  117.925864][ T8373]  <TASK>
[  117.928784][ T8373]  dump_stack_lvl+0xf2/0x150
[  117.933434][ T8373]  dump_stack+0x15/0x20
[  117.937590][ T8373]  should_fail_ex+0x229/0x230
[  117.942293][ T8373]  ? qdisc_alloc+0x5f/0x440
[  117.946837][ T8373]  should_failslab+0x8f/0xb0
[  117.951426][ T8373]  __kmalloc_node_noprof+0xa8/0x380
[  117.956619][ T8373]  qdisc_alloc+0x5f/0x440
[  117.961025][ T8373]  ? mq_init+0xb8/0x380
[  117.965170][ T8373]  qdisc_create_dflt+0x4c/0x280
[  117.970101][ T8373]  mq_init+0x1b9/0x380
[  117.974338][ T8373]  ? qdisc_create+0x3bd/0xae0
[  117.979033][ T8373]  ? __pfx_mq_init+0x10/0x10
[  117.983772][ T8373]  qdisc_create+0x6c1/0xae0
[  117.988352][ T8373]  ? __nla_parse+0x40/0x60
[  117.992757][ T8373]  tc_modify_qdisc+0x65f/0x1050
[  117.997739][ T8373]  ? ns_capable+0x7d/0xb0
[  118.002063][ T8373]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  118.007431][ T8373]  rtnetlink_rcv_msg+0x6aa/0x710
[  118.012420][ T8373]  ? ref_tracker_free+0x3a5/0x410
[  118.017451][ T8373]  ? __dev_queue_xmit+0x161/0x1fe0
[  118.022557][ T8373]  netlink_rcv_skb+0x12c/0x230
[  118.027402][ T8373]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  118.032911][ T8373]  rtnetlink_rcv+0x1c/0x30
[  118.037443][ T8373]  netlink_unicast+0x593/0x670
[  118.042195][ T8373]  netlink_sendmsg+0x5cc/0x6e0
[  118.046964][ T8373]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.052243][ T8373]  __sock_sendmsg+0x140/0x180
[  118.057061][ T8373]  ____sys_sendmsg+0x312/0x410
[  118.061819][ T8373]  __sys_sendmsg+0x1e9/0x280
[  118.066407][ T8373]  __x64_sys_sendmsg+0x46/0x50
[  118.071248][ T8373]  x64_sys_call+0x26f8/0x2e00
[  118.076003][ T8373]  do_syscall_64+0xc9/0x1c0
[  118.080509][ T8373]  ? clear_bhb_loop+0x55/0xb0
[  118.085185][ T8373]  ? clear_bhb_loop+0x55/0xb0
[  118.090180][ T8373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.096066][ T8373] RIP: 0033:0x7f70de3d7299
[  118.100624][ T8373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.120288][ T8373] RSP: 002b:00007f70dd057048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.128692][ T8373] RAX: ffffffffffffffda RBX: 00007f70de565f80 RCX: 00007f70de3d7299
[  118.136680][ T8373] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000006
[  118.144638][ T8373] RBP: 00007f70dd0570a0 R08: 0000000000000000 R09: 0000000000000000
[  118.152639][ T8373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.160675][ T8373] R13: 000000000000000b R14: 00007f70de565f80 R15: 00007ffed3bef688
[  118.168752][ T8373]  </TASK>
[  118.176512][ T8376] loop0: detected capacity change from 0 to 764
[  118.203201][ T8376] loop0: detected capacity change from 0 to 764
[  118.240391][ T8279] veth0_vlan: entered promiscuous mode
[  118.251439][ T8279] veth1_vlan: entered promiscuous mode
[  118.263592][ T8376] loop0: detected capacity change from 0 to 764
[  118.275498][ T8279] veth0_macvtap: entered promiscuous mode
[  118.292563][ T8389] netlink: 'syz.4.1402': attribute type 10 has an invalid length.
[  118.322999][ T8389] netdevsim netdevsim4 netdevsim1: entered promiscuous mode
[  118.330600][ T8389] netdevsim netdevsim4 netdevsim1: entered allmulticast mode
[  118.341667][ T8389] team0: Port device netdevsim1 added
[  118.343422][ T8397] loop0: detected capacity change from 0 to 128
[  118.348969][ T8279] veth1_macvtap: entered promiscuous mode
[  118.360294][ T8398] netlink: 'syz.4.1402': attribute type 10 has an invalid length.
[  118.363997][ T8397] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  118.381956][ T8397] ext4 filesystem being mounted at /136/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  118.392970][ T8398] netdevsim netdevsim4 netdevsim1: left allmulticast mode
[  118.402714][ T8397] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:406: inode #2: comm syz.0.1403: No space for directory leaf checksum. Please run e2fsck -D.
[  118.418135][ T8397] EXT4-fs error (device loop0): __ext4_find_entry:1652: inode #2: comm syz.0.1403: checksumming directory block 0
[  118.430829][ T8398] team0: Port device netdevsim1 removed
[  118.437512][ T8398] netdevsim netdevsim4 netdevsim1: left promiscuous mode
[  118.445386][ T8398] netdevsim netdevsim4 netdevsim1: entered promiscuous mode
[  118.452786][ T8398] netdevsim netdevsim4 netdevsim1: entered allmulticast mode
[  118.456642][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:172.20.20.170]:2. Sending cookies.
[  118.461195][ T8398] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  118.504924][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.515581][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.525503][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.536052][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.544297][   T29] audit: type=1400 audit(1722143516.070:1062): avc:  denied  { read } for  pid=8402 comm="syz.4.1405" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  118.546505][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.569366][   T29] audit: type=1400 audit(1722143516.070:1063): avc:  denied  { open } for  pid=8402 comm="syz.4.1405" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  118.579970][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.605813][   T29] audit: type=1400 audit(1722143516.140:1064): avc:  denied  { ioctl } for  pid=8402 comm="syz.4.1405" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9375 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  118.613246][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.648823][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.658666][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.669111][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.678987][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.689422][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.699334][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.710834][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.721803][ T6206] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.739457][ T8279] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.758302][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.769111][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.778920][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.789469][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.792242][ T8410] loop0: detected capacity change from 0 to 2048
[  118.799276][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.816178][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.826119][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.836631][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.846623][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.857113][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.867012][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.877442][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.887547][ T8279] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.897974][ T8279] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.908877][ T8279] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.922127][ T8410] netlink: 'syz.0.1404': attribute type 10 has an invalid length.
[  118.930788][ T8410] bond0: (slave netdevsim1): Releasing backup interface
[  118.940754][ T8410] bridge0: port 4(netdevsim1) entered blocking state
[  118.947560][ T8410] bridge0: port 4(netdevsim1) entered disabled state
[  118.955418][ T8410] netdevsim netdevsim0 netdevsim1: entered allmulticast mode
[  118.963251][ T8410] netdevsim netdevsim0 netdevsim1: entered promiscuous mode
[  118.987145][ T8413] macvlan4: entered allmulticast mode
[  118.992733][ T8413] bond0: (slave macvlan4): Error -98 calling set_mac_address
[  119.004682][ T8279] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.013502][ T8279] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.022503][ T8279] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.031293][ T8279] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.060560][ T8419] loop2: detected capacity change from 0 to 8192
[  119.103313][ T8423] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1375'.
[  119.280382][ T8436] loop2: detected capacity change from 0 to 128
[  119.288502][ T8436] ext4 filesystem being mounted at /137/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  119.300997][ T8436] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:406: inode #2: comm syz.2.1414: No space for directory leaf checksum. Please run e2fsck -D.
[  119.309173][ T8439] loop3: detected capacity change from 0 to 2048
[  119.316385][ T8436] EXT4-fs error (device loop2): __ext4_find_entry:1652: inode #2: comm syz.2.1414: checksumming directory block 0
[  119.322901][ T8439] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  119.362699][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:172.20.20.170]:2. Sending cookies.
[  119.376624][ T8442] FAULT_INJECTION: forcing a failure.
[  119.376624][ T8442] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  119.389825][ T8442] CPU: 0 UID: 0 PID: 8442 Comm: syz.3.1416 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  119.400182][ T8442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  119.410239][ T8442] Call Trace:
[  119.413518][ T8442]  <TASK>
[  119.416452][ T8442]  dump_stack_lvl+0xf2/0x150
[  119.421059][ T8442]  dump_stack+0x15/0x20
[  119.425231][ T8442]  should_fail_ex+0x229/0x230
[  119.429986][ T8442]  should_fail+0xb/0x10
[  119.434206][ T8442]  should_fail_usercopy+0x1a/0x20
[  119.439242][ T8442]  _copy_from_user+0x1e/0xd0
[  119.443877][ T8442]  ____sys_sendmsg+0x1a4/0x410
[  119.448654][ T8442]  __sys_sendmsg+0x1e9/0x280
[  119.453323][ T8442]  __x64_sys_sendmsg+0x46/0x50
[  119.458123][ T8442]  x64_sys_call+0x26f8/0x2e00
[  119.462798][ T8442]  do_syscall_64+0xc9/0x1c0
[  119.467338][ T8442]  ? clear_bhb_loop+0x55/0xb0
[  119.472015][ T8442]  ? clear_bhb_loop+0x55/0xb0
[  119.476723][ T8442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.482679][ T8442] RIP: 0033:0x7f85b45a7299
[  119.487179][ T8442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.506781][ T8442] RSP: 002b:00007f85b3227048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  119.515210][ T8442] RAX: ffffffffffffffda RBX: 00007f85b4735f80 RCX: 00007f85b45a7299
[  119.523170][ T8442] RDX: 0000000000000000 RSI: 0000000020001600 RDI: 0000000000000004
[  119.531220][ T8442] RBP: 00007f85b32270a0 R08: 0000000000000000 R09: 0000000000000000
[  119.539248][ T8442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.547210][ T8442] R13: 000000000000000b R14: 00007f85b4735f80 R15: 00007ffcf181d438
[  119.555177][ T8442]  </TASK>
[  119.583261][ T8449] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1419'.
[  119.593564][ T8449] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1419'.
[  119.607360][ T8449] loop3: detected capacity change from 0 to 1024
[  119.620989][ T8447] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1418'.
[  119.647365][ T8449] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  119.668787][ T8449] pim6reg: entered allmulticast mode
[  119.723945][ T8460] FAULT_INJECTION: forcing a failure.
[  119.723945][ T8460] name failslab, interval 1, probability 0, space 0, times 0
[  119.736771][ T8460] CPU: 0 UID: 0 PID: 8460 Comm: syz.4.1422 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  119.747106][ T8460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  119.757247][ T8460] Call Trace:
[  119.760524][ T8460]  <TASK>
[  119.763477][ T8460]  dump_stack_lvl+0xf2/0x150
[  119.768080][ T8460]  dump_stack+0x15/0x20
[  119.772299][ T8460]  should_fail_ex+0x229/0x230
[  119.777135][ T8460]  ? kstrdup_const+0x3e/0x50
[  119.781753][ T8460]  should_failslab+0x8f/0xb0
[  119.786358][ T8460]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[  119.792726][ T8460]  kstrdup+0x3a/0x80
[  119.796654][ T8460]  kstrdup_const+0x3e/0x50
[  119.801117][ T8460]  __kernfs_new_node+0x41/0x380
[  119.805975][ T8460]  ? rb_insert_color+0x6a/0x290
[  119.810838][ T8460]  ? up_write+0x30/0xf0
[  119.815015][ T8460]  ? kernfs_activate+0x256/0x270
[  119.819946][ T8460]  kernfs_new_node+0xc8/0x140
[  119.824636][ T8460]  kernfs_create_link+0x6c/0x120
[  119.829584][ T8460]  sysfs_do_create_link_sd+0x6b/0xf0
[  119.834870][ T8460]  sysfs_create_link+0x51/0x70
[  119.839632][ T8460]  device_add_class_symlinks+0x159/0x1e0
[  119.845266][ T8460]  device_add+0x36c/0x790
[  119.849643][ T8460]  wakeup_source_sysfs_add+0x136/0x1a0
[  119.855158][ T8460]  wakeup_source_register+0x106/0x250
[  119.860596][ T8460]  ep_insert+0x86e/0xd20
[  119.864912][ T8460]  do_epoll_ctl+0x628/0x950
[  119.869500][ T8460]  __x64_sys_epoll_ctl+0xc6/0xf0
[  119.874442][ T8460]  x64_sys_call+0x278e/0x2e00
[  119.879114][ T8460]  do_syscall_64+0xc9/0x1c0
[  119.883681][ T8460]  ? clear_bhb_loop+0x55/0xb0
[  119.888417][ T8460]  ? clear_bhb_loop+0x55/0xb0
[  119.893104][ T8460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.899097][ T8460] RIP: 0033:0x7f70de3d7299
[  119.903566][ T8460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  119.923225][ T8460] RSP: 002b:00007f70dd057048 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  119.931714][ T8460] RAX: ffffffffffffffda RBX: 00007f70de565f80 RCX: 00007f70de3d7299
[  119.939727][ T8460] RDX: 0000000000000005 RSI: 0000000000000001 RDI: 0000000000000003
[  119.947683][ T8460] RBP: 00007f70dd0570a0 R08: 0000000000000000 R09: 0000000000000000
[  119.955644][ T8460] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000002
[  119.963700][ T8460] R13: 000000000000000b R14: 00007f70de565f80 R15: 00007ffed3bef688
[  119.971666][ T8460]  </TASK>
[  120.017823][ T8464] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1424'.
[  120.031726][ T8464] geneve3: entered promiscuous mode
[  120.046060][ T8473] netlink: 'syz.3.1428': attribute type 30 has an invalid length.
[  120.065430][ T8471] loop4: detected capacity change from 0 to 1024
[  120.072228][ T8471] EXT4-fs: Ignoring removed orlov option
[  120.112808][   T29] audit: type=1326 audit(1722143517.640:1065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8476 comm="syz.2.1429" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f33767299 code=0x0
[  120.171772][ T8491] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 38538 - 0
[  120.180685][ T8491] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 38538 - 0
[  120.189565][ T8491] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 38538 - 0
[  120.198523][ T8491] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 38538 - 0
[  120.207530][ T8491] netdevsim netdevsim0 netdevsim0: set [1, 2] type 2 family 0 port 47998 - 0
[  120.216386][ T8491] netdevsim netdevsim0 netdevsim1: set [1, 2] type 2 family 0 port 47998 - 0
[  120.225323][ T8491] netdevsim netdevsim0 netdevsim2: set [1, 2] type 2 family 0 port 47998 - 0
[  120.234383][ T8491] netdevsim netdevsim0 netdevsim3: set [1, 2] type 2 family 0 port 47998 - 0
[  120.246134][ T8491] geneve2: entered promiscuous mode
[  120.251364][ T8491] geneve2: entered allmulticast mode
[  120.278200][ T8497] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1435'.
[  120.313050][   T29] audit: type=1400 audit(1722143517.830:1066): avc:  denied  { mount } for  pid=8498 comm="syz.4.1434" name="/" dev="autofs" ino=24307 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  120.335719][   T29] audit: type=1326 audit(1722143517.830:1067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8498 comm="syz.4.1434" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f70de3d7299 code=0x0
[  120.419559][ T8512] macvlan2: entered allmulticast mode
[  120.427631][ T8512] team_slave_0: entered promiscuous mode
[  120.433303][ T8512] team_slave_1: entered promiscuous mode
[  120.439094][ T8512] team0: entered allmulticast mode
[  120.444278][ T8512] team_slave_0: entered allmulticast mode
[  120.449993][ T8512] team_slave_1: entered allmulticast mode
[  120.458394][ T8512] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  120.467239][ T8512] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  120.566370][ T8519] FAULT_INJECTION: forcing a failure.
[  120.566370][ T8519] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.579488][ T8519] CPU: 1 UID: 0 PID: 8519 Comm: syz.0.1441 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  120.589846][ T8519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  120.599970][ T8519] Call Trace:
[  120.603329][ T8519]  <TASK>
[  120.606293][ T8519]  dump_stack_lvl+0xf2/0x150
[  120.610897][ T8519]  dump_stack+0x15/0x20
[  120.615136][ T8519]  should_fail_ex+0x229/0x230
[  120.619842][ T8519]  should_fail+0xb/0x10
[  120.624010][ T8519]  should_fail_usercopy+0x1a/0x20
[  120.629126][ T8519]  _copy_to_iter+0x246/0xaf0
[  120.633789][ T8519]  ? down_read+0x171/0x4b0
[  120.638352][ T8519]  copy_page_to_iter+0x171/0x2b0
[  120.643310][ T8519]  process_vm_rw+0x5f0/0x8c0
[  120.647963][ T8519]  ? ksys_write+0x178/0x1b0
[  120.652486][ T8519]  __x64_sys_process_vm_readv+0x7a/0x90
[  120.658168][ T8519]  x64_sys_call+0x26bc/0x2e00
[  120.662847][ T8519]  do_syscall_64+0xc9/0x1c0
[  120.667410][ T8519]  ? clear_bhb_loop+0x55/0xb0
[  120.672104][ T8519]  ? clear_bhb_loop+0x55/0xb0
[  120.676791][ T8519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.682801][ T8519] RIP: 0033:0x7feb10287299
[  120.687273][ T8519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.706964][ T8519] RSP: 002b:00007feb0ef07048 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  120.715482][ T8519] RAX: ffffffffffffffda RBX: 00007feb10415f80 RCX: 00007feb10287299
[  120.723553][ T8519] RDX: 0000000000000002 RSI: 0000000020008400 RDI: 0000000000000175
[  120.731616][ T8519] RBP: 00007feb0ef070a0 R08: 0000000000000286 R09: 0000000000000000
[  120.739749][ T8519] R10: 0000000020008640 R11: 0000000000000246 R12: 0000000000000002
[  120.747727][ T8519] R13: 000000000000000b R14: 00007feb10415f80 R15: 00007ffdea378838
[  120.755788][ T8519]  </TASK>
[  120.761484][   T29] audit: type=1400 audit(1722143518.290:1068): avc:  denied  { append } for  pid=8518 comm="syz.0.1441" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  120.801159][ T8522] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2573 sclass=netlink_route_socket pid=8522 comm=syz.0.1442
[  120.827772][   T29] audit: type=1400 audit(1722143518.360:1069): avc:  denied  { create } for  pid=8523 comm="syz.0.1443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  120.848082][   T29] audit: type=1400 audit(1722143518.360:1070): avc:  denied  { write } for  pid=8523 comm="syz.0.1443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  120.868637][   T29] audit: type=1400 audit(1722143518.360:1071): avc:  denied  { read } for  pid=8523 comm="syz.0.1443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  120.908705][ T8529] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1444'.
[  120.975493][ T8531] loop2: detected capacity change from 0 to 2048
[  121.015806][ T8536] netlink: 'syz.2.1446': attribute type 13 has an invalid length.
[  121.027850][ T8536] gretap0: refused to change device tx_queue_len
[  121.035865][ T8536] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  121.069505][ T8539] bridge0: entered allmulticast mode
[  121.234016][ T8553] loop4: detected capacity change from 0 to 512
[  121.284294][ T8553] ext4 filesystem being mounted at /260/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.305028][ T8553] netlink: 4544 bytes leftover after parsing attributes in process `syz.4.1453'.
[  121.324369][ T8553] netlink: 4544 bytes leftover after parsing attributes in process `syz.4.1453'.
[  121.367067][ T8567] netlink: 'syz.0.1454': attribute type 12 has an invalid length.
[  121.375013][ T8567] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1454'.
[  121.440315][ T8574] loop4: detected capacity change from 0 to 2048
[  121.465461][ T8577] FAULT_INJECTION: forcing a failure.
[  121.465461][ T8577] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  121.478665][ T8577] CPU: 0 UID: 0 PID: 8577 Comm: syz.0.1457 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  121.489018][ T8577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  121.499163][ T8577] Call Trace:
[  121.502598][ T8577]  <TASK>
[  121.505530][ T8577]  dump_stack_lvl+0xf2/0x150
[  121.510268][ T8577]  dump_stack+0x15/0x20
[  121.514548][ T8577]  should_fail_ex+0x229/0x230
[  121.519228][ T8577]  should_fail+0xb/0x10
[  121.523486][ T8577]  should_fail_usercopy+0x1a/0x20
[  121.528509][ T8577]  _copy_to_user+0x1e/0xa0
[  121.532924][ T8577]  simple_read_from_buffer+0xa0/0x110
[  121.538292][ T8577]  proc_fail_nth_read+0xfc/0x140
[  121.543275][ T8577]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  121.548881][ T8577]  vfs_read+0x1a2/0x6e0
[  121.553114][ T8577]  ? __rcu_read_unlock+0x4e/0x70
[  121.558101][ T8577]  ? __fget_files+0x1da/0x210
[  121.562854][ T8577]  ksys_read+0xeb/0x1b0
[  121.567012][ T8577]  __x64_sys_read+0x42/0x50
[  121.571514][ T8577]  x64_sys_call+0x2a36/0x2e00
[  121.576193][ T8577]  do_syscall_64+0xc9/0x1c0
[  121.580779][ T8577]  ? clear_bhb_loop+0x55/0xb0
[  121.585491][ T8577]  ? clear_bhb_loop+0x55/0xb0
[  121.590299][ T8577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.596234][ T8577] RIP: 0033:0x7feb10285d7c
[  121.600636][ T8577] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  121.620239][ T8577] RSP: 002b:00007feb0ef07040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  121.628656][ T8577] RAX: ffffffffffffffda RBX: 00007feb10415f80 RCX: 00007feb10285d7c
[  121.636620][ T8577] RDX: 000000000000000f RSI: 00007feb0ef070b0 RDI: 0000000000000003
[  121.644601][ T8577] RBP: 00007feb0ef070a0 R08: 0000000000000000 R09: 0000000000000000
[  121.652612][ T8577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  121.660803][ T8577] R13: 000000000000000b R14: 00007feb10415f80 R15: 00007ffdea378838
[  121.668766][ T8577]  </TASK>
[  121.734447][   T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.793123][ T8583] tunl0: entered promiscuous mode
[  121.823448][ T8583] netlink: 'syz.4.1459': attribute type 1 has an invalid length.
[  121.831263][ T8583] netlink: 9 bytes leftover after parsing attributes in process `syz.4.1459'.
[  121.871422][   T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.949814][ T8555] chnl_net:caif_netlink_parms(): no params data found
[  121.984447][   T11] bond0: (slave netdevsim1): Releasing backup interface
[  122.015497][   T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.119655][   T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.202825][ T8555] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.210088][ T8555] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.220749][ T8555] bridge_slave_0: entered allmulticast mode
[  122.230652][ T8555] bridge_slave_0: entered promiscuous mode
[  122.240453][ T8555] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.247545][ T8555] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.256628][ T8555] bridge_slave_1: entered allmulticast mode
[  122.263438][ T8555] bridge_slave_1: entered promiscuous mode
[  122.320089][ T8555] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  122.331746][   T11] bridge_slave_1: left allmulticast mode
[  122.337527][   T11] bridge_slave_1: left promiscuous mode
[  122.343260][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.379115][   T11] bridge_slave_0: left allmulticast mode
[  122.384887][   T11] bridge_slave_0: left promiscuous mode
[  122.390565][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.516879][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  122.528181][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  122.540902][   T11] bond0 (unregistering): Released all slaves
[  122.550736][   T11] bond1 (unregistering): Released all slaves
[  122.561878][ T8555] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  122.603894][ T8626] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1475'.
[  122.613985][ T8555] team0: Port device team_slave_0 added
[  122.620523][ T8555] team0: Port device team_slave_1 added
[  122.628403][   T11] IPVS: stopping backup sync thread 7959 ...
[  122.640839][   T11] hsr_slave_0: left promiscuous mode
[  122.649358][   T11] hsr_slave_1: left promiscuous mode
[  122.659805][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  122.667294][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  122.694201][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  122.701614][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  122.726243][   T11] veth1_macvtap: left promiscuous mode
[  122.731772][   T11] veth0_macvtap: left promiscuous mode
[  122.737398][   T11] veth1_vlan: left promiscuous mode
[  122.742616][   T11] veth0_vlan: left promiscuous mode
[  122.781890][ T8638] loop4: detected capacity change from 0 to 512
[  122.790852][ T8638] ext3: Unknown parameter 'smackfstransmute'
[  122.860627][   T11] team0 (unregistering): Port device team_slave_1 removed
[  122.875322][   T11] team0 (unregistering): Port device team_slave_0 removed
[  122.936459][ T8555] batman_adv: batadv0: Adding interface: batadv_slave_0
[  122.943630][ T8555] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  122.969809][ T8555] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  122.982972][ T8555] batman_adv: batadv0: Adding interface: batadv_slave_1
[  122.989994][ T8555] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  123.015971][ T8555] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  123.044647][ T8555] hsr_slave_0: entered promiscuous mode
[  123.052077][ T8555] hsr_slave_1: entered promiscuous mode
[  123.062843][ T8555] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  123.073258][ T8555] Cannot create hsr debugfs directory
[  123.420310][ T8555] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  123.430625][ T8555] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  123.451635][ T8555] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  123.463174][ T8555] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  123.535862][ T8555] 8021q: adding VLAN 0 to HW filter on device bond0
[  123.550114][ T8555] 8021q: adding VLAN 0 to HW filter on device team0
[  123.571573][ T4100] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.579003][ T4100] bridge0: port 1(bridge_slave_0) entered forwarding state
[  123.601562][ T4096] bridge0: port 2(bridge_slave_1) entered blocking state
[  123.608652][ T4096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  123.635568][ T8555] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  123.646001][ T8555] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  123.718909][ T8555] 8021q: adding VLAN 0 to HW filter on device batadv0
[  123.732092][ T8681] loop4: detected capacity change from 0 to 512
[  123.736372][ T8682] xt_limit: Overflow, try lower: 262144/0
[  123.784405][ T8681] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  123.808811][ T8681] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[  123.811245][ T8690] loop0: detected capacity change from 0 to 512
[  123.817334][ T8681] System zones: 1-12
[  123.827678][ T8681] EXT4-fs (loop4): orphan cleanup on readonly fs
[  123.836059][ T8690] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  123.845791][ T8681] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1491: bg 0: block 361: padding at end of block bitmap is not set
[  123.865521][ T8681] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  123.877773][ T8681] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #11: comm syz.4.1491: attempt to clear invalid blocks 33619980 len 1
[  123.901417][ T8555] veth0_vlan: entered promiscuous mode
[  123.907695][ T8681] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1491: invalid indirect mapped block 1811939328 (level 0)
[  123.927805][ T8555] veth1_vlan: entered promiscuous mode
[  123.943042][ T8690] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1494: bg 0: block 64: padding at end of block bitmap is not set
[  123.968078][ T8555] veth0_macvtap: entered promiscuous mode
[  123.974243][ T8681] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1491: invalid indirect mapped block 2 (level 2)
[  123.988766][ T8690] __quota_error: 5 callbacks suppressed
[  123.988779][ T8690] Quota error (device loop0): write_blk: dquota write failed
[  124.005463][ T8555] veth1_macvtap: entered promiscuous mode
[  124.015854][ T8690] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  124.026406][ T8681] EXT4-fs (loop4): 1 truncate cleaned up
[  124.033817][ T8690] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.1494: Failed to acquire dquot type 0
[  124.046584][ T8690] EXT4-fs (loop0): 1 truncate cleaned up
[  124.047761][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  124.063005][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.072887][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  124.083436][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.093359][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  124.103942][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.113825][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  124.124638][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.134484][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  124.145011][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.154914][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  124.165469][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.175338][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  124.186061][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.197237][ T8555] batman_adv: batadv0: Interface activated: batadv_slave_0
[  124.239812][ T8706] loop0: detected capacity change from 0 to 512
[  124.265526][ T8673] veth0_vlan: left promiscuous mode
[  124.271231][ T8673] veth0_vlan: entered promiscuous mode
[  124.292516][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.303110][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.313091][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.323534][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.333486][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.343945][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.354094][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.364913][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.374832][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.385418][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.395370][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.405800][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.415614][ T8555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.426090][ T8555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.437974][ T8555] batman_adv: batadv0: Interface activated: batadv_slave_1
[  124.474864][ T8555] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.483667][ T8555] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  124.492431][ T8555] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  124.501238][ T8555] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.596915][ T8716] loop4: detected capacity change from 0 to 512
[  124.643083][ T8721] loop1: detected capacity change from 0 to 512
[  124.659578][ T8716] ext4 filesystem being mounted at /276/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.681420][ T8721] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  124.716649][   T29] audit: type=1400 audit(1722143522.250:1077): avc:  denied  { setattr } for  pid=8715 comm="syz.4.1500" path="/276/file0/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  124.773442][ T8716] netlink: 280 bytes leftover after parsing attributes in process `syz.4.1500'.
[  124.805733][ T8729] FAULT_INJECTION: forcing a failure.
[  124.805733][ T8729] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.819120][ T8729] CPU: 0 UID: 0 PID: 8729 Comm: syz.4.1503 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  124.829458][ T8729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  124.839496][ T8729] Call Trace:
[  124.842762][ T8729]  <TASK>
[  124.845764][ T8729]  dump_stack_lvl+0xf2/0x150
[  124.850436][ T8729]  dump_stack+0x15/0x20
[  124.854579][ T8729]  should_fail_ex+0x229/0x230
[  124.859326][ T8729]  should_fail+0xb/0x10
[  124.863486][ T8729]  should_fail_usercopy+0x1a/0x20
[  124.868551][ T8729]  _copy_to_user+0x1e/0xa0
[  124.872953][ T8729]  simple_read_from_buffer+0xa0/0x110
[  124.878362][ T8729]  proc_fail_nth_read+0xfc/0x140
[  124.883372][ T8729]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  124.888902][ T8729]  vfs_read+0x1a2/0x6e0
[  124.893134][ T8729]  ? __rcu_read_unlock+0x4e/0x70
[  124.898136][ T8729]  ? __fget_files+0x1da/0x210
[  124.902841][ T8729]  ksys_read+0xeb/0x1b0
[  124.907028][ T8729]  __x64_sys_read+0x42/0x50
[  124.911567][ T8729]  x64_sys_call+0x2a36/0x2e00
[  124.916328][ T8729]  do_syscall_64+0xc9/0x1c0
[  124.920819][ T8729]  ? clear_bhb_loop+0x55/0xb0
[  124.925483][ T8729]  ? clear_bhb_loop+0x55/0xb0
[  124.930205][ T8729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.936107][ T8729] RIP: 0033:0x7f70de3d5d7c
[  124.940506][ T8729] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  124.960150][ T8729] RSP: 002b:00007f70dd057040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  124.968626][ T8729] RAX: ffffffffffffffda RBX: 00007f70de565f80 RCX: 00007f70de3d5d7c
[  124.976587][ T8729] RDX: 000000000000000f RSI: 00007f70dd0570b0 RDI: 0000000000000003
[  124.984612][ T8729] RBP: 00007f70dd0570a0 R08: 0000000000000000 R09: 0000000000000000
[  124.992632][ T8729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  125.000761][ T8729] R13: 000000000000000b R14: 00007f70de565f80 R15: 00007ffed3bef688
[  125.008758][ T8729]  </TASK>
[  125.037027][ T8733] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1505'.
[  125.081265][ T8736] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1507'.
[  125.125916][ T8742] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1509'.
[  125.202182][ T8744] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1510'.
[  125.226295][    C1] eth0: bad gso: type: 1, size: 1408
[  125.232048][    C1] eth0: bad gso: type: 1, size: 1408
[  125.246207][ T8749] FAULT_INJECTION: forcing a failure.
[  125.246207][ T8749] name failslab, interval 1, probability 0, space 0, times 0
[  125.258923][ T8749] CPU: 1 UID: 0 PID: 8749 Comm: syz.1.1512 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  125.269342][ T8749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  125.279403][ T8749] Call Trace:
[  125.282685][ T8749]  <TASK>
[  125.285612][ T8749]  dump_stack_lvl+0xf2/0x150
[  125.290265][ T8749]  dump_stack+0x15/0x20
[  125.294423][ T8749]  should_fail_ex+0x229/0x230
[  125.299174][ T8749]  ? vm_area_alloc+0x2c/0x130
[  125.303938][ T8749]  should_failslab+0x8f/0xb0
[  125.308648][ T8749]  kmem_cache_alloc_noprof+0x4c/0x290
[  125.314090][ T8749]  vm_area_alloc+0x2c/0x130
[  125.318788][ T8749]  mmap_region+0x88b/0x1620
[  125.323305][ T8749]  ? security_mmap_addr+0x4c/0x70
[  125.328359][ T8749]  ? __get_unmapped_area+0x2d1/0x300
[  125.333731][ T8749]  do_mmap+0x72a/0xb70
[  125.337793][ T8749]  aio_setup_ring+0x3c2/0x6b0
[  125.342471][ T8749]  ioctx_alloc+0x2b2/0x4c0
[  125.347012][ T8749]  __se_sys_io_setup+0x6b/0x1b0
[  125.351890][ T8749]  __x64_sys_io_setup+0x31/0x40
[  125.356763][ T8749]  x64_sys_call+0x2b30/0x2e00
[  125.361443][ T8749]  do_syscall_64+0xc9/0x1c0
[  125.366000][ T8749]  ? clear_bhb_loop+0x55/0xb0
[  125.370740][ T8749]  ? clear_bhb_loop+0x55/0xb0
[  125.375511][ T8749]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.381402][ T8749] RIP: 0033:0x7f5c16077299
[  125.385803][ T8749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.405423][ T8749] RSP: 002b:00007f5c14cf7048 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[  125.413968][ T8749] RAX: ffffffffffffffda RBX: 00007f5c16205f80 RCX: 00007f5c16077299
[  125.421928][ T8749] RDX: 0000000000000000 RSI: 0000000020003300 RDI: 0000000000000005
[  125.430081][ T8749] RBP: 00007f5c14cf70a0 R08: 0000000000000000 R09: 0000000000000000
[  125.438128][ T8749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  125.446097][ T8749] R13: 000000000000000b R14: 00007f5c16205f80 R15: 00007ffed86cfcf8
[  125.454085][ T8749]  </TASK>
[  125.525762][   T29] audit: type=1326 audit(1722143523.060:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8756 comm="syz.3.1516" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f85b45a7299 code=0x0
[  125.580762][ T8765] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  125.587403][ T8765] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  125.595047][ T8765] vhci_hcd vhci_hcd.0: Device attached
[  125.596592][ T8763] loop4: detected capacity change from 0 to 1024
[  125.616468][ T8770] loop1: detected capacity change from 0 to 128
[  125.621746][ T8763] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps superblock
[  125.632550][ T8763] EXT4-fs (loop4): group descriptors corrupted!
[  125.642982][ T8772] lo speed is unknown, defaulting to 1000
[  125.649587][ T8772] lo speed is unknown, defaulting to 1000
[  125.657722][ T8772] lo speed is unknown, defaulting to 1000
[  125.665081][ T8772] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  125.672918][ T8772] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  125.725341][ T8772] lo speed is unknown, defaulting to 1000
[  125.731411][ T8772] lo speed is unknown, defaulting to 1000
[  125.742668][ T8772] lo speed is unknown, defaulting to 1000
[  125.750240][ T8772] lo speed is unknown, defaulting to 1000
[  125.756272][ T8772] lo speed is unknown, defaulting to 1000
[  125.763071][ T8772] lo speed is unknown, defaulting to 1000
[  125.769245][ T8772] lo speed is unknown, defaulting to 1000
[  125.775581][ T8772] lo speed is unknown, defaulting to 1000
[  125.781601][ T8772] lo speed is unknown, defaulting to 1000
[  125.795898][ T8776] loop1: detected capacity change from 0 to 512
[  125.823160][    C1] eth0: bad gso: type: 1, size: 1408
[  125.883744][ T4122] usb 7-1: new high-speed USB device number 5 using vhci_hcd
[  125.892478][ T8780] loop0: detected capacity change from 0 to 512
[  125.899409][ T8780] ext3: Unknown parameter 'smackfstransmute'
[  126.042641][   T29] audit: type=1326 audit(1722143523.570:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8792 comm="syz.4.1527" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f70de3d7299 code=0x0
[  126.357330][ T8766] vhci_hcd: connection reset by peer
[  126.362938][   T50] vhci_hcd: stop threads
[  126.367242][   T50] vhci_hcd: release socket
[  126.371874][   T50] vhci_hcd: disconnect device
[  126.529024][ T8798] FAULT_INJECTION: forcing a failure.
[  126.529024][ T8798] name failslab, interval 1, probability 0, space 0, times 0
[  126.542024][ T8798] CPU: 0 UID: 0 PID: 8798 Comm: syz.1.1529 Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  126.552358][ T8798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  126.562569][ T8798] Call Trace:
[  126.565933][ T8798]  <TASK>
[  126.568928][ T8798]  dump_stack_lvl+0xf2/0x150
[  126.573506][ T8798]  dump_stack+0x15/0x20
[  126.577667][ T8798]  should_fail_ex+0x229/0x230
[  126.582380][ T8798]  ? __alloc_skb+0x10b/0x310
[  126.587015][ T8798]  should_failslab+0x8f/0xb0
[  126.591666][ T8798]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  126.597458][ T8798]  __alloc_skb+0x10b/0x310
[  126.601901][ T8798]  netlink_alloc_large_skb+0xad/0xe0
[  126.607186][ T8798]  netlink_sendmsg+0x3b4/0x6e0
[  126.612007][ T8798]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.617393][ T8798]  __sock_sendmsg+0x140/0x180
[  126.622165][ T8798]  ____sys_sendmsg+0x312/0x410
[  126.626973][ T8798]  __sys_sendmsg+0x1e9/0x280
[  126.631621][ T8798]  __x64_sys_sendmsg+0x46/0x50
[  126.636553][ T8798]  x64_sys_call+0x26f8/0x2e00
[  126.641215][ T8798]  do_syscall_64+0xc9/0x1c0
[  126.645833][ T8798]  ? clear_bhb_loop+0x55/0xb0
[  126.650532][ T8798]  ? clear_bhb_loop+0x55/0xb0
[  126.655336][ T8798]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.661214][ T8798] RIP: 0033:0x7f5c16077299
[  126.665743][ T8798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.685440][ T8798] RSP: 002b:00007f5c14cf7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.693855][ T8798] RAX: ffffffffffffffda RBX: 00007f5c16205f80 RCX: 00007f5c16077299
[  126.701826][ T8798] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  126.709795][ T8798] RBP: 00007f5c14cf70a0 R08: 0000000000000000 R09: 0000000000000000
[  126.717872][ T8798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.725838][ T8798] R13: 000000000000000b R14: 00007f5c16205f80 R15: 00007ffed86cfcf8
[  126.733850][ T8798]  </TASK>
[  126.803159][ T8807] siw: device registration error -23
[  126.829357][ T8809] lo speed is unknown, defaulting to 1000
[  126.837142][ T8803] lo speed is unknown, defaulting to 1000
[  126.899036][ T8813] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  126.918700][ T8813] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  126.994555][ T8825] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=19472 sclass=netlink_route_socket pid=8825 comm=syz.1.1541
[  127.016666][ T8829] loop4: detected capacity change from 0 to 1024
[  127.025359][ T8829] EXT4-fs: Ignoring removed nomblk_io_submit option
[  127.032345][ T8829] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  127.042817][ T8555] ==================================================================
[  127.050905][ T8555] BUG: KCSAN: data-race in shmem_add_to_page_cache / shmem_getattr
[  127.055873][ T8831] loop0: detected capacity change from 0 to 4096
[  127.058898][ T8555] 
[  127.058904][ T8555] read-write to 0xffff8881126f2240 of 8 bytes by task 8826 on cpu 0:
[  127.058920][ T8555]  shmem_add_to_page_cache+0x3b9/0x4b0
[  127.081184][ T8555]  shmem_get_folio_gfp+0x513/0xd80
[  127.086304][ T8555]  shmem_write_begin+0xa0/0x1c0
[  127.091149][ T8555]  generic_perform_write+0x1b4/0x580
[  127.096425][ T8555]  shmem_file_write_iter+0xc8/0xf0
[  127.101529][ T8555]  __kernel_write_iter+0x24f/0x4e0
[  127.106638][ T8555]  dump_user_range+0x3a7/0x550
[  127.111417][ T8555]  elf_core_dump+0x1aeb/0x1c30
[  127.116172][ T8555]  do_coredump+0xfa7/0x1810
[  127.120664][ T8555]  get_signal+0xdc1/0x1080
[  127.125067][ T8555]  arch_do_signal_or_restart+0x95/0x4b0
[  127.130601][ T8555]  irqentry_exit_to_user_mode+0x9a/0x130
[  127.136311][ T8555]  irqentry_exit+0x12/0x50
[  127.140717][ T8555]  asm_exc_page_fault+0x26/0x30
[  127.145566][ T8555] 
[  127.147876][ T8555] read to 0xffff8881126f2240 of 8 bytes by task 8555 on cpu 1:
[  127.155407][ T8555]  shmem_getattr+0x69/0x200
[  127.159908][ T8555]  vfs_getattr+0x19b/0x1e0
[  127.164312][ T8555]  vfs_statx+0x134/0x2f0
[  127.168543][ T8555]  vfs_fstatat+0xec/0x110
[  127.173034][ T8555]  __se_sys_newfstatat+0x58/0x260
[  127.178048][ T8555]  __x64_sys_newfstatat+0x55/0x70
[  127.183078][ T8555]  x64_sys_call+0x2d6a/0x2e00
[  127.187745][ T8555]  do_syscall_64+0xc9/0x1c0
[  127.192240][ T8555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.198124][ T8555] 
[  127.200428][ T8555] value changed: 0x000000000000010d -> 0x0000000000000110
[  127.207687][ T8555] 
[  127.210000][ T8555] Reported by Kernel Concurrency Sanitizer on:
[  127.216129][ T8555] CPU: 1 UID: 0 PID: 8555 Comm: syz-executor Not tainted 6.10.0-syzkaller-12830-gff30564411ff #0
[  127.226788][ T8555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  127.236918][ T8555] ==================================================================
[  127.321212][   T29] audit: type=1400 audit(1722143524.850:1080): avc:  denied  { watch_reads } for  pid=8830 comm="syz.0.1542" path="/183/file0/file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  131.024081][ T4122] vhci_hcd: vhci_device speed not set