last executing test programs:

3.663670069s ago: executing program 4 (id=3531):
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000006c0)='./bus\x00', 0x532e612e25ad387b, &(0x7f0000000640), 0x41, 0x451, &(0x7f0000000a00)="$eJzs289rHFUcAPDvzOaH9ldirdXWVqNVDIpJk1btwUtFwYOCoId6jElaSreNNBFsKRpF6lEK3otHwb/Ak15EPQle9S6FokVo9bQyuzPJ7iab5scmm7qfD2z2vZm3+953Z97M2/eyAXStoexPErErIn6LiIFatrHAUO3pzq0rk//cujKZRKXy9p9JtdztW1cmi6LF63bmmeE0Iv0syStpNHvp8rmJcnn6Yp4fnTv//ujspcvPnz0/cWb6zPSF8RMnjh8be+nF8RfaEmcW1+2DH80cOvD6u9fenDx17b2fvsnau/9wbX99HO0ylAX+V6Wqed/T7a6sw3bXpZOeDjaENSlFRHa4eqv9fyBKsXjwBuK1TzvaOGBTZfem/ta75yvN+pdsAe5ZSXS6BUBnFDf67Ptv8diioce2cPNk7QtQFved/FHb0xNpXqZ3E+sfiqjk8ybXY5PmIQAA6n13srpUM790/JfG/rpye/I1lMGIeCAi9kbEgxGxLyIeiqiWfTgiHllj/c1LQ0vHP+mNdQW2Stn47+V8batx/FeM/mKwlOd2V+PvTU6fLU8fzT+T4ejtz/JjK9Tx/au/ftFqXxb/qfl/rxePrP7sebFEeqOnaYJuamJuol2D0pufRBzsWS7+ZGElIBufHoiIg2t76z1F4uyzXx9qVeju8a+gDetMla8inqkd//loir+QrLw+OXpflKePjhZnxVI//3L1rVb1byj+NsiO/47G87+pxMDfSf167eza67j6++ctv9Os9/zvS96prln35ds+nJibuzgW0Ze8Uc03bB9ffG2RL8pn8Q8fWb7/781fk8X/aERkJ/HhiHgsIh7P2/5ERDwZEUdWiP/HV55aZgV8tfFvriz+qWWvfwvn/2Dj8V97onTuh29b1b+643+8mhrOt1Svf3ex2gZu5LMDAACAe0UaEbsiSUcW0mk6MlL7H/59sSMtz8zOPXd65oMLU7XfCAxGb1rMdA3UzYeOJfP5O9by4/lccbH/WD5v/GXp/mp+ZHKmPNXh2KHb7WzR/zN/lDrdOmDT+b0WdK/m/p92qB3A1nP/h+6l/0P30v+hey3X/z9uylsLgP8n93/oXvo/dC/9H7qX/g9daSO/65fo5kSkLXf1xbZoYccT/dujGetLtLxkJFt6gQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANig/wIAAP//mmXpRA==")
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYRES32=r0], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000080), 0x16)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x3, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYRES16=r1], &(0x7f0000000980)='GPL\x00', 0x0, 0xffffffffffffff99, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="540000001000090400"/20, @ANYRES32=r8, @ANYBLOB="000000000000000034001280110000006272696467655f736c617665000000001c000580050020000100000005000c00000000000800030000000000"], 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r9 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x20040a, &(0x7f00000001c0)={[{@grpjquota}, {@errors_continue}, {@abort}, {@bsdgroups}]}, 0x12, 0x51a, &(0x7f0000001200)="$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")
quotactl$Q_SETINFO(0xffffffff80000602, &(0x7f0000000280)=@sg0, 0x0, &(0x7f0000000180)={0x1d, 0x0, 0x0, 0x4})
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000840)='./bus\x00', 0x1200840, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], 0x3, 0x377, &(0x7f00000002c0)="$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")
mmap(&(0x7f0000821000/0xf000)=nil, 0xf000, 0xb635773f06ebbee7, 0x4010, r9, 0x0)
r10 = semget$private(0x0, 0x3, 0x864ee8df52df9e4)
semctl$SETALL(0x0, 0x0, 0x2, 0x0)
semtimedop(r10, &(0x7f0000000200)=[{0x0, 0x2}, {}], 0x2, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=<r11=>0x0)
timer_settime(r11, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
sendfile(r3, 0xffffffffffffffff, 0x0, 0x0)

2.008660065s ago: executing program 0 (id=3560):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_read_part_table(0x60a, &(0x7f0000001b40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xc042, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x4000172, 0xffffffffffffffff, 0x0)
write$P9_RXATTRCREATE(r0, &(0x7f0000000400)={0x7}, 0x2000)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
syz_emit_ethernet(0xa6, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x70, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "ffffffffff60000000000000"}]}}}}}}, 0x0)
syz_emit_ethernet(0x34e, &(0x7f0000000780)={@local, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00ed00", 0x318, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x0, 0x18, 0x8dffffff, 0x0, [{0x0, 0xa, "a78c000005dc8080a2030003004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34060600000000000000dac15084dbaf736b41e5af0502"}, {0x0, 0x1, "00000500000000de25000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf3915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x0, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f005"}, {0xe, 0x7, "b8a3e10000a3e1100000006f00ffc0ffff00000000600000ff0bc0fe000000000000000000000000d9a0274400"/55}, {0x0, 0xc, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d180610027628cf9ef083611c9f68e2e1eb3d8bf9c6ab2642c4808298e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c"}]}}}}}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101080000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff08000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8}, @NFTA_RANGE_OP={0x8}, @NFTA_RANGE_TO_DATA={0x8, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}]}, @NFTA_RANGE_FROM_DATA={0xc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, "d3"}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}}, 0x0)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0xbec218ce65100691}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4088044}, 0x10000000)
sendmsg$can_raw(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x1d, r2}, 0x10, &(0x7f0000000680)={&(0x7f0000000200)=@canfd={{0x2, 0x1, 0x0, 0x1}, 0x26, 0x1, 0x0, 0x0, "5bb596a87d5c98371989060202b0da74ac9ecc6ed5b5067d3369b800e8e1000074f300000500000600"}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x20000040)
r4 = gettid()
r5 = getpid()
rt_tgsigqueueinfo(r5, r4, 0x8002a, &(0x7f0000000080))
close_range(r1, 0xffffffffffffffff, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x0, 0x84})
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000300), 0xc, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
r6 = socket$tipc(0x1e, 0x2, 0x0)
io_setup(0x9, &(0x7f0000000000)=<r7=>0x0)
connect$tipc(r6, &(0x7f0000001680)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x2, 0x2}}, 0x10)
io_submit(r7, 0x1, &(0x7f0000001500)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r6, 0x0}])
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1a)

1.121233358s ago: executing program 1 (id=3576):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x3, 0x3, 0x0, &(0x7f0000000480)='syzkaller\x00'}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000000000000100000d0000000000000000030000000000000000000001ff000000400000000004000000000003000000000200000002"], 0x0, 0x56}, 0x20)

1.120852678s ago: executing program 1 (id=3577):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702", @ANYBLOB="0000000000000000b7020000f3ffffb01500000086"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f00000001c0)={0x2000000000000002, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="020e0000150000000000000000000000030005000000000002000300ac1e00010000000000000000030006000000000002000000000000000000000000000000080012000000020000000000000000000600000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000400030000e0ffffff0000000000000000000000000000000000000000000000010018"], 0xa8}}, 0x20000010)

1.110224439s ago: executing program 0 (id=3579):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x301)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_aout(r4, &(0x7f00000002c0)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r4, 0x0)
setsockopt$inet6_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000340)=@gcm_128={{}, "1c4764d664509533", "c5931a67eea4fc224a6486aa194bec26", "59268c22", "d75dfbe3d698e53c"}, 0x28)
ioctl$SIOCSIFHWADDR(r2, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})
close(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller0\x00', @random="371692e7f7ef"})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r5)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r5, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random='\x00\a\x00'})

1.062518153s ago: executing program 1 (id=3580):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000001c0)={0x2000000000000002, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="020e0000150000000000000000000000030005000000000002000300ac1e00010000000000000000030006000000000002000000000000000000000000000000080012000000020000000000000000000600000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000400030000e0ffffff0000000000000000000000000000000000000000000000010018"], 0xa8}}, 0x20000010)

1.057481553s ago: executing program 2 (id=3582):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c020000190005090000000000000000ac1414bb0000000000000000000000002001000000000000000000000000000100000000000000000200200000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffffffffffff0000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000008401050020010000000000000000000000000002000004d23c00000002000000ac1414aa0000000000000000000000000035000004017500000000000100000000000000e0000001000000000000000000000000000004d33c0000000a000000fc0200000000000000000000000000000335000001000900018000000400000007000000ac14140f000000000000000000000000000004d32b00000002"], 0x23c}}, 0x0)

1.057056803s ago: executing program 2 (id=3583):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), 0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c000000130001002abd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008001300", @ANYRES32=0x0, @ANYBLOB="1400030073797a6b616c6c657230000000000000"], 0x3c}}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r3 = dup2(r1, r2)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa49c, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0xe291fa7e913ff358}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r6)
write$P9_RGETLOCK(r3, &(0x7f0000000140)=ANY=[], 0x2c)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = memfd_secret(0x0)
r8 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r9 = fcntl$dupfd(r8, 0x0, r7)
ioctl$SCSI_IOCTL_GET_PCI(r9, 0x5319, 0x0)
socket(0x10, 0x400000000080803, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8c11, &(0x7f0000000400), 0x0, 0x491, &(0x7f0000000480)="$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")
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
ioperm(0x0, 0x12e, 0x8000000000008)
set_mempolicy_home_node(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0)
close(r10)
umount2(&(0x7f0000000000)='./file0\x00', 0x3)

1.056633713s ago: executing program 1 (id=3584):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
fchdir(r0)
fcntl$setflags(r0, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000004c0)='./file0\x00', 0x2006484, &(0x7f0000000680)={[], [{@pcr={'pcr', 0x3d, 0x18}}, {@euid_eq}]}, 0x1, 0x782, &(0x7f0000001c40)="$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")
syz_mount_image$ext4(&(0x7f0000000e00)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x0, &(0x7f00000008c0)={[{@bsdgroups}, {@noblock_validity}, {@nodiscard}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@data_err_abort}]}, 0x64, 0x50a, &(0x7f0000001700)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00'}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000001c0)='sched_process_wait\x00', r1}, 0xe)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
close(r3)
accept4$inet(r3, 0x0, &(0x7f0000000d80), 0x40000)
socket$inet6(0xa, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000000300)={0x1})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
r5 = socket(0x10, 0x3, 0x0)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@newqdisc={0x5c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}, @qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x5c}}, 0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rxrpc_call\x00', r8}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000100100000100000070"], 0x18}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup2(r9, 0xffffffffffffffff)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x11, 0x11, &(0x7f0000000400)=ANY=[@ANYBLOB="f6ff36993ff1b92405671940caacb12a15ead88a0f26278fcb89aa4de3", @ANYRES32, @ANYBLOB="0000000000000000b7020000000000008500000086000000852000000400000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000018100000", @ANYRES32, @ANYBLOB="0000000000000000180000000010000000000000250000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x92, &(0x7f00000007c0)=""/146, 0x40f00, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000740)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000000880)={0x0, 0x6, 0xfffffffc, 0x2}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000940)=[{0x1, 0x5, 0x9, 0x8}, {0x4, 0x1, 0x10, 0x1}, {0x0, 0x1, 0x4, 0x3}, {0x5, 0x1, 0x4, 0x7}, {0x4, 0x4, 0x0, 0xa}, {0x1, 0x1, 0x9, 0x8}], 0x10, 0x2}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d40)={r10, 0xe0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000a80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x7, 0x1, &(0x7f0000000ac0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000b00)=[0x0], 0x0, 0xe2, &(0x7f0000000b40)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f0000000b80), &(0x7f0000000bc0), 0x8, 0x67, 0x8, 0x8, &(0x7f0000000c00)}}, 0x10)

1.038165455s ago: executing program 0 (id=3585):
syz_genetlink_get_family_id$ipvs(&(0x7f0000001d80), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x40, &(0x7f00000001c0), 0x1, 0xb9c, &(0x7f00000017c0)="$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")
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfVno=', @ANYRESHEX=r1, @ANYBLOB=',\x00'])
r2 = syz_io_uring_setup(0x67fa, &(0x7f00000006c0)={0x0, 0x0, 0x80}, &(0x7f0000000200), &(0x7f0000000100)=<r3=>0x0)
syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000240))
syz_io_uring_submit(r4, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r2, 0x184c, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000a00)={[{@shortname_mixed}, {@numtail}, {@shortname_lower}, {@shortname_lower}, {@uni_xlateno}, {@utf8no}, {@shortname_winnt}, {@utf8no}, {@shortname_mixed}, {@fat=@check_strict}, {@shortname_winnt}, {@shortname_mixed}, {@rodir}, {@fat=@nfs}, {@fat=@umask={'umask', 0x3d, 0x6}}, {@fat=@time_offset={'time_offset', 0x3d, 0xfffffffffffffb5a}}]}, 0x6, 0x2d0, &(0x7f00000003c0)="$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")
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r8 = getpid()
sched_setscheduler(r8, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmmsg$unix(r10, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r11}, 0x10)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r12, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x401, 0x0, 0x0, {0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWCHAIN={0x30, 0x3, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_HOOK={0x4}]}], {0x14}}, 0xa0}}, 0x0)

811.535213ms ago: executing program 2 (id=3586):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0xc}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000900000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000080)=[{}, {}, {}]}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000001140)='ext3\x00', &(0x7f00000007c0)='./file1\x00', 0x300e400, &(0x7f00000002c0)={[], [{@pcr={'pcr', 0x3d, 0x7}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'l^*\\!\xe5'}}, {@dont_hash}]}, 0x1, 0x781, &(0x7f0000002140)="$eJzs3c9rXNUeAPDvnSRNX9r3kgcPnnVjQNBA6cTU2Cq4qLgQwUJB17bDZBpqJpmSmZQmBLSI4EZQcSHopmt/1J0utW71v3AhLVXTYsWFRO7kTjpNJukkTWZs8/nAbc+5907O/d5zf5w753AngD1rOP0nF3EoIt5PIgaz+UlE9NVTvREnVta7vbRYTKcklpdf/TWpr3NrabEYTZ9JHcgyj0TE1XciDufWl1udX5gqlMul2Sw/Wps+P1qdXzhybrowWZoszRwbGx8/evyZ48faj6X4zebLf/9x4eD1D1568ssTf779/yvvfZ8kJ+Jgtqw5jp0yHMPZPulLd+FdXtzpwros6fYGsC3pqdmzcpbHoRiMnnoKAHiYvRkRy81i7QwA4OGTuN0DwB7T+B7g1tJisTF19QuJDrvxQkTsX4m/0b+5sqQ367PbX+8HHbiVRG/WtRlZf9fQDpQ/HBGffv365+kUu9QPCdDKW5ci4szQ8Prrf7JuzMJWPdXGOsNr8q5/0Dnfpu2fZ1u1/3Kr7Z+40/5Z1d/i3N2Oe5//uWs7UMyG0vbf801j2243xZ8Z6sly/663+fqSs+fKpfTa9p+IGIm+/jQ/tkkZIzf/urnRsub2328fvvFZWn76/501ctd6++/+zEShVrifmJvduBTxaG+r+JPV+k9a1H8671SbZbz83LufbLQsjT+NtzGtj393LV+OeKJV/Tc17pNNxyeO1g+H0cZB0cJXP308sFH5zfWfTmn5jWeBTkjrf6Dl8b86om8oaR6vWd16GT9cHvxuo2X3jr/18b8vea2e3pfNu1io1WbHIvYlr6yff/TOZxv5xvpp/COPtz7/Nzv+02fCM23G33v9ly+2H/8aLcbS3o80/omIq7m263/riSu3p3q2H39a/+P11Eg2p53rX7sbeD/7DgAAAAAAAAAAAAAAAAAAAAAAAADalYuIg5Hk8qvpXC6fX3nR/f9iIFeuVGuHz1bmZiai/lvZQ9GXa7zqcrDpfahj2SszG/mja/JPR8R/I+Kj/n/V8/lipTzR7eABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIHNgg9//T/3c3+2tAwB2zf5ubwAA0HHu/wCw97j/A8De0/L+n3R+OwCAzvH8DwB7j/s/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu+zUyZPptPzH0mIxzU9cmJ+bqlw4MlGqTuWn54r5YmX2fH6yUpksl/LFyvS9/l65Ujk/HjNzF0drpWpttDq/cHq6MjdTO31uujBZOl3q60hUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALA11fmFqUK5XJqVkNjdRE92yP1TtqejicceuH3YxYsSAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPk7wAAAP//B+0gAw==")

776.926496ms ago: executing program 1 (id=3587):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000010000000000000000b7080000000000007b8af8ff00000000b7080000000000017b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000004040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="ff90000002000000b705000008000000850000005e00000095"], &(0x7f0000000300)='GPL\x00', 0xa, 0xff6, &(0x7f0000001e00)=""/4086}, 0x90)

775.431867ms ago: executing program 2 (id=3588):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000040), r0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

757.723898ms ago: executing program 2 (id=3589):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad433ec50000000f00008095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000000)={0x3, 0xfbff, &(0x7f0000000340)={&(0x7f00000001c0)={0x2, 0x3, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_sa={0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @broadcast}}, @sadb_address={0x5, 0x7, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @remote, 0x4}}]}, 0x78}, 0x1, 0x7}, 0x0)

702.147662ms ago: executing program 2 (id=3590):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_read_part_table(0x60a, &(0x7f0000001b40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xc042, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x4000172, 0xffffffffffffffff, 0x0)
write$P9_RXATTRCREATE(r0, &(0x7f0000000400)={0x7}, 0x2000)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
syz_emit_ethernet(0xa6, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x70, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "ffffffffff60000000000000"}]}}}}}}, 0x0)
syz_emit_ethernet(0x34e, &(0x7f0000000780)={@local, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00ed00", 0x318, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff, 0x0, 0x18, 0x8dffffff, 0x0, [{0x0, 0xa, "a78c000005dc8080a2030003004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34060600000000000000dac15084dbaf736b41e5af0502"}, {0x0, 0x1, "00000500000000de25000400"}, {0x0, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf3915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x0, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f005"}, {0xe, 0x7, "b8a3e10000a3e1100000006f00ffc0ffff00000000600000ff0bc0fe000000000000000000000000d9a0274400"/55}, {0x0, 0xc, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d180610027628cf9ef083611c9f68e2e1eb3d8bf9c6ab2642c4808298e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c"}]}}}}}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101080000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff08000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8}, @NFTA_RANGE_OP={0x8}, @NFTA_RANGE_TO_DATA={0x8, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4}]}, @NFTA_RANGE_FROM_DATA={0xc, 0x3, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, "d3"}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}}, 0x0)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0xbec218ce65100691}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4088044}, 0x10000000)
sendmsg$can_raw(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x1d, r2}, 0x10, &(0x7f0000000680)={&(0x7f0000000200)=@canfd={{0x2, 0x1, 0x0, 0x1}, 0x26, 0x1, 0x0, 0x0, "5bb596a87d5c98371989060202b0da74ac9ecc6ed5b5067d3369b800e8e1000074f300000500000600"}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x20000040)
r4 = gettid()
r5 = getpid()
rt_tgsigqueueinfo(r5, r4, 0x8002a, &(0x7f0000000080))
close_range(r1, 0xffffffffffffffff, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x0, 0x84})
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000300), 0xc, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
r6 = socket$tipc(0x1e, 0x2, 0x0)
io_setup(0x9, &(0x7f0000000000)=<r7=>0x0)
connect$tipc(r6, &(0x7f0000001680)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x2, 0x2}}, 0x10)
io_submit(r7, 0x1, &(0x7f0000001500)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r6, 0x0}])
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1a)

690.871003ms ago: executing program 1 (id=3591):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$tcp_congestion(r0, &(0x7f0000000100)='reno\x00', 0x5)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="8500000076a51137752f000000d40a0000200000009501000000000000"], &(0x7f0000000240)='GPL\x00', 0x1, 0xc3, &(0x7f0000000280)=""/195, 0x0, 0x0, '\x00', 0x0, 0x11, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0xfffffffd}, 0x10}, 0x90)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fcntl$lock(r1, 0x7, &(0x7f0000000140))
fcntl$lock(r1, 0x6, &(0x7f00000000c0)={0x1, 0x0, 0xffffffff, 0x2066})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)
fcntl$lock(r2, 0x7, &(0x7f0000000140)={0x0, 0x0, 0xb7400000000})
syz_open_dev$loop(&(0x7f0000000000), 0x9, 0x200)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000a8990536901e00d9f170fd811a08f4df1dc0dd56b939f0f24c9eadafa8eb23f43b655ce724f88cf7c866fe9d112d347ff59b8a89851cfbb72b8d685b3c25e821d03a332810e28db601798fcf5eeb6912a5da98727785928fb13e941fa65dc3cfc6e7b371d9c449d4575f430b9496ac24a396c25580607554c5f3d275a6b7683815d9659b2589bd00"/174], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000bd160f4086801001adbf0000000109021200010000"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000400000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000340)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1a, 0x0, &(0x7f0000000400)=ANY=[@ANYRESDEC=r2, @ANYRES32=r3], 0x0, 0x20000, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
fdatasync(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x8, 0x4, 0x8}, 0x48)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
syz_io_uring_setup(0x230, &(0x7f0000000080)={0x0, 0xa225, 0x10100}, &(0x7f0000000280), &(0x7f0000000000))
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r6 = socket$kcm(0x2, 0xa, 0x2)
r7 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r7, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
ioctl$USBDEVFS_SUBMITURB(r7, 0x8038550a, &(0x7f0000000380)=@urb_type_iso={0x0, {0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})

662.985855ms ago: executing program 3 (id=3592):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xff, 0x23f, &(0x7f0000000540)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='freezer.self_freezing\x00', 0x275a, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002300000085000000080000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000d40)=ANY=[@ANYBLOB="000000004c900200050000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000013000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff"])

602.504031ms ago: executing program 4 (id=3593):
syz_mount_image$ext4(&(0x7f0000000880)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x800700, &(0x7f0000000980)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@usrjquota}], [{@fowner_lt}, {@euid_eq}, {@smackfstransmute={'smackfstransmute', 0x3d, 'resgid'}}, {@hash}, {@seclabel}, {@seclabel}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400), 0x0, 0x0, 0x0)
setxattr$trusted_overlay_nlink(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380), 0x0, 0xffd7, 0x3)

470.225071ms ago: executing program 3 (id=3594):
ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000000)={'veth1_macvtap\x00', {0x2, 0x4e21, @private=0xa010102}})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x68, r1, 0x400, 0x70bd2b, 0x25dfdbfb, {{}, {}, {0x4c, 0x18, {0x1ff, @link='syz0\x00'}}}, ["", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x8000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000200)={0x4, &(0x7f00000001c0)=[{0x3, 0x9, 0x5, 0x6}, {0x7, 0x8, 0x9, 0xf}, {0x40, 0x2, 0x10, 0x6}, {0x10, 0x8, 0x2, 0x6}]})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000280)={0x7, &(0x7f0000000240)=[{0x400, 0x8, 0xb, 0x6}, {0x7, 0xff, 0xa, 0x6}, {0x5, 0x60, 0x4, 0x5}, {0x87ba, 0xb, 0x2, 0x35}, {0xa7, 0xfb, 0x3c, 0xffffffff}, {0xf, 0x8, 0x0, 0xf}, {0x1000, 0x7, 0x0, 0x8000}]}, 0x10)
r2 = openat2$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x400, 0x20, 0x9}, 0x18)
getdents(r2, &(0x7f0000000340)=""/77, 0x4d)
mknodat$null(r2, &(0x7f00000003c0)='./file0\x00', 0x2, 0x103)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000440), r0)
r4 = syz_open_procfs$namespace(0x0, &(0x7f0000000480)='ns/uts\x00')
r5 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
r6 = syz_open_procfs$namespace(0x0, &(0x7f00000004c0)='ns/user\x00')
r7 = fcntl$getown(r0, 0x9)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000640)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0xfc, r3, 0x100, 0x70bd27, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r4}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r6}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r7}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x4}}]}, 0xfc}, 0x1, 0x0, 0x0, 0x801}, 0x8001)
r8 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x408080, 0xab, 0x6}, 0x18)
execveat(r8, &(0x7f0000000700)='./file0\x00', &(0x7f0000000840)=[&(0x7f0000000740)='netdevsim', &(0x7f0000000780)=']\x00', &(0x7f00000007c0)='netdevsim', &(0x7f0000000800)='0000:00:10.0\x00'], &(0x7f00000009c0)=[&(0x7f0000000880)='(\x00', &(0x7f00000008c0)='(-]\x00', &(0x7f0000000900)='syz0\x00', &(0x7f0000000940)='netdevsim', &(0x7f0000000980)='ns/uts\x00'], 0x800)
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000a40), r0)
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f0000000b80)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000a80)={0xb8, r9, 0x0, 0x70bd2a, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x6c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1_to_bond\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @empty}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x7f}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'geneve1\x00'}]}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x52, 0x8}}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x4e}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x4}]}, 0xb8}, 0x1, 0x0, 0x0, 0x4000081}, 0x8000)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000c00), r0)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000d80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x1000680}, 0xc, &(0x7f0000000d40)={&(0x7f0000000c40)={0xcc, r10, 0x300, 0x70bd27, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x2}, {0xc, 0x90, 0x4}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0xfffffffffffffa93}, {0xc, 0x90, 0xd}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x8001}, {0xc, 0x90, 0x5}}]}, 0xcc}, 0x1, 0x0, 0x0, 0xfff3c4411142ef8c}, 0x20)
close_range(r2, r2, 0x0)
futimesat(r2, &(0x7f0000000dc0)='./file0\x00', &(0x7f0000000e00)={{0x0, 0xea60}, {0x0, 0x2710}})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000000f40)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000f00)={&(0x7f0000000e80)={0x60, 0x0, 0x200, 0x70bd26, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_STA_FLAGS={0x18, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_WME={0x4}, @NL80211_STA_FLAG_ASSOCIATED={0x4}, @NL80211_STA_FLAG_WME={0x4}, @NL80211_STA_FLAG_MFP={0x4}, @NL80211_STA_FLAG_MFP={0x4}]}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0xa}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x55}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x521}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x3}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x1}, @NL80211_ATTR_MAC={0xa}]}, 0x60}, 0x1, 0x0, 0x0, 0x28004810}, 0x4000001)
r11 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000f80), 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r11, 0x6, 0xd, &(0x7f0000000fc0)='htcp\x00', 0x5)
getsockopt$inet_IP_IPSEC_POLICY(r11, 0x0, 0x10, &(0x7f0000002300)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}}, {{@in6=@initdev}, 0x0, @in6=@local}}, &(0x7f0000002400)=0xe8)
fstat(r8, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, <r13=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(r11, 0x0, 0x10, &(0x7f0000002b80)={{{@in=@initdev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0}}, {{@in6}, 0x0, @in6}}, &(0x7f0000002c80)=0xe8)
sendmsg$netlink(r0, &(0x7f00000030c0)={&(0x7f0000001000)=@proc={0x10, 0x0, 0x25dfdbff, 0x1}, 0xc, &(0x7f0000003040)=[{&(0x7f0000001040)={0x24, 0x36, 0x2, 0x70bd2a, 0x25dfdbff, "", [@typed={0x14, 0x11c, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x24}, {&(0x7f0000001080)={0x1258, 0x27, 0x4, 0x70bd2b, 0x25dfdbfe, "", [@generic="9bd6c23f16f818aadbad1459f7612b22573e60a1b49588264df5e32802f7f7aca1ce5ccc9ed5ff61eab9de86f1ac81f4817b41b84eea39c84164724246cfe393926d93ecc998958c3ee421160afec18330603e1ef08eaa0e85cff8e41671c3da5602e091b686c5ee0bffba91a334a6c76a174ef65c8c8c73675f430613e9aa863f626f3dc8c282d7cb1f3e1188b61490eba48958aa69de15dfe3ee6ad72e248d5962a60eccf5b4839f31f4d45798f543580a9baea6cc1cf7680cde93cdfaabfb26b5be9bd06477f798d9542a0a7ad848b1df0a35f250fe313db30c6d63215bd20d4ae1ceb2e0123adcb010a2b9fa784f4a3bb67c99c1a1f25c50ab59e0072f8ec9e9087cd247b18471cf2c4193e04ecfe2b607778ca3aafdcbea93c09187123282c6584ab28d815b403f33b66f46643947a5535f55090a85c2b1a2e33c465da33152f582df55235bb66b1a790e038ca0085e722c40c2a4934260530e58896523278a0be5f8a9d40afe90bcc88743079e29b7b542a426009021fd61c3983b9cf96e2803f34cd9d29ed3fa8c7e6b995b310b0465144ac55f64762ccb69856ef4027e62fc4383d40df9ad2a841881c4052eec76ab611c8f7a7a648cc8e4add4fe8fd78fa421930bac8085ce1cf970c752b3bd889a6c3aabcca331f7a4fb719fb6655f0350e17d083efbb27bce428a0ea718c09d168555c753ae363d0456e334c22e80e5f10f62915aef0175ed960fb397d13baaff4ecea65366d2f4d7d253c59a205024f429a4ff2f8e14c8787ba07e2619143753ea4e3955226231ca9cb67d27a1ce8c653189dea7c0efc0e5b084523a3e5d4d0e9106050d8f9c734534513ab52776cb9e8825586d7f4057b94a7084acbd62882cbf7b81cf2200e1b8bec07fefa86c85845418a487eb4aff84536f1a2f1e74b0e052de85a21402453cd34d4e2cee9f9ef12fade0519d499743d56847f22563bc81edd12ee293c9a50f9b8a459e5b30cd0762e8e27d867a1f1d6c19549b69a7268600ad207e14dfc9d430e21a4e92162dc6622fbc8298c270092db18530a10ae85cfa4a5c1e1ddfa1e5a670ae9c017a67abe37b094bf2e02a115ceed9781a391c9397db7e89c2fbdf09bb90bbafbd87fa46d0b2469dec3f271ee24d2c0e4b005b5ae679a3306d412136dc9cfc513464f50506cb617331d373d384972ecd72dd8409fff22ad104109a1ac6b7b3e0032766cae0d8b8897e5ec9b4d8159f0998de7e422b2ccf56386ad3174ad282b62e83bbd2df4dfcdc0f613498280424b8374ec0e4d95d22294a9dece2c199cdbe60706a32c0a702e1587f1dbe4bd6daef354d11ca31f1517393fd9ca59b5fcd6a1ab06ea27a96a638e123856e96de91e3c713e60fac88e8739e84dbe2b6a7b54e0a92ab19d3da80be520e6c473fc93e4c59967b4211278e21f8c48eda8f9ca688ae04072bdfcf5756cb4864b9666a76dc897826c9c773f684b07fa90fbf30ed684faadd3d27a388fe0e9118d97983e26f6c462167807b7fe9cfe4e4228f8103926d4e503cd7efb79ee3e91063c0ea441412d17a7b5ace1e10aa6ed8cab7b8595d4d57ce946b914d19d279fe3129794e851cae27b498872c1e5c72369c089dafc05abcd2a7e72a5c5d6a01e24fb8c9f89cca65d6a62118a21f3f412cd04ea62cc686c4b4f16eb804e3180b829c6613d30b1cae7efb39c6b4917dcbc4510f858c026500eb9af08a5ed1b4eab7e715200c8bcda3dc2e1dfb66c839c2dc442e16cd3a4f4d973a275010d4bd9e082e52d1d6d3c2ba72fdf8597c94c1974a3f958ef62debf788abf0f2792c6b8f076442d68fcceb6b85f4fd0db2eb1f7057ff44ab09d10d567f88b1aaf07dfecf9c152814cc570f7531deeb47229cded76548bb94d27485990c83963dfe18ac40ed12d415b1a59c56aa4a87330dd57e85ceb6d46f87468e797c5ef6641a11f0d48034b89130749669eb6670ea1a1014b282b9c1e4280c0c17f4f867df25195e839118e935abfac0b516b9218a5bca9e8b37beebb41a2c00c06bdc71838cd3f2b315b0677d739ea30bcdb3e4988a08f4b32549531af4d63382785fd4f25033f046809d66af8e24e0e44317c6bfe0973b870202b998d63b0e8876bc7b19d8752a6d5a054853ce05890f3271984a7a5b71a981c9c71f8f37442ced33a4fa3ad514de569516707d2b7afdc2ba9c42650c290735a3c31041aa7c5a0dff8aa346930ea4dfeeddd58ed1e5f4652c119a1d8f01d9b253bcde62d6e9ba8f04b96b0674ab4a1fa512fae02b0b01db1dab245ff6dc3a1a7cae7a9d60a9a4818a19df89d81de23f35214a4c10beb44344d1ece8ca9099e43f64a6f9801f74a61309f8e928a12d8bfb3ca45394532d7e7573e7c8f5fd43a52099edc7194910f2eea9d9293fb3aeeff8a930c82cfd7b3bc6aa90933642ca7dcd69c0dac1f6729f394532b25d81f2e44ec2a29f11855b3711e60011aca626e3893b156fe8e0b38c2b42221d4b991dd6bacbb234a1a0e52e98d41d3918b7563ea9ab751955c93d01a02a9c2d9266f346e8dc9a2babe5c22827f9598bb8a1d92f661ba272e32c6697b244fb131af7e1ef4bc3d09b0e4d59882bfbf06c8055ebe90d04ab10de1e7d2f8d7c226eda2e0907052493b124915cb7875d3600c70cf589b5340927cc2394accb0f2551ca86e49f5c533d4789cc2f987f98cbcaa94975e183e02a1c5a663e3df4eec269e69a2daf0c5331fd09f65053915b2b95c700077647900e19d82e5fb114b371ff7535eb5579354b92646ff45a7922b7afa7c58165c468307657a67ad9312bc5a1840bc2fe365e9a35712ae1d90f235f42c61004aba633ebafab2879539ef00c1a6f2f373eccbee7102f9ef76dadb59eecbcd7d1dcc26fe6df35620cc2a01b61f12bcccc07a5261f14bd6096f1e639b4a522468c3d9903d1715f2e5d22fd19498d7bff21769616a9c653c8707d5d7225934fa1fae3a9e49a0baa97c4160345d46696eeb0f03160d3b099ee51efc7d7f67ddf84b0d2cf24b4caf6517f8f5c81980b14a5628ba025b235a2c9e64e490e75317ad2bc87636d95e7c3e3da2e2322df5ed94d2863be596ffc024fcc6a4f8e0b516bc04d816beab608e7c485550cfd619f40121fac8842713a25da0a7d5d391268dcaf4f6804f4d3ab3c08f17e7458ab90cd8904b6870fb541340ce9bfab1e138f321def0263dc571b54e5d1f4e2080c88e3f49c00e84b878002d8a6efc686b90117b3d558d8ba8600593f90e51787dfde9f6bc7c985f23813ddb09dd36d30af9733f64999706601e00a2fffcf3618eb1227142bdbff3ca2e2f6ba656e08fd2af633a1e2abb2ac8592a607549bbf8090712d6d78b5af5b183cac8fc65cea217eec1eed2c599ba77a2879d7eff119640589e4d3ca98af695060afb87aa788b50d50aceed5c9a6429896620860999345218f295cc1084b3308a3351d6b052a148e5fb4c43636676a694d1b7f7e5ae771fde68074c852a5fe9cdb9a437c0db342fe28ac369cd5e1926a3d5eb986d68d828adceec04facbb423b5c786ba17017402254da426a8797b12b0fa8734addad6d88fa2a60cdfb5695da6111a539634f0e9dd488eb6ae490f76460ae628abba238862e3602094f8e234deb704d9a0a07ce3687a321d08b32b66990b9578acffe32d233a2f6f480f70b9b730aec080ff3955ab2222bc0d10eeaeb4e0a700d045f15189a266be0af6999bcb5319e7402515d6c4c48fe493b24953b4d9eb95266784c12a9b9eaf4d180babb378910c8d52ace0927cf7110639c81dbaf8e0dda77c1d243884fce646bdf5008ec5ed285be0cb9d87131233f6aece63eb33bf9336f4bfe7b254d64b468973a1a033b6c6e4632ddefdd6a304797775ac9922d1ad2d88f4b4e13cd0fc13cfa94c70c074507cfe403b405aeab48b219502aff40529ac493f69ffba203a529e006ae2e5e75dd996cb9bff3ba77e138e60c9dc12597fa4561b1aedde6a897f3260132893ab8dfe7f5b5a062de856a0d4361cf89f361cc0f62b35f0310a7d8579ae7f79d9da31735ed12c2045192f9585c4f26f059dce0eb17001d3ea6be2ba81c966bee27b160d48a18162f4efbc4b869f09a15f5c1838c8a303b0cb710c7cf2d5da918fe3b8cbf9627e3469f02846538829ac56789e0ffee15e0303cfa4c10a03e63d26af37ce375ecc9762a317a171765e3aff3b36e453e9c2a05deaad8efc60522eb4201561e90c9ea99127abe5010116394da2b5e88ab3867d3b034c9f701c7ba794aa7c15b8e9c9cfb01a2d8687e932a291568de9b140693dd6170b394e522f45f1cab58c4d8225554c0d9390c934a53c9adddcfc40a6a9f3f6883c9873782e73704a1a4ae885fd95a13837d7985913f9043c08e6d6980918f232d31264f7fbe47f595d1e350850839457b2e6f09c6f6a010e781c4a3760cec641e8d4fed37b13795924030fab5d5a62910a2bc9f81f61950b16c030d10474c32574a52dbb6db0a6390cc8b5ac0b7de2d889bf98597ed6270880a8bf1695b863c94837c70d4f5a5b17098d39448c8035cfccc5bfb8b8d6e4378f8dbf88d87efe20be0e4b0d41a144d68b6bfa3abe8730327e6fd850153c0a49568cf6aa273a384064c3f0bcb49eca5a3008957b4603745c1976578dd774986251f822ed125ebca660eb8b9868089fb9b27ea54ed77c401a1dba07a24d52f59501aa3c25347a3b97442d147ae4d8e351c2401a2f947096fb01a40e100141451d77a33f9d772a769d5bf780d4c9e47d54a8f73701d86403a6bdf4b76797ffe9a905965d9ef81ab3ceba50f75b7f45515ee80ed7e6269c7634657745c8bf8d6cf90d7a1e1a892bc4ec104c9bdd20a30d2309862b8ad7225d29d658eb4ab40cf6c2f9f2e3fbac4c88606e036e07d348a0587bef89db46dac1835ede0cc97c44e82925cb0d4b2876ec188a5e9f16679b41fa44c82f40fbdd5eaa6c34ad44be910d6d1f440f0dfb7a084cbf6145a2e1a51fc3154fff74de913a6086c84c1a691b07585a2ef9f38e59c3191d137a4dcafe13d0309946ff748501d447d251d9c36733d6ae165877ff2556fda90a2a59c0f1831b06eab6cadec5a1d77c552e3aa4328b994a5cf390acdf83d38a81c089c7a5fbc133308d095d27349423e3d0c3776b3afb4e6a47903fbe7b0eeffc56d6bd99caaf25432872f44418476f83959c981a232e4b38b581da2d24b2dcd8ef643c3fd78733f6000bb03a63fcb3a895afd624df1619d01e24a3d965204c3b40e73f335643e12f0b447f30944b475eafdd71d4571864c626eaaa0d2caa685db177dcf5ae0c2c35665a958b07f6444456ae880ca658ba759933b5cf02d35f99f00af564da0a25d4f01a8bde5291fc57cab47918ada07bc466852d426a72a84dc58b64c43200e593737673b4298feedcdc3314af35935df0222f6e62b5bfe282ef938b183dcf32984116ff3f67c55d715a4f95db3ad997fd84edf51716069b6d01e2c97e8cbba1dfc84994113b9d59e21f97fe50185db9661daf5819dd957faf7c48cc1724fd79e3a91f0c8fc898c8e79e9439b32ecc5951786cfd3fdb6c7473fe8a757b6bf57e656859f261183666eae8f0b5814d4f2a7393772626c7bfe4448d6f844389880d40e1f688b7801324f3a2e8e718dc5bea3ece035f22ff4eac4eaa2f22c3334f274cac4d8720418221ae16610539eebb863a5fef865a771832d0117751953fafeed600705602e8d92c4ad4a407fc27c40d19c09c57143eb0956a6f9dfd2971299ff5afad5feec5b950a51741d05ced67c", @nested={0x23e, 0x95, 0x0, 0x1, [@typed={0xc, 0xe7, 0x0, 0x0, @u64=0x3}, @generic="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", @typed={0x4, 0x140}, @typed={0x8, 0x96, 0x0, 0x0, @pid=r7}, @generic="01c8fb5d9a22fea9472ec2f2fd1bc7a5e12370accf719259d173479cbb57e39092fc404ea19c0a857750457edcf106b44e95ad7ac28ead2fd22e73ac09666233bfe217e48a5a2b4c", @typed={0x8, 0xba, 0x0, 0x0, @pid=r7}, @generic="6d50a7c004a9b101dc41befbcb8ab9b63eda16d9c8f57be001413916e1153276faee212d3eed2c0bc50bda54b7fe3d036c0e792e23a094401c7e3ee2beba6450d6c36e1aa3b7f4e28143b15b8b89a61f3835bc9de6838b756192ca3ca1a37b10bbd62cc39fbc4c9546aa4a59369229c046779fc0ebadc3d73122e1649ef43fd11c3ceae1d78f109ac6e0070249e29e07506f9c5e8ccc7908892b92ad29fb4f2afa33659a42ed2ee9f44b6c5bbf60fb42d7c7e8b9302d4f1d653491c87ad9f48fa0f96d760d58718d0e59b034610eb7a273c81220bfe5"]}, @typed={0x8, 0x34, 0x0, 0x0, @fd=r0}]}, 0x1258}, {&(0x7f0000002440)={0x31c, 0x28, 0x400, 0x70bd27, 0x25dfdbff, "", [@nested={0x91, 0x135, 0x0, 0x1, [@typed={0xc, 0x111, 0x0, 0x0, @u64=0x2}, @generic="5218f8e923df96a958171637951d24b9dd1e9e570473c45aa616df4a889366eaba32335abd6f1dd4e007742f2e379ddab0d7b8398871239edd40327c8baf4a5792ce9635334ed2b0c3db00b8db0a6241b4601027f135d1a69cbee8013feef48fb6589fd3bae15d8de4180f1389eabc9a49", @typed={0x8, 0xc2, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0xc0, 0x0, 0x0, @ipv4=@private=0xa010100}]}, @generic="a04e1e60dd1922624dfdccd20f4ecf8590a9384116a4a5726259c61043c21aec7d2eb4cf8b82f786ce5be239c6dfbcc4250c5848da9f2e325301a155536f335c0090d286d930a948af584806c0bf859d36189f91c213aaf210f4bf0348548c949df8138b7bb831a1e0564621b546a19b23c858058566757ea511fa0fcdad39c1f58f6d984a31ea8c1b87d940bd56adada7220d0f557983245490", @generic='}s', @generic="e3b6ee2a02289466169250623a191abe4173b6a291608909c98556618dbfddcfa00c932fc1607fb8cd1fa12058713adddb663f21acaef3072f6242d4851482c79952c5e575454068eb7e098a09533b48012d103cb136b76a3d0a538d891a48cc88574a73c61de37b14787c3f7d285d7880404242b716a11e1908bcf0255e952a6f194818ee88116aa935ada14ee66585b7e06239abf2d5f856169e6122aaf30e01a4b5365e8e2d96d9683d0da060ac1df50617a2aa833d3ff8417437ccdd0ec327f942f675b8aab36788166914719c9c53ac584f6657c1f96eeb46f27c987a9759", @nested={0xf6, 0x14c, 0x0, 0x1, [@typed={0x8, 0x93, 0x0, 0x0, @uid=r12}, @typed={0x8, 0x44, 0x0, 0x0, @ipv4=@multicast1}, @generic="f4063629b7e99f7f1d0fd192657aff881a2863f9a60c66e02662edd160a8651bf7f6c78a63c0251df8a274f02d28e7946dc48ddc5b9443054e9f7058263e4cf548856362acb57a7df4a305ad4de619e74679bf2e36d16e6f40f2d4ea197e0a76a53df90405b3373c5ab696597d50228700cbb8eff5750473091f20fffc5d58ec9f0e1b333ff0195c2e7358f9b9a841aeca7ed3203904f7800911088f43bc5c8747053e9ee869d71270c3aa4b3055929f506cdf2f4fd634b2a43234cb03b7a1a5d3e033700149c577f8555c3f52870412383f50d1d014", @typed={0x9, 0x13e, 0x0, 0x0, @str='IPVS\x00'}]}]}, 0x31c}, {&(0x7f0000002800)={0x36c, 0x37, 0x100, 0x70bd2b, 0x80, "", [@typed={0x8, 0xea, 0x0, 0x0, @uid=r13}, @typed={0x8, 0x133, 0x0, 0x0, @fd=r4}, @generic="43a5d6e07b2f6dbb1d4cced3f6d1e5e51c1c96551893240d34334a13442506bf20f7c3adb9e1dae4c5769ea334a86f2e00d110f703df794af4a027d9c02063d08c6a882ddbf5", @nested={0x172, 0x5, 0x0, 0x1, [@generic="8ff95cd49470a6f09876e106b92f0ac115d850a5169a12cef8b5a25287f6614e578c717a41bca5704c9917bb175730cf18da42ac2c09bbd196edadaaafa678956acf90775b50619369dfb23322073f57f27c53512bb13b2d94", @generic="2e3571c500edc502bd4030313bbc70bdcf4149afa8de7ded30d00b70475cdf5410536d8434776ca9b9fe41b1eb9f2114b9ece6b31ca474f6b6c322b2965c34eb1368fa8ce3d562b37981d31df1ff39b1f926bea36e4798655d2ccd31322d5b8aee3c74624e4451349f3fbb38e3dccbbc1022cd7ed0", @generic="52431ca6a99f05473b1f26a65fee41c5ecd88b759551d549f8c8d882669f9f68ec439ccaed494a64f92e16093689e4307a0e216b99ecd60defa9d758064474d9c93876533d7e90c94c33ee38f8e747bfe6086efce776bf19f7c5f065530ac4add5f852ffed9cbb9ebbe20f20c48edfb5b54c29bbcef4469949bec1acd45ae8eda5cfa95a4c122061fda1db60", @typed={0x12, 0x6b, 0x0, 0x0, @str='veth1_macvtap\x00'}]}, @generic="d87280ea7c62914e100e3b2178fe7f1230916205d673fefd8528f087de867d3ce3a10e5a800373a4334df93db78431902def6f21ab8cfdc74264957272993bdf3b5b95537b1c1331274e4f7f37c9997ffa848782ad770ba65526a05a7a59a0fd47a631ff55d792dc40019d7335921480eae5b01044e6bbc126dd659d03242a503845963df6babd801d48a6adc90ff3f42b9b783774f5348cef3adaaa4677f2a731fe4e04f2517e08f2a444c26b7c1379a824dd7c9b5afd9f888cf9ecd013ddacbd5e8a3d17", @nested={0xc7, 0x64, 0x0, 0x1, [@generic="b87362be292627e9be05c1efba4e66c8bfd844e69a6a0e401750a6312f7d5e4cbf42d12e18d9900862f038e19c8a6e6c0ab27f13a33a361e81ca9c1ee3069418f13616794d66683e0b3a52402b3f394d349bc321a8ad2ba085f1ae17f4983402a2c460b6a6c63b8c512f33d782bbdf2a9cb6024472f577d55b72605f3e9c7b8cc78f388dd0006998fe28154786afca8ff8c90a5760b7a894248ef1c549b645e8e2ebf4f8a6962de75190da070b37ae", @typed={0x8, 0x138, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @typed={0xc, 0x2d, 0x0, 0x0, @u64=0x64}]}, @typed={0x4, 0xbb}]}, 0x36c}, {&(0x7f0000002cc0)={0x350, 0x3f, 0x20, 0x70bd26, 0x25dfdbfc, "", [@nested={0xc, 0x5c, 0x0, 0x1, [@typed={0x8, 0x47, 0x0, 0x0, @u32}]}, @typed={0x8, 0xae, 0x0, 0x0, @uid=r14}, @nested={0x1c9, 0xd1, 0x0, 0x1, [@typed={0xc, 0x25, 0x0, 0x0, @u64=0xfffffffffffffff8}, @generic="e227a7acdcf898f50c07b5843028ebe608db2537b01d66082920879ede3c8a11fda728771812cf666bc807dc88a82f73ab0b2ea8ebc5a069e65e982cf4906a9fd5c16a34fba6cfb3efa4685d0b6a014b8bbdb9c3395f0d94d042271cbec9c33f12b590a2ddd9d916217448a6e51b862995988810cd78700f5f79ab5e3cb688a755a6682b857cfb8569e2fd85223f45b7c5760f8de72fd3e1ba90e95fa81607cb812264aaa263dfe66fda499c5dfcff846ae735d61f84617a85d8cd0d98ced65115310ec32fd53270fafa60ea845ff9505338843c000dd0f5d508a0d1568ac8f66372d3c5a168b75b7a9dfcf8", @typed={0x4, 0x68}, @generic="32833df28b7b1463e6271f2f1def5aa9accb0725c4c3311b49034b7520aaefba4faab68227bf2ccbc90e9d1ea26ded061d47c4643ed268b165466b2a8d71b407282e2121c200c6dded6864c99c055f6880e19ad2ad442614264285b534165ed5e1c574abeafb563fc5269ccc5e13288556c8ec54593b3f6d6dd1a32078d4ff4e7a40141b5be23e56b55a5c045820418b240719825cb29fd98ddfa2278589d114fa31c6914c54d847ffe202d7ae0063a3b05f23dd297bb6020b0c4987c098c5c80c39f70e330e7c47d9"]}, @generic="220a92683856d2daae705958ab59403b9238ff450fa8da1dd2eb0da35f1867112b57fbf765e179bf6e13e25d1827bf1f4d7ce5fd0bc5dfb8dde5dca50068dcb489afcba1d20d9674ca378725e09215546728ed26dfa46547c4f9b2f574b54c45efe0d37e8be3f3782bb3e1ed70f0ba76367e7d178d9635b3f4146e49fa34486420f475886db8c79a2fba4b573b4ab5aac87f6dc3c17a59211ead1b4f8d6ab84787c0c7ce50d022ac74a5ce4fbd53fcf2651067c6937dd054513dd33d6c28555da77eedeb204904cd04f61e40bb9d8414d2f5c3dddbed91ad46a940ce468fe2953c1645bd844b10", @generic="93b345ffcabe2d67ef71d86ecc5890dc212dbecf667ee04f36cf909644dbf4b8e96bc2f301509dabb2e70fa1815857aaf5c23ba9df627bd7f0c5bc1e36c14ca5ccc7344878102733237c1aca8b1b224ef9513761", @generic="4c0050e4419cff3d3e5f627dce7575836001e1d3e1d0c649fda7811f", @typed={0x8, 0x144, 0x0, 0x0, @pid=r7}]}, 0x350}], 0x5, 0x0, 0x0, 0x4}, 0x4000)

442.002184ms ago: executing program 4 (id=3595):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000600007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b70500000800000085000000c500000095"], &(0x7f0000000640)='syzkaller\x00', 0x8, 0xff6, &(0x7f0000001e00)=""/4086}, 0x90)

334.961193ms ago: executing program 3 (id=3596):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newlink={0x48, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @loopback}]}}}]}, 0x48}, 0x1, 0x2, 0x2000000}, 0x0)

334.300433ms ago: executing program 4 (id=3597):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
renameat(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x57)
setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000001800), 0x48) (async)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e20004db0"], 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc)
r3 = socket$inet6(0xa, 0x3, 0x1)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c) (async)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@empty, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast2, 0x0, 0x3c}, 0x2, @in=@multicast1, 0x0, 0x1}}, 0xe8)
sendmmsg(r3, &(0x7f0000000480), 0x21, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) (async)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a1281)
ioctl$USBDEVFS_FREE_STREAMS(r6, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"]) (async)
ioctl$AUTOFS_IOC_FAIL(r6, 0x4004550c, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r5, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="b40500000000000079105c000000000005000000000000009500000100000000b0"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x22e, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) (async)
quotactl_fd$Q_GETNEXTQUOTA(r4, 0xffffffff80000900, 0xffffffffffffffff, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) (async)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r7}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0x4, 0x9, 0x0, 0x1, 0xe7030000}, {0x16, 0x0, 0x0, 0x6}}, [@printk={@p, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x24, 0x9}}], {{0x4, 0x1, 0x5, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000b00)={r8, 0xe0, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000001c80)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x27, 0x8, 0x0, 0x0}}, 0x10) (async)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)

329.220163ms ago: executing program 3 (id=3598):
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000180)='./file1\x00', 0x4080, &(0x7f0000000040)=ANY=[@ANYRES16=0x0, @ANYRESDEC, @ANYRES16], 0x1, 0x7c4, &(0x7f00000006c0)="$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") (fail_nth: 26)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = syz_open_procfs(0x0, &(0x7f0000001a80)='net/wireless\x00')
lseek(r0, 0x9, 0x0)
setsockopt$RXRPC_MIN_SECURITY_LEVEL(0xffffffffffffffff, 0x110, 0x4, &(0x7f0000000180)=0x2, 0x4)
msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x2000, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="5300000007000046009ce6e7e68cce73c582cfa39edf04e493585c78a7c3e3450db5fe83b6afd394df2e48fe193928baaeec7847c7190f"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}})
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000200)=0x1, 0x4)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000100), &(0x7f0000000280)=0x14)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f000000ac40)=[{{&(0x7f0000000280)=@file={0x1, './file1\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4000041}}], 0x400000000000227, 0x40800)

123.27641ms ago: executing program 4 (id=3599):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0xc}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000900000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000080)=[{}, {}, {}]}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000001140)='ext3\x00', &(0x7f00000007c0)='./file1\x00', 0x300e400, &(0x7f00000002c0)={[], [{@pcr={'pcr', 0x3d, 0x7}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'l^*\\!\xe5'}}, {@dont_hash}]}, 0x1, 0x781, &(0x7f0000002140)="$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")

90.279203ms ago: executing program 0 (id=3600):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000040), r0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

78.665043ms ago: executing program 4 (id=3601):
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @broadcast}, 0x10)
connect$inet(r1, &(0x7f0000000200)={0x2, 0x4e24, @remote}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file1\x00', 0x3014490, &(0x7f0000000100), 0x45, 0x7ce, &(0x7f0000000500)="$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")
r2 = openat$cgroup_ro(r0, &(0x7f0000000340)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000000), 0xffffff6a)
ioctl$FS_IOC_RESVSP(r2, 0x40305839, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0xc0c00, &(0x7f0000000100), 0x2, 0x520, &(0x7f0000001300)="$eJzs3UFsI1cZAOB/Jsnau5uSLfQAqNClFBZUrZ1426ji0nKqUFWE6JHDNiROFMWOo9gpTdhD9sgdiUqc4MSZAxIHpJ64I3GAG5dyQKpgBWqQOBh5PE4dJ964kNjb+Puk0bx5L57/vYzmvdnnzbwAptbtiDiMiGsR8XZELOT5Sb7Fa92t83MfPXqwevTowWoS7fZbf0+y8k5e9H2m42Z+zmJEfP/1iB8mA0H/GNHcP9haqdWqu3lWuVXfKTf3D+5u1lc2qhvV7UpleWl58ZV7L1curK3P1X/94fWI+N1vv/TBHw6/+eNOtebzsv52XKRu0+eO43TMRsQblxFsAmby9lwbyB+85Gca/BBjl0bEZyPi+ez+X4iZ7GqedPIyvTrG2gEAl6HdXoj2Qv8xAHDVpdkcWJKW8rmA+UjTUiniZrTjmbiR1hrN1ovrjb3tte5c2a2YS9c3a9XFfK7wVswl65uz1aUs3TuuVSsDx/ci4umI+GnhenZcWm3U1ib54AMAU+zmwPj/r0J3/AcArrjix8nCJOsBAIxPcdIVAADGzvgPANPH+A8A08f4DwDTx/gPANPH+A8AU+V7b77Z2dpH+fuv197Z39tqvHN3rdrcKtX3Vkurjd2d0kajsZG9s6d+3vlqjcbO0kux9265VW22ys39g/v1xt526372Xu/71bmxtAoAeJynn3v/z0lEHH7rerZF3/v+zx2rn73s2gGXKZ10BYCJmZl0BYCJOb3aFzAtzMcDfeu1PuzLLp5KDHpvpNOn+bqh/rkBT5A7Xxg2/z/r2QCuOPP/ML3+twfyVy+8HsD4mf+H6dVuJ9b8B4ApY44fSM4p7//+f7HddzDa9/8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwJc1nW5KW8rXA5yNNS6WIpyLiVswl65u16mJEfCYi/lSYK3SOlyLCukEA8GmW/i3J1/+6s/DC/GDptcK/C9k+In7087d+9u5Kq7W7FHEt+cdxfuu9PL8yifoDAOfpjdO9cbzno0cPVnvbOOvz4be7i4t24h7lW7dkNmazfTGba7jxzyQ/7uo8r8xcQPzDhxHx+bPan2RzI7fylU8H43diPzXW+OmJ+GlW1t13fhefu4C6wLR5v9P/vHbW/ZfG7Wx/9v1fzHqo/1+v/8v7vr5lmNPj/m9mSP93e9QYL/3+O6cy2wvdsocRX5yNOOqdvK//6cVPhsR/YcT4f3n2y88PK2v/IuJOHLe/r/9PTsQqt+o75eb+wd3N+spGdaO6XaksLy0vvnLv5Uo5m6Mu92aqT/vuG8Pr1mn/jSHxi+e0/2sjtv+X/3n7B195TPxvfPWs+Gk885j4nTHx6yPGX7nxm+Kwsk78tSHt77/+M2e0/8UR43/w14O1EX8UABiD5v7B1kqtVt297ER6+SGyRBJx+Mk/FYfdX8cnDFr41U9eH1O7LjMRT0Y1PmWJ3n+BeVLqc8GJSfZKwDh8fNNPuiYAAAAAAAAAAAAAAMAw4/hzokm3EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgKvrvwEAAP//bonLKw==")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x6, 0x3})
truncate(0x0, 0x0)
getresuid(0x0, 0x0, 0x0)
fchown(r2, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_read_part_table(0x5fd, &(0x7f0000000d00)="$eJzs2z9olGccB/DvxVzOP9B0cHKpcegkFMXRDFWSU7EQTqUQHLS1iJgpQuCkhwc6tBkUM0jHLlK4ReNkzOBQFIXORRxahAwuBV2kdshbrvc2rfaPR8kNxc9n+T338rvn+/zgWZ/wvzaUarkqar+VDz751/5i9I91O8c6E5MHi6IojiaVHE81Y9++s5hkOK/umh1JRv60z/WvNy9/+fxAtfP4yIv3T9ybH1rbs5Z3k2wZeePRa/1PyaDcGL8/evHSbP1y90e9tbL6cXLz2URj6fD8wuKh6v5T3e8Xkgdlf+9ibMq5NHM+Z3Ny+L+kVl7Jb3fzm+NnHtVbK191nuxa3Vbv3D699+X25St3dydz3Yip1/6XN9+vvqzNX+bPjV2dXmjt23lr67U9zTsPG083/Fz0lJHV9ckFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAwbozfH714abZ+uTl+5lG9tfLF9999dPPZRGPp8PzC4qGR/afKvgdlHS7ruTRzPmdzMjOZyWeZ7T9yuvKP+b9sTp7sWt1W79w+vffl5PKVu7vLvqn1GPZvvD7/3NjV6YXWvp23tl7b07zzsPF0Q69vppZPU+2tawM6CwAAAAAAAAAAAAAAAAAAAG+vicmD26c+bBxNKjm+MclPnw91vxflI/ff3+rvKOsPtWRTkusbk/bzA9XO4yMvRk7cm/+x7G+nlnaSLd8sHUveW8u58JfkyqBHow+/BgAA//8hVpWc")
r3 = creat(&(0x7f00000002c0)='./file0\x00', 0x4)
sendfile(r3, r3, &(0x7f0000000080)=0x3ff, 0x401)
mount(&(0x7f0000000380)=@md0, &(0x7f0000000140)='./bus\x00', 0x0, 0x101820, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
setxattr$incfs_id(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)={'0000000000000000000000000000000', 0x31}, 0x20, 0x2)
open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
close(0xffffffffffffffff)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

77.840234ms ago: executing program 3 (id=3602):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000240)={0x200000000000001, 0x2}, 0x8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x30, 0x0, 0x0, 0xa50f}, {0x6, 0x0, 0x0, 0x8000000}]}, 0x10)

50.504906ms ago: executing program 0 (id=3603):
setsockopt$inet_dccp_buf(0xffffffffffffffff, 0x21, 0xc0, &(0x7f0000000000)="a1d6a9f60ab920c68084edae19f35834534b3deb4bea3107348f39899a3b5b464da0827eafa88a6923313d48598676b0d6c3336b079357197f5785080a6abec36f2b275660", 0x45)
r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000080)={0xffffffffffffffff}, 0x4)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0)
r1 = accept4$unix(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x6e, 0x180800)
connect$unix(r1, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
r2 = fcntl$getown(r0, 0x9)
r3 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xf0, 0xc5, 0x40, 0x9, 0x0, 0xe, 0x1004, 0x10, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x7, 0x0, @perf_bp={&(0x7f0000000200), 0x3}, 0x2604, 0xffffffffffffff81, 0x3, 0x4, 0x10, 0x9, 0xfffc, 0x0, 0x101, 0x0, 0x4}, r2, 0x7, 0xffffffffffffffff, 0x1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r5, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x3, 0x2, 0x801, 0x0, 0x0, {0x1, 0x0, 0x7}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x5)
r6 = dup3(r0, r3, 0x80000)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r6, 0x84, 0x75, &(0x7f00000003c0)={<r7=>0x0, 0x81}, &(0x7f0000000400)=0x8)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000440)={r7, 0x6}, 0x8)
r8 = openat$zero(0xffffffffffffff9c, &(0x7f0000000480), 0x100, 0x0)
ioctl$BTRFS_IOC_DEV_INFO(r1, 0xd000941e, &(0x7f00000004c0)={<r9=>0x0, "9aaea7fe5cb5947926c06ffb30a919f1"})
ioctl$BTRFS_IOC_DEV_REPLACE(r8, 0xca289435, &(0x7f00000014c0)={0x3, 0x8000, @start={r9, 0x1, "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", "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"}, [0x2, 0x2, 0x2, 0x1, 0x4, 0x4, 0x3, 0x4, 0x101, 0x8, 0x0, 0x3, 0x40, 0x3, 0x2, 0x7f, 0x10, 0x5, 0x6, 0x40, 0x1ff, 0x1, 0x7a3, 0x2, 0x4, 0x88, 0x8000000000000001, 0x93, 0xffffffffffffffff, 0x0, 0x985, 0x95, 0x3, 0x4, 0x800, 0xfffffffffffffff8, 0x8, 0xfffffffffffffff9, 0x200832bc, 0x2, 0x40, 0xfffffffffffffff8, 0x2, 0x9, 0x2, 0xfff, 0x1, 0x26, 0xa, 0x3, 0xf82, 0x417, 0x9, 0x112, 0xd18, 0x0, 0xfffffffffffffff9, 0x7, 0x669, 0x8001, 0x7, 0x7, 0xfffffffffffffffb, 0x1]})
r10 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_RTOINFO(r6, 0x84, 0x0, &(0x7f0000001f00)={<r11=>r7, 0x40, 0xffff, 0x8}, &(0x7f0000001f40)=0x10)
setsockopt$inet_sctp_SCTP_MAX_BURST(r10, 0x84, 0x14, &(0x7f0000001f80)=@assoc_value={r11, 0x3e}, 0x8)
r12 = socket$unix(0x1, 0x1, 0x0)
r13 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002000), r8)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r6, &(0x7f00000020c0)={&(0x7f0000001fc0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000002080)={&(0x7f0000002040)={0x1c, r13, 0x8, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x95}, 0x4)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r8, 0x84, 0x77, &(0x7f0000002100)={<r14=>0x0, 0x4, 0x4, [0x3, 0x5, 0x4e, 0x5]}, &(0x7f0000002140)=0x10)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r8, 0x84, 0x9, &(0x7f0000002180)={r14, @in6={{0xa, 0x4e23, 0x808, @rand_addr=' \x01\x00', 0x8}}, 0x6, 0x3, 0x5, 0x1, 0x2, 0x5, 0x5}, &(0x7f0000002240)=0x9c)
r15 = openat$autofs(0xffffffffffffff9c, &(0x7f0000002280), 0x1c140, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r15, 0xc018937c, &(0x7f00000022c0)={{0x1, 0x1, 0x18, <r16=>r12, {0x2}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f0000002380)={{0x1, 0x1, 0x18, <r17=>r0, {0x2}}, './file0/file0\x00'})
mount$9p_fd(0x0, &(0x7f0000002300)='./file0\x00', &(0x7f0000002340), 0x20020, &(0x7f00000023c0)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r17}, 0x2c, {[{@afid}, {@privport}, {@cache_fscache}], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}]}})
syz_genetlink_get_family_id$batadv(&(0x7f0000002440), r6)
getsockopt$inet_sctp_SCTP_CONTEXT(r16, 0x84, 0x11, &(0x7f0000002480)={r11, 0x5}, &(0x7f00000024c0)=0x8)

2.412139ms ago: executing program 3 (id=3604):
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x3938700}, {0x0, 0x9}}, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000400)={{}, {0x77359400}}, &(0x7f00000006c0))
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp], 0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000407, &(0x7f0000000140)={[{@grpjquota}, {@norecovery}, {@orlov}, {@oldalloc}]}, 0x0, 0x5d9, &(0x7f0000000180)="$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")

0s ago: executing program 0 (id=3605):
socketpair$unix(0x1, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$WPAN_SECURITY(0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0) (async)
shutdown(0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
mount$tmpfs(0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000a80)='./file0\x00', 0x8a, &(0x7f0000000b40)={[{@jqfmt_vfsold}, {@usrjquota, 0x22}, {@errors_continue}, {@nodiscard}, {@grpquota}, {@usrjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@noblock_validity}, {@nomblk_io_submit}]}, 0xfd, 0x457, &(0x7f0000000c00)="$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")
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x77c, &(0x7f0000001180)="$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")
fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0)
r0 = syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000000)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$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")
open_tree(r0, &(0x7f00000000c0)='./file0\x00', 0x81000) (async)
r1 = open_tree(r0, &(0x7f00000000c0)='./file0\x00', 0x81000)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000100), 0x4)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20042, 0x0) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20042, 0x0)
r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000140)={r1}, 0x8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SURVEY(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x1c, r5, 0x3a9, 0x0, 0x0, {{}, {@val={0x1, 0x140}}}}, 0x1c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000480)={'wlan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r7=>0x0})
r8 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000355c2e298ad1759b00000008000300", @ANYRES32=r7, @ANYRES8], 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_GET_COALESCE(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r5, 0x200, 0x70bd25, 0x25dfdbfc, {{}, {@void, @val={0x8, 0x3, r7}, @void}}, ["", "", "", "", "", "", ""]}, 0x1c}}, 0x80) (async)
sendmsg$NL80211_CMD_GET_COALESCE(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r5, 0x200, 0x70bd25, 0x25dfdbfc, {{}, {@void, @val={0x8, 0x3, r7}, @void}}, ["", "", "", "", "", "", ""]}, 0x1c}}, 0x80)
ftruncate(r2, 0xf598)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) (async)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r9, r9, 0x0, 0xfdef) (async)
sendfile(r9, r9, 0x0, 0xfdef)

kernel console output (not intermixed with test programs):

15190] loop3: detected capacity change from 0 to 512
[  179.916207][T15190] ext3: Unknown parameter 'fowner<00000000000000000000'
[  179.923802][T15182] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz.4.3288: iget: bad i_size value: -6917529027641081756
[  179.938247][T15182] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.3288: couldn't read orphan inode 17 (err -117)
[  180.135353][T15201] loop3: detected capacity change from 0 to 2048
[  180.143697][T15207] FAULT_INJECTION: forcing a failure.
[  180.143697][T15207] name failslab, interval 1, probability 0, space 0, times 0
[  180.156687][T15207] CPU: 1 UID: 0 PID: 15207 Comm: syz.4.3296 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  180.167543][T15207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  180.177818][T15207] Call Trace:
[  180.181095][T15207]  <TASK>
[  180.184023][T15207]  dump_stack_lvl+0xf2/0x150
[  180.188636][T15207]  dump_stack+0x15/0x20
[  180.192867][T15207]  should_fail_ex+0x229/0x230
[  180.197602][T15207]  ? __alloc_skb+0x10b/0x310
[  180.202195][T15207]  should_failslab+0x8f/0xb0
[  180.206801][T15207]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  180.212612][T15207]  __alloc_skb+0x10b/0x310
[  180.217033][T15207]  __pskb_copy_fclone+0x70/0x7c0
[  180.222192][T15207]  ? should_fail_ex+0xd7/0x230
[  180.226963][T15207]  ? kmalloc_reserve+0x7e/0x190
[  180.231819][T15207]  tipc_clone_to_loopback+0xa6/0x2a0
[  180.237176][T15207]  tipc_node_xmit+0x780/0x840
[  180.241846][T15207]  ? __alloc_skb+0x244/0x310
[  180.246470][T15207]  ? skb_put+0xba/0x100
[  180.250721][T15207]  tipc_node_distr_xmit+0x19d/0x200
[  180.255936][T15207]  tipc_group_delete+0x23b/0x290
[  180.260888][T15207]  tipc_sk_leave+0xac/0x270
[  180.265405][T15207]  tipc_release+0x83/0xa70
[  180.269911][T15207]  ? proc_fail_nth_write+0x12d/0x160
[  180.275284][T15207]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  180.280952][T15207]  sock_close+0x68/0x150
[  180.285202][T15207]  ? __pfx_sock_close+0x10/0x10
[  180.290075][T15207]  __fput+0x192/0x6f0
[  180.294073][T15207]  __fput_sync+0x44/0x60
[  180.298341][T15207]  __se_sys_close+0x101/0x1b0
[  180.303096][T15207]  __x64_sys_close+0x1f/0x30
[  180.307686][T15207]  x64_sys_call+0x25cb/0x2d60
[  180.310219][T15201] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3294: bg 0: block 234: padding at end of block bitmap is not set
[  180.312450][T15207]  do_syscall_64+0xc9/0x1c0
[  180.329580][T15201] EXT4-fs (loop3): Remounting filesystem read-only
[  180.331130][T15207]  ? clear_bhb_loop+0x55/0xb0
[  180.331160][T15207]  ? clear_bhb_loop+0x55/0xb0
[  180.347091][T15207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.353012][T15207] RIP: 0033:0x7f9e972579f9
[  180.357675][T15207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.377292][T15207] RSP: 002b:00007f9e95ed7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  180.385709][T15207] RAX: ffffffffffffffda RBX: 00007f9e973e5f80 RCX: 00007f9e972579f9
[  180.393745][T15207] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  180.401865][T15207] RBP: 00007f9e95ed7090 R08: 0000000000000000 R09: 0000000000000000
[  180.409824][T15207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.417868][T15207] R13: 0000000000000000 R14: 00007f9e973e5f80 R15: 00007ffd721522e8
[  180.425841][T15207]  </TASK>
[  180.445146][T15213] loop4: detected capacity change from 0 to 764
[  180.452200][T15213] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  180.464739][T15213] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  180.476909][T15213] Symlink component flag not implemented
[  180.482723][T15213] Symlink component flag not implemented
[  180.489096][T15213] Symlink component flag not implemented (128)
[  180.495318][T15213] Symlink component flag not implemented (122)
[  180.549064][T15223] loop1: detected capacity change from 0 to 512
[  180.558440][T15223] ext3: Unknown parameter 'fowner<00000000000000000000'
[  180.567483][T15225] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3303'.
[  180.573295][T15229] loop4: detected capacity change from 0 to 764
[  180.585522][T15225] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  180.586445][T15230] loop3: detected capacity change from 0 to 512
[  180.594324][T15225] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  180.594353][T15225] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  180.618036][T15225] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  180.619337][T15225] vxlan0: entered allmulticast mode
[  180.638249][T15229] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  180.648217][T15230] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.3297: invalid block
[  180.665121][T15230] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.3297: invalid indirect mapped block 4294967295 (level 1)
[  180.672254][T15229] 9pnet_fd: Insufficient options for proto=fd
[  180.683957][T15230] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.3297: invalid indirect mapped block 4294967295 (level 1)
[  180.699294][T15229] Symlink component flag not implemented
[  180.705001][T15229] Symlink component flag not implemented
[  180.710656][T15229] Symlink component flag not implemented (128)
[  180.715754][T15230] EXT4-fs (loop3): 2 truncates cleaned up
[  180.716882][T15229] Symlink component flag not implemented (122)
[  180.729277][T15232] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3305'.
[  180.737789][T15239] loop2: detected capacity change from 0 to 764
[  180.756190][T15239] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  180.790258][T15230] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3297: bg 0: block 5: invalid block bitmap
[  180.871440][T15244] loop4: detected capacity change from 0 to 2048
[  180.879753][T15249] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  180.891751][T15249] loop2: detected capacity change from 0 to 512
[  180.900908][T15249] EXT4-fs (loop2): orphan cleanup on readonly fs
[  180.910616][T15249] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.3308: corrupted in-inode xattr: bad e_name length
[  180.926070][T15249] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.3308: couldn't read orphan inode 15 (err -117)
[  181.043451][T15253] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3307: bg 0: block 234: padding at end of block bitmap is not set
[  181.059480][T15253] EXT4-fs (loop4): Remounting filesystem read-only
[  181.063596][T15255] loop1: detected capacity change from 0 to 2048
[  181.077367][T15259] loop2: detected capacity change from 0 to 512
[  181.090970][T15259] loop2: detected capacity change from 0 to 512
[  181.097764][T15259] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  181.118324][T15259] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.163345][T15265] FAULT_INJECTION: forcing a failure.
[  181.163345][T15265] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  181.177144][T15265] CPU: 0 UID: 0 PID: 15265 Comm: syz.1.3312 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  181.187901][T15265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  181.197969][T15265] Call Trace:
[  181.201306][T15265]  <TASK>
[  181.204229][T15265]  dump_stack_lvl+0xf2/0x150
[  181.208824][T15265]  dump_stack+0x15/0x20
[  181.212975][T15265]  should_fail_ex+0x229/0x230
[  181.217766][T15265]  should_fail_alloc_page+0xfd/0x110
[  181.223155][T15265]  __alloc_pages_noprof+0x109/0x360
[  181.228352][T15265]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  181.233768][T15265]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  181.239244][T15265]  handle_mm_fault+0xd6d/0x2940
[  181.244088][T15265]  ? mas_walk+0x204/0x320
[  181.248425][T15265]  exc_page_fault+0x3b9/0x650
[  181.253098][T15265]  asm_exc_page_fault+0x26/0x30
[  181.258061][T15265] RIP: 0033:0x7fbbb69cbc10
[  181.262463][T15265] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  181.282146][T15265] RSP: 002b:00007fbbb57864a0 EFLAGS: 00010202
[  181.288201][T15265] RAX: 000000000000d000 RBX: 00007fbbb5786540 RCX: 0000000000000004
[  181.296169][T15265] RDX: 0000000000001fff RSI: 0000000000002000 RDI: 00007fbbb57865e0
[  181.304128][T15265] RBP: 0000000000000005 R08: 00007fbbad367000 R09: 0000000000000001
[  181.312087][T15265] R10: 00000000200006c2 R11: 00000000000007c2 R12: 0000000000001801
[  181.320044][T15265] R13: 00007fbbb6b884e0 R14: 0000000000000019 R15: 00007fbbb57865e0
[  181.328012][T15265]  </TASK>
[  181.331788][T15265] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  181.343874][T15265] loop1: detected capacity change from 0 to 764
[  181.351619][T15265] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  181.363364][T15265] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  181.376318][T15265] Symlink component flag not implemented
[  181.381969][T15265] Symlink component flag not implemented
[  181.387745][T15265] Symlink component flag not implemented (128)
[  181.393923][T15265] Symlink component flag not implemented (122)
[  181.400246][   T29] audit: type=1326 audit(1723432365.174:1749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15258 comm="syz.2.3310" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ab9dd79f9 code=0x0
[  181.440345][T15275] loop4: detected capacity change from 0 to 512
[  181.449940][T15275] ext3: Unknown parameter 'fowner<00000000000000000000'
[  181.549940][T15290] loop4: detected capacity change from 0 to 512
[  181.559581][T15288] loop3: detected capacity change from 0 to 2048
[  181.569716][T15290] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  181.586241][T15290] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz.4.3322: iget: bad i_size value: -6917529027641081756
[  181.600697][T15290] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.3322: couldn't read orphan inode 17 (err -117)
[  181.613114][T15288]  loop3: p1 < > p4
[  181.620449][T15288] loop3: p4 size 8388608 extends beyond EOD, truncated
[  181.630027][   T29] audit: type=1326 audit(1723432365.414:1750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15287 comm="syz.3.3323" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f15842b79f9 code=0x0
[  181.692251][T15291] chnl_net:caif_netlink_parms(): no params data found
[  181.737011][T15291] bridge0: port 1(bridge_slave_0) entered blocking state
[  181.744140][T15291] bridge0: port 1(bridge_slave_0) entered disabled state
[  181.751573][T15291] bridge_slave_0: entered allmulticast mode
[  181.758687][T15291] bridge_slave_0: entered promiscuous mode
[  181.765926][T15291] bridge0: port 2(bridge_slave_1) entered blocking state
[  181.773008][T15291] bridge0: port 2(bridge_slave_1) entered disabled state
[  181.780299][T15291] bridge_slave_1: entered allmulticast mode
[  181.786836][T15291] bridge_slave_1: entered promiscuous mode
[  181.804716][T15291] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  181.815637][T15291] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  181.832594][T15317] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3328'.
[  181.842373][   T29] audit: type=1400 audit(1723432365.624:1751): avc:  denied  { map } for  pid=15316 comm="syz.4.3328" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  181.867771][T15321] loop4: detected capacity change from 0 to 512
[  181.874974][T15321] ext3: Unknown parameter 'fowner<00000000000000000000'
[  181.883352][T15291] team0: Port device team_slave_0 added
[  181.892961][ T7228] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.905751][T15291] team0: Port device team_slave_1 added
[  181.923096][T15291] batman_adv: batadv0: Adding interface: batadv_slave_0
[  181.930115][T15291] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  181.956658][T15291] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  181.961122][T15325] loop2: detected capacity change from 0 to 8192
[  181.969658][T15291] batman_adv: batadv0: Adding interface: batadv_slave_1
[  181.976315][T15325] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  181.980501][T15291] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  182.017481][T15291] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  182.031815][ T7228] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.092638][T15291] hsr_slave_0: entered promiscuous mode
[  182.097640][T15334] loop4: detected capacity change from 0 to 764
[  182.105146][T15291] hsr_slave_1: entered promiscuous mode
[  182.111116][T15334] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  182.120645][T15291] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  182.128311][T15291] Cannot create hsr debugfs directory
[  182.136849][ T7228] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.173317][T15337] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (46336)
[  182.183065][T15337] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023
[  182.210111][ T7228] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.250503][T15339] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3337'.
[  182.259507][T15339] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3337'.
[  182.270752][T15339] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  182.280140][T15339] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[  182.295842][T15340] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3337'.
[  182.305446][T15340] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3337'.
[  182.317207][T15340] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  182.327225][T15340] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[  182.381067][ T7228] ip6gretap0 (unregistering): left promiscuous mode
[  182.420084][T15346] loop2: detected capacity change from 0 to 128
[  182.428005][T15346] EXT4-fs: Ignoring removed nobh option
[  182.436482][T15346] ext4 filesystem being mounted at /34/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  182.437078][ T7228] bond1 (unregistering): Released all slaves
[  182.456746][ T7228] bond2 (unregistering): Released all slaves
[  182.466414][ T7228] bond0 (unregistering): Released all slaves
[  182.477610][ T7228] bond3 (unregistering): Released all slaves
[  182.526124][ T7228] tipc: Left network mode
[  182.569163][T15351] loop3: detected capacity change from 0 to 2048
[  182.574396][T15357] loop2: detected capacity change from 0 to 1024
[  182.586232][T15357] EXT4-fs: Ignoring removed orlov option
[  182.591879][T15357] EXT4-fs: Ignoring removed oldalloc option
[  182.598588][T15357] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  182.608366][ T7228] team0: left promiscuous mode
[  182.609087][T15357] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  182.624056][T15357] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  182.636622][ T7228] hsr_slave_0: left promiscuous mode
[  182.636883][T15357] EXT4-fs (loop2): invalid journal inode
[  182.648730][T15357] EXT4-fs (loop2): can't get journal size
[  182.671086][ T7228] hsr_slave_1: left promiscuous mode
[  182.687481][ T7228] veth1_macvtap: left promiscuous mode
[  182.693072][ T7228] veth0_macvtap: left promiscuous mode
[  182.698749][ T7228] veth1_vlan: left promiscuous mode
[  182.704065][ T7228] veth0_vlan: left promiscuous mode
[  182.801653][T15365] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  182.812785][T15351] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3341: bg 0: block 234: padding at end of block bitmap is not set
[  182.817182][T15365] loop4: detected capacity change from 0 to 512
[  182.828347][T15351] EXT4-fs (loop3): Remounting filesystem read-only
[  182.849094][T15354] EXT4-fs (loop3): ext4_do_writepages: jbd2_start: 9223372036854775807 pages, ino 18; err -5
[  182.861817][T15365] EXT4-fs (loop4): orphan cleanup on readonly fs
[  182.873111][T15365] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.3344: corrupted in-inode xattr: bad e_name length
[  182.890328][T15365] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.3344: couldn't read orphan inode 15 (err -117)
[  182.902478][T15370] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  182.950497][T15372] FAULT_INJECTION: forcing a failure.
[  182.950497][T15372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.964185][T15372] CPU: 0 UID: 0 PID: 15372 Comm: syz.4.3347 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  182.975009][T15372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  182.985082][T15372] Call Trace:
[  182.988372][T15372]  <TASK>
[  182.991290][T15372]  dump_stack_lvl+0xf2/0x150
[  182.995882][T15372]  dump_stack+0x15/0x20
[  183.000162][T15372]  should_fail_ex+0x229/0x230
[  183.004882][T15372]  should_fail+0xb/0x10
[  183.009029][T15372]  should_fail_usercopy+0x1a/0x20
[  183.014174][T15372]  _copy_from_iter+0xd3/0xb00
[  183.018845][T15372]  ? kmalloc_reserve+0x16e/0x190
[  183.023813][T15372]  ? __build_skb_around+0x196/0x1f0
[  183.028999][T15372]  ? __virt_addr_valid+0x1ed/0x250
[  183.034251][T15372]  ? __check_object_size+0x35b/0x510
[  183.039531][T15372]  pfkey_sendmsg+0x16c/0x970
[  183.044152][T15372]  ? avc_has_perm+0xd4/0x160
[  183.048782][T15372]  ? selinux_socket_sendmsg+0x182/0x1b0
[  183.054318][T15372]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  183.059444][T15372]  __sock_sendmsg+0x140/0x180
[  183.064114][T15372]  ____sys_sendmsg+0x312/0x410
[  183.068919][T15372]  __sys_sendmsg+0x1e9/0x280
[  183.073548][T15372]  __x64_sys_sendmsg+0x46/0x50
[  183.078329][T15372]  x64_sys_call+0x2689/0x2d60
[  183.083003][T15372]  do_syscall_64+0xc9/0x1c0
[  183.087510][T15372]  ? clear_bhb_loop+0x55/0xb0
[  183.092265][T15372]  ? clear_bhb_loop+0x55/0xb0
[  183.096932][T15372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.102875][T15372] RIP: 0033:0x7f9e972579f9
[  183.107279][T15372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.127018][T15372] RSP: 002b:00007f9e95ed7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  183.135486][T15372] RAX: ffffffffffffffda RBX: 00007f9e973e5f80 RCX: 00007f9e972579f9
[  183.143445][T15372] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[  183.151426][T15372] RBP: 00007f9e95ed7090 R08: 0000000000000000 R09: 0000000000000000
[  183.159468][T15372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.167562][T15372] R13: 0000000000000000 R14: 00007f9e973e5f80 R15: 00007ffd721522e8
[  183.175524][T15372]  </TASK>
[  183.199100][T15374] loop3: detected capacity change from 0 to 128
[  183.206471][T15374] EXT4-fs: Ignoring removed nobh option
[  183.214811][T15374] ext4 filesystem being mounted at /211/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  183.216552][T15379] FAULT_INJECTION: forcing a failure.
[  183.216552][T15379] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  183.239215][T15379] CPU: 0 UID: 0 PID: 15379 Comm: syz.2.3349 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  183.249984][T15379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  183.260045][T15379] Call Trace:
[  183.263323][T15379]  <TASK>
[  183.266249][T15379]  dump_stack_lvl+0xf2/0x150
[  183.267751][T15381] loop4: detected capacity change from 0 to 2048
[  183.270875][T15379]  dump_stack+0x15/0x20
[  183.281342][T15379]  should_fail_ex+0x229/0x230
[  183.286009][T15379]  should_fail_alloc_page+0xfd/0x110
[  183.291365][T15379]  __alloc_pages_noprof+0x109/0x360
[  183.296632][T15379]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  183.302071][T15379]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  183.307441][T15379]  handle_mm_fault+0xd6d/0x2940
[  183.312368][T15379]  ? mas_walk+0x204/0x320
[  183.316775][T15379]  exc_page_fault+0x3b9/0x650
[  183.321480][T15379]  asm_exc_page_fault+0x26/0x30
[  183.326320][T15379] RIP: 0033:0x7f2ab9c9bb63
[  183.330792][T15379] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  183.350470][T15379] RSP: 002b:00007f2ab8a564a0 EFLAGS: 00010206
[  183.356518][T15379] RAX: 000000000000e000 RBX: 00007f2ab8a56540 RCX: 00007f2ab0637000
[  183.364472][T15379] RDX: 00007f2ab8a566e0 RSI: 0000000000000003 RDI: 00007f2ab8a565e0
[  183.372422][T15379] RBP: 00000000000000cf R08: 000000000000000b R09: 00000000000007ad
[  183.380468][T15379] R10: 00000000000007d0 R11: 00007f2ab8a56540 R12: 0000000000000001
[  183.388418][T15379] R13: 00007f2ab9e584e0 R14: 0000000000000088 R15: 00007f2ab8a565e0
[  183.396459][T15379]  </TASK>
[  183.399523][T15379] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  183.407825][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.419676][T15379] loop2: detected capacity change from 0 to 764
[  183.427312][T15379] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  183.437188][T15385] loop3: detected capacity change from 0 to 128
[  183.437856][T15379] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  183.444844][T15381]  loop4: p1 < > p4
[  183.458771][T15379] Symlink component flag not implemented
[  183.464967][T15381] loop4: p4 size 8388608 extends beyond EOD, truncated
[  183.471904][T15379] Symlink component flag not implemented
[  183.477669][T15379] Symlink component flag not implemented (128)
[  183.478908][   T29] audit: type=1326 audit(1723432367.254:1752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15380 comm="syz.4.3351" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9e972579f9 code=0x0
[  183.483861][T15379] Symlink component flag not implemented (122)
[  183.526442][T15291] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  183.534913][T15291] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  183.543960][T15291] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  183.554587][T15385] loop3: detected capacity change from 128 to 0
[  183.556312][T15291] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  183.568050][    C1] I/O error, dev loop3, sector 10 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  183.581883][T15386] FAT-fs (loop3): Directory bread(block 10) failed
[  183.590108][T15386] syz.3.3352: attempt to access beyond end of device
[  183.590108][T15386] loop3: rw=0, sector=1, nr_sectors = 1 limit=0
[  183.605435][T15386] FAT-fs (loop3): FAT read failed (blocknr 1)
[  183.613539][T15385] team0: entered promiscuous mode
[  183.613692][T15386] syz.3.3352: attempt to access beyond end of device
[  183.613692][T15386] loop3: rw=0, sector=10, nr_sectors = 1 limit=0
[  183.618631][T15385] team_slave_0: entered promiscuous mode
[  183.618691][T15385] team_slave_1: entered promiscuous mode
[  183.618830][T15385] batadv0: entered promiscuous mode
[  183.649018][T15396] loop2: detected capacity change from 0 to 512
[  183.654339][T15396] loop2: detected capacity change from 0 to 512
[  183.656795][T15386] FAT-fs (loop3): Directory bread(block 10) failed
[  183.668757][T15386] syz.3.3352: attempt to access beyond end of device
[  183.668757][T15386] loop3: rw=0, sector=1, nr_sectors = 1 limit=0
[  183.668836][T15396] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  183.681542][T15386] FAT-fs (loop3): FAT read failed (blocknr 1)
[  183.681578][T15386] syz.3.3352: attempt to access beyond end of device
[  183.681578][T15386] loop3: rw=0, sector=10, nr_sectors = 1 limit=0
[  183.711751][T15386] FAT-fs (loop3): Directory bread(block 10) failed
[  183.718998][T15386] syz.3.3352: attempt to access beyond end of device
[  183.718998][T15386] loop3: rw=0, sector=1, nr_sectors = 1 limit=0
[  183.720067][T15396] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.732431][T15386] FAT-fs (loop3): FAT read failed (blocknr 1)
[  183.748626][T15386] syz.3.3352: attempt to access beyond end of device
[  183.748626][T15386] loop3: rw=0, sector=1, nr_sectors = 1 limit=0
[  183.749750][T15385] syz_tun: entered promiscuous mode
[  183.761481][T15386] FAT-fs (loop3): FAT read failed (blocknr 1)
[  183.769946][T15391] veth0_to_team: entered promiscuous mode
[  183.785666][T15291] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.794746][T15384] syz_tun: left promiscuous mode
[  183.799775][T15384] team0: left promiscuous mode
[  183.805213][T15384] team_slave_0: left promiscuous mode
[  183.810772][T15384] team_slave_1: left promiscuous mode
[  183.816179][T15384] batadv0: left promiscuous mode
[  183.825220][T15291] 8021q: adding VLAN 0 to HW filter on device team0
[  183.835316][ T7228] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.842404][ T7228] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.853061][ T7228] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.858747][T12471] syz-executor: attempt to access beyond end of device
[  183.858747][T12471] loop3: rw=0, sector=5, nr_sectors = 1 limit=0
[  183.860250][ T7228] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.873137][T12471] FAT-fs (loop3): Directory bread(block 5) failed
[  183.873239][T12471] syz-executor: attempt to access beyond end of device
[  183.873239][T12471] loop3: rw=0, sector=6, nr_sectors = 1 limit=0
[  183.901744][T12471] FAT-fs (loop3): Directory bread(block 6) failed
[  183.908807][T12471] syz-executor: attempt to access beyond end of device
[  183.908807][T12471] loop3: rw=0, sector=7, nr_sectors = 1 limit=0
[  183.921893][T12471] FAT-fs (loop3): Directory bread(block 7) failed
[  183.928448][T12471] syz-executor: attempt to access beyond end of device
[  183.928448][T12471] loop3: rw=0, sector=8, nr_sectors = 1 limit=0
[  183.956972][T15291] 8021q: adding VLAN 0 to HW filter on device batadv0
[  183.964590][T13718] FAT-fs (loop3): unable to read boot sector to mark fs as dirty
[  184.025340][T15291] veth0_vlan: entered promiscuous mode
[  184.033654][T15291] veth1_vlan: entered promiscuous mode
[  184.049746][T15291] veth0_macvtap: entered promiscuous mode
[  184.057569][T15291] veth1_macvtap: entered promiscuous mode
[  184.068269][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.078863][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.088735][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.099194][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.109056][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.119494][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.129306][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.139749][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.149555][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.160001][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.169884][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.180301][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.191664][T15291] batman_adv: batadv0: Interface activated: batadv_slave_0
[  184.203825][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  184.214351][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.224156][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  184.235201][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.245162][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  184.255628][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.265766][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  184.276159][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.286023][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  184.296892][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.306685][T15291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  184.317138][T15291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.328465][T15291] batman_adv: batadv0: Interface activated: batadv_slave_1
[  184.339444][T15291] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  184.348387][T15291] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  184.357887][T15291] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  184.366638][T15291] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  184.446315][T15419] netlink: 56 bytes leftover after parsing attributes in process `syz.4.3361'.
[  184.515148][T15434] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3361'.
[  184.520422][T15436] loop1: detected capacity change from 0 to 512
[  184.531499][T15436] ext3: Unknown parameter 'fowner<00000000000000000000'
[  184.574684][T15441] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  184.587330][T15416] chnl_net:caif_netlink_parms(): no params data found
[  184.623316][T15416] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.631407][T15416] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.639272][T15416] bridge_slave_0: entered allmulticast mode
[  184.646129][T15416] bridge_slave_0: entered promiscuous mode
[  184.653096][T15416] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.660807][T15416] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.669054][T15416] bridge_slave_1: entered allmulticast mode
[  184.675752][T15416] bridge_slave_1: entered promiscuous mode
[  184.694045][T15416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  184.705513][T15416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  184.727651][T15416] team0: Port device team_slave_0 added
[  184.735806][T15416] team0: Port device team_slave_1 added
[  184.752608][T15416] batman_adv: batadv0: Adding interface: batadv_slave_0
[  184.759628][T15416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  184.785749][T15416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  184.797623][T15416] batman_adv: batadv0: Adding interface: batadv_slave_1
[  184.804598][T15416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  184.830529][T15416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  184.843609][T15454] FAULT_INJECTION: forcing a failure.
[  184.843609][T15454] name failslab, interval 1, probability 0, space 0, times 0
[  184.856262][T15454] CPU: 1 UID: 0 PID: 15454 Comm: syz.1.3370 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  184.867080][T15454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  184.877116][T15454] Call Trace:
[  184.880378][T15454]  <TASK>
[  184.883302][T15454]  dump_stack_lvl+0xf2/0x150
[  184.887882][T15454]  dump_stack+0x15/0x20
[  184.892108][T15454]  should_fail_ex+0x229/0x230
[  184.896777][T15454]  ? skb_clone+0x154/0x1f0
[  184.901177][T15454]  should_failslab+0x8f/0xb0
[  184.905749][T15454]  kmem_cache_alloc_noprof+0x4c/0x290
[  184.911101][T15454]  skb_clone+0x154/0x1f0
[  184.915339][T15454]  pfkey_sendmsg+0x2de/0x970
[  184.920036][T15454]  ? selinux_socket_sendmsg+0x182/0x1b0
[  184.925594][T15454]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  184.930727][T15454]  __sock_sendmsg+0x140/0x180
[  184.935389][T15454]  ____sys_sendmsg+0x312/0x410
[  184.940136][T15454]  __sys_sendmsg+0x1e9/0x280
[  184.944711][T15454]  __x64_sys_sendmsg+0x46/0x50
[  184.949530][T15454]  x64_sys_call+0x2689/0x2d60
[  184.954342][T15454]  do_syscall_64+0xc9/0x1c0
[  184.958838][T15454]  ? clear_bhb_loop+0x55/0xb0
[  184.963499][T15454]  ? clear_bhb_loop+0x55/0xb0
[  184.968179][T15454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.974104][T15454] RIP: 0033:0x7fcf7a1979f9
[  184.978632][T15454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.998304][T15454] RSP: 002b:00007fcf78e17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  185.006767][T15454] RAX: ffffffffffffffda RBX: 00007fcf7a325f80 RCX: 00007fcf7a1979f9
[  185.014727][T15454] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[  185.022707][T15454] RBP: 00007fcf78e17090 R08: 0000000000000000 R09: 0000000000000000
[  185.030660][T15454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.038633][T15454] R13: 0000000000000000 R14: 00007fcf7a325f80 R15: 00007ffcb40272c8
[  185.046611][T15454]  </TASK>
[  185.063606][T15416] hsr_slave_0: entered promiscuous mode
[  185.069805][T15416] hsr_slave_1: entered promiscuous mode
[  185.075780][T15416] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  185.077802][T15456] loop1: detected capacity change from 0 to 2048
[  185.083316][T15416] Cannot create hsr debugfs directory
[  185.145360][T15456]  loop1: p1 < > p4
[  185.146445][T15416] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.149616][T15456] loop1: p4 size 8388608 extends beyond EOD, truncated
[  185.170316][   T29] audit: type=1326 audit(1723432368.954:1753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15455 comm="syz.1.3371" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcf7a1979f9 code=0x0
[  185.207393][T15416] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.257291][T15416] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.286354][T15460] netlink: 92 bytes leftover after parsing attributes in process `syz.4.3372'.
[  185.307439][T15416] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.358820][T15416] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  185.367162][T15416] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  185.376007][T15416] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  185.384649][T15416] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  185.399536][T15416] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.406613][T15416] bridge0: port 2(bridge_slave_1) entered forwarding state
[  185.413911][T15416] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.420942][T15416] bridge0: port 1(bridge_slave_0) entered forwarding state
[  185.450097][   T29] audit: type=1326 audit(1723432369.234:1754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15459 comm="syz.4.3372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e972579f9 code=0x7fc00000
[  185.453873][T15416] 8021q: adding VLAN 0 to HW filter on device bond0
[  185.482803][   T29] audit: type=1326 audit(1723432369.234:1755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15459 comm="syz.4.3372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e972579f9 code=0x7fc00000
[  185.509157][T15416] 8021q: adding VLAN 0 to HW filter on device team0
[  185.522994][ T7230] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.538657][ T7230] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.542186][T15465] loop4: detected capacity change from 0 to 128
[  185.545802][ T7230] bridge0: port 2(bridge_slave_1) entered forwarding state
[  185.561272][T15465] EXT4-fs: Ignoring removed nobh option
[  185.569712][T15465] ext4 filesystem being mounted at /63/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  185.616509][T15416] 8021q: adding VLAN 0 to HW filter on device batadv0
[  185.617064][T15471] loop4: detected capacity change from 0 to 2048
[  185.630092][T15471] EXT4-fs: Ignoring removed bh option
[  185.635802][T15471] EXT4-fs: quotafile must be on filesystem root
[  185.649067][T15471] loop4: detected capacity change from 0 to 512
[  185.668265][T15471] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.690310][T15416] veth0_vlan: entered promiscuous mode
[  185.698655][T15416] veth1_vlan: entered promiscuous mode
[  185.714026][T15416] veth0_macvtap: entered promiscuous mode
[  185.721625][T15416] veth1_macvtap: entered promiscuous mode
[  185.732308][T15482] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #2: comm syz.4.3374: corrupted inode contents
[  185.733257][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.754668][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.755111][T15482] EXT4-fs (loop4): Remounting filesystem read-only
[  185.764542][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.764566][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.764581][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.764643][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.764658][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.764673][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.764688][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.764699][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.764760][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.764773][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.764790][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.764804][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.767981][T15416] batman_adv: batadv0: Interface activated: batadv_slave_0
[  185.901927][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.913084][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.923822][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.934320][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.944107][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.955167][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.964973][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.975454][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.985954][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.996383][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.006268][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.017307][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.027118][T15416] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.037524][T15416] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.050765][T15416] batman_adv: batadv0: Interface activated: batadv_slave_1
[  186.061825][   T11] Quota error (device loop4): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  186.063063][T15416] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.083391][T15416] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.092164][T15416] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.100929][T15416] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  186.127750][T15484] loop4: detected capacity change from 0 to 512
[  186.135308][T15484] ext3: Unknown parameter 'fowner<00000000000000000000'
[  186.167518][T15491] FAULT_INJECTION: forcing a failure.
[  186.167518][T15491] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  186.181414][T15491] CPU: 0 UID: 0 PID: 15491 Comm: syz.1.3376 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  186.192180][T15491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  186.202217][T15491] Call Trace:
[  186.205647][T15491]  <TASK>
[  186.208559][T15491]  dump_stack_lvl+0xf2/0x150
[  186.213308][T15491]  dump_stack+0x15/0x20
[  186.217463][T15491]  should_fail_ex+0x229/0x230
[  186.222201][T15491]  should_fail_alloc_page+0xfd/0x110
[  186.227477][T15491]  __alloc_pages_noprof+0x109/0x360
[  186.232768][T15491]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  186.238356][T15491]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  186.243815][T15491]  handle_mm_fault+0xd6d/0x2940
[  186.248650][T15491]  ? mas_walk+0x204/0x320
[  186.253047][T15491]  exc_page_fault+0x3b9/0x650
[  186.257777][T15491]  asm_exc_page_fault+0x26/0x30
[  186.262701][T15491] RIP: 0033:0x7fcf7a05bb63
[  186.267104][T15491] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  186.286834][T15491] RSP: 002b:00007fcf78e164a0 EFLAGS: 00010206
[  186.292893][T15491] RAX: 000000000000e000 RBX: 00007fcf78e16540 RCX: 00007fcf709f7000
[  186.300879][T15491] RDX: 00007fcf78e166e0 RSI: 0000000000000003 RDI: 00007fcf78e165e0
[  186.308911][T15491] RBP: 00000000000000cf R08: 000000000000000b R09: 00000000000007ad
[  186.316869][T15491] R10: 00000000000007d0 R11: 00007fcf78e16540 R12: 0000000000000001
[  186.324956][T15491] R13: 00007fcf7a2184e0 R14: 0000000000000088 R15: 00007fcf78e165e0
[  186.332921][T15491]  </TASK>
[  186.336013][T15491] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  186.353425][T15494] loop4: detected capacity change from 0 to 1764
[  186.360163][T15491] loop1: detected capacity change from 0 to 764
[  186.365749][T15494] iso9660: Unknown parameter '`’Œ
[  186.365749][T15494] Sìch‡ckˆ>b€BñËÕy[J'
[  186.376468][T15496] __nla_validate_parse: 1 callbacks suppressed
[  186.376480][T15496] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3378'.
[  186.391922][T15491] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  186.418085][T15491] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  186.429932][T15491] Symlink component flag not implemented
[  186.435722][T15491] Symlink component flag not implemented
[  186.441416][T15491] Symlink component flag not implemented (128)
[  186.447596][T15491] Symlink component flag not implemented (122)
[  186.464980][T15499] xt_CT: You must specify a L4 protocol and not use inversions on it
[  186.500795][T15505] netlink: 72 bytes leftover after parsing attributes in process `syz.1.3382'.
[  186.562047][T15501] loop4: detected capacity change from 0 to 2048
[  186.605615][T15513] loop1: detected capacity change from 0 to 4096
[  186.612375][T15513] EXT4-fs: Ignoring removed nobh option
[  186.622720][   T29] audit: type=1400 audit(1723432370.404:1756): avc:  denied  { rename } for  pid=15504 comm="syz.1.3382" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  186.656369][T15513] Quota error (device loop1): find_block_dqentry: Quota for id 0 referenced but not present
[  186.666544][T15513] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  186.675962][T15513] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.3382: Failed to acquire dquot type 1
[  186.722773][T15501] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3380: bg 0: block 234: padding at end of block bitmap is not set
[  186.738058][T15501] EXT4-fs (loop4): Remounting filesystem read-only
[  186.770326][T15518] loop2: detected capacity change from 0 to 512
[  186.779793][T15518] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.3383: casefold flag without casefold feature
[  186.793277][T15518] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.3383: couldn't read orphan inode 15 (err -117)
[  186.854979][T15521] validate_nla: 1 callbacks suppressed
[  186.854993][T15521] netlink: 'syz.4.3384': attribute type 4 has an invalid length.
[  186.879295][T15521] netlink: 'syz.4.3384': attribute type 17 has an invalid length.
[  186.922027][   T29] audit: type=1326 audit(1723432370.704:1757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15524 comm="syz.4.3386" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9e972579f9 code=0x0
[  186.974196][T15527] loop2: detected capacity change from 0 to 2048
[  187.015146][T15527]  loop2: p1 < > p4
[  187.019395][T15527] loop2: p4 size 8388608 extends beyond EOD, truncated
[  187.028391][   T29] audit: type=1326 audit(1723432370.814:1758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15526 comm="syz.2.3387" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ab9dd79f9 code=0x0
[  187.358072][T15291] EXT4-fs unmount: 124 callbacks suppressed
[  187.358084][T15291] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.394977][T15533] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  187.802885][T15546] loop4: detected capacity change from 0 to 4096
[  187.811655][T15546] EXT4-fs error (device loop4): ext4_quota_enable:7022: comm syz.4.3393: inode #255: comm syz.4.3393: iget: illegal inode #
[  187.825106][T15546] EXT4-fs error (device loop4): ext4_quota_enable:7025: comm syz.4.3393: Bad quota inode: 255, type: 2
[  187.837071][T15546] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-117, ino=255). Please run e2fsck to fix.
[  187.852302][T15546] EXT4-fs (loop4): mount failed
[  187.862664][T15546] 9pnet_fd: Insufficient options for proto=fd
[  187.930423][T15551] loop4: detected capacity change from 0 to 256
[  188.063791][T15559] syz.4.3393[15559] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.063925][T15559] syz.4.3393[15559] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  188.066344][T15556] loop2: detected capacity change from 0 to 2048
[  188.105464][T15556] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.241268][T15556] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3395: bg 0: block 234: padding at end of block bitmap is not set
[  188.256236][T15556] EXT4-fs (loop2): Remounting filesystem read-only
[  188.269612][T15562] EXT4-fs (loop2): ext4_do_writepages: jbd2_start: 9223372036854775807 pages, ino 18; err -5
[  188.347552][T15573] loop1: detected capacity change from 0 to 512
[  188.354158][T15573] ext3: Unknown parameter 'fowner<00000000000000000000'
[  188.363900][T15573] FAULT_INJECTION: forcing a failure.
[  188.363900][T15573] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  188.368683][T14523] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.377005][T15573] CPU: 1 UID: 0 PID: 15573 Comm: syz.1.3401 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  188.377045][T15573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  188.377058][T15573] Call Trace:
[  188.377065][T15573]  <TASK>
[  188.377074][T15573]  dump_stack_lvl+0xf2/0x150
[  188.377133][T15573]  dump_stack+0x15/0x20
[  188.377161][T15573]  should_fail_ex+0x229/0x230
[  188.377194][T15573]  should_fail+0xb/0x10
[  188.377272][T15573]  should_fail_usercopy+0x1a/0x20
[  188.377307][T15573]  strncpy_from_user+0x25/0x270
[  188.377334][T15573]  path_setxattr+0x88/0x360
[  188.377356][T15573]  ? get_pid_task+0x8e/0xc0
[  188.377380][T15573]  __x64_sys_setxattr+0x6d/0x80
[  188.377428][T15573]  x64_sys_call+0x2927/0x2d60
[  188.459363][T15573]  do_syscall_64+0xc9/0x1c0
[  188.463891][T15573]  ? clear_bhb_loop+0x55/0xb0
[  188.468670][T15573]  ? clear_bhb_loop+0x55/0xb0
[  188.473345][T15573]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.479237][T15573] RIP: 0033:0x7fcf7a1979f9
[  188.483702][T15573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.503475][T15573] RSP: 002b:00007fcf78e17038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  188.511978][T15573] RAX: ffffffffffffffda RBX: 00007fcf7a325f80 RCX: 00007fcf7a1979f9
[  188.520112][T15573] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000020000280
[  188.528277][T15573] RBP: 00007fcf78e17090 R08: 0000000000000003 R09: 0000000000000000
[  188.536242][T15573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.544252][T15573] R13: 0000000000000000 R14: 00007fcf7a325f80 R15: 00007ffcb40272c8
[  188.552216][T15573]  </TASK>
[  188.572435][T15575] loop2: detected capacity change from 0 to 512
[  188.579277][T15575] ext3: Unknown parameter 'fowner<00000000000000000000'
[  188.584755][T15577] loop1: detected capacity change from 0 to 2048
[  188.595862][T15577] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.610312][T15577] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  188.628923][T15577] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3402'.
[  188.638599][T15577] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3402'.
[  188.729638][ T7227] EXT4-fs (loop1): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 1 with error 28
[  188.741877][ T7227] EXT4-fs (loop1): This should not happen!! Data will be lost
[  188.741877][ T7227] 
[  188.751567][ T7227] EXT4-fs (loop1): Total free blocks count 0
[  188.757592][ T7227] EXT4-fs (loop1): Free/Dirty block details
[  188.763602][ T7227] EXT4-fs (loop1): free_blocks=2415919104
[  188.769351][ T7227] EXT4-fs (loop1): dirty_blocks=16
[  188.774500][ T7227] EXT4-fs (loop1): Block reservation details
[  188.780475][ T7227] EXT4-fs (loop1): i_reserved_data_blocks=1
[  188.827013][T15291] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.840603][T15587] loop4: detected capacity change from 0 to 2048
[  188.886099][T15588] cannot load conntrack support for proto=3
[  188.894876][T15587]  loop4: p1 < > p4
[  188.928015][T15587] loop4: p4 size 8388608 extends beyond EOD, truncated
[  188.943542][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  188.943556][   T29] audit: type=1326 audit(1723432372.724:1760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15585 comm="syz.4.3404" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9e972579f9 code=0x0
[  189.108981][T15592] FAULT_INJECTION: forcing a failure.
[  189.108981][T15592] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  189.122070][T15592] CPU: 0 UID: 0 PID: 15592 Comm: syz.1.3406 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  189.132968][T15592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  189.143035][T15592] Call Trace:
[  189.146317][T15592]  <TASK>
[  189.149244][T15592]  dump_stack_lvl+0xf2/0x150
[  189.153848][T15592]  dump_stack+0x15/0x20
[  189.158021][T15592]  should_fail_ex+0x229/0x230
[  189.162768][T15592]  should_fail+0xb/0x10
[  189.166977][T15592]  should_fail_usercopy+0x1a/0x20
[  189.172017][T15592]  _copy_from_user+0x1e/0xd0
[  189.176640][T15592]  copy_bpf_fprog_from_user+0xda/0x240
[  189.182164][T15592]  sk_setsockopt+0xe61/0x1f30
[  189.186911][T15592]  udp_lib_setsockopt+0x99/0x7e0
[  189.191864][T15592]  udpv6_setsockopt+0x73/0xb0
[  189.196551][T15592]  ? __pfx_udp_v6_push_pending_frames+0x10/0x10
[  189.202806][T15592]  sock_common_setsockopt+0x64/0x80
[  189.208167][T15592]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  189.214073][T15592]  __sys_setsockopt+0x1d8/0x250
[  189.219061][T15592]  __x64_sys_setsockopt+0x66/0x80
[  189.224217][T15592]  x64_sys_call+0x278d/0x2d60
[  189.228967][T15592]  do_syscall_64+0xc9/0x1c0
[  189.233556][T15592]  ? clear_bhb_loop+0x55/0xb0
[  189.238244][T15592]  ? clear_bhb_loop+0x55/0xb0
[  189.242955][T15592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.248856][T15592] RIP: 0033:0x7fcf7a1979f9
[  189.253276][T15592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.272972][T15592] RSP: 002b:00007fcf78e17038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  189.281393][T15592] RAX: ffffffffffffffda RBX: 00007fcf7a325f80 RCX: 00007fcf7a1979f9
[  189.289369][T15592] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000003
[  189.297383][T15592] RBP: 00007fcf78e17090 R08: 0000000000000010 R09: 0000000000000000
[  189.305427][T15592] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  189.313563][T15592] R13: 0000000000000000 R14: 00007fcf7a325f80 R15: 00007ffcb40272c8
[  189.321543][T15592]  </TASK>
[  189.375857][T15601] loop1: detected capacity change from 0 to 764
[  189.382899][T15601] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  189.395366][T15601] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  189.408688][T15601] Symlink component flag not implemented
[  189.414442][T15601] Symlink component flag not implemented
[  189.420102][T15601] Symlink component flag not implemented (128)
[  189.426576][T15601] Symlink component flag not implemented (122)
[  189.494937][T15605] loop1: detected capacity change from 0 to 512
[  189.501772][T15605] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  189.511765][T15605] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  189.523960][T15605] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  189.532123][T15605] EXT4-fs (loop1): failed to initialize system zone (-117)
[  189.541519][T15605] EXT4-fs (loop1): mount failed
[  189.578408][T15604] loop2: detected capacity change from 0 to 2048
[  189.599047][T15604] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.619917][   T29] audit: type=1400 audit(1723432373.404:1761): avc:  denied  { append } for  pid=15617 comm="syz.1.3414" name="rtc0" dev="devtmpfs" ino=220 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  189.694838][T15628] 9pnet_fd: Insufficient options for proto=fd
[  189.716981][T15633] netdevsim netdevsim3 netdevsim0: Unsupported IPsec algorithm
[  189.762979][   T29] audit: type=1400 audit(1723432373.544:1762): avc:  denied  { write } for  pid=15635 comm="syz.1.3419" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  189.770857][T15640] netlink: 'syz.3.3421': attribute type 4 has an invalid length.
[  189.782478][T15604] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3410: bg 0: block 234: padding at end of block bitmap is not set
[  189.789096][T15604] EXT4-fs (loop2): Remounting filesystem read-only
[  189.819822][T15629] EXT4-fs (loop2): ext4_do_writepages: jbd2_start: 9223372036854775807 pages, ino 18; err -5
[  189.829625][T15640] netlink: 'syz.3.3421': attribute type 17 has an invalid length.
[  189.844416][T15636] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  189.934860][T15653] FAULT_INJECTION: forcing a failure.
[  189.934860][T15653] name failslab, interval 1, probability 0, space 0, times 0
[  189.947520][T15653] CPU: 0 UID: 0 PID: 15653 Comm: syz.1.3427 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  189.958290][T15653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  189.968340][T15653] Call Trace:
[  189.971613][T15653]  <TASK>
[  189.974533][T15653]  dump_stack_lvl+0xf2/0x150
[  189.979130][T15653]  dump_stack+0x15/0x20
[  189.982703][T14523] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.983321][T15653]  should_fail_ex+0x229/0x230
[  189.996920][T15653]  ? __alloc_skb+0x10b/0x310
[  190.001580][T15653]  should_failslab+0x8f/0xb0
[  190.006210][T15653]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  190.012056][T15653]  __alloc_skb+0x10b/0x310
[  190.016492][T15653]  pfkey_sendmsg+0x751/0x970
[  190.021262][T15653]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  190.026463][T15653]  __sock_sendmsg+0x140/0x180
[  190.031211][T15653]  ____sys_sendmsg+0x312/0x410
[  190.036083][T15653]  __sys_sendmsg+0x1e9/0x280
[  190.041019][T15653]  __x64_sys_sendmsg+0x46/0x50
[  190.045844][T15653]  x64_sys_call+0x2689/0x2d60
[  190.050512][T15653]  do_syscall_64+0xc9/0x1c0
[  190.055029][T15653]  ? clear_bhb_loop+0x55/0xb0
[  190.059757][T15653]  ? clear_bhb_loop+0x55/0xb0
[  190.064437][T15653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.070368][T15653] RIP: 0033:0x7fcf7a1979f9
[  190.074840][T15653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.094497][T15653] RSP: 002b:00007fcf78e17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  190.102984][T15653] RAX: ffffffffffffffda RBX: 00007fcf7a325f80 RCX: 00007fcf7a1979f9
[  190.110944][T15653] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[  190.118958][T15653] RBP: 00007fcf78e17090 R08: 0000000000000000 R09: 0000000000000000
[  190.126954][T15653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  190.134932][T15653] R13: 0000000000000000 R14: 00007fcf7a325f80 R15: 00007ffcb40272c8
[  190.142897][T15653]  </TASK>
[  190.166218][T15657] netlink: 'syz.3.3428': attribute type 10 has an invalid length.
[  190.177160][T15664] 9pnet_fd: Insufficient options for proto=fd
[  190.178594][T15657] 8021q: adding VLAN 0 to HW filter on device team0
[  190.203969][T15657] bond0: (slave team0): Enslaving as an active interface with an up link
[  190.230369][T15668] loop2: detected capacity change from 0 to 2048
[  190.261119][T15673] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  190.270136][T15668]  loop2: p1 < > p4
[  190.275149][T15668] loop2: p4 size 8388608 extends beyond EOD, truncated
[  190.294458][   T29] audit: type=1326 audit(1723432374.074:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15667 comm="syz.2.3431" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ab9dd79f9 code=0x0
[  190.311081][T15683] loop3: detected capacity change from 0 to 512
[  190.335383][T15683] EXT4-fs (loop3): orphan cleanup on readonly fs
[  190.336174][T15685] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  190.341976][T15683] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.3433: corrupted in-inode xattr: bad e_name length
[  190.362726][T15683] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.3433: couldn't read orphan inode 15 (err -117)
[  190.375957][T15683] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  190.407925][T15654] chnl_net:caif_netlink_parms(): no params data found
[  190.435937][T15672] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.453791][T15654] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.460399][T15697] loop3: detected capacity change from 0 to 128
[  190.461776][T15654] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.468856][T15697] EXT4-fs: Ignoring removed nobh option
[  190.476187][T15654] bridge_slave_0: entered allmulticast mode
[  190.486939][T15654] bridge_slave_0: entered promiscuous mode
[  190.494010][T15654] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.496176][T15697] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  190.501261][T15654] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.521591][T15654] bridge_slave_1: entered allmulticast mode
[  190.526805][T15697] ext4 filesystem being mounted at /10/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  190.528372][T15654] bridge_slave_1: entered promiscuous mode
[  190.565345][T15416] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  190.566888][T15654] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.591629][T15654] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  190.600117][T15704] 9pnet_fd: Insufficient options for proto=fd
[  190.622055][T15654] team0: Port device team_slave_0 added
[  190.631887][T15654] team0: Port device team_slave_1 added
[  190.643986][T15708] loop3: detected capacity change from 0 to 128
[  190.652290][T15708] msdos: Bad value for 'dmask'
[  190.666309][T15708] loop3: detected capacity change from 0 to 512
[  190.686311][T15708] ext4: Unknown parameter 'smackfsdef'
[  190.692718][T15654] batman_adv: batadv0: Adding interface: batadv_slave_0
[  190.699726][T15654] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  190.707628][T15708] xt_cluster: node mask cannot exceed total number of nodes
[  190.725744][T15654] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  190.751404][T15654] batman_adv: batadv0: Adding interface: batadv_slave_1
[  190.758897][T15654] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  190.785687][T15654] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  190.822667][T15654] hsr_slave_0: entered promiscuous mode
[  190.830749][T15654] hsr_slave_1: entered promiscuous mode
[  190.839024][T15654] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  190.847128][T15654] Cannot create hsr debugfs directory
[  190.850807][T15725] loop3: detected capacity change from 0 to 1024
[  190.870081][T15725] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.932326][T15725] xt_CT: You must specify a L4 protocol and not use inversions on it
[  190.953355][T15416] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.972902][T15654] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.974780][T15738] 9pnet_fd: Insufficient options for proto=fd
[  191.052504][T15654] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.123752][T15654] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.153346][T15751] loop2: detected capacity change from 0 to 512
[  191.164833][T15751] ext3: Unknown parameter 'fowner<00000000000000000000'
[  191.179988][T15751] FAULT_INJECTION: forcing a failure.
[  191.179988][T15751] name failslab, interval 1, probability 0, space 0, times 0
[  191.188785][T15754] loop3: detected capacity change from 0 to 512
[  191.192700][T15751] CPU: 1 UID: 0 PID: 15751 Comm: syz.2.3456 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  191.209562][T15751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  191.212165][T15754] ext3: Unknown parameter 'fowner<00000000000000000000'
[  191.219598][T15751] Call Trace:
[  191.219608][T15751]  <TASK>
[  191.219615][T15751]  dump_stack_lvl+0xf2/0x150
[  191.219721][T15751]  dump_stack+0x15/0x20
[  191.219745][T15751]  should_fail_ex+0x229/0x230
[  191.246392][T15751]  ? getname_flags+0x81/0x3b0
[  191.251076][T15751]  should_failslab+0x8f/0xb0
[  191.255685][T15751]  kmem_cache_alloc_noprof+0x4c/0x290
[  191.261072][T15751]  getname_flags+0x81/0x3b0
[  191.265669][T15751]  user_path_at+0x26/0x110
[  191.270089][T15751]  path_setxattr+0x179/0x360
[  191.274673][T15751]  ? get_pid_task+0x8e/0xc0
[  191.279179][T15751]  __x64_sys_setxattr+0x6d/0x80
[  191.284061][T15751]  x64_sys_call+0x2927/0x2d60
[  191.288791][T15751]  do_syscall_64+0xc9/0x1c0
[  191.293390][T15751]  ? clear_bhb_loop+0x55/0xb0
[  191.298074][T15751]  ? clear_bhb_loop+0x55/0xb0
[  191.302756][T15751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.308654][T15751] RIP: 0033:0x7f2ab9dd79f9
[  191.313065][T15751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.332740][T15751] RSP: 002b:00007f2ab8a57038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  191.341146][T15751] RAX: ffffffffffffffda RBX: 00007f2ab9f65f80 RCX: 00007f2ab9dd79f9
[  191.349136][T15751] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000020000280
[  191.357096][T15751] RBP: 00007f2ab8a57090 R08: 0000000000000003 R09: 0000000000000000
[  191.365126][T15751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.373097][T15751] R13: 0000000000000000 R14: 00007f2ab9f65f80 R15: 00007ffef66c5d68
[  191.381059][T15751]  </TASK>
[  191.395233][T15757] loop3: detected capacity change from 0 to 512
[  191.433101][T15654] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.456090][T15757] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.483350][T15763] loop2: detected capacity change from 0 to 512
[  191.503326][T15757] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.515170][T15763] ext3: Unknown parameter 'fowner<00000000000000000000'
[  191.520633][T15654] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  191.531547][T15654] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  191.542803][T15654] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  191.552324][T15654] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  191.566164][T15756] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.3458: Directory hole found for htree leaf block 0
[  191.627858][T15654] 8021q: adding VLAN 0 to HW filter on device bond0
[  191.635896][T15416] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.639916][T15654] 8021q: adding VLAN 0 to HW filter on device team0
[  191.655634][T15767] netdevsim netdevsim2 : renamed from netdevsim1 (while UP)
[  191.685495][ T7220] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.692613][ T7220] bridge0: port 1(bridge_slave_0) entered forwarding state
[  191.713950][T15773] FAULT_INJECTION: forcing a failure.
[  191.713950][T15773] name failslab, interval 1, probability 0, space 0, times 0
[  191.726658][T15773] CPU: 1 UID: 0 PID: 15773 Comm: syz.2.3464 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  191.737446][T15773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  191.747743][T15773] Call Trace:
[  191.751025][T15773]  <TASK>
[  191.753954][T15773]  dump_stack_lvl+0xf2/0x150
[  191.758663][T15773]  dump_stack+0x15/0x20
[  191.762877][T15773]  should_fail_ex+0x229/0x230
[  191.767595][T15773]  ? __get_vm_area_node+0xf7/0x1b0
[  191.772711][T15773]  should_failslab+0x8f/0xb0
[  191.777371][T15773]  __kmalloc_cache_node_noprof+0x50/0x2b0
[  191.783108][T15773]  __get_vm_area_node+0xf7/0x1b0
[  191.788096][T15773]  __vmalloc_node_range_noprof+0x2eb/0xef0
[  191.793910][T15773]  ? bpf_prog_alloc_no_stats+0x49/0x290
[  191.799549][T15773]  ? mntput_no_expire+0x70/0x3c0
[  191.804545][T15773]  ? mntput+0x49/0x70
[  191.808570][T15773]  ? bpf_prog_alloc_no_stats+0x49/0x290
[  191.809447][T15780] loop1: detected capacity change from 0 to 764
[  191.814377][T15773]  __vmalloc_noprof+0x5e/0x70
[  191.814432][T15773]  ? bpf_prog_alloc_no_stats+0x49/0x290
[  191.830932][T15773]  bpf_prog_alloc_no_stats+0x49/0x290
[  191.836061][ T7220] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.836358][T15773]  ? bpf_prog_alloc+0x28/0x150
[  191.843601][ T7220] bridge0: port 2(bridge_slave_1) entered forwarding state
[  191.848226][T15773]  bpf_prog_alloc+0x3a/0x150
[  191.859972][T15773]  __get_filter+0x90/0x220
[  191.860011][T15773]  sk_attach_filter+0x1e/0xe0
[  191.869102][T15773]  sk_setsockopt+0x1845/0x1f30
[  191.873903][T15773]  udp_lib_setsockopt+0x99/0x7e0
[  191.878877][T15773]  udpv6_setsockopt+0x73/0xb0
[  191.883551][T15773]  ? __pfx_udp_v6_push_pending_frames+0x10/0x10
[  191.890059][T15773]  sock_common_setsockopt+0x64/0x80
[  191.895253][T15773]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  191.901182][T15773]  __sys_setsockopt+0x1d8/0x250
[  191.906212][T15773]  __x64_sys_setsockopt+0x66/0x80
[  191.911332][T15773]  x64_sys_call+0x278d/0x2d60
[  191.916032][T15773]  do_syscall_64+0xc9/0x1c0
[  191.920531][T15773]  ? clear_bhb_loop+0x55/0xb0
[  191.925201][T15773]  ? clear_bhb_loop+0x55/0xb0
[  191.929872][T15773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.935757][T15773] RIP: 0033:0x7f2ab9dd79f9
[  191.940223][T15773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.959957][T15773] RSP: 002b:00007f2ab8a57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  191.968357][T15773] RAX: ffffffffffffffda RBX: 00007f2ab9f65f80 RCX: 00007f2ab9dd79f9
[  191.976314][T15773] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000003
[  191.984282][T15773] RBP: 00007f2ab8a57090 R08: 0000000000000010 R09: 0000000000000000
[  191.992340][T15773] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  192.000303][T15773] R13: 0000000000000000 R14: 00007f2ab9f65f80 R15: 00007ffef66c5d68
[  192.008265][T15773]  </TASK>
[  192.011706][T15773] syz.2.3464: vmalloc error: size 4096, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0
[  192.027874][T15773] CPU: 1 UID: 0 PID: 15773 Comm: syz.2.3464 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  192.039074][T15773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  192.049163][T15773] Call Trace:
[  192.052447][T15773]  <TASK>
[  192.055466][T15773]  dump_stack_lvl+0xf2/0x150
[  192.060140][T15773]  dump_stack+0x15/0x20
[  192.064488][T15773]  warn_alloc+0x145/0x1b0
[  192.068839][T15773]  __vmalloc_node_range_noprof+0x310/0xef0
[  192.074674][T15773]  ? mntput_no_expire+0x70/0x3c0
[  192.079693][T15773]  ? mntput+0x49/0x70
[  192.083765][T15773]  ? bpf_prog_alloc_no_stats+0x49/0x290
[  192.089364][T15773]  __vmalloc_noprof+0x5e/0x70
[  192.089391][T15773]  ? bpf_prog_alloc_no_stats+0x49/0x290
[  192.094056][T15780] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  192.099554][T15773]  bpf_prog_alloc_no_stats+0x49/0x290
[  192.112954][T15773]  ? bpf_prog_alloc+0x28/0x150
[  192.117724][T15773]  bpf_prog_alloc+0x3a/0x150
[  192.122321][T15773]  __get_filter+0x90/0x220
[  192.126862][T15773]  sk_attach_filter+0x1e/0xe0
[  192.131557][T15773]  sk_setsockopt+0x1845/0x1f30
[  192.136331][T15773]  udp_lib_setsockopt+0x99/0x7e0
[  192.141281][T15773]  udpv6_setsockopt+0x73/0xb0
[  192.145972][T15773]  ? __pfx_udp_v6_push_pending_frames+0x10/0x10
[  192.150407][T15654] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  192.152235][T15773]  sock_common_setsockopt+0x64/0x80
[  192.162594][T15654] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  192.167732][T15773]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  192.183894][T15773]  __sys_setsockopt+0x1d8/0x250
[  192.183925][T15773]  __x64_sys_setsockopt+0x66/0x80
[  192.193833][T15773]  x64_sys_call+0x278d/0x2d60
[  192.193865][T15773]  do_syscall_64+0xc9/0x1c0
[  192.203067][T15773]  ? clear_bhb_loop+0x55/0xb0
[  192.207799][T15773]  ? clear_bhb_loop+0x55/0xb0
[  192.212502][T15773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.218389][T15773] RIP: 0033:0x7f2ab9dd79f9
[  192.222871][T15773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.242684][T15773] RSP: 002b:00007f2ab8a57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  192.251157][T15773] RAX: ffffffffffffffda RBX: 00007f2ab9f65f80 RCX: 00007f2ab9dd79f9
[  192.259414][T15773] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000003
[  192.267372][T15773] RBP: 00007f2ab8a57090 R08: 0000000000000010 R09: 0000000000000000
[  192.275362][T15773] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  192.283321][T15773] R13: 0000000000000000 R14: 00007f2ab9f65f80 R15: 00007ffef66c5d68
[  192.291359][T15773]  </TASK>
[  192.294418][T15773] Mem-Info:
[  192.297516][T15773] active_anon:18069 inactive_anon:2 isolated_anon:0
[  192.297516][T15773]  active_file:8198 inactive_file:16843 isolated_file:0
[  192.297516][T15773]  unevictable:0 dirty:227 writeback:0
[  192.297516][T15773]  slab_reclaimable:2852 slab_unreclaimable:19061
[  192.297516][T15773]  mapped:29271 shmem:5088 pagetables:702
[  192.297516][T15773]  sec_pagetables:0 bounce:0
[  192.297516][T15773]  kernel_misc_reclaimable:0
[  192.297516][T15773]  free:1870817 free_pcp:1722 free_cma:0
[  192.342623][T15773] Node 0 active_anon:75988kB inactive_anon:8kB active_file:32792kB inactive_file:67372kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:109428kB dirty:908kB writeback:0kB shmem:23948kB writeback_tmp:0kB kernel_stack:3616kB pagetables:2808kB sec_pagetables:0kB all_unreclaimable? no
[  192.355228][T15789] 9pnet_fd: Insufficient options for proto=fd
[  192.370689][T15773] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  192.370755][T15773] lowmem_reserve[]: 0 2866 7844 0
[  192.370844][T15773] Node 0 DMA32 free:2950412kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953944kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[  192.370905][T15773] lowmem_reserve[]: 0 0 4978 0
[  192.370988][T15773] Node 0 Normal free:4513648kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:72508kB inactive_anon:8kB active_file:32792kB inactive_file:67372kB unevictable:0kB writepending:908kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:7204kB local_pcp:836kB free_cma:0kB
[  192.371047][T15773] lowmem_reserve[]: 0 0 0 0
[  192.371070][T15773] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  192.371248][T15773] Node 0 DMA32: 3*4kB (M) 2*8kB (M) 3*16kB (M) 4*32kB (M) 3*64kB (M) 3*128kB (M) 4*256kB (M) 3*512kB (M) 2*1024kB (M) 2*2048kB (M) 
[  192.437798][T15773] 718*4096kB (M) = 2950412kB
[  192.437841][T15773] Node 0 Normal: 49*4kB (ME) 44*8kB (E) 786*16kB (UME) 563*32kB (ME) 291*64kB (UME) 190*128kB (UME) 130*256kB (UME) 56*512kB (UME) 85*1024kB (UME) 35*2048kB (UME) 1030*4096kB (UM) = 4513636kB
[  192.437994][T15773] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  192.438012][T15773] 28236 total pagecache pages
[  192.438019][T15773] 2 pages in swap cache
[  192.438025][T15773] Free swap  = 124680kB
[  192.438032][T15773] Total swap = 124996kB
[  192.438039][T15773] 2097051 pages RAM
[  192.438045][T15773] 0 pages HighMem/MovableOnly
[  192.438051][T15773] 80173 pages reserved
[  192.574571][T15790] Symlink component flag not implemented
[  192.580237][T15790] Symlink component flag not implemented
[  192.613103][T15790] Symlink component flag not implemented (128)
[  192.616138][T15654] 8021q: adding VLAN 0 to HW filter on device batadv0
[  192.619350][T15790] Symlink component flag not implemented (122)
[  192.694259][   T29] audit: type=1400 audit(1723432376.474:1764): avc:  denied  { read } for  pid=15807 comm="syz.3.3475" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  192.724545][T15808] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  192.731116][T15808] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  192.737448][T15654] veth0_vlan: entered promiscuous mode
[  192.738857][T15808] vhci_hcd vhci_hcd.0: Device attached
[  192.754672][T15821] 9pnet_fd: Insufficient options for proto=fd
[  192.766983][T15654] veth1_vlan: entered promiscuous mode
[  192.779517][T15808] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3475'.
[  192.784146][T15654] veth0_macvtap: entered promiscuous mode
[  192.801233][T15654] veth1_macvtap: entered promiscuous mode
[  192.820034][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.830651][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.840589][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.851055][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.860928][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.871567][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.876082][T15822] 9p: Unknown access argument 18446744073709551615: -34
[  192.881453][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.899006][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.908865][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.919311][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.929150][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.939633][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.949533][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.959973][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.969804][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  192.980233][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  192.992824][T15654] batman_adv: batadv0: Interface activated: batadv_slave_0
[  193.004434][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  193.014898][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.024053][T15832] FAULT_INJECTION: forcing a failure.
[  193.024053][T15832] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  193.025094][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  193.039096][T15832] CPU: 0 UID: 0 PID: 15832 Comm: syz.1.3479 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  193.048957][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.059653][T15832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  193.059666][T15832] Call Trace:
[  193.059674][T15832]  <TASK>
[  193.059682][T15832]  dump_stack_lvl+0xf2/0x150
[  193.069479][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  193.079471][T15832]  dump_stack+0x15/0x20
[  193.079503][T15832]  should_fail_ex+0x229/0x230
[  193.082802][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.085708][T15832]  should_fail_alloc_page+0xfd/0x110
[  193.090289][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  193.100659][T15832]  __alloc_pages_noprof+0x109/0x360
[  193.104844][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.109464][T15832]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  193.119260][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  193.124484][T15832]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  193.134903][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.140040][T15832]  handle_mm_fault+0xd6d/0x2940
[  193.149869][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  193.149882][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.155247][T15832]  ? mas_walk+0x204/0x320
[  193.155280][T15832]  exc_page_fault+0x3b9/0x650
[  193.165717][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  193.171008][T15832]  asm_exc_page_fault+0x26/0x30
[  193.180793][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.180811][T15654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  193.185618][T15832] RIP: 0033:0x7fcf7a05bb63
[  193.185687][T15832] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  193.196071][T15654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  193.205906][T15832] RSP: 002b:00007fcf78e164a0 EFLAGS: 00010202
[  193.290884][T15832] RAX: 0000000000010000 RBX: 00007fcf78e16540 RCX: 00007fcf709f7000
[  193.298856][T15832] RDX: 00007fcf78e166e0 RSI: 0000000000000001 RDI: 00007fcf78e165e0
[  193.306824][T15832] RBP: 00000000000000e4 R08: 0000000000000006 R09: 0000000000000021
[  193.314849][T15832] R10: 0000000000000024 R11: 00007fcf78e16540 R12: 0000000000000001
[  193.322858][T15832] R13: 00007fcf7a2184e0 R14: 0000000000000045 R15: 00007fcf78e165e0
[  193.323780][T15654] batman_adv: batadv0: Interface activated: batadv_slave_1
[  193.330820][T15832]  </TASK>
[  193.331724][T15832] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  193.350775][T15817] vhci_hcd: connection closed
[  193.353858][T15832] loop1: detected capacity change from 0 to 764
[  193.354371][ T7211] vhci_hcd: stop threads
[  193.364885][ T7211] vhci_hcd: release socket
[  193.373563][ T7211] vhci_hcd: disconnect device
[  193.373745][   T35] usb 8-1: enqueue for inactive port 0
[  193.378241][T15832] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  193.407026][T15654] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  193.416600][T15654] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  193.425363][T15654] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  193.434046][T15654] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  193.447116][T15832] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  193.458945][T15832] Symlink component flag not implemented
[  193.464710][T15832] Symlink component flag not implemented
[  193.470463][T15832] Symlink component flag not implemented (128)
[  193.476695][T15832] Symlink component flag not implemented (122)
[  193.535114][T15839] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  193.569144][T15845] loop2: detected capacity change from 0 to 128
[  193.576538][T15845] EXT4-fs: Ignoring removed nobh option
[  193.578992][T15841] loop1: detected capacity change from 0 to 2048
[  193.594350][   T35] usb 8-1: enqueue for inactive port 0
[  193.607236][T15845] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  193.620474][T15843] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  193.637753][T15843] loop0: detected capacity change from 0 to 512
[  193.647338][T15845] ext4 filesystem being mounted at /61/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  193.659979][T15843] EXT4-fs (loop0): orphan cleanup on readonly fs
[  193.667461][T15843] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.3483: corrupted in-inode xattr: bad e_name length
[  193.681112][T15841] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.681723][T15843] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.3483: couldn't read orphan inode 15 (err -117)
[  193.705794][T14523] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  193.717523][T15843] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  193.732100][T15852] netlink: 160 bytes leftover after parsing attributes in process `syz.4.3485'.
[  193.785625][T15842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.798539][T15858] netlink: 'syz.2.3487': attribute type 10 has an invalid length.
[  193.807258][T15858] geneve1: entered promiscuous mode
[  193.818189][T15858] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  193.866225][T15291] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.951607][T15874] loop0: detected capacity change from 0 to 2048
[  193.960210][T15875] 9pnet_fd: Insufficient options for proto=fd
[  194.004794][T15874]  loop0: p4 < >
[  194.072575][T15874] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1046 sclass=netlink_route_socket pid=15874 comm=syz.0.3493
[  194.151006][T15880] netlink: 'syz.3.3495': attribute type 21 has an invalid length.
[  194.154053][T15884] loop2: detected capacity change from 0 to 512
[  194.158973][T15880] netlink: 128 bytes leftover after parsing attributes in process `syz.3.3495'.
[  194.165550][T15884] ext3: Unknown parameter 'fowner<00000000000000000000'
[  194.176489][T15880] netlink: 'syz.3.3495': attribute type 5 has an invalid length.
[  194.182372][T15884] FAULT_INJECTION: forcing a failure.
[  194.182372][T15884] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.189634][T15880] netlink: 'syz.3.3495': attribute type 6 has an invalid length.
[  194.202046][T15884] CPU: 1 UID: 0 PID: 15884 Comm: syz.2.3496 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  194.202074][T15884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  194.202085][T15884] Call Trace:
[  194.202154][T15884]  <TASK>
[  194.202161][T15884]  dump_stack_lvl+0xf2/0x150
[  194.202192][T15884]  dump_stack+0x15/0x20
[  194.209934][T15880] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3495'.
[  194.220612][T15884]  should_fail_ex+0x229/0x230
[  194.220658][T15884]  should_fail+0xb/0x10
[  194.220684][T15884]  should_fail_usercopy+0x1a/0x20
[  194.220710][T15884]  strncpy_from_user+0x25/0x270
[  194.220732][T15884]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  194.248825][T15886] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3495'.
[  194.254701][T15884]  getname_flags+0xb0/0x3b0
[  194.254732][T15884]  user_path_at+0x26/0x110
[  194.254764][T15884]  path_setxattr+0x179/0x360
[  194.254784][T15884]  ? get_pid_task+0x8e/0xc0
[  194.254811][T15884]  __x64_sys_setxattr+0x6d/0x80
[  194.254893][T15884]  x64_sys_call+0x2927/0x2d60
[  194.254920][T15884]  do_syscall_64+0xc9/0x1c0
[  194.254956][T15884]  ? clear_bhb_loop+0x55/0xb0
[  194.254980][T15884]  ? clear_bhb_loop+0x55/0xb0
[  194.255006][T15884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.255066][T15884] RIP: 0033:0x7f2ab9dd79f9
[  194.255082][T15884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.255150][T15884] RSP: 002b:00007f2ab8a57038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  194.255171][T15884] RAX: ffffffffffffffda RBX: 00007f2ab9f65f80 RCX: 00007f2ab9dd79f9
[  194.255185][T15884] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000020000280
[  194.255198][T15884] RBP: 00007f2ab8a57090 R08: 0000000000000003 R09: 0000000000000000
[  194.255212][T15884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.255225][T15884] R13: 0000000000000000 R14: 00007f2ab9f65f80 R15: 00007ffef66c5d68
[  194.255301][T15884]  </TASK>
[  194.258883][T15887] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (46336)
[  194.260104][T15886] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3495'.
[  194.264312][T15887] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023
[  194.479702][T15900] loop2: detected capacity change from 0 to 512
[  194.486347][T15900] EXT4-fs: Ignoring removed nomblk_io_submit option
[  194.493069][T15900] EXT4-fs: Ignoring removed bh option
[  194.499111][T15900] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
[  194.557602][T15904] loop4: detected capacity change from 0 to 4096
[  194.567648][T15904] EXT4-fs error (device loop4): ext4_quota_enable:7022: comm syz.4.3504: inode #255: comm syz.4.3504: iget: illegal inode #
[  194.581392][T15916] FAULT_INJECTION: forcing a failure.
[  194.581392][T15916] name failslab, interval 1, probability 0, space 0, times 0
[  194.585859][T15904] EXT4-fs error (device loop4): ext4_quota_enable:7025: comm syz.4.3504: Bad quota inode: 255, type: 2
[  194.594106][T15916] CPU: 1 UID: 0 PID: 15916 Comm: syz.2.3509 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  194.607420][T15904] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-117, ino=255). Please run e2fsck to fix.
[  194.616018][T15916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  194.616060][T15916] Call Trace:
[  194.616069][T15916]  <TASK>
[  194.616077][T15916]  dump_stack_lvl+0xf2/0x150
[  194.616110][T15916]  dump_stack+0x15/0x20
[  194.631575][T15904] EXT4-fs (loop4): mount failed
[  194.640930][T15916]  should_fail_ex+0x229/0x230
[  194.665488][T15916]  ? skb_clone+0x154/0x1f0
[  194.669955][T15916]  should_failslab+0x8f/0xb0
[  194.674547][T15916]  kmem_cache_alloc_noprof+0x4c/0x290
[  194.679928][T15916]  ? should_failslab+0x8f/0xb0
[  194.684772][T15916]  skb_clone+0x154/0x1f0
[  194.689080][T15916]  pfkey_broadcast_one+0x65/0x1a0
[  194.694147][T15916]  pfkey_broadcast+0x232/0x260
[  194.698995][T15916]  pfkey_sendmsg+0x827/0x970
[  194.703621][T15916]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  194.708735][T15916]  __sock_sendmsg+0x140/0x180
[  194.713524][T15916]  ____sys_sendmsg+0x312/0x410
[  194.718402][T15916]  __sys_sendmsg+0x1e9/0x280
[  194.723032][T15916]  __x64_sys_sendmsg+0x46/0x50
[  194.727791][T15916]  x64_sys_call+0x2689/0x2d60
[  194.732488][T15916]  do_syscall_64+0xc9/0x1c0
[  194.737118][T15916]  ? clear_bhb_loop+0x55/0xb0
[  194.741849][T15916]  ? clear_bhb_loop+0x55/0xb0
[  194.746536][T15916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.752494][T15916] RIP: 0033:0x7f2ab9dd79f9
[  194.756897][T15916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.776684][T15916] RSP: 002b:00007f2ab8a57038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  194.785247][T15916] RAX: ffffffffffffffda RBX: 00007f2ab9f65f80 RCX: 00007f2ab9dd79f9
[  194.793306][T15916] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005
[  194.801263][T15916] RBP: 00007f2ab8a57090 R08: 0000000000000000 R09: 0000000000000000
[  194.809229][T15916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.817229][T15916] R13: 0000000000000000 R14: 00007f2ab9f65f80 R15: 00007ffef66c5d68
[  194.825200][T15916]  </TASK>
[  194.854792][T15904] 9pnet_fd: Insufficient options for proto=fd
[  194.958502][T15934] loop4: detected capacity change from 0 to 256
[  194.996193][T15942] FAULT_INJECTION: forcing a failure.
[  194.996193][T15942] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  195.009448][T15942] CPU: 1 UID: 0 PID: 15942 Comm: syz.1.3515 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  195.020206][T15942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  195.030313][T15942] Call Trace:
[  195.033590][T15942]  <TASK>
[  195.036516][T15942]  dump_stack_lvl+0xf2/0x150
[  195.041123][T15942]  dump_stack+0x15/0x20
[  195.045372][T15942]  should_fail_ex+0x229/0x230
[  195.050056][T15942]  should_fail_alloc_page+0xfd/0x110
[  195.055354][T15942]  __alloc_pages_noprof+0x109/0x360
[  195.060571][T15942]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  195.065951][T15942]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  195.066608][   T29] audit: type=1326 audit(1723432378.774:1765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15940 comm="syz.2.3520" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ab9dd79f9 code=0x80000000
[  195.071313][T15942]  handle_mm_fault+0xd6d/0x2940
[  195.099831][T15942]  ? mas_walk+0x204/0x320
[  195.104192][T15942]  exc_page_fault+0x3b9/0x650
[  195.108876][T15942]  asm_exc_page_fault+0x26/0x30
[  195.113736][T15942] RIP: 0033:0x7fcf7a05bc10
[  195.118147][T15942] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  195.137763][T15942] RSP: 002b:00007fcf78e164a0 EFLAGS: 00010202
[  195.143865][T15942] RAX: 0000000000011000 RBX: 00007fcf78e16540 RCX: 0000000000000101
[  195.151842][T15942] RDX: 00000000000001a5 RSI: 00000000000007a6 RDI: 00007fcf78e165e0
[  195.160073][T15942] RBP: 0000000000000102 R08: 00007fcf709f7000 R09: 0000000000000073
[  195.168137][T15942] R10: 00000000200006c2 R11: 00000000000007c2 R12: 0000000000000601
[  195.176114][T15942] R13: 00007fcf7a2184e0 R14: 0000000000000015 R15: 00007fcf78e165e0
[  195.184094][T15942]  </TASK>
[  195.187263][T15942] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  195.202030][   T35] usb usb8-port1: attempt power cycle
[  195.218175][T15942] loop1: detected capacity change from 0 to 764
[  195.224235][T15944] loop0: detected capacity change from 0 to 2048
[  195.240498][T15942] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  195.249877][T15948] syz.4.3504[15948] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  195.249947][T15948] syz.4.3504[15948] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  195.277299][T15942] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  195.290733][T15949] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  195.290922][T15944] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.331997][T15942] Symlink component flag not implemented
[  195.337723][T15942] Symlink component flag not implemented
[  195.343423][T15942] Symlink component flag not implemented (128)
[  195.349656][T15942] Symlink component flag not implemented (122)
[  195.388560][T15953] loop1: detected capacity change from 0 to 128
[  195.403511][T15953] EXT4-fs: Ignoring removed nobh option
[  195.458471][T15928] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3513: bg 0: block 234: padding at end of block bitmap is not set
[  195.460931][T15953] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  195.485344][T15928] EXT4-fs (loop0): Remounting filesystem read-only
[  195.512222][T15953] ext4 filesystem being mounted at /62/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  195.515131][T15944] FAULT_INJECTION: forcing a failure.
[  195.515131][T15944] name failslab, interval 1, probability 0, space 0, times 0
[  195.535815][T15944] CPU: 0 UID: 0 PID: 15944 Comm: syz.0.3513 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  195.546682][T15944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  195.556772][T15944] Call Trace:
[  195.560076][T15944]  <TASK>
[  195.563007][T15944]  dump_stack_lvl+0xf2/0x150
[  195.567632][T15944]  dump_stack+0x15/0x20
[  195.572496][T15944]  should_fail_ex+0x229/0x230
[  195.577206][T15944]  ? ext4_init_io_end+0x31/0xb0
[  195.582074][T15944]  should_failslab+0x8f/0xb0
[  195.586704][T15944]  kmem_cache_alloc_noprof+0x4c/0x290
[  195.592086][T15944]  ext4_init_io_end+0x31/0xb0
[  195.596775][T15944]  ext4_do_writepages+0x78c/0x2110
[  195.601921][T15944]  ? mod_objcg_state+0x2ea/0x4f0
[  195.606904][T15944]  ? __rcu_read_unlock+0x4e/0x70
[  195.611845][T15944]  ? xa_load+0xb9/0xe0
[  195.615929][T15944]  ? memcg_list_lru_alloc+0xd2/0x740
[  195.621219][T15944]  ? mod_objcg_state+0x2ea/0x4f0
[  195.626174][T15944]  ? ___slab_alloc+0x2b7/0x980
[  195.630993][T15944]  ext4_writepages+0x159/0x2e0
[  195.635803][T15944]  ? __pfx_ext4_writepages+0x10/0x10
[  195.641143][T15944]  do_writepages+0x1d8/0x480
[  195.645743][T15944]  ? __rcu_read_unlock+0x4e/0x70
[  195.650682][T15944]  ? cgroup_rstat_updated+0x99/0x550
[  195.655540][T15957] 9pnet_fd: Insufficient options for proto=fd
[  195.655958][T15944]  ? _raw_spin_unlock+0x26/0x50
[  195.662430][T15957] 9pnet_fd: Insufficient options for proto=fd
[  195.666822][T15944]  filemap_fdatawrite_wbc+0xdb/0x100
[  195.666854][T15944]  filemap_write_and_wait_range+0xb6/0x1f0
[  195.684022][T15944]  ext4_bmap+0x14e/0x180
[  195.688304][T15944]  ? __pfx_ext4_bmap+0x10/0x10
[  195.693074][T15944]  bmap+0x5d/0x90
[  195.696744][T15944]  do_vfs_ioctl+0x1353/0x1560
[  195.701513][T15944]  ? selinux_file_ioctl+0x1c6/0x380
[  195.706716][T15944]  ? __fget_files+0x1da/0x210
[  195.711408][T15944]  __se_sys_ioctl+0x81/0x150
[  195.716063][T15944]  __x64_sys_ioctl+0x43/0x50
[  195.720736][T15944]  x64_sys_call+0x15cc/0x2d60
[  195.725479][T15944]  do_syscall_64+0xc9/0x1c0
[  195.729991][T15944]  ? clear_bhb_loop+0x55/0xb0
[  195.734671][T15944]  ? clear_bhb_loop+0x55/0xb0
[  195.739371][T15944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.745314][T15944] RIP: 0033:0x7f02bfd079f9
[  195.749719][T15944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.769412][T15944] RSP: 002b:00007f02be966038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  195.777816][T15944] RAX: ffffffffffffffda RBX: 00007f02bfe96058 RCX: 00007f02bfd079f9
[  195.785820][T15944] RDX: 0000000020000080 RSI: 0000000000000001 RDI: 0000000000000007
[  195.793778][T15944] RBP: 00007f02be966090 R08: 0000000000000000 R09: 0000000000000000
[  195.801740][T15944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.809962][T15944] R13: 0000000000000000 R14: 00007f02bfe96058 R15: 00007fff76066438
[  195.817931][T15944]  </TASK>
[  195.828704][T15291] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  195.877608][   T29] audit: type=1400 audit(1723432379.664:1766): avc:  denied  { getopt } for  pid=15966 comm="syz.1.3525" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  195.893080][T15972] loop4: detected capacity change from 0 to 512
[  195.915278][T15972] loop4: detected capacity change from 0 to 512
[  195.922956][T15972] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  195.946321][T15972] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  195.958915][T15972] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.975931][T15973] bond_slave_0: entered promiscuous mode
[  195.977699][T15967] loop1: detected capacity change from 0 to 8192
[  195.981686][T15973] bond_slave_1: entered promiscuous mode
[  195.993743][T15973] team_slave_0: entered promiscuous mode
[  195.999403][T15973] team_slave_1: entered promiscuous mode
[  196.008848][T15973] macvtap1: entered promiscuous mode
[  196.014161][T15973] bond0: entered promiscuous mode
[  196.019437][T15973] team0: entered promiscuous mode
[  196.024962][T15973] macvtap1: entered allmulticast mode
[  196.030418][T15973] bond0: entered allmulticast mode
[  196.035617][T15973] bond_slave_0: entered allmulticast mode
[  196.041338][T15973] bond_slave_1: entered allmulticast mode
[  196.045123][T15967]  loop1: p1 p2 p3
[  196.047154][T15973] team0: entered allmulticast mode
[  196.055956][T15973] team_slave_0: entered allmulticast mode
[  196.059870][T15967] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3525'.
[  196.061743][T15973] team_slave_1: entered allmulticast mode
[  196.063750][T15973] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  196.080252][T15979] loop2: detected capacity change from 0 to 2048
[  196.092496][T15973] bond0: left allmulticast mode
[  196.097436][T15973] bond_slave_0: left allmulticast mode
[  196.102993][T15973] bond_slave_1: left allmulticast mode
[  196.108570][T15973] team0: left allmulticast mode
[  196.113429][T15973] team_slave_0: left allmulticast mode
[  196.118907][T15973] team_slave_1: left allmulticast mode
[  196.124502][T15973] bond0: left promiscuous mode
[  196.129392][T15973] team0: left promiscuous mode
[  196.131617][T15654] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.134459][T15973] bond_slave_0: left promiscuous mode
[  196.148523][T15973] bond_slave_1: left promiscuous mode
[  196.153941][T15973] team_slave_0: left promiscuous mode
[  196.159357][T15973] team_slave_1: left promiscuous mode
[  196.173068][T15982] loop0: detected capacity change from 0 to 4096
[  196.185105][T15979]  loop2: p1 < > p4
[  196.190266][T15982] EXT4-fs error (device loop0): ext4_quota_enable:7022: comm syz.0.3533: inode #255: comm syz.0.3533: iget: illegal inode #
[  196.203333][T15979] loop2: p4 size 8388608 extends beyond EOD, truncated
[  196.212051][T15982] EXT4-fs error (device loop0): ext4_quota_enable:7025: comm syz.0.3533: Bad quota inode: 255, type: 2
[  196.227043][   T29] audit: type=1326 audit(1723432380.014:1767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15978 comm="syz.2.3532" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ab9dd79f9 code=0x0
[  196.252179][T15982] EXT4-fs warning (device loop0): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-117, ino=255). Please run e2fsck to fix.
[  196.268918][T15982] EXT4-fs (loop0): mount failed
[  196.287611][T15982] 9pnet_fd: Insufficient options for proto=fd
[  196.289659][T15990] 9pnet_fd: Insufficient options for proto=fd
[  196.301693][T15990] 9pnet_fd: Insufficient options for proto=fd
[  196.322387][T15992] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (46336)
[  196.332131][T15992] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023
[  196.355593][T16001] loop0: detected capacity change from 0 to 256
[  196.484372][T16013] loop1: detected capacity change from 0 to 512
[  196.491284][T16009] syz.0.3533[16009] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  196.491336][T16009] syz.0.3533[16009] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  196.510102][T16013] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.3542: bg 0: block 5: invalid block bitmap
[  196.534642][T16013] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  196.544117][T16013] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.3542: invalid indirect mapped block 3 (level 2)
[  196.559332][T16013] EXT4-fs (loop1): 1 orphan inode deleted
[  196.565179][T16013] EXT4-fs (loop1): 1 truncate cleaned up
[  196.571622][T16013] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.761170][T16022] FAULT_INJECTION: forcing a failure.
[  196.761170][T16022] name failslab, interval 1, probability 0, space 0, times 0
[  196.773868][T16022] CPU: 1 UID: 0 PID: 16022 Comm: syz.3.3546 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  196.784652][T16022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  196.794695][T16022] Call Trace:
[  196.797969][T16022]  <TASK>
[  196.800926][T16022]  dump_stack_lvl+0xf2/0x150
[  196.805584][T16022]  dump_stack+0x15/0x20
[  196.809737][T16022]  should_fail_ex+0x229/0x230
[  196.814446][T16022]  ? __get_vm_area_node+0xf7/0x1b0
[  196.819552][T16022]  should_failslab+0x8f/0xb0
[  196.824211][T16022]  __kmalloc_cache_node_noprof+0x50/0x2b0
[  196.829997][T16022]  __get_vm_area_node+0xf7/0x1b0
[  196.834999][T16022]  __vmalloc_node_range_noprof+0x2eb/0xef0
[  196.840819][T16022]  ? bpf_prog_alloc_no_stats+0x49/0x290
[  196.846411][T16022]  ? __rcu_read_unlock+0x4e/0x70
[  196.851384][T16022]  ? finish_task_switch+0xbf/0x2b0
[  196.856713][T16022]  ? bpf_prog_alloc_no_stats+0x49/0x290
[  196.862356][T16022]  __vmalloc_noprof+0x5e/0x70
[  196.867037][T16022]  ? bpf_prog_alloc_no_stats+0x49/0x290
[  196.872618][T16022]  bpf_prog_alloc_no_stats+0x49/0x290
[  196.877980][T16022]  ? bpf_prog_alloc+0x28/0x150
[  196.882743][T16022]  bpf_prog_alloc+0x3a/0x150
[  196.887353][T16022]  __get_filter+0x90/0x220
[  196.891826][T16022]  sk_attach_filter+0x1e/0xe0
[  196.896491][T16022]  sk_setsockopt+0x1845/0x1f30
[  196.901325][T16022]  udp_lib_setsockopt+0x99/0x7e0
[  196.906253][T16022]  udpv6_setsockopt+0x73/0xb0
[  196.910940][T16022]  ? __pfx_udp_v6_push_pending_frames+0x10/0x10
[  196.917234][T16022]  sock_common_setsockopt+0x64/0x80
[  196.922423][T16022]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  196.928330][T16022]  __sys_setsockopt+0x1d8/0x250
[  196.933169][T16022]  __x64_sys_setsockopt+0x66/0x80
[  196.938231][T16022]  x64_sys_call+0x278d/0x2d60
[  196.942889][T16022]  do_syscall_64+0xc9/0x1c0
[  196.947376][T16022]  ? clear_bhb_loop+0x55/0xb0
[  196.952041][T16022]  ? clear_bhb_loop+0x55/0xb0
[  196.956786][T16022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.962660][T16022] RIP: 0033:0x7fe3a6ba79f9
[  196.967234][T16022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.987001][T16022] RSP: 002b:00007fe3a5827038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  196.995476][T16022] RAX: ffffffffffffffda RBX: 00007fe3a6d35f80 RCX: 00007fe3a6ba79f9
[  197.003440][T16022] RDX: 000000000000001a RSI: 0000000000000001 RDI: 0000000000000003
[  197.011425][T16022] RBP: 00007fe3a5827090 R08: 0000000000000010 R09: 0000000000000000
[  197.019378][T16022] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  197.027408][T16022] R13: 0000000000000000 R14: 00007fe3a6d35f80 R15: 00007ffc7d1933f8
[  197.035379][T16022]  </TASK>
[  197.089910][T16027] 9pnet_fd: Insufficient options for proto=fd
[  197.097414][T16027] 9pnet_fd: Insufficient options for proto=fd
[  197.099497][T16030] FAULT_INJECTION: forcing a failure.
[  197.099497][T16030] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  197.117247][T16030] CPU: 1 UID: 0 PID: 16030 Comm: syz.2.3550 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  197.128021][T16030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  197.138166][T16030] Call Trace:
[  197.141444][T16030]  <TASK>
[  197.144367][T16030]  dump_stack_lvl+0xf2/0x150
[  197.148968][T16030]  dump_stack+0x15/0x20
[  197.153139][T16030]  should_fail_ex+0x229/0x230
[  197.157860][T16030]  should_fail_alloc_page+0xfd/0x110
[  197.163212][T16030]  __alloc_pages_noprof+0x109/0x360
[  197.168420][T16030]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  197.173833][T16030]  folio_alloc_mpol_noprof+0x36/0x70
[  197.179150][T16030]  shmem_get_folio_gfp+0x3eb/0xd80
[  197.184316][T16030]  shmem_write_begin+0xa0/0x1c0
[  197.189224][T16030]  generic_perform_write+0x1b4/0x580
[  197.194581][T16030]  ? current_time+0xfa/0x1a0
[  197.199261][T16030]  shmem_file_write_iter+0xc8/0xf0
[  197.204452][T16030]  vfs_write+0x78f/0x900
[  197.208821][T16030]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  197.214629][T16030]  ksys_write+0xeb/0x1b0
[  197.218980][T16030]  __x64_sys_write+0x42/0x50
[  197.223580][T16030]  x64_sys_call+0x27dd/0x2d60
[  197.228300][T16030]  do_syscall_64+0xc9/0x1c0
[  197.232799][T16030]  ? clear_bhb_loop+0x55/0xb0
[  197.237566][T16030]  ? clear_bhb_loop+0x55/0xb0
[  197.242235][T16030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.248150][T16030] RIP: 0033:0x7f2ab9dd64df
[  197.252555][T16030] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8d 02 00 48
[  197.272159][T16030] RSP: 002b:00007f2ab8a56df0 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  197.280561][T16030] RAX: ffffffffffffffda RBX: 000000000005f800 RCX: 00007f2ab9dd64df
[  197.288520][T16030] RDX: 000000000005f800 RSI: 00007f2ab0637000 RDI: 0000000000000004
[  197.296551][T16030] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000000007be
[  197.304587][T16030] R10: 00000000000007d0 R11: 0000000000000293 R12: 0000000000000004
[  197.312545][T16030] R13: 00007f2ab8a56ef0 R14: 00007f2ab8a56eb0 R15: 00007f2ab0637000
[  197.320514][T16030]  </TASK>
[  197.331752][T16036] loop0: detected capacity change from 0 to 512
[  197.338605][T16030] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  197.368345][T16036] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.368387][T15291] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.402334][T16036] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.417930][T16042] netlink: 'syz.1.3554': attribute type 5 has an invalid length.
[  197.456026][T15654] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.545944][T16054] loop1: detected capacity change from 0 to 4096
[  197.566739][   T35] usb usb8-port1: unable to enumerate USB device
[  197.573532][T16054] EXT4-fs error (device loop1): ext4_quota_enable:7022: comm syz.1.3559: inode #255: comm syz.1.3559: iget: illegal inode #
[  197.575749][T16057] loop0: detected capacity change from 0 to 2048
[  197.594641][T16054] EXT4-fs error (device loop1): ext4_quota_enable:7025: comm syz.1.3559: Bad quota inode: 255, type: 2
[  197.609417][T16054] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-117, ino=255). Please run e2fsck to fix.
[  197.613298][T16066] netlink: 'syz.3.3563': attribute type 4 has an invalid length.
[  197.626163][T16054] EXT4-fs (loop1): mount failed
[  197.637909][T16057]  loop0: p1 < > p4
[  197.642266][T16057] loop0: p4 size 8388608 extends beyond EOD, truncated
[  197.646588][T16066] netlink: 'syz.3.3563': attribute type 17 has an invalid length.
[  197.658423][   T29] audit: type=1326 audit(1723432381.444:1768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16056 comm="syz.0.3560" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f02bfd079f9 code=0x0
[  197.691177][T16054] 9pnet_fd: Insufficient options for proto=fd
[  197.757983][T16074] loop1: detected capacity change from 0 to 256
[  197.803229][T16080] FAULT_INJECTION: forcing a failure.
[  197.803229][T16080] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  197.817080][T16080] CPU: 0 UID: 0 PID: 16080 Comm: syz.3.3567 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  197.828009][T16080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  197.838063][T16080] Call Trace:
[  197.841356][T16080]  <TASK>
[  197.844283][T16080]  dump_stack_lvl+0xf2/0x150
[  197.848879][T16080]  dump_stack+0x15/0x20
[  197.853039][T16080]  should_fail_ex+0x229/0x230
[  197.857782][T16080]  should_fail+0xb/0x10
[  197.861928][T16080]  should_fail_usercopy+0x1a/0x20
[  197.866945][T16080]  _copy_from_user+0x1e/0xd0
[  197.871533][T16080]  sk_setsockopt+0x1c2/0x1f30
[  197.876202][T16080]  sock_setsockopt+0x3c/0x50
[  197.880783][T16080]  __sys_setsockopt+0x194/0x250
[  197.885695][T16080]  __x64_sys_setsockopt+0x66/0x80
[  197.890700][T16080]  x64_sys_call+0x278d/0x2d60
[  197.895390][T16080]  do_syscall_64+0xc9/0x1c0
[  197.899894][T16080]  ? clear_bhb_loop+0x55/0xb0
[  197.904619][T16080]  ? clear_bhb_loop+0x55/0xb0
[  197.909422][T16080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.915405][T16080] RIP: 0033:0x7fe3a6ba79f9
[  197.919819][T16080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.939771][T16080] RSP: 002b:00007fe3a5827038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  197.948246][T16080] RAX: ffffffffffffffda RBX: 00007fe3a6d35f80 RCX: 00007fe3a6ba79f9
[  197.956297][T16080] RDX: 0000000000000007 RSI: 0000000000000001 RDI: 0000000000000003
[  197.964278][T16080] RBP: 00007fe3a5827090 R08: 0000000000000004 R09: 0000000000000000
[  197.972229][T16080] R10: 0000000020000600 R11: 0000000000000246 R12: 0000000000000001
[  197.980228][T16080] R13: 0000000000000000 R14: 00007fe3a6d35f80 R15: 00007ffc7d1933f8
[  197.988212][T16080]  </TASK>
[  198.013423][T16082] loop3: detected capacity change from 0 to 1764
[  198.020949][T16082] ISOFS: Unable to identify CD-ROM format.
[  198.030867][   T29] audit: type=1326 audit(1723432381.814:1769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16081 comm="syz.3.3568" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6ba79f9 code=0x0
[  198.055290][T16083] syz.1.3559[16083] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  198.055400][T16083] syz.1.3559[16083] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  198.337107][T16090] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (46336)
[  198.358371][T16090] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023
[  198.499501][T16120] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  198.506560][T16122] loop1: detected capacity change from 0 to 2048
[  198.512409][T16120] loop2: detected capacity change from 0 to 512
[  198.523628][T16120] EXT4-fs (loop2): orphan cleanup on readonly fs
[  198.526448][T16122] loop1: detected capacity change from 0 to 512
[  198.535374][T16120] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.3583: corrupted in-inode xattr: bad e_name length
[  198.538118][T16122] EXT4-fs: Ignoring removed orlov option
[  198.557999][T16120] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.3583: couldn't read orphan inode 15 (err -117)
[  198.572066][T16122] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  198.575436][T16125] loop0: detected capacity change from 0 to 4096
[  198.583112][T16120] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  198.602118][T16125] EXT4-fs error (device loop0): ext4_quota_enable:7022: comm syz.0.3585: inode #255: comm syz.0.3585: iget: illegal inode #
[  198.616108][T16125] EXT4-fs error (device loop0): ext4_quota_enable:7025: comm syz.0.3585: Bad quota inode: 255, type: 2
[  198.627771][T16125] EXT4-fs warning (device loop0): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-117, ino=255). Please run e2fsck to fix.
[  198.628595][T16122] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3584: bg 0: block 248: padding at end of block bitmap is not set
[  198.645732][T16125] EXT4-fs (loop0): mount failed
[  198.658525][T16122] Quota error (device loop1): write_blk: dquota write failed
[  198.670046][T16122] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  198.680017][T16122] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.3584: Failed to acquire dquot type 1
[  198.692509][T16122] EXT4-fs (loop1): 1 truncate cleaned up
[  198.700851][T16125] 9pnet_fd: Insufficient options for proto=fd
[  198.701393][T16122] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  198.720928][T16122] ext4 filesystem being mounted at /79/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  198.721298][T16119] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.769460][T16135] loop0: detected capacity change from 0 to 256
[  198.831803][T16142] loop2: detected capacity change from 0 to 2048
[  198.841793][T15291] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.875945][T16147] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.886299][T16142]  loop2: p1 < > p4
[  198.890869][T16142] loop2: p4 size 8388608 extends beyond EOD, truncated
[  198.894403][T16147] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.908310][T16149] loop3: detected capacity change from 0 to 128
[  198.914978][T16149] EXT4-fs: Ignoring removed nobh option
[  198.922050][   T29] audit: type=1326 audit(1723432382.704:1770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16141 comm="syz.2.3590" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ab9dd79f9 code=0x0
[  198.953351][T16147] syzkaller1: entered promiscuous mode
[  198.959071][T16147] syzkaller1: entered allmulticast mode
[  198.966769][T16150] syz.0.3585[16150] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  198.966823][T16150] syz.0.3585[16150] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  198.985129][T14515] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  199.009233][T16149] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  199.022403][T16149] ext4 filesystem being mounted at /51/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  199.062329][T16154] loop4: detected capacity change from 0 to 512
[  199.078223][T16154] ext3: Unknown parameter 'fowner<00000000000000000000'
[  199.092011][T15416] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  199.171340][T16162] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  199.171771][   T29] audit: type=1326 audit(1723432382.954:1771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16160 comm="syz.4.3597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e972579f9 code=0x7ffc0000
[  199.202311][   T29] audit: type=1326 audit(1723432382.954:1772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16160 comm="syz.4.3597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e972579f9 code=0x7ffc0000
[  199.237174][T16170] FAULT_INJECTION: forcing a failure.
[  199.237174][T16170] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  199.250455][T16170] CPU: 0 UID: 0 PID: 16170 Comm: syz.3.3598 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  199.261280][T16170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  199.271401][T16170] Call Trace:
[  199.274668][T16170]  <TASK>
[  199.277593][T16170]  dump_stack_lvl+0xf2/0x150
[  199.282248][T16170]  dump_stack+0x15/0x20
[  199.286514][T16170]  should_fail_ex+0x229/0x230
[  199.291189][T16170]  should_fail_alloc_page+0xfd/0x110
[  199.296540][T16170]  __alloc_pages_noprof+0x109/0x360
[  199.301804][T16170]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  199.307296][T16170]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  199.312662][T16170]  handle_mm_fault+0xd6d/0x2940
[  199.317566][T16170]  ? mas_walk+0x204/0x320
[  199.321941][T16170]  exc_page_fault+0x3b9/0x650
[  199.326605][T16170]  asm_exc_page_fault+0x26/0x30
[  199.331439][T16170] RIP: 0033:0x7fe3a6a6bc10
[  199.335985][T16170] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  199.355730][T16170] RSP: 002b:00007fe3a58264a0 EFLAGS: 00010202
[  199.361778][T16170] RAX: 0000000000011000 RBX: 00007fe3a5826540 RCX: 0000000000000101
[  199.369852][T16170] RDX: 00000000000001a5 RSI: 00000000000007a6 RDI: 00007fe3a58265e0
[  199.377840][T16170] RBP: 0000000000000102 R08: 00007fe39d407000 R09: 0000000000000073
[  199.385884][T16170] R10: 00000000200006c2 R11: 00000000000007c2 R12: 0000000000000601
[  199.393852][T16170] R13: 00007fe3a6c284e0 R14: 0000000000000015 R15: 00007fe3a58265e0
[  199.402095][T16170]  </TASK>
[  199.406188][T16170] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  199.416647][T16170] loop3: detected capacity change from 0 to 764
[  199.423600][T16170] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  199.438411][T16170] 9pnet: p9_errstr2errno: server reported unknown error œæçæŒÎsÅ‚Ï£žßä“X\x§ÃãEµþƒ¶¯Ó”ß.Hþ9(º®ìxGÇ
[  199.451935][T16170] Symlink component flag not implemented
[  199.457685][T16170] Symlink component flag not implemented
[  199.463346][T16170] Symlink component flag not implemented (128)
[  199.469569][T16170] Symlink component flag not implemented (122)
[  199.499327][T16177] loop4: detected capacity change from 0 to 2048
[  199.517605][T16177] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.544811][T16185] loop0: detected capacity change from 0 to 512
[  199.552515][T16186] loop3: detected capacity change from 0 to 1024
[  199.560439][T16185] EXT4-fs: Ignoring removed nomblk_io_submit option
[  199.561315][T16186] EXT4-fs: Ignoring removed orlov option
[  199.567829][T16185] EXT4-fs: old and new quota format mixing
[  199.572805][T16186] EXT4-fs: Ignoring removed oldalloc option
[  199.585774][T16186] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  199.592085][T16185] loop0: detected capacity change from 0 to 2048
[  199.594314][T16186] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  199.612006][T16186] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  199.615729][T16185] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.622167][T16186] EXT4-fs (loop3): invalid journal inode
[  199.640085][T16185] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3605'.
[  199.640151][T16186] EXT4-fs (loop3): can't get journal size
[  199.661804][T16186] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  199.682475][T16195] ==================================================================
[  199.690655][T16195] BUG: KCSAN: data-race in page_cache_sync_ra / read_pages
[  199.697837][T16195] 
[  199.700136][T16195] read-write to 0xffff888116028f80 of 4 bytes by task 16187 on cpu 0:
[  199.708263][T16195]  read_pages+0x23f/0x540
[  199.712572][T16195]  page_cache_ra_unbounded+0x285/0x2e0
[  199.718007][T16195]  page_cache_sync_ra+0x652/0x670
[  199.723021][T16195]  filemap_get_pages+0x252/0xfb0
[  199.727954][T16195]  filemap_splice_read+0x360/0x920
[  199.733044][T16195]  ext4_file_splice_read+0x95/0xc0
[  199.738140][T16195]  splice_direct_to_actor+0x26c/0x670
[  199.743495][T16195]  do_splice_direct+0xd7/0x150
[  199.748235][T16195]  do_sendfile+0x3ab/0x950
[  199.752716][T16195]  __x64_sys_sendfile64+0x110/0x150
[  199.757889][T16195]  x64_sys_call+0xed5/0x2d60
[  199.762459][T16195]  do_syscall_64+0xc9/0x1c0
[  199.766948][T16195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.772824][T16195] 
[  199.775139][T16195] write to 0xffff888116028f80 of 4 bytes by task 16195 on cpu 1:
[  199.782846][T16195]  page_cache_sync_ra+0x511/0x670
[  199.787857][T16195]  filemap_get_pages+0x252/0xfb0
[  199.792778][T16195]  filemap_splice_read+0x360/0x920
[  199.797871][T16195]  ext4_file_splice_read+0x95/0xc0
[  199.802964][T16195]  splice_direct_to_actor+0x26c/0x670
[  199.808317][T16195]  do_splice_direct+0xd7/0x150
[  199.813065][T16195]  do_sendfile+0x3ab/0x950
[  199.817461][T16195]  __x64_sys_sendfile64+0x110/0x150
[  199.822640][T16195]  x64_sys_call+0xed5/0x2d60
[  199.827212][T16195]  do_syscall_64+0xc9/0x1c0
[  199.831698][T16195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.837574][T16195] 
[  199.839903][T16195] value changed: 0x00000019 -> 0x0000001d
[  199.845595][T16195] 
[  199.847901][T16195] Reported by Kernel Concurrency Sanitizer on:
[  199.854036][T16195] CPU: 1 UID: 0 PID: 16195 Comm: syz.0.3605 Not tainted 6.11.0-rc2-syzkaller-00315-g7006fe2f7f78 #0
[  199.864782][T16195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  199.874824][T16195] ==================================================================
[  199.888268][T14515] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.897738][T15416] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.929824][T15654] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.954453][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  209.594366][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog