last executing test programs:

3.348741131s ago: executing program 4 (id=6178):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1018002, &(0x7f0000000300)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
creat(&(0x7f0000000240)='./bus\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)

2.401049656s ago: executing program 0 (id=6203):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd608a37f200142c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa06000003"], 0x0)
syz_extract_tcp_res$synack(0x0, 0x1, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000240)={&(0x7f0000000040)=@in6={0xa, 0x4e22, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xac2}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000100)="8a67ad1e0ee25b0170d39a4ad23601c873092e50225dab8bfbec7cff8cd7cffc7c0e52fb20fc2d", 0x27}, {&(0x7f0000000440)="fa89c2a50cad30356c7f40680fe6543a1e8a95e2fd29c95c737d3cb969680205b9f76f0a40485de5819cf4e1e73afd1350bf851a3d2eb589ae96e3370c4fc1f8c01fcf8ae7864b79309496b0363c8fa3fa8040be53166d15823e96dd294b8c8916b36d011adaa954e6b18ee6abfceef3aba60a146908aec507365c3bbc32a97ca91cc8b1028b36fb2be27fae2c8758ccae37a08ea53c26c1d2f7dad85dffea1e57b36a1beb93965738980c31f8bffa35d3be", 0xb2}, {&(0x7f0000000780)="75e878a1764dbf5334cfd4a904a1b01f598d11e6cc06aa95abe48483965011cd915596a71fba1bdb506779412d71521af92455d38d5dc7931bdb70da9c2e932c31e86f77553e4185d8322d50c6beaebc1df3b538dcec60567666748d40e7afaa394186fbe4e10bde14398c3f31c7e5f5fa71c8e0e5d9dc42857975658a1f499344c08e78b541338e428e9dd1cc09665bc404bee20dcb304a8443bd532288dfc51fa73f3dd92cdbe02adc34ff973dbdee35b2cd330a86e8e72e3a434c1741099f9547372b1041026f18c68f2720f7632db763661d74e1cfb1776bcdb2ede2199364261d5051bdaaad3a42fe18d6e76e38de4f7b69c3", 0xf5}, {&(0x7f0000000880)="48368497fd2fd7d0274b26da969546be0523bb535a4bc5212a9a2b2ae8ead461971b71ec1aa03ce88ad8442fe186208bcf40344f293458f597a152667810a213d8eea1f30c8697b13ab7ebb5275ecde7529bdbe0e258e10e62d94e285e89f28fcd6c34a34c6cbfdb860eaa4cf6b734d4e62fa405ce42f0fe0338d8ede2a2b3dd7e2dae691d480c80621ee6efc735ddb35814bf37c12011064eefde9a12edbe892e0a9d5da4d962d8d356b90209f9cefe373d4715c7958cf65514be7e413bc23564fbbe94793ae6b791254b6fc3f050e934f43bbc228152", 0xd7}], 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000840000d289bd0168c307b06fc22dcf000500000000000000f8310000e6196b4848a6a782efd9603c8d41d0cedf4e1e742336df168ef3916611b58bd5b7ff001d15217bc15fab0460e45f753898c617686f57dbeff9c2526114431886f296c4327b1b889235bbdeb09090bb48d0badfc0fe8883de2dcc5c9b1c9b3084cd243b447610103f502c7b8f7f366c662402c7c7dc7f59f3c0c1910b5a8b9abfb848d778688488461e9b8e7f0f523043c7429d1220eb25c537ec001c463b9aef439941dc1a60415e80c21770276e7036569150a80a4a534b315d09ad78c2b0d70f6ab4a8e42d870df0db7fdd"], 0x18, 0x40000000}, 0x800)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000400), 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000002000000010000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000300"/28], 0x48)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
getpid()
r2 = epoll_create1(0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace', 0x0, 0x0)
read$char_usb(r3, &(0x7f0000000100)=""/169, 0xa9)
preadv(r3, &(0x7f00000003c0)=[{&(0x7f0000000640)=""/117, 0x75}], 0x1, 0x0, 0x1)
epoll_pwait(r2, &(0x7f0000000200)=[{}], 0x1, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000100)={'veth1_virt_wifi\x00', @broadcast})
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b70500000000000061107b00000000000700000000000000"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xbc, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x20c092, &(0x7f0000000080)={[{@data_err_abort}]}, 0x8, 0x513, &(0x7f0000000c00)="$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")
lsetxattr$system_posix_acl(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000002400)={&(0x7f00000001c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}, 0x0)
socketpair(0x1e, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8914, &(0x7f0000000080))
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="8fedcb7907081175f37538e486dd6330ce22667f2f00db5b686158bbcfe8875a65969f09000000000000000000000010010000000000000008"], 0xfdef)
write$cgroup_subtree(r1, &(0x7f0000000180)=ANY=[], 0xfdef)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000500), r4)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000100))
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000000)={'vxcan0\x00'})

2.34776109s ago: executing program 4 (id=6204):
syz_emit_ethernet(0x1f, &(0x7f0000001100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @random="e955f5ea6ade", @void, {@llc_tr={0x11, {@snap={0xaa, 0x0, '/', "a74338", 0x88e7, "840f767ab0bdfcb9cc"}}}}}, 0x0)

2.238431617s ago: executing program 4 (id=6209):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1018002, &(0x7f0000000300)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
creat(&(0x7f0000000240)='./bus\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)

1.817063546s ago: executing program 0 (id=6215):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
socket$inet6_udplite(0xa, 0x2, 0x88)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
tee(r2, r1, 0x8, 0x0)
write$binfmt_script(r3, 0x0, 0xfffffe48)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4b, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)

1.703681114s ago: executing program 0 (id=6219):
socket$inet6(0xa, 0x6, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x138, &(0x7f0000000000)=ANY=[], 0x0)

1.498529258s ago: executing program 0 (id=6222):
r0 = socket$kcm(0xa, 0x6, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10d, 0x10, &(0x7f0000000000), 0x4)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x6, 0x0, 0xc8)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r4 = io_uring_setup(0x9f8, &(0x7f0000007940)={0x0, 0x5e39})
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x6, 0x0, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={0x1, 0x58, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0}}, 0x10)
r7 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000340), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x15, &(0x7f00000001c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@map_val={0x18, 0x0, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x40}, @initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x35}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @jmp={0x5, 0x1, 0x5, 0xa, 0x9, 0x50}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000100)='GPL\x00', 0x2, 0x1000, &(0x7f0000002240)=""/4096, 0x41100, 0x3, '\x00', r6, 0x0, r7, 0x8, &(0x7f0000000380)={0x7, 0x4}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0xa, 0x0, 0x9}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000000400)=[r2], &(0x7f0000000440)=[{0x1, 0x3, 0xffffdf89, 0xc}, {0x3, 0x4, 0x3, 0x1}], 0x10, 0x10000, @void, @value}, 0x94)
r8 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r8, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r8, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x10)
sendto$inet(r8, &(0x7f0000000700)='\f', 0x1, 0x0, 0x0, 0x0)
recvmsg(r8, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104)
close_range(r4, 0xffffffffffffffff, 0x0)
r9 = getpgrp(0x0)
fcntl$setown(r4, 0x8, r9)

1.457061921s ago: executing program 2 (id=6226):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = fsopen(&(0x7f0000000000)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000080)='.\x00', 0x0, 0x0, 0x0)

1.412182874s ago: executing program 2 (id=6228):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setfsgid(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000940)=@newqdisc={0x70, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x44, 0x2, [@TCA_TBF_RATE64={0xc, 0x4, 0x4e1e2563543d84f9}, @TCA_TBF_PARMS={0x28, 0x1, {{}, {0x0, 0x2, 0x0, 0xffff, 0x0, 0x3}, 0x766c, 0x81}}, @TCA_TBF_PRATE64={0xc, 0x5, 0xcb59372f370e8465}]}}]}, 0x70}}, 0x0)

1.358032137s ago: executing program 2 (id=6229):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x35d, &(0x7f0000000f00)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_setup(0x200, &(0x7f0000000140)=<r1=>0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000540)={0x0, &(0x7f00000000c0)=""/220, 0x0, 0xdc, 0x0, 0x0, 0x0, @void, @value}, 0x20)
io_submit(r1, 0x0, &(0x7f0000000540))

1.280795513s ago: executing program 0 (id=6231):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800"/16], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000100001000000000000000000000a000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021501700001e0a05010000000000000000070000000900020073797a31000000000900010073797a300000000024170380300000802c000180250001"], 0x17d4}}, 0x0)
syz_open_procfs(0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xf}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f0000000240)={[{@init_itable}, {@noinit_itable}, {@abort}, {@noquota}, {@delalloc}]}, 0x21, 0x4b2, &(0x7f0000000f00)="$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")
r5 = open(&(0x7f0000000180)='./bus\x00', 0x16d27e, 0x0)
fallocate(r5, 0x0, 0x0, 0x1000f4)
sendfile(r5, r5, 0x0, 0x8800000)
r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0), r2)
sendmsg$NLBL_UNLABEL_C_STATICADD(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x4c, r6, 0x201, 0x0, 0x0, {0x3, 0x0, 0x26}, [@NLBL_UNLABEL_A_IPV4ADDR={0x5, 0x4, @initdev={0xac, 0x35, 0x0, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'sit0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @dev}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev}]}, 0x4c}, 0x8, 0x3000000000002}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fc00101}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(r7, 0xffffffffffffffff, 0x0)

1.279842713s ago: executing program 4 (id=6232):
socket$inet6(0xa, 0x6, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x138, &(0x7f0000000000)=ANY=[], 0x0)

1.202022398s ago: executing program 2 (id=6233):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
socket$can_j1939(0x1d, 0x2, 0x7)
r0 = socket(0x22, 0x2, 0x4)
bind$isdn_base(r0, &(0x7f0000000140), 0x6)

1.201775828s ago: executing program 2 (id=6234):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="18000000121401000000000000000000040002"], 0x18}}, 0x0) (fail_nth: 1)

957.693845ms ago: executing program 4 (id=6236):
r0 = socket$netlink(0x10, 0x3, 0xe)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000040)='.\x00', 0xa)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
dup3(r3, r4, 0x0)
readv(r4, &(0x7f0000000400)=[{&(0x7f0000000340)=""/48, 0x30}], 0x1)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r5 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f00000001c0)={<r6=>r5})
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000002c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_NEW_MPATH(r6, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x64, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x5, 0x73}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0x40081}, 0x1)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
getdents(r8, &(0x7f0000000100)=""/59, 0x3b)
getdents(r8, 0x0, 0x66)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r8, 0xc0305302, &(0x7f0000000100)={0x2, 0x9, 0x6, 0x8e6, 0x2, 0x9})
socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000000c0)="2e00000010058188e6b62ac23ea9b9a73772cc9f1ba1f848050000000000358d55cd7500"/46, 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

919.803847ms ago: executing program 2 (id=6237):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, @perf_config_ext, 0x2280, 0x0, 0x8, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='sys_enter\x00'}, 0x10)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000200)='./file0\x00', 0x810814, &(0x7f0000000480)=ANY=[], 0x1, 0x1fe, &(0x7f0000000280)="$eJzs2zFrE2EYB/Dn2rRe2sEOTqJw4OJU1E9gkApiQIhk0MlAdWlFSJcoiP08zn4Iv4xLB8kWudzRNtcIjWdyEn8/ON6H/u/geYfmOcKbN3feHx1+OHm39fks0iSLjYjHMY7Yy6tSUq7ptN6OGUnU8bPW0wDAH+n1Bp2me2C5hsPO4FZE7F5J+l8baQgAAAAAAAAAAIDaFjn/vxHxpXr+/3TF/QIA9Tn/v77a5TocdgZ3i/e3Cuf/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgOaMJ5Obk/xKy7W8bkREGhHtiNiJiFZE5H9vul8AoL7xZHbuz5n/7Z3i1iQizH8AWAMvX71+3ul2D3pZlkb8OB31R/1iLfKnz7oHD7KpvYunzkaj/uZ5/rDIs9l8a/q9QZ4/ymJOvh337xV5nj150a3ku3G4/O0DwH9pPzt3ab5vllfE/v68PJ/PRXXp/aAyv1txu7WybQAACzj5+OlocHz8dvjXi2Sxp9plQ7+/51trWa0qrlV8T/6JNhR1i/Q6Nzf8wQQs3cU/fTVJm2kIAAAAAAAAAAAAAAC4YhU/OWp6jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAArJ9fAQAA//+KxFE0")

824.480034ms ago: executing program 0 (id=6241):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000004000100ff0f00000501000000000000d32afa9cd1057ff20179839fd578ce7e8abab9c4966dacc96ac0d074cfb4ab2e5a8d8dff6ce717f0f795d54f405848b8f098b280fafb384a988cf5e529d6d80aea1ceb4240ec8b38f482f827a182de2aeb910b3827c608df17504234e84d312d369f8530a19b5de278bdc61fa4065a19392e88b64e13963f9e34e57f7adc445bb4e8396f6ea699ac1f793da3d88d3489966691389c0e0070af7b6b385621", @ANYRES32, @ANYBLOB='\x00'/10, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000ffffffff00"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
socket$inet6_udplite(0xa, 0x2, 0x88)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0xf3a, 0x0)
tee(r5, r3, 0x8, 0x0)
write$binfmt_script(r6, 0x0, 0xfffffe48)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4b, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r8 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r8, 0x400c6615, 0x0)

790.762276ms ago: executing program 4 (id=6242):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1018002, &(0x7f0000000300)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@lazytime}, {@jqfmt_vfsold}, {@usrquota}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
creat(&(0x7f0000000240)='./bus\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)

674.963874ms ago: executing program 3 (id=6246):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
socket$inet6_udplite(0xa, 0x2, 0x88)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
tee(r2, r1, 0x8, 0x0)
write$binfmt_script(r3, 0x0, 0xfffffe48)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4b, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)

581.05241ms ago: executing program 3 (id=6249):
syz_mount_image$ext4(&(0x7f0000000780)='ext3\x00', &(0x7f0000000000)='./file0\x00', 0x324c460, &(0x7f0000000400), 0x0, 0x526, &(0x7f0000000a40)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x7, 0x10001, 0x9, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee6, 0x8031, 0xffffffffffffffff, 0x4f08e000)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x35d, &(0x7f0000000f00)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
prctl$PR_GET_CHILD_SUBREAPER(0x25)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x98}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r2 = openat$cgroup_ro(r0, &(0x7f00000003c0)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_mptcp_buf(r3, 0x11c, 0x4, 0x0, &(0x7f0000000040))
r4 = socket(0xa, 0x6, 0x0)
getsockopt$inet6_mreq(r4, 0x10d, 0xab, 0x0, &(0x7f0000000040))
r5 = open(&(0x7f00000001c0)='./file2\x00', 0x0, 0x0)
dup3(r5, r0, 0x0)
io_setup(0x6, &(0x7f0000000240)=<r6=>0x0)
io_submit(r6, 0x3f0a, &(0x7f0000000540)=[&(0x7f00000000c0)={0xf04aef, 0x3d8, 0x4, 0x0, 0x0, r0, &(0x7f0000000000), 0x200a00}])

304.14957ms ago: executing program 1 (id=6253):
r0 = syz_io_uring_setup(0xd3f, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x528d}, &(0x7f0000000380)=<r1=>0x0, &(0x7f00000002c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_OPENAT2={0x1c, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
io_uring_enter(r0, 0xce7, 0x9c99, 0x2, 0x0, 0x0)
io_uring_enter(r0, 0x4ac9, 0x0, 0x0, 0x0, 0x0)

189.659237ms ago: executing program 1 (id=6254):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00"/13], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000140)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4001, &(0x7f0000000000)=0x1, 0x7, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {0x7a}, [{0x78, 0x1, [@m_police={0x74, 0x1, 0x0, 0x0, {{0xb}, {0x48, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c}, @TCA_POLICE_RESULT={0x8, 0x5, 0x8001}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x8c}}, 0x0)

176.237568ms ago: executing program 1 (id=6255):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES16, @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000000000f3", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="f4fe81601f00000000fb000800000000000000d34cd9626b203d1e460579eb57454ab386a824872716b6d44d59a4fb3bcfc8a653cc758ee43848d3", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000050000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
setxattr$trusted_overlay_redirect(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600), 0x0, 0x0, 0x0)
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$rfkill(r3, 0x0, 0x0)
close(r3)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bond_slave_1\x00'})
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x2000, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x84003, 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
syz_emit_ethernet(0x4e, &(0x7f0000000e00)={@local, @local, @void, {@ipv4={0x800, @tcp={{0xb, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010101, @local, {[@rr={0x7, 0x17, 0x12, [@private, @broadcast, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback]}]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
rt_sigtimedwait(&(0x7f0000000040)={[0xfffffffffffffffd]}, 0x0, 0x0, 0x8)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$VT_RESIZEX(r6, 0x560a, &(0x7f0000000240)={0x4, 0x0, 0x5, 0x0, 0x3, 0x5})
ioctl$GIO_SCRNMAP(r4, 0x4b40, &(0x7f00000002c0)=""/225)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
socket$nl_route(0x10, 0x3, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r7, 0x8922, &(0x7f0000000080))

146.172ms ago: executing program 1 (id=6256):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000e80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00'}, 0x10)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00')
fstat(r0, &(0x7f00000000c0))

133.879671ms ago: executing program 3 (id=6257):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x16d27e, 0x0)
sendfile(r2, r2, 0x0, 0x8800000)

82.000885ms ago: executing program 3 (id=6258):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x35d, &(0x7f0000000f00)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6000)
io_setup(0x200, &(0x7f0000000140)=<r1=>0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000540)={0x0, &(0x7f00000000c0)=""/220, 0x0, 0xdc, 0x0, 0x0, 0x0, @void, @value}, 0x20)
io_submit(r1, 0x1, &(0x7f0000000540)=[0x0])

81.559115ms ago: executing program 1 (id=6259):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
socket$inet6_udplite(0xa, 0x2, 0x88)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
pipe(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
tee(r2, r1, 0x8, 0x0)
write$binfmt_script(r3, 0x0, 0xfffffe48)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4b, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)

27.985538ms ago: executing program 3 (id=6260):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

3.78327ms ago: executing program 3 (id=6261):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001bc0)=<r6=>0x0)
r7 = getuid()
getgroups(0x4, &(0x7f0000001c00)=[<r8=>0x0, 0x0, 0xee01, <r9=>0xee01])
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r10}, 0x10)
r12 = getpid()
r13 = syz_pidfd_open(r12, 0x0)
r14 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r14, 0x1, 0x11, &(0x7f0000000240)={<r15=>0x0, <r16=>0x0, <r17=>0x0}, &(0x7f0000000280)=0x5)
setresuid(0x0, r16, 0x0)
r18 = syz_open_dev$vcsn(&(0x7f0000001f40), 0x8000000000000001, 0x49e700)
getresuid(&(0x7f0000001f80), &(0x7f0000001fc0), &(0x7f0000002000)=<r19=>0x0)
sendmmsg$unix(r5, &(0x7f0000002440)=[{{&(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001500)=[{&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000000000)="01fd0b0b0ee0b88617c7600982176b72b60b6958ca56fa87205299024b2aad6cb32275f91da6ccc7b7193068400a11128e0d44814f94dd67bd8c14e6904f", 0x3e}, {&(0x7f00000001c0)="a35cdfbcf758aae57dca7ad8505ac80230f789491510611b20367a69f90d7d92a244926d0c1c2e5c6e882fa3f6d086de5c58ff91adcdbc4a3782d98c077a256f237b80df9f297ac80d65000a214c29d43a2a4eabc265397e286a", 0x5a}, {&(0x7f0000000240)="abff83db376b0acc740fc5e968d6d6dc9765905bf0b6e6ee0b173d571d73cf0a27fc27293768a222530a16210de8a26195edc9c02edb6e00be043e9234491ae048fbc899dfc3a44d925326c2d364e799b532384e23858e8fde2f2c54", 0x5c}, {&(0x7f00000002c0)="1fd619df8d63b2ad8878c68dac657398d452cf79e4bbc86ad967510b569e7e41c70fac52c2435d54ea835468dd1f1e74bd8f7fd9dad3a9212c5c7fc53f1e603ef719d5845977e2bd63851b7a56172590ed6d2527b25e5e662634626ad40aa2e771c23defe62110b7806e9da3272a2c30208e9eafd8fc19d1b9bf275bd6b871892adc75733bce77598f692a4842764953994e99e6a8c829462503a4bb1bcdae71b52458833d4a1a7df8532fc0feb140ae79f35e31ba5cc9e6", 0xb8}, {&(0x7f0000001400)="2c1ccf22198bac418849c9d301e65b069b9a85efc174a7843c25e7bcd6b4a7cef08e77b03bbdb80d6a2da2083b66d72fae342c80b9c6be425296cbdf399d4d25a672db0086f90226ef8e979f50fd8b27505e6b08ada6b3b0d5ff5b05cf28fe0e0e3056a6a2f6d7908ac4fc303da8fdada48ea18d9b8325ffc2417f0ad347835bbb922c4079af0919f584c2be49b4a9ab2e3ca35af1af16cb265dfe15085bdadbe5e2135298ac2b6f2333be6c3e1fac4b29cbdd8db953e37948593eec67b1078fef3c297557de8c41c124d21abf9e8177408c3ff87b9b3c6a82b8bc1e0c", 0xdd}, {&(0x7f0000000080)="b75d2806987c12a93d428884209fcfe9228596a6ffcb7e27887ac794308d596f50f7781a3abb", 0x26}, {&(0x7f0000000380)='v', 0x1}], 0x8, &(0x7f0000001580)=[@rights={{0x14, 0x1, 0x1, [r3]}}, @rights={{0x1c, 0x1, 0x1, [r3, r5, r4]}}], 0x38, 0x1}}, {{&(0x7f00000015c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000001b00)=[{&(0x7f0000001640)="d6ab", 0x2}, {&(0x7f0000001680)="0e0e49b2dd1e5e9281df457e8d5c15c97f6ed1", 0x13}, {&(0x7f00000016c0)}, {&(0x7f0000001700)="0c67fd28233214301b19f80738e3a151b9a06a30fbad3c40d8d7bc6de37eed98a1052357669aa91e8ef613da2fe14267180a514d28e3d5ffd8af5c79c7c8f6588a0fac9d802168874a56ac26eb7ca454defc2845a670b8a2c74a1f54c9ff363b8cb793d7eb066f6c0e5a9e33e75e661b94cef3471b1e46b65fec7df09471c1c4fa9a7a819252717dcf82b9f406a13a5b9ba0efaa55013abd2d287d17c1096e0eaa8b7e149f2afd967b23a93bc859a55ffe8f1f839629c9e20425d69df45f84c66c59a1eae9f9ebe8b466c7ab45d580c06fe1ecec5fa4ea8baa04", 0xda}, {&(0x7f0000001800)="e06aca92aff8451ed16054095ab090d0c3f7fd7953e9155a8bd92fde30623d8a5fe7dc4ab24665e962b063055d93b0ba59dfffc2c93db2cff122a2a7cc55b5bf454ecef3c2dbd1082b5c716c5991822b25d18463803ec0a58c411bf98f7c0ddc55d0d0ffb75b4fd94f34336be05d022c789ef5b490dfd49b8f2f99ddf1f8a3fe7b0769500e39d1435315464454e5a37ac8c178ba968ada5a46c102994fd44d3c0053ebdd5218a7f0c74c825ab9dd2c065f981ec20fa2d55c6d385491211b651f76c56e1a08df0e57a12a059bbae2d1fb3b52c74d97f2301b2e1a39c0f17b87c70a1aca32184fbd040d6a5621fda071d95fe23d838a65", 0xf6}, {&(0x7f0000001900)="b04910bbff44beee13c248f4028bbc49", 0x10}, {&(0x7f0000001940)="5103ccb51d69e59126df859f8d2258cd24946c8656c56e4a4329ec8366d78e7c52", 0x21}, {&(0x7f0000001980)="15fdc824a53315088ea0ced71854cf4ad20197a589253ce23fce7831299edd9c4c8de34a408d7d715f8375738336f6496e425a87392cec6eb89a5065ac6d9a6b6fd7b0167d45b764a2cfa205a6f332", 0x4f}, {&(0x7f0000001a00)="aa5cb2b90207b0bf4bb2d5f83087a0cdc009bb3f357f8094ee1e00c1c8226861637ddeeef175036550f8ad29032f7e686cf62fa0408bc5c72432b733a5f5fdb8222e6fad23f6c4f582aa3d4707e2c4caa36a43", 0x53}, {&(0x7f0000001a80)="0f44f24fbb0facd13276de7fe06ede368b9a29945f2462e62e25af99255f6adb4ac4c9429fed35e39a23dcd7fd0cf82a528e7fccc9af06e6f94aae35379f578cf706f4989e69c5d6232b14700f3b7eb09c239d7c765f5dc52cb6c3fd6ac7bf154d48dcb452ef3eacd4dc6a22c68f1c0ff47655349fc39aa5cb927178917685", 0x7f}], 0xa, &(0x7f0000001c40)=[@cred={{0x1c, 0x1, 0x2, {r6, r7, r8}}}, @rights={{0x1c, 0x1, 0x1, [r10, r4, r0]}}, @rights={{0x18, 0x1, 0x1, [r3, r4]}}, @cred={{0x1c, 0x1, 0x2, {r12, r16}}}], 0x78, 0x4}}, {{&(0x7f0000001cc0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001f00)=[{&(0x7f0000001d40)="ec8c66abe76257a4c6d80b1031dea12445d262155c5780c6a6f1e8539e79605343b0df474bb59d16650c9b97428f943fa87f12f5273a6f2d7bd43d85042c0bcb7816bd099fc05f760db130f0810992d3644559fe1881cdca682a9a1b5e505b6b65d5b016c902080492da86a967f00fca5e57572e8b2f577c3f8837caa2d8e66dd6f69e77722090fc441a46b0ee4aede95371cb60dc6b96b3764a2babd0b6f8bdb3009a930dc49fb4d1c88662d08963472ae660f0d4d019b715df05c67671ee91", 0xc0}, {&(0x7f0000001e00)="21871aa6f4004f67496c9a0183bacd5a397f1479b0684ccf6fb067ff8b909dd217a04cca41f362782caab50a66a432066ad5e27d0821df6ec402f0c255", 0x3d}, {&(0x7f0000001e40)="9440693abdd2054c7cee340d16ef553f01dd9b1795d02aea60d635d19d217220b34a0a43b05c182974cd7b5abae19f62b40279d965c2edacd29823a2335941f5abc15fb4f524985023d83b235ae8862352d2c68c9f90d2150aebd3807c03a2894b3a89591499ef990cd9733dff988d4d1c50712773d5f6a02e234e93ce086ae56256fc6f62e0847821fd909c6e9a095c5d146c521dcb931d1404f52784c158ca3ff2d5809316b427dd4acfe1e0fa93dd98f2296236c491def95fbeeb", 0xbc}], 0x3, &(0x7f0000002040)=[@rights={{0x28, 0x1, 0x1, [r2, r5, r5, r11, r11, r4]}}, @cred={{0x1c, 0x1, 0x2, {r6, r7, r8}}}, @rights={{0x2c, 0x1, 0x1, [r14, r2, 0xffffffffffffffff, r1, r4, r3, r13]}}, @cred={{0x1c, 0x1, 0x2, {r12, r7, r9}}}, @rights={{0x2c, 0x1, 0x1, [r18, r4, r10, r1, r11, r3, r0]}}, @cred={{0x1c, 0x1, 0x2, {r15, r16, r8}}}, @cred={{0x1c, 0x1, 0x2, {r12, r19, r17}}}, @rights={{0x24, 0x1, 0x1, [r10, r1, r2, r2, r13]}}], 0x130, 0x40}}, {{&(0x7f0000002180)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f00000023c0)=[{&(0x7f0000002200)="4e5d5b3b864e63ce38faacd77f7526ac245230d4dd5fa614f5c327456ab2067974cc35b52a678c4d524f62ace8cc301b3257317afb22df0448935600abd75b42b86c0c16367efe5e34913b53a6ec64254f0fa6ccbf3b7d62fc", 0x59}, {&(0x7f0000002280)="2a18386f1a02f0e66aac172ff60fb2dff5a820122cd812aa524a7a2c43260761ebe67d43c6226b51ba4f848741e2b97163449ba8aae5c1aa137331e4076f729f13cc2e5467906c19d339d857bdaafa6aa6d4d503c7fa18c16d03ebb1795f947d3d91b42b32f160a044aedac95700813a54b5fb086fa857714801ff87eec8e4142549dcf535ee69cfaa98b6583f157d51d5c5f75b2a0c3e65c1aa2b395c3583b09d7ecf705feca42151ed89f7bda70a5cc7c17f6658e896828a1a", 0xba}, {&(0x7f0000002340)="eb99dd90aa11dd8ea420bbbb147e84cdf1d0d7c262390db75ffefe4707db81899d0e9a5de53eaf56a18f6d43ee04c6d46a4f0d96c70431844dff5a2a9d6d8c700a8df6abf8d83742aa3b9c2704c0902242989d23d176645805eb64103fd2bddc9791dbdd0a70a26129ca14aae9cd0b92", 0x70}], 0x3, &(0x7f0000002400)=[@cred={{0x1c, 0x1, 0x2, {r12, r7, r17}}}], 0x20, 0x4000}}], 0x4, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r20 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x103)
fcntl$setsig(r20, 0xa, 0x13)
fcntl$setlease(r20, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000003c0))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

0s ago: executing program 1 (id=6262):
socket$pppl2tp(0x18, 0x1, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6060626000102c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa11000001"], 0x0)
syz_emit_ethernet(0x138, &(0x7f0000000000)=ANY=[], 0x0)

kernel console output (not intermixed with test programs):

yz.4.5544'.
[  283.014575][T19208] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  283.021206][T19199] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5544'.
[  283.082780][T19210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  283.088916][T19199] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5544'.
[  283.100472][T19210] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  283.101811][T19199] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5544'.
[  283.215811][T19223] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5552'.
[  283.340269][T12185] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  283.394411][T19237] loop3: detected capacity change from 0 to 1024
[  283.401419][T19237] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  283.411209][T19237] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  283.422040][T19237] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.5557: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  283.440303][T19237] EXT4-fs (loop3): get root inode failed
[  283.446106][T19237] EXT4-fs (loop3): mount failed
[  283.489254][T19242] loop3: detected capacity change from 0 to 1024
[  283.496391][T19242] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  283.506044][T19242] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  283.516776][T19242] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.5559: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  283.534662][T19242] EXT4-fs (loop3): get root inode failed
[  283.540444][T19242] EXT4-fs (loop3): mount failed
[  283.615741][T19255] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5565'.
[  283.658348][T19255] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  283.741326][T19266] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  283.883331][T19292] loop3: detected capacity change from 0 to 1024
[  283.890722][T19292] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  283.902652][T19292] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  284.131863][T19310] loop4: detected capacity change from 0 to 1024
[  284.139911][T19310] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  284.150419][T19310] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  284.161635][T19310] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #2: comm syz.4.5587: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  284.179729][T19310] EXT4-fs (loop4): get root inode failed
[  284.185481][T19310] EXT4-fs (loop4): mount failed
[  284.459710][T19329] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  284.744240][T12185] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.783201][T19331] syz.0.5595[19331] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  284.783270][T19331] syz.0.5595[19331] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  284.829221][T19341] netlink: 'syz.3.5600': attribute type 21 has an invalid length.
[  284.978282][T19357] loop4: detected capacity change from 0 to 1024
[  284.990465][T19357] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  285.001633][T19357] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  285.005541][T19345] loop0: detected capacity change from 0 to 256
[  285.019224][T19357] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #2: comm syz.4.5608: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  285.038140][T19357] EXT4-fs (loop4): get root inode failed
[  285.044086][T19357] EXT4-fs (loop4): mount failed
[  285.063202][T19345] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  285.097343][T19361] loop1: detected capacity change from 0 to 512
[  285.127158][T19361] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.141417][T19361] ext4 filesystem being mounted at /229/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.305860][T17117] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  285.813452][T19379] syz.2.5614[19379] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  285.813557][T19379] syz.2.5614[19379] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  285.847038][T19381] syz.2.5615[19381] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  285.858613][T19381] syz.2.5615[19381] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  285.926920][T19389] bond1: entered promiscuous mode
[  285.943585][T19389] bond1: entered allmulticast mode
[  285.949192][T19389] 8021q: adding VLAN 0 to HW filter on device bond1
[  285.979414][T19394] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  285.986139][T19394] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  285.994047][T19394] vhci_hcd vhci_hcd.0: Device attached
[  286.000955][T19394] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  286.008429][T19394] vhci_hcd: invalid port number 23
[  286.014413][T19395] vhci_hcd: connection closed
[  286.014456][   T58] vhci_hcd: stop threads
[  286.023628][   T58] vhci_hcd: release socket
[  286.028225][   T58] vhci_hcd: disconnect device
[  286.309965][T19406] loop3: detected capacity change from 0 to 1024
[  286.317103][T19406] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  286.327898][T19406] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  286.545801][   T29] kauditd_printk_skb: 2259 callbacks suppressed
[  286.545814][   T29] audit: type=1326 audit(2000000226.272:75099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.575947][   T29] audit: type=1326 audit(2000000226.272:75100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.608960][T19412] bond_slave_1: mtu less than device minimum
[  286.628999][   T29] audit: type=1326 audit(2000000226.322:75101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.652757][   T29] audit: type=1326 audit(2000000226.322:75102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.676473][   T29] audit: type=1326 audit(2000000226.322:75103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.700131][   T29] audit: type=1326 audit(2000000226.322:75104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.723772][   T29] audit: type=1326 audit(2000000226.322:75105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.745804][T19414] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  286.747369][   T29] audit: type=1326 audit(2000000226.322:75106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.747397][   T29] audit: type=1326 audit(2000000226.322:75107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.747471][   T29] audit: type=1326 audit(2000000226.322:75108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19411 comm="syz.4.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb01045def9 code=0x7ffc0000
[  286.916107][T19426] __nla_validate_parse: 16 callbacks suppressed
[  286.916123][T19426] netlink: 47 bytes leftover after parsing attributes in process `syz.2.5633'.
[  287.274854][T12185] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.346003][T19432] loop3: detected capacity change from 0 to 128
[  287.354252][T19432] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  287.366854][T19432] ext4 filesystem being mounted at /534/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  287.387770][T12185] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  287.406093][T19436] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  287.412643][T19436] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  287.420410][T19436] vhci_hcd vhci_hcd.0: Device attached
[  287.427064][T19436] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  287.435119][T19436] vhci_hcd: invalid port number 23
[  287.440896][T19437] vhci_hcd: connection closed
[  287.441121][   T58] vhci_hcd: stop threads
[  287.450051][   T58] vhci_hcd: release socket
[  287.454522][   T58] vhci_hcd: disconnect device
[  287.759784][T19462] FAULT_INJECTION: forcing a failure.
[  287.759784][T19462] name failslab, interval 1, probability 0, space 0, times 0
[  287.772534][T19462] CPU: 1 UID: 0 PID: 19462 Comm: syz.2.5647 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  287.783355][T19462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  287.793399][T19462] Call Trace:
[  287.796719][T19462]  <TASK>
[  287.799674][T19462]  dump_stack_lvl+0xf2/0x150
[  287.804246][T19462]  dump_stack+0x15/0x20
[  287.808386][T19462]  should_fail_ex+0x229/0x230
[  287.813109][T19462]  ? inotify_handle_inode_event+0x127/0x310
[  287.819010][T19462]  should_failslab+0x8f/0xb0
[  287.823674][T19462]  __kmalloc_noprof+0xa5/0x370
[  287.828522][T19462]  inotify_handle_inode_event+0x127/0x310
[  287.834296][T19462]  ? __pfx_inotify_freeing_mark+0x10/0x10
[  287.840039][T19462]  inotify_ignored_and_remove_idr+0x29/0x60
[  287.845925][T19462]  inotify_freeing_mark+0x1d/0x30
[  287.850982][T19462]  fsnotify_clear_marks_by_group+0x46f/0x540
[  287.856973][T19462]  fsnotify_destroy_group+0x55/0x190
[  287.862262][T19462]  ? locks_remove_posix+0x1bb/0x320
[  287.867694][T19462]  ? vfs_write+0x5a5/0x900
[  287.872119][T19462]  inotify_release+0x25/0x30
[  287.876729][T19462]  ? __pfx_inotify_release+0x10/0x10
[  287.882012][T19462]  __fput+0x192/0x6f0
[  287.885992][T19462]  __fput_sync+0x44/0x60
[  287.890289][T19462]  __se_sys_close+0x101/0x1b0
[  287.895037][T19462]  __x64_sys_close+0x1f/0x30
[  287.899731][T19462]  x64_sys_call+0x25cb/0x2d60
[  287.904456][T19462]  do_syscall_64+0xc9/0x1c0
[  287.909030][T19462]  ? clear_bhb_loop+0x55/0xb0
[  287.913748][T19462]  ? clear_bhb_loop+0x55/0xb0
[  287.918405][T19462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.924371][T19462] RIP: 0033:0x7f0d9dd7def9
[  287.928763][T19462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  287.948377][T19462] RSP: 002b:00007f0d9c9f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  287.956809][T19462] RAX: ffffffffffffffda RBX: 00007f0d9df35f80 RCX: 00007f0d9dd7def9
[  287.964779][T19462] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  287.972730][T19462] RBP: 00007f0d9c9f7090 R08: 0000000000000000 R09: 0000000000000000
[  287.980721][T19462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  287.988743][T19462] R13: 0000000000000000 R14: 00007f0d9df35f80 R15: 00007fff3b453e08
[  287.996780][T19462]  </TASK>
[  288.008532][T19465] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5648'.
[  288.008688][T19460] loop4: detected capacity change from 0 to 128
[  288.026015][T19460] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  288.038536][T19460] ext4 filesystem being mounted at /370/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  288.057941][T13972] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  288.115998][T19478] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5654'.
[  288.162568][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.170023][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.177478][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.185075][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.192474][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.199899][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.207503][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.215045][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.222427][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.230042][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.237633][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.245163][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.252622][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.260283][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.267832][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.270806][T19492] loop4: detected capacity change from 0 to 512
[  288.275279][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.275321][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.286373][T19492] EXT4-fs: Ignoring removed mblk_io_submit option
[  288.289064][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.296451][T19492] EXT4-fs: Ignoring removed i_version option
[  288.302858][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.311931][T19492] EXT4-fs error (device loop4): __ext4_iget:4985: inode #11: block 1: comm syz.4.5660: invalid block
[  288.316338][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.323866][T19492] EXT4-fs (loop4): Remounting filesystem read-only
[  288.341166][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.343527][T19492] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  288.348377][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.356032][T19492] SELinux: (dev loop4, type ext4) getxattr errno 5
[  288.368125][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.375867][T19492] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.382160][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.406084][T19495] loop0: detected capacity change from 0 to 128
[  288.406084][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.406109][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.406130][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.414104][T19495] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  288.419958][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.427750][T19495] ext4 filesystem being mounted at /548/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  288.434688][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.471862][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.479551][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.487019][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.494587][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.502003][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.509473][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.516942][ T5156] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  288.526298][ T5156] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  288.539716][T12680] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  288.592241][T19509] loop4: detected capacity change from 0 to 1024
[  288.600491][T19509] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  288.602309][T19505] loop0: detected capacity change from 0 to 1024
[  288.610282][T19509] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  288.620654][T19505] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  288.637804][T19505] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  288.642005][T19513] loop3: detected capacity change from 0 to 128
[  288.649837][T19505] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  288.668121][T19509] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  288.681790][T19509] FAULT_INJECTION: forcing a failure.
[  288.681790][T19509] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.691896][T19517] loop3: detected capacity change from 0 to 1024
[  288.694859][T19509] CPU: 0 UID: 0 PID: 19509 Comm: syz.4.5666 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  288.701923][T19517] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  288.711890][T19509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  288.711906][T19509] Call Trace:
[  288.711913][T19509]  <TASK>
[  288.711921][T19509]  dump_stack_lvl+0xf2/0x150
[  288.711948][T19509]  dump_stack+0x15/0x20
[  288.711965][T19509]  should_fail_ex+0x229/0x230
[  288.712064][T19509]  should_fail+0xb/0x10
[  288.722047][T19517] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  288.731774][T19509]  should_fail_usercopy+0x1a/0x20
[  288.731803][T19509]  _copy_from_user+0x1e/0xd0
[  288.731826][T19509]  autofs_dev_ioctl+0xd6/0x630
[  288.748030][T19517] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  288.751467][T19509]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[  288.751553][T19509]  __se_sys_ioctl+0xd3/0x150
[  288.751578][T19509]  __x64_sys_ioctl+0x43/0x50
[  288.807443][T19509]  x64_sys_call+0x15cc/0x2d60
[  288.812224][T19509]  do_syscall_64+0xc9/0x1c0
[  288.816742][T19509]  ? clear_bhb_loop+0x55/0xb0
[  288.821422][T19509]  ? clear_bhb_loop+0x55/0xb0
[  288.826093][T19509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.831986][T19509] RIP: 0033:0x7fb01045def9
[  288.836383][T19509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.856114][T19509] RSP: 002b:00007fb00f0d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  288.864576][T19509] RAX: ffffffffffffffda RBX: 00007fb010615f80 RCX: 00007fb01045def9
[  288.872532][T19509] RDX: 0000000020000240 RSI: 00000000c0189374 RDI: 0000000000000007
[  288.880505][T19509] RBP: 00007fb00f0d7090 R08: 0000000000000000 R09: 0000000000000000
[  288.888461][T19509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  288.896441][T19509] R13: 0000000000000000 R14: 00007fb010615f80 R15: 00007fffd14bb358
[  288.904446][T19509]  </TASK>
[  288.907884][T12680] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.919760][T13972] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.936587][T19521] loop0: detected capacity change from 0 to 1024
[  288.943768][T19521] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  288.954726][T19521] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  288.966407][T19521] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #2: comm syz.0.5671: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  288.985310][T19521] EXT4-fs (loop0): get root inode failed
[  288.991068][T19521] EXT4-fs (loop0): mount failed
[  289.119841][T12185] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.155990][T19547] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  289.169246][T19549] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  289.175821][T19549] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  289.183537][T19549] vhci_hcd vhci_hcd.0: Device attached
[  289.193198][T19549] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  289.207053][T19549] vhci_hcd: invalid port number 23
[  289.212834][T19552] vhci_hcd: connection closed
[  289.213297][ T3363] vhci_hcd: stop threads
[  289.222356][ T3363] vhci_hcd: release socket
[  289.226919][ T3363] vhci_hcd: disconnect device
[  289.322949][T19564] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  289.331802][T19564] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  289.390016][T19573] loop0: detected capacity change from 0 to 128
[  289.398117][T19573] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  289.410432][T19573] ext4 filesystem being mounted at /562/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  289.472940][T12680] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  289.534266][T19584] loop0: detected capacity change from 0 to 2048
[  289.541032][T19584] EXT4-fs: Ignoring removed nomblk_io_submit option
[  289.548373][T19584] EXT4-fs (loop0): stripe (1025) is not aligned with cluster size (16), stripe is disabled
[  289.565591][T19584] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  289.578317][T19584] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.635507][T19592] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  289.848326][T19611] netlink: 'syz.4.5709': attribute type 29 has an invalid length.
[  289.861109][T19611] netlink: 'syz.4.5709': attribute type 29 has an invalid length.
[  289.874934][T19615] bond1: entered promiscuous mode
[  289.880047][T19615] bond1: entered allmulticast mode
[  289.885409][T19615] 8021q: adding VLAN 0 to HW filter on device bond1
[  289.908584][T19618] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  289.915101][T19618] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  289.922785][T19618] vhci_hcd vhci_hcd.0: Device attached
[  289.929242][T19618] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  289.937319][T19618] vhci_hcd: invalid port number 23
[  289.943274][T19619] vhci_hcd: connection closed
[  289.943574][ T3363] vhci_hcd: stop threads
[  289.947486][T19622] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  289.948356][ T3363] vhci_hcd: release socket
[  289.964209][ T3363] vhci_hcd: disconnect device
[  290.041584][T19626] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  290.050571][T19626] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  290.358441][T19641] loop1: detected capacity change from 0 to 128
[  290.368846][T19641] syz.1.5721: attempt to access beyond end of device
[  290.368846][T19641] loop1: rw=34817, sector=97, nr_sectors = 32 limit=128
[  290.482303][T19646] bond1: entered promiscuous mode
[  290.487523][T19646] bond1: entered allmulticast mode
[  290.492842][T19646] 8021q: adding VLAN 0 to HW filter on device bond1
[  290.520954][T19651] bond_slave_1: mtu less than device minimum
[  290.607017][T19661] netlink: 60 bytes leftover after parsing attributes in process `syz.4.5728'.
[  290.616707][T19661] unsupported nlmsg_type 40
[  290.624429][T19661] netlink: 'syz.4.5728': attribute type 1 has an invalid length.
[  290.638069][T19661] bond1: entered promiscuous mode
[  290.664614][T19661] bond1: (slave geneve0): making interface the new active one
[  290.664732][T19670] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  290.672166][T19661] geneve0: entered promiscuous mode
[  290.678716][T19670] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  290.678884][T19670] vhci_hcd vhci_hcd.0: Device attached
[  290.691239][T19661] bond1: (slave geneve0): Enslaving as an active interface with an up link
[  290.695874][T19670] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  290.714249][T19670] vhci_hcd: invalid port number 23
[  290.720917][T19671] vhci_hcd: connection closed
[  290.721099][ T3363] vhci_hcd: stop threads
[  290.730191][ T3363] vhci_hcd: release socket
[  290.734643][ T3363] vhci_hcd: disconnect device
[  290.774603][T19676] loop4: detected capacity change from 0 to 128
[  290.784389][T19676] syz.4.5734: attempt to access beyond end of device
[  290.784389][T19676] loop4: rw=34817, sector=97, nr_sectors = 32 limit=128
[  290.908756][T19687] FAULT_INJECTION: forcing a failure.
[  290.908756][T19687] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  290.914167][T19686] loop4: detected capacity change from 0 to 1024
[  290.921844][T19687] CPU: 1 UID: 0 PID: 19687 Comm: syz.3.5739 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  290.930007][T19686] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  290.938998][T19687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  290.939025][T19687] Call Trace:
[  290.939033][T19687]  <TASK>
[  290.939041][T19687]  dump_stack_lvl+0xf2/0x150
[  290.939066][T19687]  dump_stack+0x15/0x20
[  290.939083][T19687]  should_fail_ex+0x229/0x230
[  290.939107][T19687]  should_fail+0xb/0x10
[  290.939126][T19687]  should_fail_usercopy+0x1a/0x20
[  290.949060][T19686] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  290.958688][T19687]  _copy_to_user+0x1e/0xa0
[  290.958720][T19687]  simple_read_from_buffer+0xa0/0x110
[  290.962983][T19686] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #2: comm syz.4.5738: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  290.964922][T19687]  proc_fail_nth_read+0xff/0x140
[  290.964948][T19687]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  290.969662][T19686] EXT4-fs (loop4): get root inode failed
[  290.973688][T19687]  vfs_read+0x1a2/0x6e0
[  290.978447][T19686] EXT4-fs (loop4): mount failed
[  290.982542][T19687]  ? __rcu_read_unlock+0x4e/0x70
[  291.055109][T19687]  ? __fget_files+0x1da/0x210
[  291.059876][T19687]  ksys_read+0xeb/0x1b0
[  291.064027][T19687]  __x64_sys_read+0x42/0x50
[  291.068521][T19687]  x64_sys_call+0x27d3/0x2d60
[  291.073189][T19687]  do_syscall_64+0xc9/0x1c0
[  291.077698][T19687]  ? clear_bhb_loop+0x55/0xb0
[  291.082575][T19687]  ? clear_bhb_loop+0x55/0xb0
[  291.087356][T19687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.093247][T19687] RIP: 0033:0x7f143da7c93c
[  291.097696][T19687] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  291.117316][T19687] RSP: 002b:00007f143c6f7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  291.125780][T19687] RAX: ffffffffffffffda RBX: 00007f143dc35f80 RCX: 00007f143da7c93c
[  291.133829][T19687] RDX: 000000000000000f RSI: 00007f143c6f70a0 RDI: 0000000000000007
[  291.141882][T19687] RBP: 00007f143c6f7090 R08: 0000000000000000 R09: 0000000000000000
[  291.149840][T19687] R10: 0000000004008804 R11: 0000000000000246 R12: 0000000000000001
[  291.157796][T19687] R13: 0000000000000000 R14: 00007f143dc35f80 R15: 00007ffcd842f0b8
[  291.165897][T19687]  </TASK>
[  291.320329][T19708] syz.0.5749[19708] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  291.320393][T19708] syz.0.5749[19708] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  291.336718][T19711] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  291.337489][ T3340] IPVS: starting estimator thread 0...
[  291.391636][T19714] bond2: entered promiscuous mode
[  291.396786][T19714] bond2: entered allmulticast mode
[  291.402283][T19714] 8021q: adding VLAN 0 to HW filter on device bond2
[  291.438385][T19721] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5754'.
[  291.454010][T19712] IPVS: using max 2880 ests per chain, 144000 per kthread
[  291.565216][   T29] kauditd_printk_skb: 266 callbacks suppressed
[  291.565229][   T29] audit: type=1326 audit(2000000231.292:75375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19733 comm="syz.0.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f787400def9 code=0x7ffc0000
[  291.610212][T19734] bond_slave_1: mtu less than device minimum
[  291.617256][   T29] audit: type=1400 audit(2000000231.322:75376): avc:  denied  { setopt } for  pid=19724 comm="syz.1.5756" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  291.637018][   T29] audit: type=1326 audit(2000000231.322:75377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19733 comm="syz.0.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f787400def9 code=0x7ffc0000
[  291.660709][   T29] audit: type=1326 audit(2000000231.322:75378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19733 comm="syz.0.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f787400def9 code=0x7ffc0000
[  291.684403][   T29] audit: type=1400 audit(2000000231.322:75379): avc:  denied  { create } for  pid=19724 comm="syz.1.5756" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  291.704329][   T29] audit: type=1326 audit(2000000231.322:75380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19733 comm="syz.0.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f787400def9 code=0x7ffc0000
[  291.728036][   T29] audit: type=1326 audit(2000000231.322:75381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19733 comm="syz.0.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f787400def9 code=0x7ffc0000
[  291.751991][   T29] audit: type=1326 audit(2000000231.322:75382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19733 comm="syz.0.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f787400def9 code=0x7ffc0000
[  291.775631][   T29] audit: type=1326 audit(2000000231.322:75383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19733 comm="syz.0.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f787400def9 code=0x7ffc0000
[  291.799303][   T29] audit: type=1326 audit(2000000231.322:75384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19733 comm="syz.0.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f787400def9 code=0x7ffc0000
[  291.838618][T19739] loop0: detected capacity change from 0 to 128
[  291.850247][T19739] syz.0.5762: attempt to access beyond end of device
[  291.850247][T19739] loop0: rw=34817, sector=97, nr_sectors = 32 limit=128
[  291.875067][T19742] loop3: detected capacity change from 0 to 512
[  291.912895][T19744] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  291.919569][T19744] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  291.927356][T19744] vhci_hcd vhci_hcd.0: Device attached
[  291.936615][T19744] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  291.944018][T19744] vhci_hcd: invalid port number 23
[  291.949596][T19745] vhci_hcd: connection closed
[  291.949817][   T11] vhci_hcd: stop threads
[  291.958837][   T11] vhci_hcd: release socket
[  291.963290][   T11] vhci_hcd: disconnect device
[  292.170899][T19766] loop4: detected capacity change from 0 to 512
[  292.857567][T19787] loop0: detected capacity change from 0 to 512
[  292.879837][T19788] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  292.956527][T19789] loop0: detected capacity change from 0 to 128
[  292.969757][T19787] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  292.977648][T19787] FAT-fs (loop0): Filesystem has been set read-only
[  292.984302][T19787] syz.0.5782: attempt to access beyond end of device
[  292.984302][T19787] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  292.998135][T19787] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  293.005985][T19787] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[  293.014047][T19787] syz.0.5782: attempt to access beyond end of device
[  293.014047][T19787] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  293.027597][T19787] syz.0.5782: attempt to access beyond end of device
[  293.027597][T19787] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[  293.227660][T19797] netlink: 47 bytes leftover after parsing attributes in process `syz.0.5786'.
[  293.262639][T19799] loop4: detected capacity change from 0 to 1024
[  293.269936][T19799] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  293.279786][T19799] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  293.290884][T19799] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #2: comm syz.4.5787: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  293.309036][T19799] EXT4-fs (loop4): get root inode failed
[  293.314733][T19799] EXT4-fs (loop4): mount failed
[  293.362014][T19803] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  293.368544][T19803] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  293.376372][T19803] vhci_hcd vhci_hcd.0: Device attached
[  293.383556][T19803] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  293.391282][T19803] vhci_hcd: invalid port number 23
[  293.397362][T19805] vhci_hcd: connection closed
[  293.402061][T19809] loop3: detected capacity change from 0 to 764
[  293.413733][   T11] vhci_hcd: stop threads
[  293.418054][   T11] vhci_hcd: release socket
[  293.418224][T19809] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  293.422454][   T11] vhci_hcd: disconnect device
[  293.445662][T19809] SELinux:  Context system_u:object_r:var_lock_t:s0 is not valid (left unmapped).
[  293.971108][T19809] +}[@ invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  293.984859][T19809] CPU: 1 UID: 0 PID: 19809 Comm: +}[@ Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  293.995137][T19809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  294.005200][T19809] Call Trace:
[  294.008462][T19809]  <TASK>
[  294.011376][T19809]  dump_stack_lvl+0xf2/0x150
[  294.015955][T19809]  dump_stack+0x15/0x20
[  294.020092][T19809]  dump_header+0x83/0x2d0
[  294.024407][T19809]  oom_kill_process+0x341/0x4c0
[  294.029299][T19809]  out_of_memory+0x9af/0xbe0
[  294.033919][T19809]  ? __rcu_read_unlock+0x4e/0x70
[  294.038857][T19809]  mem_cgroup_out_of_memory+0x13e/0x190
[  294.044447][T19809]  try_charge_memcg+0x51b/0x810
[  294.049409][T19809]  obj_cgroup_charge_pages+0xbd/0x1a0
[  294.054767][T19809]  __memcg_kmem_charge_page+0x9d/0x170
[  294.060299][T19809]  __alloc_pages_noprof+0x1bc/0x360
[  294.065505][T19809]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  294.070948][T19809]  alloc_pages_noprof+0xe1/0x100
[  294.075914][T19809]  __vmalloc_node_range_noprof+0x736/0xec0
[  294.081767][T19809]  __kvmalloc_node_noprof+0x121/0x170
[  294.087251][T19809]  ? ip_set_alloc+0x1f/0x30
[  294.091752][T19809]  ip_set_alloc+0x1f/0x30
[  294.096079][T19809]  hash_netiface_create+0x273/0x730
[  294.101273][T19809]  ? __nla_parse+0x40/0x60
[  294.105717][T19809]  ? __pfx_hash_netiface_create+0x10/0x10
[  294.111430][T19809]  ip_set_create+0x359/0x8a0
[  294.116100][T19809]  ? strnstr+0xf1/0x100
[  294.120311][T19809]  ? __nla_parse+0x40/0x60
[  294.124797][T19809]  nfnetlink_rcv_msg+0x4a9/0x570
[  294.129906][T19809]  netlink_rcv_skb+0x12c/0x230
[  294.134713][T19809]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  294.140177][T19809]  nfnetlink_rcv+0x16c/0x15e0
[  294.144877][T19809]  ? kmem_cache_free+0xd8/0x280
[  294.149790][T19809]  ? nlmon_xmit+0x51/0x60
[  294.154121][T19809]  ? __kfree_skb+0x102/0x150
[  294.158767][T19809]  ? consume_skb+0x57/0x180
[  294.163355][T19809]  ? nlmon_xmit+0x51/0x60
[  294.167767][T19809]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  294.173146][T19809]  ? __dev_queue_xmit+0xb86/0x1fe0
[  294.178379][T19809]  ? ref_tracker_free+0x3a5/0x410
[  294.183437][T19809]  ? __pfx_cmp_ex_search+0x10/0x10
[  294.188564][T19809]  ? __dev_queue_xmit+0x161/0x1fe0
[  294.193753][T19809]  ? __netlink_deliver_tap+0x495/0x4c0
[  294.199245][T19809]  netlink_unicast+0x599/0x670
[  294.204009][T19809]  netlink_sendmsg+0x5cc/0x6e0
[  294.208773][T19809]  ? __pfx_netlink_sendmsg+0x10/0x10
[  294.214125][T19809]  __sock_sendmsg+0x140/0x180
[  294.218865][T19809]  ____sys_sendmsg+0x312/0x410
[  294.223635][T19809]  __sys_sendmsg+0x1e9/0x280
[  294.228241][T19809]  __x64_sys_sendmsg+0x46/0x50
[  294.233075][T19809]  x64_sys_call+0x2689/0x2d60
[  294.237795][T19809]  do_syscall_64+0xc9/0x1c0
[  294.242324][T19809]  ? clear_bhb_loop+0x55/0xb0
[  294.246993][T19809]  ? clear_bhb_loop+0x55/0xb0
[  294.251673][T19809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.257586][T19809] RIP: 0033:0x7f143da7def9
[  294.262004][T19809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.282562][T19809] RSP: 002b:00007f143c6f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  294.291076][T19809] RAX: ffffffffffffffda RBX: 00007f143dc35f80 RCX: 00007f143da7def9
[  294.299162][T19809] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000008
[  294.307146][T19809] RBP: 00007f143daf0b76 R08: 0000000000000000 R09: 0000000000000000
[  294.315156][T19809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  294.323118][T19809] R13: 0000000000000000 R14: 00007f143dc35f80 R15: 00007ffcd842f0b8
[  294.331088][T19809]  </TASK>
[  294.334432][T19809] memory: usage 307200kB, limit 307200kB, failcnt 10394
[  294.341849][T19809] memory+swap: usage 345016kB, limit 9007199254740988kB, failcnt 0
[  294.349783][T19809] kmem: usage 284368kB, limit 9007199254740988kB, failcnt 0
[  294.357192][T19809] Memory cgroup stats for /syz3:
[  294.374491][T19826] loop1: detected capacity change from 0 to 1024
[  294.388626][T19809] cache 21921792
[  294.392483][T19809] rss 1277952
[  294.392527][T19826] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  294.396010][T19809] shmem 21532672
[  294.409255][T19809] mapped_file 385024
[  294.413542][T19809] dirty 385024
[  294.417000][T19809] writeback 0
[  294.420402][T19809] workingset_refault_anon 0
[  294.425036][T19809] workingset_refault_file 329
[  294.429979][T19809] swap 38723584
[  294.433435][T19809] swapcached 176128
[  294.436777][T19830] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5799'.
[  294.437337][T19809] pgpgin 586318
[  294.449913][T19809] pgpgout 580610
[  294.453448][T19809] pgfault 333200
[  294.457054][T19809] pgmajfault 18
[  294.460520][T19809] inactive_anon 1564672
[  294.460809][T19826] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  294.464704][T19809] active_anon 21422080
[  294.464714][T19809] inactive_file 0
[  294.464721][T19809] active_file 389120
[  294.464727][T19809] unevictable 0
[  294.464733][T19809] hierarchical_memory_limit 314572800
[  294.464748][T19809] hierarchical_memsw_limit 9223372036854771712
[  294.464756][T19809] total_cache 21921792
[  294.464768][T19809] total_rss 1277952
[  294.464774][T19809] total_shmem 21532672
[  294.464780][T19809] total_mapped_file 385024
[  294.464787][T19809] total_dirty 385024
[  294.464793][T19809] total_writeback 0
[  294.464799][T19809] total_workingset_refault_anon 0
[  294.502453][T19835] loop0: detected capacity change from 0 to 128
[  294.534324][T19835] syz.0.5801: attempt to access beyond end of device
[  294.534324][T19835] loop0: rw=34817, sector=97, nr_sectors = 32 limit=128
[  294.538308][T19809] total_workingset_refault_file 329
[  294.557042][T19809] total_swap 38723584
[  294.561033][T19809] total_swapcached 176128
[  294.564998][T19826] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #2: comm syz.1.5797: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  294.565410][T19809] total_pgpgin 586318
[  294.587280][T19809] total_pgpgout 580610
[  294.591340][T19809] total_pgfault 333200
[  294.595544][T19809] total_pgmajfault 18
[  294.599546][T19809] total_inactive_anon 1564672
[  294.604237][T19809] total_active_anon 21422080
[  294.608920][T19809] total_inactive_file 0
[  294.610348][T19826] EXT4-fs (loop1): get root inode failed
[  294.613084][T19809] total_active_file 389120
[  294.613093][T19809] total_unevictable 0
[  294.613102][T19809] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[  294.618748][T19826] EXT4-fs (loop1): mount failed
[  294.623117][T19809] ,cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.5790,pid=19808,uid=0
[  294.649301][T19809] Memory cgroup out of memory: Killed process 19808 (syz.3.5790) total-vm:89164kB, anon-rss:720kB, file-rss:16036kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:1000
[  294.772158][T19845] loop4: detected capacity change from 0 to 128
[  294.780471][T19845] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  294.807100][T19845] ext4 filesystem being mounted at /417/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  294.837552][T13972] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  294.885942][T19809] +}[@ (19809) used greatest stack depth: 8256 bytes left
[  294.907942][T19865] loop0: detected capacity change from 0 to 1024
[  294.915935][T19865] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  294.926091][T19865] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  294.937312][T19867] SELinux:  Context system_u:object_r:var_t:s0 is not valid (left unmapped).
[  294.940891][T19862] loop4: detected capacity change from 0 to 256
[  294.947495][T19865] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #2: comm syz.0.5812: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  294.971550][T19865] EXT4-fs (loop0): get root inode failed
[  294.977264][T19865] EXT4-fs (loop0): mount failed
[  294.984655][T19862] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  295.081932][T19878] loop3: detected capacity change from 0 to 1024
[  295.089511][T19878] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  295.099523][T19878] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  295.110972][T19878] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.5818: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  295.129300][T19878] EXT4-fs (loop3): get root inode failed
[  295.135092][T19878] EXT4-fs (loop3): mount failed
[  295.147107][T19882] loop0: detected capacity change from 0 to 128
[  295.155776][T19882] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  295.168853][T19882] ext4 filesystem being mounted at /598/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  295.191865][T12680] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  295.205898][T19893] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  295.210693][T19895] loop0: detected capacity change from 0 to 128
[  295.225106][T19895] syz.0.5824: attempt to access beyond end of device
[  295.225106][T19895] loop0: rw=34817, sector=97, nr_sectors = 32 limit=128
[  295.286785][T19898] FAULT_INJECTION: forcing a failure.
[  295.286785][T19898] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  295.299909][T19898] CPU: 0 UID: 0 PID: 19898 Comm: syz.3.5826 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  295.310695][T19898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  295.320775][T19898] Call Trace:
[  295.324062][T19898]  <TASK>
[  295.327012][T19898]  dump_stack_lvl+0xf2/0x150
[  295.331729][T19898]  dump_stack+0x15/0x20
[  295.335958][T19898]  should_fail_ex+0x229/0x230
[  295.340696][T19898]  should_fail+0xb/0x10
[  295.344870][T19898]  should_fail_usercopy+0x1a/0x20
[  295.349916][T19898]  _copy_from_user+0x1e/0xd0
[  295.354639][T19898]  move_addr_to_kernel+0x82/0x120
[  295.359694][T19898]  __sys_connect+0x74/0x1c0
[  295.364205][T19898]  __x64_sys_connect+0x41/0x50
[  295.368976][T19898]  x64_sys_call+0x2220/0x2d60
[  295.373686][T19898]  do_syscall_64+0xc9/0x1c0
[  295.378194][T19898]  ? clear_bhb_loop+0x55/0xb0
[  295.382897][T19898]  ? clear_bhb_loop+0x55/0xb0
[  295.387608][T19898]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.393519][T19898] RIP: 0033:0x7f143da7def9
[  295.397935][T19898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.417548][T19898] RSP: 002b:00007f143c6f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  295.426041][T19898] RAX: ffffffffffffffda RBX: 00007f143dc35f80 RCX: 00007f143da7def9
[  295.434024][T19898] RDX: 0000000000000010 RSI: 0000000020000140 RDI: 0000000000000006
[  295.442055][T19898] RBP: 00007f143c6f7090 R08: 0000000000000000 R09: 0000000000000000
[  295.450033][T19898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  295.458048][T19898] R13: 0000000000000000 R14: 00007f143dc35f80 R15: 00007ffcd842f0b8
[  295.466027][T19898]  </TASK>
[  295.528294][T19900] chnl_net:caif_netlink_parms(): no params data found
[  295.577248][T19900] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.584454][T19900] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.592283][T19900] bridge_slave_0: entered allmulticast mode
[  295.599115][T19900] bridge_slave_0: entered promiscuous mode
[  295.606356][T19900] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.613456][T19900] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.660499][T19900] bridge_slave_1: entered allmulticast mode
[  295.671259][T19900] bridge_slave_1: entered promiscuous mode
[  295.678612][T19922] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5831'.
[  295.755648][T19900] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  295.771035][T19900] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  295.800398][T19900] team0: Port device team_slave_0 added
[  295.806903][T19900] team0: Port device team_slave_1 added
[  295.821275][T19900] batman_adv: batadv0: Adding interface: batadv_slave_0
[  295.822834][T19932] loop3: detected capacity change from 0 to 128
[  295.828307][T19900] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  295.828336][T19900] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  295.829233][T19900] batman_adv: batadv0: Adding interface: batadv_slave_1
[  295.836789][T19932] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  295.860600][T19900] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  295.860653][T19900] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  295.927596][T19932] ext4 filesystem being mounted at /576/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  295.947037][T19900] hsr_slave_0: entered promiscuous mode
[  295.953327][T19900] hsr_slave_1: entered promiscuous mode
[  295.953430][T12185] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  295.967946][T19900] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  295.975564][T19900] Cannot create hsr debugfs directory
[  296.026058][T19900] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.066904][T19900] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.136576][T19900] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.186949][T19900] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.426315][ T3363] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  296.436975][ T3363] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  296.446999][ T3363] bond0 (unregistering): Released all slaves
[  296.455738][ T3363] bond1 (unregistering): Released all slaves
[  296.464433][ T3363] bond2 (unregistering): Released all slaves
[  296.483137][T19900] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  296.491900][T19900] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  296.501830][ T3363] tipc: Disabling bearer <udp:syz1>
[  296.507114][ T3363] tipc: Left network mode
[  296.507151][T19900] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  296.520312][T19900] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  296.557417][ T3363] hsr_slave_0: left promiscuous mode
[  296.562964][ T3363] hsr_slave_1: left promiscuous mode
[  296.570068][ T3363] veth1_macvtap: left promiscuous mode
[  296.575561][ T3363] veth0_macvtap: left promiscuous mode
[  296.581106][ T3363] veth1_vlan: left promiscuous mode
[  296.586339][ T3363] veth0_vlan: left promiscuous mode
[  296.682158][ T3363] team0 (unregistering): Port device team_slave_1 removed
[  296.693873][ T3363] team0 (unregistering): Port device team_slave_0 removed
[  296.697642][   T29] kauditd_printk_skb: 80 callbacks suppressed
[  296.697654][   T29] audit: type=1326 audit(2000000236.412:75465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19957 comm="syz.1.5845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  296.732031][   T29] audit: type=1326 audit(2000000236.452:75466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19957 comm="syz.1.5845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  296.755753][   T29] audit: type=1326 audit(2000000236.452:75467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19957 comm="syz.1.5845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  296.758142][T19900] 8021q: adding VLAN 0 to HW filter on device bond0
[  296.779473][   T29] audit: type=1326 audit(2000000236.452:75468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19957 comm="syz.1.5845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  296.808526][T19956] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5844'.
[  296.813952][   T29] audit: type=1326 audit(2000000236.452:75469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19957 comm="syz.1.5845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  296.840161][T19962] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  296.842322][   T29] audit: type=1326 audit(2000000236.512:75470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19957 comm="syz.1.5845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  296.869374][T19964] FAULT_INJECTION: forcing a failure.
[  296.869374][T19964] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  296.875187][   T29] audit: type=1326 audit(2000000236.512:75471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19957 comm="syz.1.5845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  296.888509][T19964] CPU: 1 UID: 0 PID: 19964 Comm: syz.3.5847 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  296.912038][   T29] audit: type=1326 audit(2000000236.512:75472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19957 comm="syz.1.5845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  296.922734][T19964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  296.922748][T19964] Call Trace:
[  296.922756][T19964]  <TASK>
[  296.946246][   T29] audit: type=1326 audit(2000000236.512:75473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19957 comm="syz.1.5845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  296.956257][T19964]  dump_stack_lvl+0xf2/0x150
[  296.990696][T19964]  dump_stack+0x15/0x20
[  296.994862][T19964]  should_fail_ex+0x229/0x230
[  296.999668][T19964]  should_fail+0xb/0x10
[  297.003820][T19964]  should_fail_usercopy+0x1a/0x20
[  297.008856][T19964]  _copy_from_user+0x1e/0xd0
[  297.013487][T19964]  perf_copy_attr+0x146/0x5b0
[  297.018217][T19964]  __se_sys_perf_event_open+0x6d/0x2180
[  297.023808][T19964]  ? proc_fail_nth_write+0x130/0x160
[  297.029095][T19964]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  297.034742][T19964]  ? vfs_write+0x5a5/0x900
[  297.039214][T19964]  ? __fget_files+0x1da/0x210
[  297.043941][T19964]  __x64_sys_perf_event_open+0x67/0x80
[  297.049492][T19964]  x64_sys_call+0x18d7/0x2d60
[  297.054186][T19964]  do_syscall_64+0xc9/0x1c0
[  297.058704][T19964]  ? clear_bhb_loop+0x55/0xb0
[  297.063391][T19964]  ? clear_bhb_loop+0x55/0xb0
[  297.068133][T19964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.074034][T19964] RIP: 0033:0x7f143da7def9
[  297.078448][T19964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.098085][T19964] RSP: 002b:00007f143c6f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  297.106506][T19964] RAX: ffffffffffffffda RBX: 00007f143dc35f80 RCX: 00007f143da7def9
[  297.114535][T19964] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200000c0
[  297.122515][T19964] RBP: 00007f143c6f7090 R08: 0000000000000000 R09: 0000000000000000
[  297.130524][T19964] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  297.138509][T19964] R13: 0000000000000000 R14: 00007f143dc35f80 R15: 00007ffcd842f0b8
[  297.146553][T19964]  </TASK>
[  297.173170][T19900] 8021q: adding VLAN 0 to HW filter on device team0
[  297.183361][   T58] bridge0: port 1(bridge_slave_0) entered blocking state
[  297.190515][   T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[  297.207306][T19970] loop3: detected capacity change from 0 to 512
[  297.219347][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  297.226599][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  297.248804][T19970] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  297.266306][T19970] ext4 filesystem being mounted at /580/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  297.278627][T19972] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5850'.
[  297.299256][   T29] audit: type=1326 audit(2000000237.022:75474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19971 comm="syz.2.5850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  297.352010][ T3363] IPVS: stop unused estimator thread 0...
[  297.367404][T19900] 8021q: adding VLAN 0 to HW filter on device batadv0
[  297.436647][T19957] syz.1.5845 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  297.447785][T19957] CPU: 0 UID: 0 PID: 19957 Comm: syz.1.5845 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  297.458817][T19957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  297.468887][T19957] Call Trace:
[  297.472178][T19957]  <TASK>
[  297.475113][T19957]  dump_stack_lvl+0xf2/0x150
[  297.479712][T19957]  dump_stack+0x15/0x20
[  297.483950][T19957]  dump_header+0x83/0x2d0
[  297.488287][T19957]  oom_kill_process+0x341/0x4c0
[  297.493148][T19957]  out_of_memory+0x9af/0xbe0
[  297.497802][T19957]  ? __rcu_read_unlock+0x4e/0x70
[  297.502752][T19957]  mem_cgroup_out_of_memory+0x13e/0x190
[  297.508395][T19957]  try_charge_memcg+0x51b/0x810
[  297.513300][T19957]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  297.515528][T19900] veth0_vlan: entered promiscuous mode
[  297.519444][T19957]  __read_swap_cache_async+0x2b7/0x520
[  297.528102][T19900] veth1_vlan: entered promiscuous mode
[  297.530320][T19957]  swap_cluster_readahead+0x276/0x3f0
[  297.541213][T19957]  swapin_readahead+0xe4/0x760
[  297.545997][T19957]  ? __filemap_get_folio+0x420/0x5b0
[  297.550051][T19900] veth0_macvtap: entered promiscuous mode
[  297.551308][T19957]  ? swap_cache_get_folio+0x77/0x210
[  297.551338][T19957]  do_swap_page+0x3da/0x1ef0
[  297.566312][T19900] veth1_macvtap: entered promiscuous mode
[  297.566873][T19957]  ? hrtimer_start_range_ns+0x53d/0x580
[  297.578282][T19957]  ? hrtimer_try_to_cancel+0x106/0x1d0
[  297.583872][T19957]  ? __rcu_read_lock+0x36/0x50
[  297.588633][T19957]  ? pte_offset_map_nolock+0x124/0x1d0
[  297.594092][T19957]  handle_mm_fault+0x8cb/0x2a30
[  297.599070][T19957]  exc_page_fault+0x3b9/0x650
[  297.603756][T19957]  asm_exc_page_fault+0x26/0x30
[  297.608607][T19957] RIP: 0033:0x7f0d3ad6ffe8
[  297.613007][T19957] Code: 3c 24 48 89 4c 24 18 e8 c6 57 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 1f 58 ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f
[  297.632624][T19957] RSP: 002b:00007ffeee404720 EFLAGS: 00010293
[  297.638686][T19957] RAX: 0000000000000000 RBX: 00007f0d3aef5f80 RCX: 00007f0d3ad6ffe5
[  297.646647][T19957] RDX: 00007ffeee404760 RSI: 0000000000000000 RDI: 0000000000000000
[  297.654619][T19957] RBP: 00007f0d3aef7a80 R08: 0000000000000000 R09: 7fffffffffffffff
[  297.662753][T19957] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000048a2a
[  297.670824][T19957] R13: 00007ffeee404890 R14: 0000000000000032 R15: ffffffffffffffff
[  297.678799][T19957]  </TASK>
[  297.681926][T19957] memory: usage 307200kB, limit 307200kB, failcnt 13711
[  297.688986][T19957] memory+swap: usage 299344kB, limit 9007199254740988kB, failcnt 0
[  297.692430][T19900] batman_adv: batadv0: Interface activated: batadv_slave_0
[  297.696881][T19957] kmem: usage 299012kB, limit 9007199254740988kB, failcnt 0
[  297.696896][T19957] Memory cgroup stats for /syz1:
[  297.718123][T19900] batman_adv: batadv0: Interface activated: batadv_slave_1
[  297.718588][T19957] cache 98304
[  297.725885][T19900] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  297.730408][T19957] rss 0
[  297.733694][T19900] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  297.742302][T19957] shmem 0
[  297.742353][T19957] mapped_file 98304
[  297.745067][T19900] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  297.753700][T19957] dirty 98304
[  297.756644][T19900] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  297.760411][T19957] writeback 0
[  297.760419][T19957] workingset_refault_anon 1
[  297.788991][T19957] workingset_refault_file 1121
[  297.793741][T19957] swap 208896
[  297.797035][T19957] swapcached 4096
[  297.800757][T19957] pgpgin 739436
[  297.804230][T19957] pgpgout 739411
[  297.807842][T19957] pgfault 402466
[  297.811380][T19957] pgmajfault 24
[  297.814903][T19957] inactive_anon 0
[  297.818579][T19957] active_anon 4096
[  297.822294][T19957] inactive_file 0
[  297.826002][T19957] active_file 98304
[  297.829810][T19957] unevictable 0
[  297.833279][T19957] hierarchical_memory_limit 314572800
[  297.838766][T19957] hierarchical_memsw_limit 9223372036854771712
[  297.845032][T19957] total_cache 98304
[  297.848893][T19957] total_rss 0
[  297.852194][T19957] total_shmem 0
[  297.855786][T19957] total_mapped_file 98304
[  297.860110][T19957] total_dirty 98304
[  297.863988][T19957] total_writeback 0
[  297.864779][T12185] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.867905][T19957] total_workingset_refault_anon 1
[  297.881958][T19957] total_workingset_refault_file 1121
[  297.887287][T19957] total_swap 208896
[  297.891084][T19957] total_swapcached 4096
[  297.895243][T19957] total_pgpgin 739436
[  297.899373][T19957] total_pgpgout 739411
[  297.903428][T19957] total_pgfault 402466
[  297.907521][T19957] total_pgmajfault 24
[  297.911493][T19957] total_inactive_anon 0
[  297.915782][T19957] total_active_anon 4096
[  297.920076][T19957] total_inactive_file 0
[  297.924242][T19957] total_active_file 98304
[  297.928563][T19957] total_unevictable 0
[  297.932606][T19957] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.5845,pid=19957,uid=0
[  297.947685][T19957] Memory cgroup out of memory: Killed process 19957 (syz.1.5845) total-vm:87248kB, anon-rss:612kB, file-rss:16164kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:1000
[  297.990655][T19995] loop3: detected capacity change from 0 to 1024
[  297.999103][T19995] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  298.010426][T19995] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  298.022020][T19995] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.5853: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  298.042076][T19995] EXT4-fs (loop3): get root inode failed
[  298.047778][T19995] EXT4-fs (loop3): mount failed
[  298.049047][T20006] loop0: detected capacity change from 0 to 128
[  298.065416][T20006] syz.0.5827: attempt to access beyond end of device
[  298.065416][T20006] loop0: rw=34817, sector=97, nr_sectors = 32 limit=128
[  298.105417][T20002] loop4: detected capacity change from 0 to 128
[  298.114978][T20002] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  298.128803][T20002] ext4 filesystem being mounted at /419/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  298.149260][T20014] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5860'.
[  298.316189][T20031] loop0: detected capacity change from 0 to 128
[  298.324356][T20031] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  298.337041][T20031] ext4 filesystem being mounted at /2/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  298.369282][T20037] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  298.378007][T20037] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  298.825841][T13972] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  298.875246][T20047] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5871'.
[  298.997875][T20061] netlink: 47 bytes leftover after parsing attributes in process `syz.1.5878'.
[  299.002816][T20057] loop3: detected capacity change from 0 to 128
[  299.015293][T20057] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  299.028291][T20057] ext4 filesystem being mounted at /583/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  299.043575][T19900] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  299.053257][T12185] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  299.124096][T20075] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5883'.
[  299.133468][T20078] bond_slave_1: mtu less than device minimum
[  299.882684][T20086] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5887'.
[  299.906811][T20096] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5891'.
[  299.937116][T20094] loop4: detected capacity change from 0 to 128
[  299.952665][T20098] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  299.958680][T20094] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  299.964708][T20109] loop3: detected capacity change from 0 to 128
[  299.979477][T20098] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  299.984474][T20094] ext4 filesystem being mounted at /430/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  300.000473][T20099] loop1: detected capacity change from 0 to 128
[  300.013679][T20109] syz.3.5894: attempt to access beyond end of device
[  300.013679][T20109] loop3: rw=34817, sector=97, nr_sectors = 32 limit=128
[  300.014907][T20115] netlink: 47 bytes leftover after parsing attributes in process `syz.2.5896'.
[  300.030853][T20099] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  300.040572][T13972] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  300.048785][T20099] ext4 filesystem being mounted at /281/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  300.130486][T20131] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5903'.
[  300.169537][T20133] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5904'.
[  300.236726][T20155] loop3: detected capacity change from 0 to 128
[  300.246453][T20155] syz.3.5913: attempt to access beyond end of device
[  300.246453][T20155] loop3: rw=34817, sector=97, nr_sectors = 32 limit=128
[  300.262661][T20160] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5915'.
[  300.318180][T20166] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5918'.
[  300.689873][T20196] chnl_net:caif_netlink_parms(): no params data found
[  300.732737][T17117] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  300.766971][T20196] bridge0: port 1(bridge_slave_0) entered blocking state
[  300.774181][T20196] bridge0: port 1(bridge_slave_0) entered disabled state
[  300.783181][T20196] bridge_slave_0: entered allmulticast mode
[  300.790745][T20196] bridge_slave_0: entered promiscuous mode
[  300.798161][T20196] bridge0: port 2(bridge_slave_1) entered blocking state
[  300.802355][T20236] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  300.805321][T20196] bridge0: port 2(bridge_slave_1) entered disabled state
[  300.820795][T20236] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  300.828747][T20196] bridge_slave_1: entered allmulticast mode
[  300.835572][T20196] bridge_slave_1: entered promiscuous mode
[  300.857294][T20196] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  300.871544][T20196] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  300.898245][T20196] team0: Port device team_slave_0 added
[  300.911047][T20196] team0: Port device team_slave_1 added
[  300.933857][T20196] batman_adv: batadv0: Adding interface: batadv_slave_0
[  300.940957][T20196] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  300.967040][T20196] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  300.978159][T20256] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  301.012156][   T58] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.023534][T20196] batman_adv: batadv0: Adding interface: batadv_slave_1
[  301.030534][T20196] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.056456][T20196] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  301.082342][T20196] hsr_slave_0: entered promiscuous mode
[  301.089460][T20196] hsr_slave_1: entered promiscuous mode
[  301.095538][T20196] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  301.103140][T20196] Cannot create hsr debugfs directory
[  301.111055][   T58] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.169406][   T58] bond0: (slave netdevsim1): Releasing backup interface
[  301.178301][   T58] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.227645][   T58] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.316874][T20254] syz.0.5952 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  301.327939][T20254] CPU: 1 UID: 0 PID: 20254 Comm: syz.0.5952 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  301.338700][T20254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  301.348813][T20254] Call Trace:
[  301.352084][T20254]  <TASK>
[  301.355011][T20254]  dump_stack_lvl+0xf2/0x150
[  301.359609][T20254]  dump_stack+0x15/0x20
[  301.363820][T20254]  dump_header+0x83/0x2d0
[  301.368158][T20254]  oom_kill_process+0x341/0x4c0
[  301.373062][T20254]  out_of_memory+0x9af/0xbe0
[  301.377689][T20254]  ? __rcu_read_unlock+0x4e/0x70
[  301.382668][T20254]  mem_cgroup_out_of_memory+0x13e/0x190
[  301.388381][T20254]  try_charge_memcg+0x51b/0x810
[  301.393243][T20254]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  301.399350][T20254]  __read_swap_cache_async+0x2b7/0x520
[  301.404893][T20254]  swap_cluster_readahead+0x276/0x3f0
[  301.410304][T20254]  swapin_readahead+0xe4/0x760
[  301.415085][T20254]  ? __filemap_get_folio+0x420/0x5b0
[  301.420426][T20254]  ? swap_cache_get_folio+0x77/0x210
[  301.425731][T20254]  do_swap_page+0x3da/0x1ef0
[  301.430339][T20254]  ? hrtimer_start_range_ns+0x53d/0x580
[  301.435986][T20254]  ? hrtimer_try_to_cancel+0x106/0x1d0
[  301.441592][T20254]  ? __rcu_read_lock+0x36/0x50
[  301.446484][T20254]  ? pte_offset_map_nolock+0x124/0x1d0
[  301.451957][T20254]  handle_mm_fault+0x8cb/0x2a30
[  301.456968][T20254]  exc_page_fault+0x3b9/0x650
[  301.461740][T20254]  asm_exc_page_fault+0x26/0x30
[  301.466620][T20254] RIP: 0033:0x7fd2c27a19dc
[  301.471048][T20254] Code: 72 64 0f 1f 40 00 69 3d d6 3c e1 00 e8 03 00 00 48 8d 1d b7 45 2e 00 e8 82 c4 12 00 eb 0c 48 81 c3 d8 00 00 00 48 39 dd 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 d8 00 00
[  301.490688][T20254] RSP: 002b:00007fff42a559e0 EFLAGS: 00010216
[  301.496759][T20254] RAX: 0000000000000000 RBX: 00007fd2c2a86058 RCX: 0000000000000000
[  301.504742][T20254] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055555f4a2808
[  301.512795][T20254] RBP: 00007fd2c2a87a80 R08: 0000000000000000 R09: 7fffffffffffffff
[  301.520781][T20254] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000049aad
[  301.528761][T20254] R13: 00007fff42a55ae0 R14: 0000000000000032 R15: ffffffffffffffff
[  301.536746][T20254]  </TASK>
[  301.539942][T20254] memory: usage 624kB, limit 307200kB, failcnt 14355
[  301.547089][T20254] memory+swap: usage 880kB, limit 9007199254740988kB, failcnt 0
[  301.554770][T20254] kmem: usage 440kB, limit 9007199254740988kB, failcnt 0
[  301.561995][T20254] Memory cgroup stats for /syz0:
[  301.562335][T20254] cache 159744
[  301.570752][T20254] rss 0
[  301.573505][T20254] shmem 0
[  301.576472][T20254] mapped_file 159744
[  301.580471][T20254] dirty 159744
[  301.583838][T20254] writeback 8192
[  301.587546][T20254] workingset_refault_anon 11
[  301.592208][T20254] workingset_refault_file 641
[  301.596906][T20254] swap 262144
[  301.600194][T20254] swapcached 28672
[  301.603906][T20254] pgpgin 616593
[  301.607392][T20254] pgpgout 616547
[  301.610929][T20254] pgfault 320453
[  301.614495][T20254] pgmajfault 28
[  301.617972][T20254] inactive_anon 8192
[  301.621856][T20254] active_anon 20480
[  301.625764][T20254] inactive_file 159744
[  301.629820][T20254] active_file 0
[  301.633257][T20254] unevictable 0
[  301.636713][T20254] hierarchical_memory_limit 314572800
[  301.642219][T20254] hierarchical_memsw_limit 9223372036854771712
[  301.648478][T20254] total_cache 159744
[  301.652345][T20254] total_rss 0
[  301.655822][T20254] total_shmem 0
[  301.659287][T20254] total_mapped_file 159744
[  301.663726][T20254] total_dirty 159744
[  301.667773][T20254] total_writeback 8192
[  301.671835][T20254] total_workingset_refault_anon 11
[  301.676953][T20254] total_workingset_refault_file 641
[  301.682136][T20254] total_swap 262144
[  301.685993][T20254] total_swapcached 28672
[  301.690305][T20254] total_pgpgin 616593
[  301.694393][T20254] total_pgpgout 616547
[  301.698459][T20254] total_pgfault 320453
[  301.702531][T20254] total_pgmajfault 28
[  301.706538][T20254] total_inactive_anon 8192
[  301.710944][T20254] total_active_anon 20480
[  301.715290][T20254] total_inactive_file 159744
[  301.719895][T20254] total_active_file 0
[  301.723958][T20254] total_unevictable 0
[  301.727940][T20254] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.5952,pid=20254,uid=0
[  301.743049][T20254] Memory cgroup out of memory: Killed process 20254 (syz.0.5952) total-vm:87116kB, anon-rss:740kB, file-rss:16172kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000
[  301.792915][T20282] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  301.799560][T20282] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  301.807317][T20282] vhci_hcd vhci_hcd.0: Device attached
[  301.810032][   T29] kauditd_printk_skb: 581 callbacks suppressed
[  301.810044][   T29] audit: type=1326 audit(2000000241.532:76056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  301.816192][T20282] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  301.846717][   T29] audit: type=1326 audit(2000000241.542:76057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  301.851387][T20282] vhci_hcd: invalid port number 23
[  301.873581][   T29] audit: type=1326 audit(2000000241.542:76058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  301.882927][T20284] vhci_hcd: connection closed
[  301.902369][   T29] audit: type=1326 audit(2000000241.542:76059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  301.902394][   T29] audit: type=1326 audit(2000000241.542:76060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  301.902472][   T29] audit: type=1326 audit(2000000241.542:76061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  301.909516][   T11] vhci_hcd: stop threads
[  301.930774][   T29] audit: type=1326 audit(2000000241.542:76062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  301.954378][   T11] vhci_hcd: release socket
[  301.954388][   T11] vhci_hcd: disconnect device
[  302.015520][   T29] audit: type=1326 audit(2000000241.542:76063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  302.039148][   T29] audit: type=1326 audit(2000000241.542:76064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  302.062731][   T29] audit: type=1326 audit(2000000241.542:76065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20286 comm="syz.2.5965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  302.156196][   T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  302.166404][   T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  302.176968][   T58] bond0 (unregistering): Released all slaves
[  302.185373][   T58] bond1 (unregistering): Released all slaves
[  302.203163][T20291] bond_slave_1: mtu less than device minimum
[  302.223688][T20295] loop1: detected capacity change from 0 to 512
[  302.232202][   T58] tipc: Disabling bearer <udp:syz1>
[  302.237587][   T58] tipc: Left network mode
[  302.245513][T20295] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  302.258133][T20295] ext4 filesystem being mounted at /285/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  302.316523][   T58] hsr_slave_0: left promiscuous mode
[  302.322270][   T58] hsr_slave_1: left promiscuous mode
[  302.329094][   T58] veth1_macvtap: left promiscuous mode
[  302.334686][   T58] veth0_macvtap: left promiscuous mode
[  302.340277][   T58] veth1_vlan: left promiscuous mode
[  302.345600][   T58] veth0_vlan: left promiscuous mode
[  302.408316][T17117] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  302.423400][   T58] team0 (unregistering): Port device team_slave_1 removed
[  302.433566][   T58] team0 (unregistering): Port device team_slave_0 removed
[  302.552363][T20311] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  302.588910][T20196] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  302.597903][T20196] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  302.607098][T20196] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  302.616828][T20196] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  302.704150][T20196] 8021q: adding VLAN 0 to HW filter on device bond0
[  302.735028][T20196] 8021q: adding VLAN 0 to HW filter on device team0
[  302.757778][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[  302.764884][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[  302.775943][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[  302.783024][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[  302.873421][T20307] syz.1.5972 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  302.884509][T20307] CPU: 0 UID: 0 PID: 20307 Comm: syz.1.5972 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  302.895385][T20307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  302.905480][T20307] Call Trace:
[  302.908763][T20307]  <TASK>
[  302.911687][T20307]  dump_stack_lvl+0xf2/0x150
[  302.916293][T20307]  dump_stack+0x15/0x20
[  302.920435][T20307]  dump_header+0x83/0x2d0
[  302.924767][T20307]  oom_kill_process+0x341/0x4c0
[  302.929650][T20307]  out_of_memory+0x9af/0xbe0
[  302.934236][T20307]  ? __rcu_read_unlock+0x4e/0x70
[  302.939174][T20307]  mem_cgroup_out_of_memory+0x13e/0x190
[  302.944778][T20307]  try_charge_memcg+0x51b/0x810
[  302.949623][T20307]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  302.955683][T20307]  __read_swap_cache_async+0x2b7/0x520
[  302.961165][T20307]  swap_cluster_readahead+0x276/0x3f0
[  302.966539][T20307]  swapin_readahead+0xe4/0x760
[  302.971388][T20307]  ? __filemap_get_folio+0x420/0x5b0
[  302.976672][T20307]  ? __lruvec_stat_mod_folio+0xdb/0x120
[  302.982217][T20307]  ? swap_cache_get_folio+0x77/0x210
[  302.987697][T20307]  do_swap_page+0x3da/0x1ef0
[  302.992721][T20307]  ? cgroup_rstat_updated+0x99/0x550
[  302.998101][T20307]  ? __rcu_read_lock+0x36/0x50
[  303.002899][T20307]  ? pte_offset_map_nolock+0x124/0x1d0
[  303.008352][T20307]  handle_mm_fault+0x8cb/0x2a30
[  303.013210][T20307]  exc_page_fault+0x3b9/0x650
[  303.017944][T20307]  asm_exc_page_fault+0x26/0x30
[  303.022798][T20307] RIP: 0033:0x7f0d3ac119dc
[  303.027203][T20307] Code: 72 64 0f 1f 40 00 69 3d d6 3c e1 00 e8 03 00 00 48 8d 1d b7 45 2e 00 e8 82 c4 12 00 eb 0c 48 81 c3 d8 00 00 00 48 39 dd 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 d8 00 00
[  303.046883][T20307] RSP: 002b:00007ffeee404790 EFLAGS: 00010206
[  303.052938][T20307] RAX: 0000000000000000 RBX: 00007f0d3aef5f80 RCX: 0000000000000000
[  303.060979][T20307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555560e9d808
[  303.068941][T20307] RBP: 00007f0d3aef7a80 R08: 0000000000000000 R09: 7fffffffffffffff
[  303.076903][T20307] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000004a0d4
[  303.084871][T20307] R13: 00007ffeee404890 R14: 0000000000000032 R15: ffffffffffffffff
[  303.092899][T20307]  </TASK>
[  303.096357][T20307] memory: usage 307200kB, limit 307200kB, failcnt 13881
[  303.103367][T20307] memory+swap: usage 295936kB, limit 9007199254740988kB, failcnt 0
[  303.111878][T20307] kmem: usage 275424kB, limit 9007199254740988kB, failcnt 0
[  303.119196][T20307] Memory cgroup stats for /syz1:
[  303.129918][T20307] cache 98304
[  303.138268][T20307] rss 4096
[  303.141291][T20307] shmem 0
[  303.144341][T20307] mapped_file 98304
[  303.148148][T20307] dirty 98304
[  303.149451][T20196] 8021q: adding VLAN 0 to HW filter on device batadv0
[  303.151438][T20307] writeback 8192
[  303.151447][T20307] workingset_refault_anon 31
[  303.166508][T20307] workingset_refault_file 1121
[  303.171262][T20307] swap 180224
[  303.174569][T20307] swapcached 28672
[  303.178289][T20307] pgpgin 743044
[  303.181747][T20307] pgpgout 743013
[  303.185452][T20307] pgfault 406956
[  303.189040][T20307] pgmajfault 35
[  303.192531][T20307] inactive_anon 0
[  303.196237][T20307] active_anon 28672
[  303.200030][T20307] inactive_file 0
[  303.203676][T20307] active_file 98304
[  303.207534][T20307] unevictable 0
[  303.211043][T20307] hierarchical_memory_limit 314572800
[  303.216492][T20307] hierarchical_memsw_limit 9223372036854771712
[  303.222792][T20307] total_cache 98304
[  303.226642][T20307] total_rss 4096
[  303.230339][T20307] total_shmem 0
[  303.233797][T20307] total_mapped_file 98304
[  303.238220][T20307] total_dirty 98304
[  303.242026][T20307] total_writeback 8192
[  303.246341][T20307] total_workingset_refault_anon 31
[  303.251448][T20307] total_workingset_refault_file 1121
[  303.256868][T20307] total_swap 180224
[  303.257101][T20196] veth0_vlan: entered promiscuous mode
[  303.260669][T20307] total_swapcached 28672
[  303.260678][T20307] total_pgpgin 743044
[  303.260684][T20307] total_pgpgout 743013
[  303.260692][T20307] total_pgfault 406956
[  303.282872][T20307] total_pgmajfault 35
[  303.286876][T20307] total_inactive_anon 0
[  303.291027][T20307] total_active_anon 28672
[  303.293059][T20196] veth1_vlan: entered promiscuous mode
[  303.295353][T20307] total_inactive_file 0
[  303.295362][T20307] total_active_file 98304
[  303.309270][T20307] total_unevictable 0
[  303.313242][T20307] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.5972,pid=20307,uid=0
[  303.328364][T20307] Memory cgroup out of memory: Killed process 20307 (syz.1.5972) total-vm:87116kB, anon-rss:612kB, file-rss:16172kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:1000
[  303.362080][T20196] veth0_macvtap: entered promiscuous mode
[  303.388195][T20196] veth1_macvtap: entered promiscuous mode
[  303.409940][T20196] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.420503][T20196] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.436440][T20196] batman_adv: batadv0: Interface activated: batadv_slave_0
[  303.447094][T20336] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  303.447993][T20196] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.453608][T20336] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  303.464129][T20196] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.471684][T20336] vhci_hcd vhci_hcd.0: Device attached
[  303.483362][T20196] batman_adv: batadv0: Interface activated: batadv_slave_1
[  303.497522][T20196] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  303.506401][T20196] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  303.507850][T20336] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  303.515347][T20196] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  303.531918][T20196] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  303.533721][T20336] vhci_hcd: invalid port number 23
[  303.590932][T20352] loop3: detected capacity change from 0 to 128
[  303.598873][T20338] vhci_hcd: connection closed
[  303.598985][   T11] vhci_hcd: stop threads
[  303.606263][T20352] syz.3.5930: attempt to access beyond end of device
[  303.606263][T20352] loop3: rw=34817, sector=97, nr_sectors = 32 limit=128
[  303.607953][   T11] vhci_hcd: release socket
[  303.625862][   T11] vhci_hcd: disconnect device
[  303.639914][T20353] bond_slave_1: mtu less than device minimum
[  303.660327][T20355] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  303.908763][T20388] loop3: detected capacity change from 0 to 128
[  304.333224][T20413] loop0: detected capacity change from 0 to 128
[  304.342347][T20413] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  304.357608][T20413] ext4 filesystem being mounted at /24/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  304.517164][T20424] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  304.523741][T20424] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  304.531621][T20424] vhci_hcd vhci_hcd.0: Device attached
[  304.539650][T20424] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  304.547129][T20424] vhci_hcd: invalid port number 23
[  304.558519][T20425] vhci_hcd: connection closed
[  304.558849][   T58] vhci_hcd: stop threads
[  304.567884][   T58] vhci_hcd: release socket
[  304.572390][   T58] vhci_hcd: disconnect device
[  304.609985][T20430] bond_slave_1: mtu less than device minimum
[  304.677676][T20442] __nla_validate_parse: 6 callbacks suppressed
[  304.677692][T20442] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6022'.
[  305.047108][T19900] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  305.097084][T20454] loop3: detected capacity change from 0 to 1024
[  305.105728][T20454] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  305.116970][T20452] loop0: detected capacity change from 0 to 128
[  305.123733][T20454] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  305.136597][T20452] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  305.149097][T20454] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.6026: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  305.167219][T20452] ext4 filesystem being mounted at /25/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  305.180885][T20454] EXT4-fs (loop3): get root inode failed
[  305.186692][T20454] EXT4-fs (loop3): mount failed
[  305.192265][T19900] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  305.252579][T20472] bond_slave_1: mtu less than device minimum
[  305.279581][T20478] loop0: detected capacity change from 0 to 256
[  305.288537][T20478] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  305.312593][T20480] loop0: detected capacity change from 0 to 128
[  305.378237][T20482] loop3: detected capacity change from 0 to 128
[  305.386608][T20482] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  305.398950][T20482] ext4 filesystem being mounted at /24/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  305.537906][T20492] loop0: detected capacity change from 0 to 128
[  305.551179][T20492] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  305.564267][T20492] ext4 filesystem being mounted at /32/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  305.586903][T20506] loop1: detected capacity change from 0 to 1024
[  305.593840][T20506] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  305.606338][T20506] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  305.635681][T20513] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6050'.
[  306.105135][T20196] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  306.271765][T19900] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  306.382319][T20549] loop0: detected capacity change from 0 to 1024
[  306.389583][T20549] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  306.399736][T20549] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  306.411045][T20549] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #2: comm syz.0.6065: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  306.435166][T20549] EXT4-fs (loop0): get root inode failed
[  306.440844][T20549] EXT4-fs (loop0): mount failed
[  306.446647][T17117] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.496502][T20556] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  306.520202][T20562] bond_slave_1: mtu less than device minimum
[  306.569703][T20570] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  306.578881][T20564] loop0: detected capacity change from 0 to 128
[  306.588398][T20564] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  306.600832][T20564] ext4 filesystem being mounted at /39/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  306.619384][T19900] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  306.653397][T20579] loop0: detected capacity change from 0 to 1024
[  306.662042][T20579] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  306.663880][T20582] netlink: 47 bytes leftover after parsing attributes in process `syz.4.6080'.
[  306.681921][T20579] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  306.689491][T20584] loop1: detected capacity change from 0 to 1024
[  306.702164][T20584] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  306.712519][T20584] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  306.723511][T20584] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #2: comm syz.1.6081: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  306.741833][T20584] EXT4-fs (loop1): get root inode failed
[  306.747510][T20584] EXT4-fs (loop1): mount failed
[  306.809951][T20594] bond_slave_1: mtu less than device minimum
[  306.816170][   T29] kauditd_printk_skb: 1390 callbacks suppressed
[  306.816182][   T29] audit: type=1326 audit(2000000246.542:77456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20593 comm="syz.1.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  306.847098][   T29] audit: type=1326 audit(2000000246.572:77457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20593 comm="syz.1.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d3ad3def9 code=0x7ffc0000
[  306.880092][T20596] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  306.886633][T20596] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  306.894396][T20596] vhci_hcd vhci_hcd.0: Device attached
[  306.901148][T20596] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  306.908573][T20596] vhci_hcd: invalid port number 23
[  306.914166][T20597] vhci_hcd: connection closed
[  306.914454][ T3363] vhci_hcd: stop threads
[  306.923380][ T3363] vhci_hcd: release socket
[  306.927846][ T3363] vhci_hcd: disconnect device
[  307.037746][T20609] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  307.173247][T20617] loop3: detected capacity change from 0 to 1024
[  307.180440][T20617] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  307.190364][T20617] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  307.215953][T20617] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.6094: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  307.234626][T20617] EXT4-fs (loop3): get root inode failed
[  307.240289][T20617] EXT4-fs (loop3): mount failed
[  307.338313][   T29] audit: type=1326 audit(2000000247.062:77458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20635 comm="syz.2.6103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  307.376435][T20630] loop3: detected capacity change from 0 to 128
[  307.392729][   T29] audit: type=1326 audit(2000000247.082:77459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20635 comm="syz.2.6103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  307.416586][   T29] audit: type=1326 audit(2000000247.082:77460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20635 comm="syz.2.6103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  307.440306][   T29] audit: type=1326 audit(2000000247.082:77461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20635 comm="syz.2.6103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  307.463858][   T29] audit: type=1326 audit(2000000247.082:77462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20635 comm="syz.2.6103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  307.487858][   T29] audit: type=1326 audit(2000000247.082:77463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20635 comm="syz.2.6103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  307.520945][T19900] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  307.530644][T20630] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  307.557324][T20630] ext4 filesystem being mounted at /36/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  307.560358][T20644] loop4: detected capacity change from 0 to 1024
[  307.584604][T20644] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  307.605563][T20196] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  307.618706][T20644] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  307.683594][T20659] loop1: detected capacity change from 0 to 1024
[  307.692518][T20659] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  307.703441][T20659] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  307.715933][T20659] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #2: comm syz.1.6112: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  307.735174][T20659] EXT4-fs (loop1): get root inode failed
[  307.740842][T20659] EXT4-fs (loop1): mount failed
[  307.820731][   T29] audit: type=1326 audit(2000000247.542:77464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20669 comm="syz.3.6116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1804fadef9 code=0x7ffc0000
[  307.860827][T20670] bond_slave_1: mtu less than device minimum
[  307.885139][T20672] netlink: 47 bytes leftover after parsing attributes in process `syz.1.6117'.
[  307.904214][   T29] audit: type=1326 audit(2000000247.572:77465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20669 comm="syz.3.6116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1804fadef9 code=0x7ffc0000
[  307.920165][T20674] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  308.168900][T20679] loop3: detected capacity change from 0 to 128
[  308.221882][T20679] ext4 filesystem being mounted at /43/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  308.488467][T20699] loop4: detected capacity change from 0 to 1024
[  308.497735][T20699] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  308.498029][T20700] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  308.516757][T20699] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  308.532995][T20699] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #2: comm syz.4.6128: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  308.552092][T20699] EXT4-fs (loop4): get root inode failed
[  308.557831][T20699] EXT4-fs (loop4): mount failed
[  308.680947][T20707] loop4: detected capacity change from 0 to 128
[  308.692413][T20707] ext4 filesystem being mounted at /491/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  308.758878][T20714] loop0: detected capacity change from 0 to 128
[  308.773917][T20714] ext4 filesystem being mounted at /46/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  308.892277][T20196] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  308.903281][T20196] CPU: 1 UID: 0 PID: 20196 Comm: syz-executor Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  308.914258][T20196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  308.924303][T20196] Call Trace:
[  308.927618][T20196]  <TASK>
[  308.930537][T20196]  dump_stack_lvl+0xf2/0x150
[  308.935160][T20196]  dump_stack+0x15/0x20
[  308.939356][T20196]  dump_header+0x83/0x2d0
[  308.943682][T20196]  oom_kill_process+0x341/0x4c0
[  308.948602][T20196]  out_of_memory+0x9af/0xbe0
[  308.953319][T20196]  ? __rcu_read_unlock+0x4e/0x70
[  308.958447][T20196]  mem_cgroup_out_of_memory+0x13e/0x190
[  308.964091][T20196]  try_charge_memcg+0x51b/0x810
[  308.968942][T20196]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  308.975050][T20196]  __read_swap_cache_async+0x2b7/0x520
[  308.980576][T20196]  swap_cluster_readahead+0x276/0x3f0
[  308.986065][T20196]  swapin_readahead+0xe4/0x760
[  308.990939][T20196]  ? __filemap_get_folio+0x420/0x5b0
[  308.996230][T20196]  ? save_fpregs_to_fpstate+0x102/0x160
[  309.001774][T20196]  ? swap_cache_get_folio+0x77/0x210
[  309.007089][T20196]  do_swap_page+0x3da/0x1ef0
[  309.011759][T20196]  ? hrtimer_start_range_ns+0x53d/0x580
[  309.017379][T20196]  ? hrtimer_try_to_cancel+0x106/0x1d0
[  309.022906][T20196]  ? __rcu_read_lock+0x36/0x50
[  309.027661][T20196]  ? pte_offset_map_nolock+0x124/0x1d0
[  309.033214][T20196]  handle_mm_fault+0x8cb/0x2a30
[  309.038069][T20196]  exc_page_fault+0x3b9/0x650
[  309.042786][T20196]  asm_exc_page_fault+0x26/0x30
[  309.047737][T20196] RIP: 0033:0x7f1804fdffa5
[  309.052155][T20196] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e c5 15 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  309.071753][T20196] RSP: 002b:00007fff21cb3648 EFLAGS: 00010246
[  309.077809][T20196] RAX: 0000000000000000 RBX: 000000000000006a RCX: 00007f1804fdffa3
[  309.085769][T20196] RDX: 00007fff21cb3660 RSI: 0000000000000000 RDI: 0000000000000000
[  309.093727][T20196] RBP: 00007fff21cb36bc R08: 000000002fc28e36 R09: 7fffffffffffffff
[  309.101691][T20196] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032
[  309.109655][T20196] R13: 000000000004b53a R14: 000000000004b4c5 R15: 00007fff21cb3710
[  309.117624][T20196]  </TASK>
[  309.121173][T20196] memory: usage 270540kB, limit 307200kB, failcnt 10572
[  309.128433][T20196] memory+swap: usage 270616kB, limit 9007199254740988kB, failcnt 0
[  309.136353][T20196] kmem: usage 269992kB, limit 9007199254740988kB, failcnt 0
[  309.143637][T20196] Memory cgroup stats for /syz3:
[  309.149533][T20738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6143'.
[  309.157868][T20196] cache 385024
[  309.166904][T20196] rss 28672
[  309.170013][T20196] shmem 0
[  309.173216][T20196] mapped_file 385024
[  309.177170][T20196] dirty 385024
[  309.180618][T20196] writeback 28672
[  309.184518][T20196] workingset_refault_anon 3
[  309.189120][T20196] workingset_refault_file 394
[  309.193978][T20196] swap 217088
[  309.197249][T20196] swapcached 32768
[  309.200957][T20196] pgpgin 593410
[  309.204461][T20196] pgpgout 593307
[  309.207997][T20196] pgfault 345271
[  309.211536][T20196] pgmajfault 19
[  309.215033][T20196] inactive_anon 0
[  309.218779][T20196] active_anon 32768
[  309.222697][T20196] inactive_file 0
[  309.226597][T20196] active_file 389120
[  309.227391][T20746] netlink: 47 bytes leftover after parsing attributes in process `syz.1.6146'.
[  309.230524][T20196] unevictable 0
[  309.242990][T20196] hierarchical_memory_limit 314572800
[  309.248399][T20196] hierarchical_memsw_limit 9223372036854771712
[  309.254561][T20196] total_cache 385024
[  309.258436][T20196] total_rss 28672
[  309.262052][T20196] total_shmem 0
[  309.265588][T20196] total_mapped_file 385024
[  309.270156][T20196] total_dirty 385024
[  309.274184][T20196] total_writeback 28672
[  309.278437][T20196] total_workingset_refault_anon 3
[  309.283586][T20196] total_workingset_refault_file 394
[  309.288813][T20196] total_swap 217088
[  309.292611][T20196] total_swapcached 32768
[  309.296960][T20196] total_pgpgin 593410
[  309.300953][T20196] total_pgpgout 593307
[  309.305071][T20196] total_pgfault 345271
[  309.309186][T20196] total_pgmajfault 19
[  309.313151][T20196] total_inactive_anon 0
[  309.317355][T20196] total_active_anon 32768
[  309.321726][T20196] total_inactive_file 0
[  309.325906][T20196] total_active_file 389120
[  309.330306][T20196] total_unevictable 0
[  309.334468][T20196] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.6127,pid=20694,uid=0
[  309.349455][T20196] Memory cgroup out of memory: Killed process 20694 (syz.3.6127) total-vm:87116kB, anon-rss:612kB, file-rss:16168kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:1000
[  309.485735][T20756] loop3: detected capacity change from 0 to 1024
[  309.492758][T20756] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  309.502706][T20756] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  309.514624][T20756] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.6150: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  309.532590][T20756] EXT4-fs (loop3): get root inode failed
[  309.538301][T20756] EXT4-fs (loop3): mount failed
[  309.545166][T20763] bond_slave_1: mtu less than device minimum
[  309.579434][T20769] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6156'.
[  309.588407][T20769] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  309.596066][T20769] batman_adv: batadv0: Removing interface: batadv_slave_0
[  309.617174][T20769] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  309.624783][T20769] batman_adv: batadv0: Removing interface: batadv_slave_1
[  309.662491][T20779] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  309.833510][T20788] loop3: detected capacity change from 0 to 128
[  309.845784][T20788] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  309.901933][T20796] loop0: detected capacity change from 0 to 1024
[  309.910928][T20796] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  309.923431][T20796] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  309.936016][T20796] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #2: comm syz.0.6166: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  309.958624][T20796] EXT4-fs (loop0): get root inode failed
[  309.964301][T20796] EXT4-fs (loop0): mount failed
[  310.105256][T20812] loop1: detected capacity change from 0 to 512
[  310.134268][T20771] syz.4.6158 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  310.145334][T20771] CPU: 0 UID: 0 PID: 20771 Comm: syz.4.6158 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  310.156332][T20771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  310.166426][T20771] Call Trace:
[  310.169701][T20771]  <TASK>
[  310.172625][T20771]  dump_stack_lvl+0xf2/0x150
[  310.177216][T20771]  dump_stack+0x15/0x20
[  310.181396][T20771]  dump_header+0x83/0x2d0
[  310.185721][T20771]  oom_kill_process+0x341/0x4c0
[  310.190610][T20771]  out_of_memory+0x9af/0xbe0
[  310.195262][T20771]  mem_cgroup_out_of_memory+0x13e/0x190
[  310.200883][T20771]  try_charge_memcg+0x51b/0x810
[  310.205729][T20771]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  310.211845][T20771]  __read_swap_cache_async+0x2b7/0x520
[  310.217367][T20771]  swap_cluster_readahead+0x276/0x3f0
[  310.222874][T20771]  swapin_readahead+0xe4/0x760
[  310.227633][T20771]  ? __filemap_get_folio+0x420/0x5b0
[  310.233021][T20771]  ? __lruvec_stat_mod_folio+0xdb/0x120
[  310.238624][T20771]  ? swap_cache_get_folio+0x77/0x210
[  310.243905][T20771]  do_swap_page+0x3da/0x1ef0
[  310.248522][T20771]  ? cgroup_rstat_updated+0x99/0x550
[  310.253808][T20771]  ? __rcu_read_lock+0x36/0x50
[  310.258707][T20771]  ? pte_offset_map_nolock+0x124/0x1d0
[  310.264193][T20771]  handle_mm_fault+0x8cb/0x2a30
[  310.269129][T20771]  exc_page_fault+0x3b9/0x650
[  310.273811][T20771]  asm_exc_page_fault+0x26/0x30
[  310.278735][T20771] RIP: 0033:0x7fb0103319dc
[  310.283214][T20771] Code: 72 64 0f 1f 40 00 69 3d d6 3c e1 00 e8 03 00 00 48 8d 1d b7 45 2e 00 e8 82 c4 12 00 eb 0c 48 81 c3 d8 00 00 00 48 39 dd 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 d8 00 00
[  310.302862][T20771] RSP: 002b:00007fffd14bb4c0 EFLAGS: 00010206
[  310.308921][T20771] RAX: 0000000000000000 RBX: 00007fb010615f80 RCX: 0000000000000000
[  310.317249][T20771] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555883f4808
[  310.325211][T20771] RBP: 00007fb010617a80 R08: 0000000000000000 R09: 7fffffffffffffff
[  310.333235][T20771] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000004bc90
[  310.341215][T20771] R13: 00007fffd14bb5c0 R14: 0000000000000032 R15: ffffffffffffffff
[  310.349183][T20771]  </TASK>
[  310.352316][T20771] memory: usage 307200kB, limit 307200kB, failcnt 15418
[  310.359288][T20771] memory+swap: usage 368284kB, limit 9007199254740988kB, failcnt 0
[  310.367182][T20771] kmem: usage 307120kB, limit 9007199254740988kB, failcnt 0
[  310.374496][T20771] Memory cgroup stats for /syz4:
[  310.388361][T20771] cache 61440
[  310.396635][T20771] rss 0
[  310.399403][T20771] shmem 0
[  310.402338][T20771] mapped_file 61440
[  310.406186][T20771] dirty 61440
[  310.409459][T20771] writeback 8192
[  310.412994][T20771] workingset_refault_anon 3
[  310.417498][T20771] workingset_refault_file 510
[  310.422195][T20771] swap 62550016
[  310.425806][T20771] swapcached 20480
[  310.429517][T20771] pgpgin 366365
[  310.432966][T20771] pgpgout 366345
[  310.436531][T20771] pgfault 252933
[  310.440064][T20771] pgmajfault 25
[  310.443522][T20771] inactive_anon 0
[  310.447189][T20771] active_anon 20480
[  310.451002][T20771] inactive_file 0
[  310.454639][T20771] active_file 61440
[  310.455498][T20816] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6175'.
[  310.458582][T20771] unevictable 0
[  310.458591][T20771] hierarchical_memory_limit 314572800
[  310.458599][T20771] hierarchical_memsw_limit 9223372036854771712
[  310.458608][T20771] total_cache 61440
[  310.486449][T20771] total_rss 0
[  310.487181][T20813] loop0: detected capacity change from 0 to 512
[  310.489770][T20771] total_shmem 0
[  310.489779][T20771] total_mapped_file 61440
[  310.489786][T20771] total_dirty 61440
[  310.489792][T20771] total_writeback 8192
[  310.511782][T20771] total_workingset_refault_anon 3
[  310.515394][T20817] loop1: detected capacity change from 0 to 128
[  310.516809][T20771] total_workingset_refault_file 510
[  310.516819][T20771] total_swap 62550016
[  310.532294][T20771] total_swapcached 20480
[  310.536544][T20771] total_pgpgin 366365
[  310.540509][T20771] total_pgpgout 366345
[  310.544655][T20771] total_pgfault 252933
[  310.548714][T20771] total_pgmajfault 25
[  310.552689][T20771] total_inactive_anon 0
[  310.556848][T20771] total_active_anon 20480
[  310.561167][T20771] total_inactive_file 0
[  310.565335][T20771] total_active_file 61440
[  310.569670][T20771] total_unevictable 0
[  310.573712][T20771] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.6158,pid=20771,uid=0
[  310.588802][T20771] Memory cgroup out of memory: Killed process 20771 (syz.4.6158) total-vm:89164kB, anon-rss:740kB, file-rss:16212kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:1000
[  310.625417][T20813] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  310.638008][T20812] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  310.645898][T20812] FAT-fs (loop1): Filesystem has been set read-only
[  310.660565][T20812] syz.1.6173: attempt to access beyond end of device
[  310.660565][T20812] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  310.675768][T20812] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  310.683606][T20812] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  310.690067][T20825] syz.2.6177[20825] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  310.693007][T20812] syz.1.6173: attempt to access beyond end of device
[  310.693007][T20812] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  310.695506][T20825] syz.2.6177[20825] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  310.704585][T20812] syz.1.6173: attempt to access beyond end of device
[  310.704585][T20812] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128
[  310.760691][   T24] IPVS: starting estimator thread 0...
[  310.768820][T20831] loop4: detected capacity change from 0 to 1024
[  310.776241][T20831] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  310.853975][T20829] IPVS: using max 2832 ests per chain, 141600 per kthread
[  310.905124][T20844] netlink: 47 bytes leftover after parsing attributes in process `syz.2.6184'.
[  310.953675][T20851] loop0: detected capacity change from 0 to 512
[  310.966263][T20851] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  311.151118][T20873] €: renamed from bond0 (while UP)
[  311.198143][T20875] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=5238 sclass=netlink_xfrm_socket pid=20875 comm=syz.1.6193
[  311.656080][T20893] loop0: detected capacity change from 0 to 512
[  311.673644][T20893] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  311.698816][T20893] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #17: comm syz.0.6203: iget: bad i_size value: -6917529027641081756
[  311.717694][T20893] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.6203: couldn't read orphan inode 17 (err -117)
[  311.758142][T20893] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.6203: bg 0: block 65: padding at end of block bitmap is not set
[  311.791000][T20893] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.6203: Failed to acquire dquot type 0
[  311.814203][T20903] loop3: detected capacity change from 0 to 1024
[  311.820477][T20905] loop4: detected capacity change from 0 to 1024
[  311.821296][T20903] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  311.827811][   T29] kauditd_printk_skb: 2214 callbacks suppressed
[  311.827824][   T29] audit: type=1400 audit(2000000251.552:79678): avc:  denied  { ioctl } for  pid=20892 comm="syz.0.6203" path="socket:[70777]" dev="sockfs" ino=70777 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  311.837594][T20903] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  311.853281][T20907] hub 8-0:1.0: USB hub found
[  311.876617][   T29] audit: type=1326 audit(2000000251.592:79679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20910 comm="syz.2.6210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  311.879898][T20907] hub 8-0:1.0: 8 ports detected
[  311.887391][T20905] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  311.911451][   T29] audit: type=1326 audit(2000000251.602:79680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20910 comm="syz.2.6210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  311.913748][T20903] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.6207: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  311.920879][   T29] audit: type=1326 audit(2000000251.602:79681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20910 comm="syz.2.6210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  311.962609][T20903] EXT4-fs (loop3): get root inode failed
[  311.986244][   T29] audit: type=1326 audit(2000000251.602:79682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20910 comm="syz.2.6210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  311.986302][   T29] audit: type=1326 audit(2000000251.602:79683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20910 comm="syz.2.6210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  311.986327][   T29] audit: type=1326 audit(2000000251.602:79684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20910 comm="syz.2.6210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  311.986352][   T29] audit: type=1326 audit(2000000251.602:79685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20910 comm="syz.2.6210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  311.986376][   T29] audit: type=1326 audit(2000000251.602:79686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20910 comm="syz.2.6210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  311.986405][   T29] audit: type=1326 audit(2000000251.602:79687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20910 comm="syz.2.6210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f0d9dd7def9 code=0x7ffc0000
[  312.134333][T20903] EXT4-fs (loop3): mount failed
[  312.148158][T20916] bond_slave_1: mtu less than device minimum
[  312.172277][T20918] loop1: detected capacity change from 0 to 512
[  312.199901][T20918] ext4 filesystem being mounted at /336/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  312.274480][T20928] loop0: detected capacity change from 0 to 128
[  312.282919][T20928] ext4 filesystem being mounted at /75/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  312.374435][T20945] FAULT_INJECTION: forcing a failure.
[  312.374435][T20945] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.387608][T20945] CPU: 1 UID: 0 PID: 20945 Comm: syz.1.6221 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  312.398379][T20945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  312.408440][T20945] Call Trace:
[  312.411751][T20945]  <TASK>
[  312.414742][T20945]  dump_stack_lvl+0xf2/0x150
[  312.419349][T20945]  dump_stack+0x15/0x20
[  312.423513][T20945]  should_fail_ex+0x229/0x230
[  312.428224][T20945]  should_fail+0xb/0x10
[  312.432406][T20945]  should_fail_usercopy+0x1a/0x20
[  312.437455][T20945]  _copy_from_user+0x1e/0xd0
[  312.442056][T20945]  copy_msghdr_from_user+0x54/0x2a0
[  312.447499][T20945]  __sys_recvmsg+0x16c/0x280
[  312.452114][T20945]  __x64_sys_recvmsg+0x46/0x50
[  312.456923][T20945]  x64_sys_call+0xb84/0x2d60
[  312.461527][T20945]  do_syscall_64+0xc9/0x1c0
[  312.466041][T20945]  ? clear_bhb_loop+0x55/0xb0
[  312.470715][T20945]  ? clear_bhb_loop+0x55/0xb0
[  312.475390][T20945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.481315][T20945] RIP: 0033:0x7f0d3ad3def9
[  312.485910][T20945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  312.505689][T20945] RSP: 002b:00007f0d399b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  312.514348][T20945] RAX: ffffffffffffffda RBX: 00007f0d3aef5f80 RCX: 00007f0d3ad3def9
[  312.522331][T20945] RDX: 0000000000000104 RSI: 0000000020001500 RDI: 0000000000000006
[  312.530398][T20945] RBP: 00007f0d399b1090 R08: 0000000000000000 R09: 0000000000000000
[  312.538365][T20945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  312.546343][T20945] R13: 0000000000000000 R14: 00007f0d3aef5f80 R15: 00007ffeee404628
[  312.554359][T20945]  </TASK>
[  312.663617][T20962] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  312.764395][T20970] loop0: detected capacity change from 0 to 512
[  312.764787][T13972] EXT4-fs unmount: 22 callbacks suppressed
[  312.764800][T13972] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.787860][T20968] loop1: detected capacity change from 0 to 128
[  312.800878][T20968] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  312.824410][T20968] ext4 filesystem being mounted at /341/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  312.844621][T20970] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  312.860563][T20978] FAULT_INJECTION: forcing a failure.
[  312.860563][T20978] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  312.873665][T20978] CPU: 1 UID: 0 PID: 20978 Comm: syz.2.6234 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  312.884433][T20978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  312.894493][T20978] Call Trace:
[  312.897771][T20978]  <TASK>
[  312.900841][T20978]  dump_stack_lvl+0xf2/0x150
[  312.905436][T20978]  dump_stack+0x15/0x20
[  312.909680][T20978]  should_fail_ex+0x229/0x230
[  312.914522][T20978]  should_fail+0xb/0x10
[  312.918716][T20978]  should_fail_usercopy+0x1a/0x20
[  312.923826][T20978]  _copy_from_user+0x1e/0xd0
[  312.928418][T20978]  copy_msghdr_from_user+0x54/0x2a0
[  312.933837][T20978]  __sys_sendmsg+0x17d/0x280
[  312.938451][T20978]  __x64_sys_sendmsg+0x46/0x50
[  312.943283][T20978]  x64_sys_call+0x2689/0x2d60
[  312.948100][T20978]  do_syscall_64+0xc9/0x1c0
[  312.952604][T20978]  ? clear_bhb_loop+0x55/0xb0
[  312.957364][T20978]  ? clear_bhb_loop+0x55/0xb0
[  312.962126][T20978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.968088][T20978] RIP: 0033:0x7f0d9dd7def9
[  312.972502][T20978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  312.992164][T20978] RSP: 002b:00007f0d9c9f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  313.000627][T20978] RAX: ffffffffffffffda RBX: 00007f0d9df35f80 RCX: 00007f0d9dd7def9
[  313.008617][T20978] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  313.016590][T20978] RBP: 00007f0d9c9f7090 R08: 0000000000000000 R09: 0000000000000000
[  313.024637][T20978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.029103][T20970] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.032595][T20978] R13: 0000000000000000 R14: 00007f0d9df35f80 R15: 00007fff3b453e08
[  313.050895][T20978]  </TASK>
[  313.058163][T17117] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  313.150190][T20987] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1296 sclass=netlink_route_socket pid=20987 comm=syz.4.6236
[  313.180426][T20987] netlink: 'syz.4.6236': attribute type 10 has an invalid length.
[  313.207994][T20987] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  313.219592][T19900] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.261200][T21004] loop1: detected capacity change from 0 to 128
[  313.273385][T21005] loop4: detected capacity change from 0 to 1024
[  313.282322][T21005] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  313.293480][T21005] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.361717][T21006] loop0: detected capacity change from 0 to 128
[  313.370977][T21006] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  313.384224][T21006] ext4 filesystem being mounted at /79/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  313.406817][T21014] loop3: detected capacity change from 0 to 128
[  313.407719][T21020] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  313.422917][T21014] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  313.436282][T21014] ext4 filesystem being mounted at /69/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  313.464707][T20196] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  313.485517][T21024] loop3: detected capacity change from 0 to 512
[  313.583766][T21027] loop3: detected capacity change from 0 to 128
[  313.665332][T21024] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  313.673181][T21024] FAT-fs (loop3): Filesystem has been set read-only
[  313.681440][T21024] syz.3.6249: attempt to access beyond end of device
[  313.681440][T21024] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  313.696592][T21024] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  313.704506][T21024] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  313.712634][T21024] syz.3.6249: attempt to access beyond end of device
[  313.712634][T21024] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  313.726891][T21024] syz.3.6249: attempt to access beyond end of device
[  313.726891][T21024] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[  313.883859][T21040] bond_slave_1: mtu less than device minimum
[  313.932412][T21046] loop3: detected capacity change from 0 to 128
[  313.995454][T21048] loop1: detected capacity change from 0 to 128
[  314.003799][T21048] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  314.018999][T21048] ext4 filesystem being mounted at /356/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  314.045977][T17117] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  314.065186][T21005] ==================================================================
[  314.073308][T21005] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / inode_cgwb_move_to_attached
[  314.082969][T21005] 
[  314.085294][T21005] write to 0xffff888106ec5860 of 8 bytes by task 21015 on cpu 1:
[  314.093013][T21005]  inode_cgwb_move_to_attached+0x9b/0x300
[  314.098737][T21005]  writeback_single_inode+0x395/0x4a0
[  314.104108][T21005]  sync_inode_metadata+0x5c/0x90
[  314.109039][T21005]  generic_buffers_fsync_noflush+0xe4/0x130
[  314.114932][T21005]  ext4_sync_file+0x20b/0x6c0
[  314.119857][T21005]  vfs_fsync_range+0x122/0x140
[  314.124619][T21005]  ext4_buffered_write_iter+0x338/0x380
[  314.130160][T21005]  ext4_file_write_iter+0x29f/0xe30
[  314.135346][T21005]  iter_file_splice_write+0x5e6/0x970
[  314.140716][T21005]  direct_splice_actor+0x16c/0x2c0
[  314.145816][T21005]  splice_direct_to_actor+0x305/0x670
[  314.151190][T21005]  do_splice_direct+0xd7/0x150
[  314.155953][T21005]  do_sendfile+0x3ab/0x950
[  314.160361][T21005]  __x64_sys_sendfile64+0x110/0x150
[  314.165556][T21005]  x64_sys_call+0xed5/0x2d60
[  314.170139][T21005]  do_syscall_64+0xc9/0x1c0
[  314.174633][T21005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.180522][T21005] 
[  314.182826][T21005] read to 0xffff888106ec5860 of 8 bytes by task 21005 on cpu 0:
[  314.190437][T21005]  generic_buffers_fsync_noflush+0x89/0x130
[  314.196329][T21005]  ext4_sync_file+0x20b/0x6c0
[  314.200994][T21005]  vfs_fsync_range+0x122/0x140
[  314.205744][T21005]  ext4_buffered_write_iter+0x338/0x380
[  314.211276][T21005]  ext4_file_write_iter+0x29f/0xe30
[  314.216470][T21005]  iter_file_splice_write+0x5e6/0x970
[  314.221836][T21005]  direct_splice_actor+0x16c/0x2c0
[  314.226932][T21005]  splice_direct_to_actor+0x305/0x670
[  314.232684][T21005]  do_splice_direct+0xd7/0x150
[  314.237445][T21005]  do_sendfile+0x3ab/0x950
[  314.241845][T21005]  __x64_sys_sendfile64+0x110/0x150
[  314.247046][T21005]  x64_sys_call+0xed5/0x2d60
[  314.251626][T21005]  do_syscall_64+0xc9/0x1c0
[  314.256122][T21005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.262013][T21005] 
[  314.264318][T21005] value changed: 0x0000000000000080 -> 0x0000000000000004
[  314.271407][T21005] 
[  314.273730][T21005] Reported by Kernel Concurrency Sanitizer on:
[  314.279862][T21005] CPU: 0 UID: 0 PID: 21005 Comm: syz.4.6242 Not tainted 6.11.0-rc7-syzkaller-00149-g0babf683783d #0
[  314.290610][T21005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  314.300652][T21005] ==================================================================
[  314.316426][T19900] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  314.344952][T13972] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.996678][   T29] kauditd_printk_skb: 398 callbacks suppressed
[  320.996742][   T29] audit: type=1400 audit(2000000260.722:80086): avc:  denied  { read } for  pid=2942 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  321.025123][   T29] audit: type=1400 audit(2000000260.722:80087): avc:  denied  { search } for  pid=2942 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  321.047488][   T29] audit: type=1400 audit(2000000260.722:80088): avc:  denied  { append } for  pid=2942 comm="syslogd" name="messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  321.070167][   T29] audit: type=1400 audit(2000000260.722:80089): avc:  denied  { open } for  pid=2942 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  321.092905][   T29] audit: type=1400 audit(2000000260.722:80090): avc:  denied  { getattr } for  pid=2942 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1