last executing test programs:

2.528661289s ago: executing program 3 (id=3341):
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000010000000000007300000000000000"], 0x48)
socket$inet6(0xa, 0x6, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
io_uring_enter(0xffffffffffffffff, 0xa3d, 0x0, 0x0, 0x0, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
renameat2(r0, &(0x7f0000000140)='./file1\x00', r0, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

2.500246421s ago: executing program 3 (id=3343):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000006000000000084e27fa40000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r1}, 0x10)
r2 = io_uring_setup(0x28bc, &(0x7f0000000100))
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r2, 0x8, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0}, 0x20)

2.417737869s ago: executing program 3 (id=3344):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b0000000000000000f600000080000000000000", @ANYRES16=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x7, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000000000008500000086020000950000fb96532a610000000000"], &(0x7f0000000040)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000300)='qgroup_meta_reserve\x00', r2}, 0x18)
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip6_tables_matches\x00')
preadv(r4, &(0x7f0000000200)=[{&(0x7f0000000380)=""/106, 0xbe}], 0x1, 0x40fb, 0x9)
r5 = ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
pipe(&(0x7f0000000200))
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
unshare(0x8000000)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
fallocate(r6, 0x0, 0x0, 0x8000001)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1600000000000000040000000180000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000100000002000000000000000000000000f30a8cdd9391d6"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r8}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mkdir(&(0x7f0000000000)='./file0\x00', 0x4f)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
umount2(&(0x7f0000000240)='./file0\x00', 0x0)
shmget$private(0x0, 0xfffffffffeffffff, 0x4800, &(0x7f0000ffc000/0x3000)=nil)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f0000185bc7f700000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)

2.179048811s ago: executing program 1 (id=3350):
r0 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x1, 0x1, 0x0, 0x0, 0x200, 0x2020, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x6810, 0x32514, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x202, 0x9, 0x0, 0x7, 0x0, 0xef9c, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000007000018010000202070250000000000", @ANYRES8=r2], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000940), 0x7}, 0x0, 0x0, 0x6e3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xb, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000b40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="350b00000000000000000d000f000c00018008000100", @ANYRES32=r3], 0x20}}, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000001440)='cgroup.procs\x00', 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
syz_clone3(&(0x7f00000004c0)={0xbe80b200, &(0x7f0000000040), 0x0, 0x0, {}, &(0x7f00000003c0)=""/161, 0xfffffffffffffd23, 0x0, 0x0}, 0x58)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file1\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)

2.128528895s ago: executing program 1 (id=3351):
unshare(0x20040600)
unshare(0x4000000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lsm, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r4, &(0x7f0000000000)="fa", 0xfffffdef)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$nfc_llcp(r5, 0x6, 0x0, 0x0, 0x2000e881)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_IP_XFRM_POLICY(r8, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0xfffc, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x8000000000000001, 0x0, 0x0, 0x0, 0x5}}, {{@in=@dev={0xac, 0x14, 0x14, 0x42}, 0x8000, 0x6c}, 0x0, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x9}}, 0xe8)
syz_emit_ethernet(0x3e, &(0x7f0000000200)={@broadcast, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}}}}}}, 0x0)

1.900228746s ago: executing program 2 (id=3354):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000a40)={[{@noquota}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noauto_da_alloc}, {@delalloc}, {@resuid}, {@oldalloc}, {@jqfmt_vfsv1}]}, 0xfc, 0x550, &(0x7f0000000340)="$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")
r1 = syz_open_procfs(0x0, &(0x7f0000000a80)='gid_map\x00')
fchmod(r1, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_smc(0x2b, 0x1, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_setup(0x5c23, &(0x7f0000000240)={0x0, 0x0, 0x13290}, 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r2, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r4}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

1.564842757s ago: executing program 0 (id=3356):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
rt_sigpending(0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=@newtaction={0x14, 0x30, 0x8}, 0x14}, 0x1, 0x0, 0x0, 0xc0}, 0x4000000)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0)
writev(r2, &(0x7f0000000440)=[{&(0x7f0000000040)="93d90400000300", 0x37}, {&(0x7f0000000140)="13146000000370", 0x7}], 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.507726062s ago: executing program 2 (id=3357):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1000e, &(0x7f0000000300), 0x3, 0x445, &(0x7f0000000b00)="$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")
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='tcp_cong_state_set\x00', r2}, 0x10)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendto$inet(r3, 0x0, 0x0, 0x28004814, 0x0, 0x0)
r4 = open(&(0x7f0000000040)='./control\x00', 0x0, 0x0)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000340), 0x402000, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="09022abd7000000000000100000008000600ac14142608000600ac14141308000b00", @ANYRES32], 0x2c}}, 0x0)
sendmsg$FOU_CMD_GET(r5, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x30, r7, 0x4, 0x70bd2c, 0x25dfdbfc, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e20}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @private1}]}, 0x30}, 0x1, 0x0, 0x0, 0x200048c4}, 0x200080c8)
getdents64(r4, &(0x7f0000fc4fbe)=""/34, 0x22)
getpid()
sched_setscheduler(0x0, 0x0, 0x0)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x5, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x6}]})
lseek(r4, 0x8, 0x1)
getdents64(r4, 0x0, 0x0)

1.394662073s ago: executing program 3 (id=3360):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
pipe(&(0x7f0000000580)={<r0=>0xffffffffffffffff})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xd0, &(0x7f0000000000)=ANY=[], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30"], 0x1e4}}, 0x0)
splice(r0, 0x0, r1, 0x0, 0x7fff, 0x0)

1.264541485s ago: executing program 4 (id=3361):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
write$selinux_access(0xffffffffffffffff, &(0x7f00000002c0)={'system_u:object_r:mqueue_spool_t:s0', 0x20, '/usr/sbin/cups-browsed'}, 0x50)
socket$inet6_sctp(0xa, 0x1, 0x84)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0x8, 0x8ee}, &(0x7f0000000040)=0x8)

1.176440082s ago: executing program 4 (id=3362):
r0 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x1, 0x1, 0x0, 0x0, 0x200, 0x2020, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x6810, 0x32514, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x202, 0x9, 0x0, 0x7, 0x0, 0xef9c, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000007000018010000202070250000000000", @ANYRES8=r2], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000940), 0x7}, 0x0, 0x0, 0x6e3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xb, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000b40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="350b00000000000000000d000f000c00018008000100", @ANYRES32=r3], 0x20}}, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000001440)='cgroup.procs\x00', 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
syz_clone3(&(0x7f00000004c0)={0xbe80b200, &(0x7f0000000040), 0x0, 0x0, {}, &(0x7f00000003c0)=""/161, 0xfffffffffffffd23, 0x0, 0x0}, 0x58)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file1\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)

1.128186927s ago: executing program 0 (id=3363):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000040), 0xfe, 0x53d, &(0x7f0000000fc0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
mount$tmpfs(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, 0x1, 0x8, 0x101}, 0x14}}, 0x0)

1.117454388s ago: executing program 1 (id=3364):
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x693}}, './file0\x00'})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRES8=r2, @ANYRES32], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r3}, &(0x7f0000000800), &(0x7f0000000840)=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = openat$selinux_member(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$selinux_access(r6, &(0x7f00000008c0)=ANY=[@ANYBLOB='system_u:object_r:ptch0 unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 0'], 0x67)

1.09413455s ago: executing program 2 (id=3365):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000400), 0x4, 0x4ec, &(0x7f00000013c0)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
stat(0x0, 0x0)

1.09318224s ago: executing program 4 (id=3366):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f0000000c00)={[{@noload}, {@noblock_validity}, {@discard}, {@errors_remount}, {@inode_readahead_blks, 0x0}, {@noauto_da_alloc}, {@noload}, {@journal_checksum}, {@mblk_io_submit}, {@noacl}, {@usrjquota}, {@nolazytime}, {@journal_dev={'journal_dev', 0x3d, 0x765}}, {@norecovery}, {@nobarrier}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@resgid}], [{@audit}, {@euid_gt}], 0x2c}, 0x2, 0x4f8, &(0x7f0000000700)="$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")
pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = dup(r0)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000380)=ANY=[])

1.070314172s ago: executing program 1 (id=3367):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
pipe(&(0x7f0000000580)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xd0, &(0x7f0000000000)=ANY=[], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30000000000800024000000001cc000000030a010200000000000000000200000009000100"], 0x1e4}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x7fff, 0x0)

951.572523ms ago: executing program 0 (id=3368):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000005000000010001000f00000001"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b708000000f1ff007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)="15b26f226e2966667482d50703b0a8d92ccd9e69d5cc4cb3d467a670b237a9225fb56c0f7ea725dee27c4bb43bb50c6748c83b71d59f0537405dfab648c096607340fac939a2efd31cbe2f8ca29c409e87ea0974b7bceff9afef5dffd691575f5115f2f961ad488e3386036913e98181a6034febaab853a3e928b9035b0e3a8e1cb393c70f6d0448970e0af2476f8b923ee09c19deca55d58f70e8eeff55dda6381cb96afe97196c0af0a8fd450a1447a1a521e2c211fb84cbcf4aebd3129897", 0xc0}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e4c", 0xc8}, {&(0x7f0000000380)="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", 0x9fd}], 0x3}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001700)="c9", 0x1}], 0x1}}], 0x3, 0x240080e4)

902.059008ms ago: executing program 2 (id=3369):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv4_newroute={0x1c, 0x15, 0x0, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0xff}}, 0x1c}}, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
socket$tipc(0x1e, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000200))
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

896.797748ms ago: executing program 4 (id=3370):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f"], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x1a, 0x0, &(0x7f0000000100)="b9ff0f316844268cb89e14f008004ce0050000000000002f77fb", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
socket$packet(0x11, 0x3, 0x300)
setsockopt$inet_mtu(r1, 0x0, 0xa, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={0xffffffffffffffff, 0x18000000000002a0, 0xb, 0x0, &(0x7f0000000100)="b9ff03316844268cb89e14", 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0xffbf)

868.9522ms ago: executing program 0 (id=3371):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000010000400000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x2, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)

860.473441ms ago: executing program 2 (id=3372):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$vcsa(0xffffff9c, &(0x7f0000000400), 0x80000, 0x0)
dup3(r0, r1, 0x0)
sendmsg$NFNL_MSG_ACCT_NEW(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000600)={0x14, 0x0, 0x7, 0x801, 0x0, 0x0, {0x2, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x20000004}, 0x804)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001780), r2)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='host1x_cdma_push\x00', r4, 0x0, 0x1b89}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x49, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
open_by_handle_at(0xffffffffffffff9c, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$eJzs3cFPG9kZAPBvBgiEkEDaHNqqbdI0bVpFscFJUJRTemlVRZGqRj31kFBwEMLGCJs00BzI/1CpkXpq/4QeKvVQKae97233tpfsYaXsbrSrsNIevJqxIYRgYDcES/j3k55m3jzj7z2sec98gF8APetcRKxFxLGIuBcRo+3rSbvEzVbJHvfyxaPp9RePppNoNu98luTt2bXY8jWZE+3nHIqIP/4u4i/Jm3HrK6vzU5VKealdLzaqi8X6yurluerUbHm2vFAqTU5Mjl+/cq10YGM9W/3P89/O3frT///3k2fvr/36b1m3RtptW8dxkFpDH9iMk+mPiFvvIlgX9LXHc6zbHeE7SSPiexFxPr//R6MvfzUBgKOs2RyN5ujWOgBw1KV5DixJC+1cwEikaaHQyuGdieG0Uqs3Lt2vLS/MtHJlYzGQ3p+rlMfbucKxGEiy+kR+/qpe2la/EhGnI+Lvg8fzemG6Vpnp5hsfAOhhJ7at/18OttZ/AOCIG+p2BwCAQ2f9B4DeY/0HgN5j/QeA3mP9B4DeY/0HgN5j/QeAnvKH27ez0lxvf/71zIOV5fnag8sz5fp8obo8XZiuLS0WZmu12fwze6p7PV+lVlucuBrLD4uNcr1RrK+s3q3Wlhcad/PP9b5bHjiUUQEAuzl99umHSUSs3Tiel9iyl4O1Go62tNsdALqmr9sdALrGbl/Qu/yMD+ywRe9rOv6J0JOD7wtwOC7+UP4fepX8P/Qu+X/oXfL/0LuazcSe/wDQY+T4Ab//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgG9vJC9JWmjvBT4SaVooRJyMiLEYSO7PVcrjEXEqIj4YHBjM6hPd7jQA8JbST5L2/l8XRy+MbG89lnw1mB8j4q//vPOPh1ONxtJEdv3zzeuNJ+3rpW70HwDYy8Y6vbGOb3j54tH0RjnM/jz/TWtz0Szueru0WvqjPz8OxUBEDH+RtOst2fuVvgOIv/Y4In6w0/iTPDcy1t75dHv8LPbJQ42fvhY/zdtax+x78f0D6Av0mqfZ/HNzp/svjXP5cef7fyifod7exvy3/sb8l27Of30d5r9z+41x9b3fd2x7HPGj/p3iJ5vxkw7xL+wz/kc//un5Tm3Nf0VcjJ3jb41VbFQXi/WV1ctz1anZ8mx5oVSanJgcv37lWqmY56iLG5nqN31649Kp3cY/3CH+0B7j/8U+x//vr+/9+We7xP/Vz3d+/c/sEj9bE3+5z/hTw//tuH13Fn+mw/j3ev0v7TP+s49XZ/b5UADgENRXVuenKpXykhMnTpxsnnR7ZgLetVc3fbd7AgAAAAAAAAAAAAAAdHIY/07U7TECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwdH0TAAD//yyP2UE=")
quotactl$Q_GETNEXTQUOTA(0xffffffff80000902, &(0x7f00000001c0)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000cc0)=@newtaction={0xa4, 0x30, 0x216822a75a8bdd29, 0x0, 0x0, {}, [{0x90, 0x1, [@m_skbmod={0x5c, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_PARMS={0x24}]}, {0x4}, {0xc}, {0xc}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = request_key(&(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x2}, &(0x7f00000002c0)=']\\\x00', 0xfffffffffffffffa)
r10 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r10, &(0x7f0000000100)='syzkaller\x00', &(0x7f0000000140)=@chain={'key_or_keyring:', r10})
keyctl$search(0xa, r9, &(0x7f0000000300)='rxrpc\x00', &(0x7f0000000340)={'syz', 0x1}, r10)
sendmsg$ETHTOOL_MSG_EEE_SET(r8, &(0x7f0000002580)={0x0, 0x0, &(0x7f0000002540)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001c"], 0x2c}}, 0x0)

794.266667ms ago: executing program 0 (id=3373):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0xfffffffe}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0) (fail_nth: 1)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001500), 0xffffffffffffffff)

478.547146ms ago: executing program 0 (id=3374):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
rt_sigpending(0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=@newtaction={0x14, 0x30, 0x8}, 0x14}, 0x1, 0x0, 0x0, 0xc0}, 0x4000000)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0)
writev(r2, &(0x7f0000000440)=[{&(0x7f0000000040)="93d90400000300", 0x37}, {&(0x7f0000000140)="13146000000370", 0x7}], 0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, 0x0, 0x0)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r8}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)

475.712626ms ago: executing program 2 (id=3375):
unshare(0x20040600)
unshare(0x4000000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0xffd, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lsm, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r4, &(0x7f0000000000)="fa", 0xfffffdef)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$nfc_llcp(r5, 0x6, 0x0, 0x0, 0x2000e881)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r6}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_IP_XFRM_POLICY(r8, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0xfffc, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x8000000000000001, 0x0, 0x0, 0x0, 0x5}}, {{@in=@dev={0xac, 0x14, 0x14, 0x42}, 0x8000, 0x6c}, 0x0, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x9}}, 0xe8)
syz_emit_ethernet(0x3e, &(0x7f0000000200)={@broadcast, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}}}}}}, 0x0)

473.469156ms ago: executing program 4 (id=3376):
r0 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x1, 0x1, 0x0, 0x0, 0x200, 0x2020, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x6810, 0x32514, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x202, 0x9, 0x0, 0x7, 0x0, 0xef9c, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000007000018010000202070250000000000", @ANYRES8=r2], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x22a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000940), 0x7}, 0x0, 0x0, 0x6e3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xb, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000b40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="350b00000000000000000d000f000c00018008000100", @ANYRES32=r3], 0x20}}, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000001440)='cgroup.procs\x00', 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
syz_clone3(&(0x7f00000004c0)={0xbe80b200, &(0x7f0000000040), 0x0, 0x0, {}, &(0x7f00000003c0)=""/161, 0xfffffffffffffd23, 0x0, 0x0}, 0x58)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file1\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)

337.530549ms ago: executing program 4 (id=3377):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f0000000c00)={[{@noload}, {@noblock_validity}, {@discard}, {@errors_remount}, {@inode_readahead_blks, 0x0}, {@noauto_da_alloc}, {@noload}, {@journal_checksum}, {@mblk_io_submit}, {@noacl}, {@usrjquota}, {@nolazytime}, {@journal_dev={'journal_dev', 0x3d, 0x765}}, {@norecovery}, {@nobarrier}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@resgid}], [{@audit}, {@euid_gt}], 0x2c}, 0x2, 0x4f8, &(0x7f0000000700)="$eJzs3EtvVGUfAPD/mbaUvtC3fXm9cVFG0dhopLRcFy6AaMLGxERjcFnbQpAChtYESCPFGEhcaPgEXnYmfgJXujFqXGjcStwaE2K6AV2YY87MmTrt6fTGtGPp75fM8JzbPM//nPMwz2VOA9iwytlbErE1In6OiJ7q4uwdytV/7k5PDv8xPTmcRJq+8ntS2e/O9ORwbdfacVvyhb5SROm9JHYWs+0cv3zl7NDY2OjFfEX/RClPnRs6PXp69PzgkSMH9ncdPjR4sClxZmW6s+OdC7u2n3j95kvDJ2++8e3nWXnTfHt9HFW9lfdNS86hrbCmHOXZ57LOU0sv+rrQXZdO2rP3UusKw5Jld212uToq9b8n2ipLVT3x4rstLRywqtI0TTsLa2e+y6bSeklSPSBNr6XAfSCJVpcAaI3aF/2d6aynOjlc7Aff324fi0oPKIv7bv6qbmmv9GDLvdW+Uccq5f9ARJyc+vOj7BXzjkMAADTXl8cibhyvtjtqr+qWUjxUt99/87mh3oj4X0Rsi4j/5+2XByMq+z4cEY/UHdO9hFmA8pzlYvvnx648Ud9cbZqs/fd8Prc1u/03U/LetnypuxJ/R3LqzNjovvyc9EVHZ7Y8UPzomWG1r1746cNG+Zfr2n/ZK8u/1hbMy/Fb+5wBupGhiaF7jbvm9rXKib1ajD+J9qSWitgeETtW8PnZOTvzzGe7Gm2fFX8WZyH+Dxp/ePsKCjRH+knE09XrPxVz4o98/i+pzE+ee6t//PKV587Uz08OHD40eLB/c4yN7uuv3RVF3/1w/eU8WehGLHD9a1VjVSfSsuv/n3nv/5mZy94sNTNfO778PK7futGwT7PS+39T8molXZufvTQ0MXFxIGJTMlVcP/jPsZeGumbtn8Xft2f++r8t4q+P8+N2RkR2Ez8aEY9FxO687I9HxBMRsWeB+L85/uSbjbqQi8e/urL4R5Z1/Rsljn4fMf+mtrNff1HI+P1yIf6OaHT9D1RSffmakaGJzYvFtVBJ6xP3fAIBAABgHdgdEVsjKe3NB5q2Rqm0d2/ElpkRlPGJZ09dePv8SPUZgd7oKNVGunrqxkMH8rHhbDk7arBuOdu+vzJunKZp2pUtZ/33se7Whg4b3pYG9T/za/GRFuB+s6x5tEZPtAHr0tz6f2vJRzb/BxnA2mrC72iAdUr9h41ryfV/tZ6CA1pmvvp/NeJuC4oCrLH56v9rhTVH16QswNrS/4eNa+X1348BYL3z/Q8b0pIekl9BYtuJBfZJ2lcn08aJUiz8VwB6I2pram2ahT/wl1JEc0rY1tRIu2Zd09K8+2yOZuQVpUX3aV/GH2JY20Tp31GMaqIzIha5e2dutqu1xJXVLlilEnza2v+dAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7t3fAQAA///tUdPr")
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

263.125376ms ago: executing program 3 (id=3378):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000040), 0xfe, 0x53d, &(0x7f0000000fc0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
mount$tmpfs(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, 0x1, 0x8, 0x101}, 0x14}}, 0x0)

202.289721ms ago: executing program 1 (id=3379):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="004674d8fd0000000000f3a7da670000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x20802, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r3 = syz_io_uring_setup(0x62b8, &(0x7f0000000200)={0x0, 0xe855, 0x800, 0x1}, &(0x7f0000000100), &(0x7f0000000000)=<r4=>0x0)
syz_io_uring_setup(0xdc, &(0x7f0000000280)={0x0, 0x93f0, 0x10, 0x0, 0x3}, &(0x7f0000000040)=<r5=>0x0, &(0x7f00000003c0))
syz_io_uring_submit(r5, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r3, 0xb15, 0x0, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0b00000005000000010001000900000001000000", @ANYRES32, @ANYBLOB="feffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000feffffb0d1d4d2494dd9eb0000000000000000004fd4aece809f3dcb79168cf18f00ea0b9d053ca59389b4a6460661e2f8ea9068db777c064fe61d2082112c8fc3b40599"], 0x48)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r7, @ANYBLOB='\b\x00\n'], 0xb4}, 0x1, 0x0, 0x0, 0x4}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
r10 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r10, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r10, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0xfffffffe}, 0x10)
close_range(r9, 0xffffffffffffffff, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000005580)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r12 = socket$nl_route(0x10, 0x3, 0x0)
r13 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r13, &(0x7f00000000c0)={0xa, 0x500, 0x0, @mcast1, 0x6}, 0x1c)
getpeername$inet6(r13, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'dummy0\x00', <r14=>0x0})
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000000)={@ifindex=r14, r11, 0x2f, 0x4, 0x5, @void, @value}, 0x20)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

46.352405ms ago: executing program 1 (id=3380):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)

0s ago: executing program 3 (id=3381):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="5fa3c0c7155a80729227062e5295c8fbcb7298950573fa6e33f6adaf87d03668370b8b5c40c463c6081c6b68f917aea0080543fdfa2d274fb4d534efafbbad63f6e31033ad553d6ba4c2d2d86d1740af"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000180)='mmc_request_done\x00', r0, 0x0, 0x1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYRESDEC=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000ff07", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000b40)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="b6859a168dd6d1e7af8bd7001c8fae6be4a335b78a746d922c286081f8913f55e89597f7bda4cda10f05afd4e267f4830533eeb1313a757c546ec4608f2f250d989dd0ca912bc699c5530b8cd42cd8409e295ec7973b1766b147af3ad165295ba263bbfc4eb2a025866245741c6860a33759f811f95a8888c48e41aa70ccda51c0940015ee080d43b298248da798c7561abbc94a7d51f83f9a0eb0168d38b227d565e7a21d5982e6ae2d8d7cca16b9aef045413e26310904b32c3ef8f13294216047898a63a47128700a22c13bf4d57929d3fee5a4d2a653d2f45244bdeb2ab4dbeb22f0cea713be14dff5"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bind$inet6(0xffffffffffffffff, &(0x7f0000001700)={0xa, 0x4e21, 0xbc91, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1000}, 0x1c)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00')
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x203, 0x8401)
r7 = fcntl$dupfd(r6, 0x0, r6)
ioctl$USBDEVFS_SUBMITURB(r7, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x2, 0x1, 0x8, 0x0, 0x7995}, 0x799d, 0x0, 0x0, 0x48000000, 0x2, 0x0, 0x0})
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f00000000c0))
r8 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r8, &(0x7f0000000000)={0x18, 0x2, {0x0, @dev={0xac, 0x14, 0x14, 0x10}}}, 0x1e)
connect$pptp(r8, &(0x7f0000000700)={0x18, 0x2, {0x0, @multicast1}}, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r9 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
ioctl$EVIOCGPROP(r9, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(r9, 0x4004743a, &(0x7f0000000300)=0x25008)
close_range(r3, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0xe, &(0x7f00000000c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@nombcache}, {@errors_remount}]}, 0x3, 0x449, &(0x7f00000006c0)="$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")
r10 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r10, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e24, 0x0, @remote, 0x3}}, 0x0, 0x0, 0x3fc, 0x1000, 0x36, 0x3, 0x9}, 0x9c)
msgsnd(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x105, 0x800)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r10, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x43}}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)

kernel console output (not intermixed with test programs):

an_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.787097][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.797745][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.807881][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.818439][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.828298][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.838806][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.849023][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.859737][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.877191][T11977] batman_adv: batadv0: Interface activated: batadv_slave_0
[  185.886857][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.897482][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.907597][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.918128][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.928106][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.939000][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.949269][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.959958][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.969830][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.980293][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.990205][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.000870][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.011272][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.021733][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.031694][T11977] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.042139][T11977] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.053684][T11977] batman_adv: batadv0: Interface activated: batadv_slave_1
[  186.064360][T11977] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.073248][T11977] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.082115][T11977] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.090907][T11977] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  186.120133][T12061] loop4: detected capacity change from 0 to 512
[  186.133441][T12061] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  186.151475][T12061] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  186.186994][T12061] EXT4-fs (loop4): orphan cleanup on readonly fs
[  186.221463][T12061] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2839: bg 0: block 361: padding at end of block bitmap is not set
[  186.246425][T12061] EXT4-fs (loop4): Remounting filesystem read-only
[  186.254050][T12061] EXT4-fs (loop4): 1 truncate cleaned up
[  186.263466][T12061] SELinux: (dev loop4, type ext4) getxattr errno 5
[  186.300827][T12072] loop0: detected capacity change from 0 to 512
[  186.325175][T12072] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.538486][T12085] 9pnet_fd: Insufficient options for proto=fd
[  186.550520][T12085] 9pnet_fd: Insufficient options for proto=fd
[  186.602467][T12087] loop4: detected capacity change from 0 to 512
[  186.623873][T12064] syz.2.2840 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  186.643737][T12089] 9pnet_fd: Insufficient options for proto=fd
[  186.659685][T12087] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.670408][T12089] 9pnet_fd: Insufficient options for proto=fd
[  186.688970][T12064] loop2: detected capacity change from 0 to 512
[  186.726383][T12064] ext4 filesystem being mounted at /24/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  186.775014][T12095] loop3: detected capacity change from 0 to 256
[  186.817450][T12099] 9pnet_fd: Insufficient options for proto=fd
[  186.898933][T12103] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  186.908148][T12105] loop0: detected capacity change from 0 to 512
[  186.952258][T12107] loop3: detected capacity change from 0 to 512
[  186.967496][T12105] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.980714][T12107] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  187.010670][T12107] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  187.018768][   T29] kauditd_printk_skb: 251 callbacks suppressed
[  187.018782][   T29] audit: type=1326 audit(1726838661.978:8581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12102 comm="syz.4.2851" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x0
[  187.055977][T12107] EXT4-fs (loop3): orphan cleanup on readonly fs
[  187.065956][T12107] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2853: bg 0: block 361: padding at end of block bitmap is not set
[  187.082690][T12107] EXT4-fs (loop3): Remounting filesystem read-only
[  187.103795][T12107] EXT4-fs (loop3): 1 truncate cleaned up
[  187.110598][T12107] SELinux: (dev loop3, type ext4) getxattr errno 5
[  187.157137][T12116] loop3: detected capacity change from 0 to 512
[  187.182618][T12116] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  187.896123][T12146] loop3: detected capacity change from 0 to 512
[  187.912647][T12146] EXT4-fs mount: 152 callbacks suppressed
[  187.912664][T12146] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.955694][T12150] loop4: detected capacity change from 0 to 4096
[  188.013725][T12146] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.133961][T12150] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.254729][T11118] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.288075][T10766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.330753][T12166] 9pnet_fd: Insufficient options for proto=fd
[  188.655852][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  188.718528][   T29] audit: type=1326 audit(1726838663.678:8582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12173 comm="syz.0.2873" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f646710def9 code=0x0
[  188.991502][T12178] 9pnet_fd: Insufficient options for proto=fd
[  188.998014][T12178] 9pnet_fd: Insufficient options for proto=fd
[  189.366169][T12197] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  189.431478][   T29] audit: type=1326 audit(1726838664.388:8583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12196 comm="syz.3.2883" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4bb99adef9 code=0x0
[  189.578327][T12201] loop0: detected capacity change from 0 to 512
[  189.614668][T12201] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.627549][T12201] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  189.690197][T12206] loop4: detected capacity change from 0 to 512
[  189.697335][T12206] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  189.707696][T12206] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  189.715974][T12206] EXT4-fs (loop4): orphan cleanup on readonly fs
[  189.722614][T12206] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2885: bg 0: block 361: padding at end of block bitmap is not set
[  189.737478][T12206] EXT4-fs (loop4): Remounting filesystem read-only
[  189.744454][T12206] EXT4-fs (loop4): 1 truncate cleaned up
[  189.752265][T12206] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  189.765506][T11977] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.766013][T12206] SELinux: (dev loop4, type ext4) getxattr errno 5
[  189.782113][T12206] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  189.804003][T12206] 9pnet_fd: Insufficient options for proto=fd
[  189.963566][T12233] syz.4.2896[12233] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  189.981291][T12235] loop2: detected capacity change from 0 to 512
[  189.988942][T12237] loop4: detected capacity change from 0 to 1024
[  189.995970][T12235] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  190.004935][T12237] EXT4-fs: Ignoring removed oldalloc option
[  190.006539][T12235] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  190.024681][T12237] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.041155][T12235] EXT4-fs (loop2): orphan cleanup on readonly fs
[  190.047754][T12235] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2897: bg 0: block 361: padding at end of block bitmap is not set
[  190.062344][T12235] EXT4-fs (loop2): Remounting filesystem read-only
[  190.070319][T12235] EXT4-fs (loop2): 1 truncate cleaned up
[  190.078522][T11118] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.078565][T12235] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  190.099801][T12235] SELinux: (dev loop2, type ext4) getxattr errno 5
[  190.108817][T12235] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  190.125521][T12243] loop4: detected capacity change from 0 to 1024
[  190.132481][T12243] EXT4-fs: Ignoring removed oldalloc option
[  190.141521][T12235] 9pnet_fd: Insufficient options for proto=fd
[  190.152724][T12243] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.183721][T11118] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.237980][T12251] loop4: detected capacity change from 0 to 512
[  190.262119][T12251] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.277076][T12251] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  190.366250][T11118] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.606266][T12280] loop4: detected capacity change from 0 to 1024
[  190.613247][T12280] EXT4-fs: Ignoring removed oldalloc option
[  190.630782][T12280] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.657498][T11118] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.693035][T12286] loop0: detected capacity change from 0 to 512
[  190.706597][T12286] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  190.718345][T12286] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  190.727558][T12286] EXT4-fs (loop0): orphan cleanup on readonly fs
[  190.734650][T12286] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2915: bg 0: block 361: padding at end of block bitmap is not set
[  190.749760][T12286] EXT4-fs (loop0): Remounting filesystem read-only
[  190.756785][T12286] EXT4-fs (loop0): 1 truncate cleaned up
[  190.763077][T12286] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  190.775278][T12286] SELinux: (dev loop0, type ext4) getxattr errno 5
[  190.782323][T12286] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  190.793602][T12291] loop4: detected capacity change from 0 to 1024
[  190.804222][T12291] EXT4-fs: Ignoring removed oldalloc option
[  190.820780][T12291] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.847937][T11118] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.861379][T12295] loop0: detected capacity change from 0 to 512
[  190.886079][T12295] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.898780][T12295] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.901952][T12299] netlink: 116 bytes leftover after parsing attributes in process `syz.4.2918'.
[  190.918361][T12299] bridge_slave_1: left allmulticast mode
[  190.924137][T12299] bridge_slave_1: left promiscuous mode
[  190.929939][T12299] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.937658][T12299] bridge_slave_0: left allmulticast mode
[  190.943374][T12299] bridge_slave_0: left promiscuous mode
[  190.949040][T12299] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.068153][T12302] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  191.077717][T12304] loop2: detected capacity change from 0 to 512
[  191.091146][T12304] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.103890][T12304] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.129267][   T29] audit: type=1326 audit(1726838666.088:8584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12301 comm="syz.4.2920" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x0
[  191.163841][T11538] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.191528][T12309] loop2: detected capacity change from 0 to 512
[  191.204584][T12309] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  191.223898][T12314] netlink: 68 bytes leftover after parsing attributes in process `syz.3.2924'.
[  191.226713][T12309] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  191.241692][T12309] EXT4-fs (loop2): orphan cleanup on readonly fs
[  191.248220][T12309] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2922: bg 0: block 361: padding at end of block bitmap is not set
[  191.262775][T12309] EXT4-fs (loop2): Remounting filesystem read-only
[  191.269509][T12309] EXT4-fs (loop2): 1 truncate cleaned up
[  191.275599][T12309] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  191.288105][T12309] SELinux: (dev loop2, type ext4) getxattr errno 5
[  191.296041][T12309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  191.305541][T12316] netlink: 'syz.3.2924': attribute type 10 has an invalid length.
[  191.344983][T12316] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.352285][T12316] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.368035][T12316] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.375204][T12316] bridge0: port 2(bridge_slave_1) entered forwarding state
[  191.382540][T12316] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.389653][T12316] bridge0: port 1(bridge_slave_0) entered forwarding state
[  191.397633][T12318] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.399093][T12316] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  191.414899][T12318] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  191.425329][T12318] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.443045][T12318] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  191.458161][T12318] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.468015][T12322] syz.3.2927[12322] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  191.468618][T12318] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  191.507861][   T29] audit: type=1400 audit(1726838666.468:8585): avc:  denied  { listen } for  pid=12325 comm="syz.3.2929" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  191.698064][T11977] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.944104][   T29] audit: type=1400 audit(1726838666.908:8586): avc:  denied  { ioctl } for  pid=12336 comm="syz.4.2933" path="/dev/usbmon0" dev="devtmpfs" ino=117 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  191.968184][T12337] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.977960][T12337] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  192.021018][T12343] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  192.080953][   T29] audit: type=1326 audit(1726838667.048:8587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12342 comm="syz.2.2935" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0d744ddef9 code=0x0
[  192.405618][   T29] audit: type=1400 audit(1726838667.368:8588): avc:  denied  { create } for  pid=12348 comm="syz.3.2937" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  192.425488][   T29] audit: type=1400 audit(1726838667.368:8589): avc:  denied  { bind } for  pid=12348 comm="syz.3.2937" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  192.445152][   T29] audit: type=1400 audit(1726838667.368:8590): avc:  denied  { listen } for  pid=12348 comm="syz.3.2937" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  192.464997][   T29] audit: type=1400 audit(1726838667.368:8591): avc:  denied  { connect } for  pid=12348 comm="syz.3.2937" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  192.484908][   T29] audit: type=1400 audit(1726838667.368:8592): avc:  denied  { write } for  pid=12348 comm="syz.3.2937" path="socket:[35721]" dev="sockfs" ino=35721 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  192.527555][T12351] 9pnet_fd: Insufficient options for proto=fd
[  192.533181][T12353] loop3: detected capacity change from 0 to 512
[  192.534001][T12351] 9pnet_fd: Insufficient options for proto=fd
[  192.562555][T12353] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.579663][T12353] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.630385][T10766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.669689][T12369] loop3: detected capacity change from 0 to 512
[  192.676740][T12369] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  192.691846][T12369] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  192.701001][T12369] EXT4-fs (loop3): orphan cleanup on readonly fs
[  192.722713][T12370] netlink: '+}[@': attribute type 2 has an invalid length.
[  192.730040][T12370] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  192.744232][T12369] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2944: bg 0: block 361: padding at end of block bitmap is not set
[  192.763196][T12369] EXT4-fs (loop3): Remounting filesystem read-only
[  192.768997][T12375] loop0: detected capacity change from 0 to 4096
[  192.770396][T12369] EXT4-fs (loop3): 1 truncate cleaned up
[  192.784749][T12369] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  192.797492][T12369] SELinux: (dev loop3, type ext4) getxattr errno 5
[  192.804929][T12369] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  192.807569][T12375] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.849486][T12369] 9pnet_fd: Insufficient options for proto=fd
[  192.898766][T12378] syz.2.2947[12378] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  192.899094][T12378] syz.2.2947[12378] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  192.962723][T12387] loop3: detected capacity change from 0 to 128
[  193.012180][   T29] audit: type=1400 audit(1726838667.978:8593): avc:  denied  { bind } for  pid=12385 comm="syz.3.2952" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  193.031832][   T29] audit: type=1400 audit(1726838667.978:8594): avc:  denied  { name_bind } for  pid=12385 comm="syz.3.2952" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  193.052786][   T29] audit: type=1400 audit(1726838667.978:8595): avc:  denied  { node_bind } for  pid=12385 comm="syz.3.2952" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  193.073723][   T29] audit: type=1400 audit(1726838667.978:8596): avc:  denied  { listen } for  pid=12385 comm="syz.3.2952" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  193.103255][T12390] SELinux:  policydb version 1446001614 does not match my version range 15-33
[  193.112376][T12390] SELinux: failed to load policy
[  193.113208][T11977] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.226305][T12399] loop0: detected capacity change from 0 to 512
[  193.251559][T12399] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.264168][T12399] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  193.406909][T11977] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.431620][T12404] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  193.493754][T12412] syz.4.2961[12412] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  193.493922][T12412] syz.4.2961[12412] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  193.519990][T12415] FAULT_INJECTION: forcing a failure.
[  193.519990][T12415] name failslab, interval 1, probability 0, space 0, times 0
[  193.544352][T12415] CPU: 0 UID: 0 PID: 12415 Comm: syz.4.2962 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  193.556282][T12415] Tainted: [W]=WARN
[  193.560091][T12415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  193.570211][T12415] Call Trace:
[  193.573509][T12415]  <TASK>
[  193.576469][T12415]  dump_stack_lvl+0xf2/0x150
[  193.581192][T12415]  dump_stack+0x15/0x20
[  193.585465][T12415]  should_fail_ex+0x229/0x230
[  193.590161][T12415]  ? __alloc_skb+0x10b/0x310
[  193.594771][T12415]  should_failslab+0x8f/0xb0
[  193.599471][T12415]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  193.605320][T12415]  __alloc_skb+0x10b/0x310
[  193.609823][T12415]  audit_log_start+0x368/0x6b0
[  193.614597][T12415]  audit_seccomp+0x4b/0x130
[  193.619143][T12415]  __seccomp_filter+0x6fa/0x1180
[  193.624171][T12415]  ? proc_fail_nth_write+0x12a/0x150
[  193.629476][T12415]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  193.635124][T12415]  ? vfs_write+0x580/0x910
[  193.639573][T12415]  ? __fget_files+0x1d4/0x210
[  193.644259][T12415]  __secure_computing+0x9f/0x1c0
[  193.649307][T12415]  syscall_trace_enter+0xd1/0x1f0
[  193.654423][T12415]  ? fpregs_assert_state_consistent+0x83/0xa0
[  193.660511][T12415]  do_syscall_64+0xaa/0x1c0
[  193.665023][T12415]  ? clear_bhb_loop+0x55/0xb0
[  193.669866][T12415]  ? clear_bhb_loop+0x55/0xb0
[  193.674557][T12415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.680562][T12415] RIP: 0033:0x7f97dd32def9
[  193.684979][T12415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.704621][T12415] RSP: 002b:00007f97dbfa7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  193.713044][T12415] RAX: ffffffffffffffda RBX: 00007f97dd4e5f80 RCX: 00007f97dd32def9
[  193.721082][T12415] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  193.729075][T12415] RBP: 00007f97dbfa7090 R08: 0000000000000000 R09: 0000000000000000
[  193.737056][T12415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.745113][T12415] R13: 0000000000000000 R14: 00007f97dd4e5f80 R15: 00007ffc6909f228
[  193.753166][T12415]  </TASK>
[  193.833761][T12423] loop3: detected capacity change from 0 to 1024
[  193.840906][T12423] EXT4-fs: Ignoring removed oldalloc option
[  193.847344][T12423] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  193.871919][T12427] FAULT_INJECTION: forcing a failure.
[  193.871919][T12427] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  193.872018][T12423] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.885142][T12427] CPU: 0 UID: 0 PID: 12427 Comm: +}[@ Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  193.908612][T12427] Tainted: [W]=WARN
[  193.912457][T12427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  193.922561][T12427] Call Trace:
[  193.925857][T12427]  <TASK>
[  193.928804][T12427]  dump_stack_lvl+0xf2/0x150
[  193.933510][T12427]  dump_stack+0x15/0x20
[  193.937681][T12427]  should_fail_ex+0x229/0x230
[  193.942374][T12427]  should_fail+0xb/0x10
[  193.946529][T12427]  should_fail_usercopy+0x1a/0x20
[  193.951575][T12427]  _copy_from_user+0x1e/0xd0
[  193.956250][T12427]  copy_msghdr_from_user+0x54/0x2a0
[  193.961463][T12427]  __sys_sendmsg+0x171/0x270
[  193.966080][T12427]  __x64_sys_sendmsg+0x46/0x50
[  193.970926][T12427]  x64_sys_call+0x2689/0x2d60
[  193.975771][T12427]  do_syscall_64+0xc9/0x1c0
[  193.980300][T12427]  ? clear_bhb_loop+0x55/0xb0
[  193.985015][T12427]  ? clear_bhb_loop+0x55/0xb0
[  193.989723][T12427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.995631][T12427] RIP: 0033:0x7f0d744ddef9
[  194.000089][T12427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.019993][T12427] RSP: 002b:00007f0d73157038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  194.028451][T12427] RAX: ffffffffffffffda RBX: 00007f0d74695f80 RCX: 00007f0d744ddef9
[  194.036491][T12427] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000009
[  194.044498][T12427] RBP: 00007f0d73157090 R08: 0000000000000000 R09: 0000000000000000
[  194.052482][T12427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.060458][T12427] R13: 0000000000000000 R14: 00007f0d74695f80 R15: 00007ffe65497c18
[  194.068527][T12427]  </TASK>
[  194.074963][T10766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.133383][T12438] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2970'.
[  194.142392][T12438] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2970'.
[  194.154157][T12438] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2970'.
[  194.297906][T12450] loop0: detected capacity change from 0 to 1024
[  194.305294][T12450] EXT4-fs: Ignoring removed oldalloc option
[  194.333885][T12450] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.364145][T11977] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.393254][T12456] loop2: detected capacity change from 0 to 1024
[  194.403865][T12456] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  194.425605][T12456] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  194.434728][T12456] EXT4-fs (loop2): orphan cleanup on readonly fs
[  194.447647][T12456] EXT4-fs error (device loop2): ext4_map_blocks:718: inode #3: block 3: comm syz.2.2974: lblock 3 mapped to illegal pblock 3 (length 1)
[  194.463090][T12456] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.2974: Failed to acquire dquot type 0
[  194.475462][T12456] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.2974: lblock 3 mapped to illegal pblock 3 (length 1)
[  194.491544][T12456] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.2974: Failed to acquire dquot type 0
[  194.507492][T12456] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.2974: Freeing blocks not in datazone - block = 0, count = 4096
[  194.522843][T12456] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #3: block 3: comm syz.2.2974: lblock 3 mapped to illegal pblock 3 (length 1)
[  194.537562][T12456] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.2974: Failed to acquire dquot type 0
[  194.549324][T12456] EXT4-fs (loop2): 1 orphan inode deleted
[  194.556654][T12456] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  194.891414][T12465] chnl_net:caif_netlink_parms(): no params data found
[  194.959682][T12465] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.967019][T12465] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.976568][T12465] bridge_slave_0: entered allmulticast mode
[  194.983507][T12465] bridge_slave_0: entered promiscuous mode
[  194.991065][T12465] bridge0: port 2(bridge_slave_1) entered blocking state
[  194.998185][T12465] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.005774][T12465] bridge_slave_1: entered allmulticast mode
[  195.012750][T12465] bridge_slave_1: entered promiscuous mode
[  195.034604][T12465] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  195.048403][T12465] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  195.068624][T12465] team0: Port device team_slave_0 added
[  195.075546][T12465] team0: Port device team_slave_1 added
[  195.093063][T12465] batman_adv: batadv0: Adding interface: batadv_slave_0
[  195.100096][T12465] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.126359][T12465] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  195.139376][T12465] batman_adv: batadv0: Adding interface: batadv_slave_1
[  195.146338][T12465] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.172408][T12465] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  195.228774][T11538] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.244896][T12482] loop3: detected capacity change from 0 to 1024
[  195.254497][T12482] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[  195.264483][T12482] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  195.281626][T12465] hsr_slave_0: entered promiscuous mode
[  195.295593][T12465] hsr_slave_1: entered promiscuous mode
[  195.297782][T12482] EXT4-fs (loop3): invalid journal inode
[  195.307049][T12482] EXT4-fs (loop3): can't get journal size
[  195.313040][T12465] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  195.320692][T12465] Cannot create hsr debugfs directory
[  195.321705][T12482] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  195.354982][T12488] netlink: 'syz.2.2982': attribute type 4 has an invalid length.
[  195.367152][T10766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.434437][T12494] 9pnet_fd: Insufficient options for proto=fd
[  195.453333][T12465] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.477424][T12499] loop3: detected capacity change from 0 to 512
[  195.490916][T12499] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  195.503562][T12499] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  195.512770][T12499] EXT4-fs (loop3): orphan cleanup on readonly fs
[  195.523478][T12465] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.537406][T12499] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2986: bg 0: block 361: padding at end of block bitmap is not set
[  195.552392][T12499] EXT4-fs (loop3): Remounting filesystem read-only
[  195.559610][T12499] EXT4-fs (loop3): 1 truncate cleaned up
[  195.565953][T12499] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  195.581869][T12499] SELinux: (dev loop3, type ext4) getxattr errno 5
[  195.588806][T12499] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  195.610166][T12509] loop2: detected capacity change from 0 to 512
[  195.621057][T12465] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.632917][T12499] 9pnet_fd: Insufficient options for proto=fd
[  195.641190][T12509] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.657288][T12509] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.680535][T12517] loop3: detected capacity change from 0 to 512
[  195.689427][T12517] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  195.699609][T12517] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  195.707753][T12517] EXT4-fs (loop3): orphan cleanup on readonly fs
[  195.714384][T12517] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2992: bg 0: block 361: padding at end of block bitmap is not set
[  195.715269][T11538] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.730286][T12517] EXT4-fs (loop3): Remounting filesystem read-only
[  195.744898][T12517] EXT4-fs (loop3): 1 truncate cleaned up
[  195.752855][T12465] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.752905][T12517] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  195.775381][T12517] SELinux: (dev loop3, type ext4) getxattr errno 5
[  195.784598][T12517] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  195.801137][T12522] netlink: 'syz.2.2994': attribute type 4 has an invalid length.
[  195.856161][T12524] loop3: detected capacity change from 0 to 4096
[  195.878554][T12524] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.886539][T12529] loop2: detected capacity change from 0 to 512
[  195.892819][T12465] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  195.907267][T12465] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  195.919475][T12465] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  195.928964][T12465] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  195.949533][T12529] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.962272][T12529] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.999915][T11538] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.006176][T12465] 8021q: adding VLAN 0 to HW filter on device bond0
[  196.025172][T12465] 8021q: adding VLAN 0 to HW filter on device team0
[  196.036147][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.043332][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  196.063401][ T5933] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.070572][ T5933] bridge0: port 2(bridge_slave_1) entered forwarding state
[  196.108464][T10766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.176770][T12465] 8021q: adding VLAN 0 to HW filter on device batadv0
[  196.243288][T12550] loop2: detected capacity change from 0 to 512
[  196.263927][T12550] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.279237][T12550] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  196.322676][T12465] veth0_vlan: entered promiscuous mode
[  196.362259][T12465] veth1_vlan: entered promiscuous mode
[  196.368692][T11538] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.378649][T12465] veth0_macvtap: entered promiscuous mode
[  196.383748][T12564] loop0: detected capacity change from 0 to 1024
[  196.387361][T12465] veth1_macvtap: entered promiscuous mode
[  196.408109][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.418709][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.419893][T12564] EXT4-fs: Ignoring removed oldalloc option
[  196.428650][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.445241][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.451192][T12564] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.455194][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.477731][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.487761][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.498305][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.508149][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.518642][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.528583][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.539061][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.541446][T12569] loop4: detected capacity change from 0 to 256
[  196.552349][T12465] batman_adv: batadv0: Interface activated: batadv_slave_0
[  196.563902][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.574420][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.584341][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.594873][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.604833][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.615338][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.625199][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.635823][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.645874][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.656395][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.666320][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.676777][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.686662][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.695987][T12569] FAULT_INJECTION: forcing a failure.
[  196.695987][T12569] name failslab, interval 1, probability 0, space 0, times 0
[  196.697108][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.709743][T12569] CPU: 1 UID: 0 PID: 12569 Comm: syz.4.3009 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  196.719568][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.731434][T12569] Tainted: [W]=WARN
[  196.741849][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.745615][T12569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  196.755429][T12465] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.765595][T12569] Call Trace:
[  196.765605][T12569]  <TASK>
[  196.765616][T12569]  dump_stack_lvl+0xf2/0x150
[  196.776041][T12465] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.779292][T12569]  dump_stack+0x15/0x20
[  196.787180][T12465] batman_adv: batadv0: Interface activated: batadv_slave_1
[  196.796679][T12569]  should_fail_ex+0x229/0x230
[  196.796712][T12569]  ? fat_init_fs_context+0x3e/0x200
[  196.809772][T12465] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  196.812723][T12569]  should_failslab+0x8f/0xb0
[  196.817955][T12465] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  196.826596][T12569]  __kmalloc_cache_noprof+0x4b/0x2a0
[  196.831273][T12465] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  196.839872][T12569]  fat_init_fs_context+0x3e/0x200
[  196.845328][T12465] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.853939][T12569]  ? __fget_files+0x1d4/0x210
[  196.872774][T12569]  vfat_init_fs_context+0x1b/0x50
[  196.877835][T12569]  finish_clean_context+0x64/0x130
[  196.883034][T12569]  __se_sys_fsconfig+0x65d/0x9b0
[  196.888086][T12569]  __x64_sys_fsconfig+0x67/0x80
[  196.893071][T12569]  x64_sys_call+0x10fe/0x2d60
[  196.897773][T12569]  do_syscall_64+0xc9/0x1c0
[  196.902372][T12569]  ? clear_bhb_loop+0x55/0xb0
[  196.907719][T12569]  ? clear_bhb_loop+0x55/0xb0
[  196.912431][T12569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.918349][T12569] RIP: 0033:0x7f97dd32def9
[  196.922856][T12569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.942571][T12569] RSP: 002b:00007f97dbfa7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  196.950988][T12569] RAX: ffffffffffffffda RBX: 00007f97dd4e5f80 RCX: 00007f97dd32def9
[  196.958972][T12569] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000005
[  196.966970][T12569] RBP: 00007f97dbfa7090 R08: 0000000000000000 R09: 0000000000000000
[  196.975087][T12569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.983150][T12569] R13: 0000000000000000 R14: 00007f97dd4e5f80 R15: 00007ffc6909f228
[  196.991190][T12569]  </TASK>
[  197.006905][T11977] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.074046][T12583] loop0: detected capacity change from 0 to 512
[  197.083746][T12579] loop4: detected capacity change from 0 to 512
[  197.170627][T12579] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.191803][T12579] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.208993][T12583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.222964][T12583] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.253929][T11118] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.395161][T11977] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.456773][T12604] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3020'.
[  197.465845][T12604] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3020'.
[  197.474977][   T29] kauditd_printk_skb: 244 callbacks suppressed
[  197.474990][   T29] audit: type=1400 audit(1726838672.418:8834): avc:  denied  { mount } for  pid=12600 comm="syz.1.3020" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  197.558955][T12606] loop4: detected capacity change from 0 to 512
[  197.627820][   T29] audit: type=1400 audit(1726838672.548:8835): avc:  denied  { read } for  pid=12600 comm="syz.1.3020" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  197.651352][   T29] audit: type=1400 audit(1726838672.548:8836): avc:  denied  { open } for  pid=12600 comm="syz.1.3020" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  197.675055][   T29] audit: type=1400 audit(1726838672.568:8837): avc:  denied  { ioctl } for  pid=12600 comm="syz.1.3020" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  197.721388][   T29] audit: type=1326 audit(1726838672.678:8838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bb99adef9 code=0x7ffc0000
[  197.722419][T12599] loop3: detected capacity change from 0 to 1024
[  197.744532][   T29] audit: type=1326 audit(1726838672.678:8839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bb99adef9 code=0x7ffc0000
[  197.751514][T12599] EXT4-fs: Ignoring removed oldalloc option
[  197.773949][   T29] audit: type=1326 audit(1726838672.678:8840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4bb99adef9 code=0x7ffc0000
[  197.803047][   T29] audit: type=1326 audit(1726838672.678:8841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4bb99adf33 code=0x7ffc0000
[  197.825972][   T29] audit: type=1326 audit(1726838672.688:8842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4bb99ac9df code=0x7ffc0000
[  197.853410][T12606] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.872804][T12606] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.873528][T12612] netlink: 'syz.1.3022': attribute type 4 has an invalid length.
[  197.883643][   T29] audit: type=1326 audit(1726838672.688:8843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12598 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4bb99adf87 code=0x7ffc0000
[  197.924892][T12617] loop0: detected capacity change from 0 to 512
[  197.951910][T12617] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  197.977789][T12599] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.028503][T12617] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  198.043258][T12617] EXT4-fs (loop0): orphan cleanup on readonly fs
[  198.050255][T12617] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3024: bg 0: block 361: padding at end of block bitmap is not set
[  198.076019][T12617] EXT4-fs (loop0): Remounting filesystem read-only
[  198.098867][T12626] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(11)
[  198.105679][T12626] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  198.113190][T12626] vhci_hcd vhci_hcd.0: Device attached
[  198.116409][T12617] EXT4-fs (loop0): 1 truncate cleaned up
[  198.125085][T12617] SELinux: (dev loop0, type ext4) getxattr errno 5
[  198.150044][T12629] vhci_hcd: connection closed
[  198.155167][T12617] 9pnet_fd: Insufficient options for proto=fd
[  198.173728][T12638] loop3: detected capacity change from 0 to 1024
[  198.182578][ T5933] vhci_hcd: stop threads
[  198.182926][T12638] EXT4-fs: Ignoring removed oldalloc option
[  198.186841][ T5933] vhci_hcd: release socket
[  198.186852][ T5933] vhci_hcd: disconnect device
[  198.217657][T12643] loop2: detected capacity change from 0 to 512
[  198.228351][T12644] loop4: detected capacity change from 0 to 512
[  198.235905][T12643] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  198.266001][T12644] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  198.279373][T12643] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  198.287508][T12643] EXT4-fs (loop2): orphan cleanup on readonly fs
[  198.294773][T12643] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3031: bg 0: block 361: padding at end of block bitmap is not set
[  198.309523][T12644] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  198.320160][T12644] EXT4-fs (loop4): orphan cleanup on readonly fs
[  198.324414][T12650] loop3: detected capacity change from 0 to 512
[  198.334187][T12643] EXT4-fs (loop2): Remounting filesystem read-only
[  198.340940][T12644] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3032: bg 0: block 361: padding at end of block bitmap is not set
[  198.342474][T12650] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  198.364080][T12644] EXT4-fs (loop4): Remounting filesystem read-only
[  198.372272][T12643] EXT4-fs (loop2): 1 truncate cleaned up
[  198.378359][T12643] SELinux: (dev loop2, type ext4) getxattr errno 5
[  198.385870][T12650] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  198.393037][T12644] EXT4-fs (loop4): 1 truncate cleaned up
[  198.393967][T12650] EXT4-fs (loop3): orphan cleanup on readonly fs
[  198.403804][T12644] SELinux: (dev loop4, type ext4) getxattr errno 5
[  198.413272][T12650] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3034: bg 0: block 361: padding at end of block bitmap is not set
[  198.445668][T12650] EXT4-fs (loop3): Remounting filesystem read-only
[  198.454421][T12650] EXT4-fs (loop3): 1 truncate cleaned up
[  198.463726][T12650] SELinux: (dev loop3, type ext4) getxattr errno 5
[  198.509274][T12643] 9pnet_fd: Insufficient options for proto=fd
[  198.586178][T12659] loop2: detected capacity change from 0 to 4096
[  198.715913][T12666] loop4: detected capacity change from 0 to 1024
[  198.726102][T12666] EXT4-fs: Ignoring removed oldalloc option
[  198.960850][T12689] loop4: detected capacity change from 0 to 512
[  198.976781][T12691] loop2: detected capacity change from 0 to 512
[  198.988338][T12691] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  199.002699][T12691] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  199.003225][T12689] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.010808][T12691] EXT4-fs (loop2): orphan cleanup on readonly fs
[  199.028519][T12691] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3048: bg 0: block 361: padding at end of block bitmap is not set
[  199.043888][T12691] EXT4-fs (loop2): Remounting filesystem read-only
[  199.050884][T12691] EXT4-fs (loop2): 1 truncate cleaned up
[  199.056958][T12691] SELinux: (dev loop2, type ext4) getxattr errno 5
[  199.087682][T12700] netlink: 'syz.4.3050': attribute type 4 has an invalid length.
[  199.156298][T12704] loop4: detected capacity change from 0 to 4096
[  199.215120][T12713] loop2: detected capacity change from 0 to 512
[  199.223327][T12715] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pid=12715 comm=syz.4.3055
[  199.242028][T12713] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  199.283508][T12713] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3056: bg 0: block 248: padding at end of block bitmap is not set
[  199.308333][T12713] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.3056: Failed to acquire dquot type 1
[  199.342977][T12727] loop0: detected capacity change from 0 to 512
[  199.358121][T12727] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  199.374924][T12727] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  199.375033][T12713] EXT4-fs (loop2): 1 truncate cleaned up
[  199.383914][T12727] EXT4-fs (loop0): orphan cleanup on readonly fs
[  199.389203][T12713] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  199.405464][T12727] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3061: bg 0: block 361: padding at end of block bitmap is not set
[  199.422140][T12713] EXT4-fs error (device loop2): __ext4_remount:6491: comm syz.2.3056: Abort forced by user
[  199.422189][T12727] EXT4-fs (loop0): Remounting filesystem read-only
[  199.434962][T12713] EXT4-fs (loop2): Remounting filesystem read-only
[  199.439153][T12727] EXT4-fs (loop0): 1 truncate cleaned up
[  199.451319][T12727] SELinux: (dev loop0, type ext4) getxattr errno 5
[  199.505100][T12734] syz.4.3064[12734] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  199.505176][T12734] syz.4.3064[12734] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  199.516585][T12736] loop0: detected capacity change from 0 to 1024
[  199.537448][T12736] EXT4-fs: Ignoring removed oldalloc option
[  199.548123][T12738] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pid=12738 comm=syz.4.3067
[  199.615024][T12744] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3068'.
[  199.757598][T12756] loop4: detected capacity change from 0 to 512
[  199.787225][T12756] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  199.799814][T12756] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  199.813039][T12756] EXT4-fs (loop4): orphan cleanup on readonly fs
[  199.820004][T12756] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3073: bg 0: block 361: padding at end of block bitmap is not set
[  199.834939][T12756] EXT4-fs (loop4): Remounting filesystem read-only
[  199.843347][T12756] EXT4-fs (loop4): 1 truncate cleaned up
[  199.849736][T12756] SELinux: (dev loop4, type ext4) getxattr errno 5
[  199.916123][T12775] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3080'.
[  199.965353][T12780] loop1: detected capacity change from 0 to 1024
[  199.988191][T12780] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (29950!=20869)
[  200.004300][T12786] loop2: detected capacity change from 0 to 512
[  200.018854][T12780] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  200.029725][T12780] EXT4-fs (loop1): invalid journal inode
[  200.035420][T12780] EXT4-fs (loop1): can't get journal size
[  200.070326][T12786] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  200.095049][T12780] EXT4-fs error (device loop1): ext4_protect_reserved_inode:182: inode #2: comm syz.1.3078: blocks 48-48 from inode overlap system zone
[  200.116754][T12780] EXT4-fs (loop1): failed to initialize system zone (-117)
[  200.124242][T12780] EXT4-fs (loop1): mount failed
[  200.500730][T12807] netlink: 'syz.2.3090': attribute type 4 has an invalid length.
[  200.547173][T12811] loop2: detected capacity change from 0 to 512
[  200.554209][T12811] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  200.564958][T12811] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  200.573326][T12811] EXT4-fs (loop2): orphan cleanup on readonly fs
[  200.580008][T12811] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3093: bg 0: block 361: padding at end of block bitmap is not set
[  200.594722][T12811] EXT4-fs (loop2): Remounting filesystem read-only
[  200.601654][T12811] EXT4-fs (loop2): 1 truncate cleaned up
[  200.607878][T12811] SELinux: (dev loop2, type ext4) getxattr errno 5
[  200.641265][T12815] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3094'.
[  200.666162][T12817] devtmpfs: Unknown parameter 'di´eЄc'
[  200.908117][T12836] loop1: detected capacity change from 0 to 512
[  200.919691][T12832] loop4: detected capacity change from 0 to 512
[  200.931939][T12836] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  200.953552][T12836] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  200.968012][T12836] EXT4-fs (loop1): orphan cleanup on readonly fs
[  200.992520][T12832] ext4 filesystem being mounted at /131/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  201.014211][T12847] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3106'.
[  201.017613][T12836] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3104: bg 0: block 361: padding at end of block bitmap is not set
[  201.042184][T12836] EXT4-fs (loop1): Remounting filesystem read-only
[  201.050408][T12836] EXT4-fs (loop1): 1 truncate cleaned up
[  201.068030][T12836] SELinux: (dev loop1, type ext4) getxattr errno 5
[  201.112110][T12849] netlink: 40 bytes leftover after parsing attributes in process `+}[@'.
[  201.120733][T12849] netlink: 40 bytes leftover after parsing attributes in process `+}[@'.
[  201.140903][T12849] loop0: detected capacity change from 0 to 256
[  201.152296][T12849] vfat: Bad value for 'shortname'
[  201.173339][T12851] loop3: detected capacity change from 0 to 512
[  201.234805][T12851] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  201.255150][T12860] loop4: detected capacity change from 0 to 512
[  201.294575][T12860] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  201.317506][T12860] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  201.326029][T12860] EXT4-fs (loop4): orphan cleanup on readonly fs
[  201.332604][T12860] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3111: bg 0: block 361: padding at end of block bitmap is not set
[  201.353052][T12860] EXT4-fs (loop4): Remounting filesystem read-only
[  201.372794][T12860] EXT4-fs (loop4): 1 truncate cleaned up
[  201.392266][T12860] SELinux: (dev loop4, type ext4) getxattr errno 5
[  201.436984][T12860] 9pnet_fd: Insufficient options for proto=fd
[  201.497295][T12872] loop3: detected capacity change from 0 to 1024
[  201.520855][T12872] EXT4-fs: Ignoring removed oldalloc option
[  201.590451][T12878] netlink: 'syz.4.3117': attribute type 4 has an invalid length.
[  201.662838][T12884] loop2: detected capacity change from 0 to 512
[  201.671266][T12884] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  201.689274][T12884] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  201.697746][T12884] EXT4-fs (loop2): orphan cleanup on readonly fs
[  201.705702][T12884] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3120: bg 0: block 361: padding at end of block bitmap is not set
[  201.720458][T12884] EXT4-fs (loop2): Remounting filesystem read-only
[  201.727403][T12884] EXT4-fs (loop2): 1 truncate cleaned up
[  201.736052][T12884] SELinux: (dev loop2, type ext4) getxattr errno 5
[  201.898385][T12902] loop2: detected capacity change from 0 to 1024
[  201.905311][T12902] EXT4-fs: Ignoring removed oldalloc option
[  201.995597][T12910] netlink: 'syz.2.3130': attribute type 4 has an invalid length.
[  202.018325][T12909] loop0: detected capacity change from 0 to 512
[  202.028669][T12913] loop2: detected capacity change from 0 to 512
[  202.039362][T12913] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  202.059070][T12909] ext4 filesystem being mounted at /55/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  202.066980][T12913] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  202.077700][T12913] EXT4-fs (loop2): orphan cleanup on readonly fs
[  202.085965][T12913] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3131: bg 0: block 361: padding at end of block bitmap is not set
[  202.102813][T12913] EXT4-fs (loop2): Remounting filesystem read-only
[  202.109990][T12913] EXT4-fs (loop2): 1 truncate cleaned up
[  202.116313][T12913] SELinux: (dev loop2, type ext4) getxattr errno 5
[  202.220171][T12933] loop1: detected capacity change from 0 to 1024
[  202.224621][T12935] loop0: detected capacity change from 0 to 512
[  202.227175][T12933] EXT4-fs: Ignoring removed oldalloc option
[  202.257774][T12938] 9pnet_fd: Insufficient options for proto=fd
[  202.273312][T12935] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.312964][T12946] loop0: detected capacity change from 0 to 512
[  202.331441][T12946] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  202.342594][T12946] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  202.350964][T12946] EXT4-fs (loop0): orphan cleanup on readonly fs
[  202.357699][T12946] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3142: bg 0: block 361: padding at end of block bitmap is not set
[  202.380980][T12944] loop2: detected capacity change from 0 to 4096
[  202.387484][T12946] EXT4-fs (loop0): Remounting filesystem read-only
[  202.399580][T12946] EXT4-fs (loop0): 1 truncate cleaned up
[  202.407687][T12946] SELinux: (dev loop0, type ext4) getxattr errno 5
[  202.483538][T12957] loop1: detected capacity change from 0 to 512
[  202.486646][T12946] 9pnet: Could not find request transport: fd0x0000000000000003
[  202.498914][T12957] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  202.514536][T12957] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  202.558241][T12957] EXT4-fs (loop1): orphan cleanup on readonly fs
[  202.576917][T12962] loop0: detected capacity change from 0 to 512
[  202.584216][T12957] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3146: bg 0: block 361: padding at end of block bitmap is not set
[  202.601279][   T29] kauditd_printk_skb: 197 callbacks suppressed
[  202.601296][   T29] audit: type=1326 audit(1726838677.568:9039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.602311][T12957] EXT4-fs (loop1): Remounting filesystem read-only
[  202.608176][   T29] audit: type=1326 audit(1726838677.568:9040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.640920][T12957] EXT4-fs (loop1): 1 truncate cleaned up
[  202.660438][   T29] audit: type=1326 audit(1726838677.568:9041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.681150][T12957] SELinux: (dev loop1, type ext4) getxattr errno 5
[  202.688963][   T29] audit: type=1326 audit(1726838677.568:9042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.718678][   T29] audit: type=1326 audit(1726838677.568:9043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.753932][T12962] ext4 filesystem being mounted at /59/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  202.765336][   T29] audit: type=1326 audit(1726838677.628:9044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.788327][   T29] audit: type=1326 audit(1726838677.628:9045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.811476][   T29] audit: type=1326 audit(1726838677.628:9046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.834468][   T29] audit: type=1326 audit(1726838677.628:9047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.857577][   T29] audit: type=1326 audit(1726838677.628:9048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12963 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  202.887745][T12976] loop4: detected capacity change from 0 to 512
[  202.887995][T12974] loop1: detected capacity change from 0 to 1024
[  202.905330][T12974] EXT4-fs: Ignoring removed oldalloc option
[  202.925625][T12976] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.018279][T12995] loop4: detected capacity change from 0 to 512
[  203.039769][T12995] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  203.074405][T13000] netlink: 'syz.2.3161': attribute type 4 has an invalid length.
[  203.160819][T13008] FAULT_INJECTION: forcing a failure.
[  203.160819][T13008] name failslab, interval 1, probability 0, space 0, times 0
[  203.160855][T13008] CPU: 1 UID: 0 PID: 13008 Comm: syz.2.3164 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  203.160896][T13008] Tainted: [W]=WARN
[  203.160904][T13008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  203.160920][T13008] Call Trace:
[  203.160928][T13008]  <TASK>
[  203.160936][T13008]  dump_stack_lvl+0xf2/0x150
[  203.161025][T13008]  dump_stack+0x15/0x20
[  203.161064][T13008]  should_fail_ex+0x229/0x230
[  203.161121][T13008]  ? __alloc_skb+0x10b/0x310
[  203.161155][T13008]  should_failslab+0x8f/0xb0
[  203.161320][T13008]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  203.161373][T13008]  __alloc_skb+0x10b/0x310
[  203.161403][T13008]  create_monitor_ctrl_open+0x103/0x490
[  203.161496][T13008]  hci_sock_ioctl+0x33b/0x8b0
[  203.161557][T13008]  sock_do_ioctl+0x81/0x260
[  203.161587][T13008]  sock_ioctl+0x46a/0x640
[  203.161612][T13008]  ? __pfx_sock_ioctl+0x10/0x10
[  203.161635][T13008]  __se_sys_ioctl+0xcd/0x140
[  203.161664][T13008]  __x64_sys_ioctl+0x43/0x50
[  203.161688][T13008]  x64_sys_call+0x15cc/0x2d60
[  203.161717][T13008]  do_syscall_64+0xc9/0x1c0
[  203.161737][T13008]  ? clear_bhb_loop+0x55/0xb0
[  203.161813][T13008]  ? clear_bhb_loop+0x55/0xb0
[  203.161850][T13008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.161885][T13008] RIP: 0033:0x7f0d744ddef9
[  203.161904][T13008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.162007][T13008] RSP: 002b:00007f0d73157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  203.162029][T13008] RAX: ffffffffffffffda RBX: 00007f0d74695f80 RCX: 00007f0d744ddef9
[  203.162042][T13008] RDX: 0000000020000100 RSI: 00000000800448d2 RDI: 0000000000000007
[  203.162058][T13008] RBP: 00007f0d73157090 R08: 0000000000000000 R09: 0000000000000000
[  203.162074][T13008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.162090][T13008] R13: 0000000000000000 R14: 00007f0d74695f80 R15: 00007ffe65497c18
[  203.162114][T13008]  </TASK>
[  203.173041][T13009] loop0: detected capacity change from 0 to 512
[  203.201136][T13009] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  203.205115][T13009] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  203.205295][T13009] EXT4-fs (loop0): orphan cleanup on readonly fs
[  203.205995][T13009] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3162: bg 0: block 361: padding at end of block bitmap is not set
[  203.206179][T13009] EXT4-fs (loop0): Remounting filesystem read-only
[  203.206411][T13009] EXT4-fs (loop0): 1 truncate cleaned up
[  203.206812][T13009] SELinux: (dev loop0, type ext4) getxattr errno 5
[  203.335447][T13020] program syz.0.3166 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  203.363310][T13019] loop4: detected capacity change from 0 to 1024
[  203.374739][T13020] loop0: detected capacity change from 0 to 512
[  203.380404][T13019] EXT4-fs: Ignoring removed oldalloc option
[  203.622945][T13029] loop1: detected capacity change from 0 to 512
[  203.656314][T13034] netlink: 'syz.0.3173': attribute type 4 has an invalid length.
[  203.691755][T13029] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.763756][T13044] loop0: detected capacity change from 0 to 512
[  203.777325][ T3339] IPVS: starting estimator thread 0...
[  203.789466][T13044] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.805206][T13046] loop2: detected capacity change from 0 to 512
[  203.812652][T13046] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  203.838837][T13046] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  203.854643][T13053] netlink: 116 bytes leftover after parsing attributes in process `syz.4.3179'.
[  203.866601][T13046] EXT4-fs (loop2): orphan cleanup on readonly fs
[  203.878593][T13046] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3177: bg 0: block 361: padding at end of block bitmap is not set
[  203.893208][T13047] IPVS: using max 2304 ests per chain, 115200 per kthread
[  203.901336][T13046] EXT4-fs (loop2): Remounting filesystem read-only
[  203.908188][T13046] EXT4-fs (loop2): 1 truncate cleaned up
[  203.914611][T13046] SELinux: (dev loop2, type ext4) getxattr errno 5
[  203.950452][T13060] loop4: detected capacity change from 0 to 512
[  203.955422][T13063] FAULT_INJECTION: forcing a failure.
[  203.955422][T13063] name failslab, interval 1, probability 0, space 0, times 0
[  203.969465][T13063] CPU: 1 UID: 0 PID: 13063 Comm: syz.3.3184 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  203.981433][T13063] Tainted: [W]=WARN
[  203.985247][T13063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  203.995392][T13063] Call Trace:
[  203.998719][T13063]  <TASK>
[  204.001671][T13063]  dump_stack_lvl+0xf2/0x150
[  204.006406][T13063]  dump_stack+0x15/0x20
[  204.010597][T13063]  should_fail_ex+0x229/0x230
[  204.015394][T13063]  ? __se_sys_memfd_create+0x230/0x5c0
[  204.020884][T13063]  should_failslab+0x8f/0xb0
[  204.025671][T13063]  __kmalloc_noprof+0xa5/0x370
[  204.028905][T13066] loop0: detected capacity change from 0 to 2048
[  204.030461][T13063]  __se_sys_memfd_create+0x230/0x5c0
[  204.030501][T13063]  __x64_sys_memfd_create+0x31/0x40
[  204.044309][T13061] loop1: detected capacity change from 0 to 1024
[  204.047471][T13063]  x64_sys_call+0x2891/0x2d60
[  204.047511][T13063]  do_syscall_64+0xc9/0x1c0
[  204.063039][T13063]  ? clear_bhb_loop+0x55/0xb0
[  204.066632][T13061] EXT4-fs: Ignoring removed oldalloc option
[  204.068056][T13063]  ? clear_bhb_loop+0x55/0xb0
[  204.078811][T13063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.084778][T13063] RIP: 0033:0x7f4bb99adef9
[  204.087838][T13060] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.3183: attempt to clear invalid blocks 2 len 1
[  204.089201][T13063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.089227][T13063] RSP: 002b:00007f4bb8620e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  204.089253][T13063] RAX: ffffffffffffffda RBX: 0000000000000475 RCX: 00007f4bb99adef9
[  204.089270][T13063] RDX: 00007f4bb8620ef0 RSI: 0000000000000000 RDI: 00007f4bb9a21369
[  204.112653][T13060] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, 
[  204.121690][T13063] RBP: 0000000020001f80 R08: 00007f4bb8620bb7 R09: 00007f4bb8620e40
[  204.130192][T13060] block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  204.138212][T13063] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000480
[  204.138230][T13063] R13: 00007f4bb8620ef0 R14: 00007f4bb8620eb0 R15: 0000000020001ec0
[  204.149424][T13060] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.3183: invalid indirect mapped block 1819239214 (level 0)
[  204.154585][T13063]  </TASK>
[  204.167577][T13060] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.3183: invalid indirect mapped block 1819239214 (level 1)
[  204.244145][T13071] loop3: detected capacity change from 0 to 128
[  204.252801][T13060] EXT4-fs (loop4): 1 truncate cleaned up
[  204.301388][T13076] wireguard0: entered promiscuous mode
[  204.305252][T13066]  loop0: p2 p3 p7
[  204.306888][T13076] wireguard0: entered allmulticast mode
[  204.337098][T13084] loop3: detected capacity change from 0 to 512
[  204.350352][T13087] netlink: 'syz.4.3191': attribute type 1 has an invalid length.
[  204.421693][T13084] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.514401][T13097] netlink: 116 bytes leftover after parsing attributes in process `syz.4.3194'.
[  204.692658][T13108] loop1: detected capacity change from 0 to 512
[  204.713678][T13108] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  204.744669][T13108] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3199: bg 0: block 64: padding at end of block bitmap is not set
[  204.759787][T13117] FAULT_INJECTION: forcing a failure.
[  204.759787][T13117] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  204.772891][T13117] CPU: 1 UID: 0 PID: 13117 Comm: syz.3.3196 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  204.784860][T13117] Tainted: [W]=WARN
[  204.788684][T13117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  204.798943][T13117] Call Trace:
[  204.802245][T13117]  <TASK>
[  204.805190][T13117]  dump_stack_lvl+0xf2/0x150
[  204.809822][T13117]  dump_stack+0x15/0x20
[  204.814050][T13117]  should_fail_ex+0x229/0x230
[  204.818763][T13117]  should_fail+0xb/0x10
[  204.822973][T13117]  should_fail_usercopy+0x1a/0x20
[  204.828028][T13117]  _copy_from_user+0x1e/0xd0
[  204.832723][T13117]  copy_msghdr_from_user+0x54/0x2a0
[  204.837958][T13117]  __sys_sendmmsg+0x21e/0x500
[  204.842712][T13117]  __x64_sys_sendmmsg+0x57/0x70
[  204.847607][T13117]  x64_sys_call+0xa49/0x2d60
[  204.852227][T13117]  do_syscall_64+0xc9/0x1c0
[  204.856816][T13117]  ? clear_bhb_loop+0x55/0xb0
[  204.861544][T13117]  ? clear_bhb_loop+0x55/0xb0
[  204.866351][T13117]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.872415][T13117] RIP: 0033:0x7f4bb99adef9
[  204.876854][T13117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.896804][T13117] RSP: 002b:00007f4bb8600038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  204.905272][T13117] RAX: ffffffffffffffda RBX: 00007f4bb9b66058 RCX: 00007f4bb99adef9
[  204.913262][T13117] RDX: 0000000000000001 RSI: 00000000200019c0 RDI: 0000000000000003
[  204.921319][T13117] RBP: 00007f4bb8600090 R08: 0000000000000000 R09: 0000000000000000
[  204.929401][T13117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.937415][T13117] R13: 0000000000000001 R14: 00007f4bb9b66058 R15: 00007ffdbe97d098
[  204.945402][T13117]  </TASK>
[  204.970260][T13108] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.3199: Failed to acquire dquot type 0
[  204.982291][T13108] EXT4-fs (loop1): 1 truncate cleaned up
[  205.031450][T13121] FAULT_INJECTION: forcing a failure.
[  205.031450][T13121] name failslab, interval 1, probability 0, space 0, times 0
[  205.044186][T13121] CPU: 0 UID: 0 PID: 13121 Comm: syz.1.3200 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  205.056134][T13121] Tainted: [W]=WARN
[  205.060019][T13121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  205.070096][T13121] Call Trace:
[  205.073391][T13121]  <TASK>
[  205.076339][T13121]  dump_stack_lvl+0xf2/0x150
[  205.081200][T13121]  dump_stack+0x15/0x20
[  205.085442][T13121]  should_fail_ex+0x229/0x230
[  205.090610][T13121]  ? __se_sys_memfd_create+0x230/0x5c0
[  205.096089][T13121]  should_failslab+0x8f/0xb0
[  205.100710][T13121]  __kmalloc_noprof+0xa5/0x370
[  205.105548][T13121]  __se_sys_memfd_create+0x230/0x5c0
[  205.110917][T13121]  __x64_sys_memfd_create+0x31/0x40
[  205.116149][T13121]  x64_sys_call+0x2891/0x2d60
[  205.120893][T13121]  do_syscall_64+0xc9/0x1c0
[  205.125447][T13121]  ? clear_bhb_loop+0x55/0xb0
[  205.130213][T13121]  ? clear_bhb_loop+0x55/0xb0
[  205.135010][T13121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.140939][T13121] RIP: 0033:0x7f0e6af3def9
[  205.145422][T13121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.165133][T13121] RSP: 002b:00007f0e69bb6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  205.173586][T13121] RAX: ffffffffffffffda RBX: 00000000000004ea RCX: 00007f0e6af3def9
[  205.181617][T13121] RDX: 00007f0e69bb6ef0 RSI: 0000000000000000 RDI: 00007f0e6afb1369
[  205.189605][T13121] RBP: 00000000200006c0 R08: 00007f0e69bb6bb7 R09: 00007f0e69bb6e40
[  205.197605][T13121] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000080
[  205.205597][T13121] R13: 00007f0e69bb6ef0 R14: 00007f0e69bb6eb0 R15: 0000000020000000
[  205.213594][T13121]  </TASK>
[  205.254956][T13125] kernel profiling enabled (shift: 17)
[  205.280334][T13128] FAULT_INJECTION: forcing a failure.
[  205.280334][T13128] name failslab, interval 1, probability 0, space 0, times 0
[  205.293056][T13128] CPU: 0 UID: 0 PID: 13128 Comm: syz.2.3202 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  205.305221][T13128] Tainted: [W]=WARN
[  205.308879][T13130] loop1: detected capacity change from 0 to 128
[  205.309024][T13128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  205.325337][T13128] Call Trace:
[  205.328657][T13128]  <TASK>
[  205.331594][T13128]  dump_stack_lvl+0xf2/0x150
[  205.336212][T13128]  dump_stack+0x15/0x20
[  205.340425][T13128]  should_fail_ex+0x229/0x230
[  205.345114][T13128]  ? alloc_fs_context+0x44/0x4e0
[  205.350096][T13128]  should_failslab+0x8f/0xb0
[  205.354864][T13128]  __kmalloc_cache_noprof+0x4b/0x2a0
[  205.360233][T13128]  alloc_fs_context+0x44/0x4e0
[  205.365100][T13128]  ? strncmp+0x34/0x70
[  205.369193][T13128]  fs_context_for_mount+0x21/0x30
[  205.374241][T13128]  do_new_mount+0xf3/0x690
[  205.378751][T13128]  path_mount+0x49b/0xb30
[  205.383101][T13128]  __se_sys_mount+0x27c/0x2d0
[  205.387873][T13128]  __x64_sys_mount+0x67/0x80
[  205.392489][T13128]  x64_sys_call+0x203e/0x2d60
[  205.397256][T13128]  do_syscall_64+0xc9/0x1c0
[  205.401769][T13128]  ? clear_bhb_loop+0x55/0xb0
[  205.406610][T13128]  ? clear_bhb_loop+0x55/0xb0
[  205.411308][T13128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.417325][T13128] RIP: 0033:0x7f0d744ddef9
[  205.421828][T13128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.441468][T13128] RSP: 002b:00007f0d73157038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  205.449905][T13128] RAX: ffffffffffffffda RBX: 00007f0d74695f80 RCX: 00007f0d744ddef9
[  205.457968][T13128] RDX: 0000000020000340 RSI: 0000000020000080 RDI: 0000000000000000
[  205.465970][T13128] RBP: 00007f0d73157090 R08: 0000000020000380 R09: 0000000000000000
[  205.474091][T13128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.482155][T13128] R13: 0000000000000000 R14: 00007f0d74695f80 R15: 00007ffe65497c18
[  205.490142][T13128]  </TASK>
[  205.522276][T13132] loop2: detected capacity change from 0 to 512
[  205.529810][T13132] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  205.561432][T13132] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  205.579401][T13132] EXT4-fs (loop2): orphan cleanup on readonly fs
[  205.580477][T13135] netlink: 116 bytes leftover after parsing attributes in process `syz.1.3205'.
[  205.595094][T13132] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3204: bg 0: block 361: padding at end of block bitmap is not set
[  205.619928][T13132] EXT4-fs (loop2): Remounting filesystem read-only
[  205.637354][T13139] loop0: detected capacity change from 0 to 512
[  205.642309][T13132] EXT4-fs (loop2): 1 truncate cleaned up
[  205.650030][T13132] SELinux: (dev loop2, type ext4) getxattr errno 5
[  205.712411][T13139] ext4 filesystem being mounted at /68/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  205.795825][T13160] syz.2.3214[13160] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  205.807834][T13162] loop1: detected capacity change from 0 to 128
[  205.905163][T13169] netlink: 116 bytes leftover after parsing attributes in process `syz.0.3218'.
[  206.015762][T13174] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.076829][T13174] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.137820][T13174] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.213996][T13174] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.258586][T13174] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  206.274215][T13174] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  206.287508][T13174] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  206.302175][T13174] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  206.435035][T13185] FAULT_INJECTION: forcing a failure.
[  206.435035][T13185] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.448295][T13185] CPU: 0 UID: 0 PID: 13185 Comm: syz.0.3224 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  206.460253][T13185] Tainted: [W]=WARN
[  206.464153][T13185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  206.474232][T13185] Call Trace:
[  206.477526][T13185]  <TASK>
[  206.480487][T13185]  dump_stack_lvl+0xf2/0x150
[  206.485207][T13185]  dump_stack+0x15/0x20
[  206.489411][T13185]  should_fail_ex+0x229/0x230
[  206.494191][T13185]  should_fail+0xb/0x10
[  206.498370][T13185]  should_fail_usercopy+0x1a/0x20
[  206.503506][T13185]  _copy_from_user+0x1e/0xd0
[  206.508277][T13185]  copy_msghdr_from_user+0x54/0x2a0
[  206.513512][T13185]  __sys_sendmsg+0x171/0x270
[  206.518166][T13185]  __x64_sys_sendmsg+0x46/0x50
[  206.523113][T13185]  x64_sys_call+0x2689/0x2d60
[  206.527856][T13185]  do_syscall_64+0xc9/0x1c0
[  206.532383][T13185]  ? clear_bhb_loop+0x55/0xb0
[  206.537091][T13185]  ? clear_bhb_loop+0x55/0xb0
[  206.541932][T13185]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.547876][T13185] RIP: 0033:0x7f646710def9
[  206.552321][T13185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.572002][T13185] RSP: 002b:00007f6465d87038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  206.580442][T13185] RAX: ffffffffffffffda RBX: 00007f64672c5f80 RCX: 00007f646710def9
[  206.588445][T13185] RDX: 0000000000000000 RSI: 0000000020003fc0 RDI: 0000000000000003
[  206.596526][T13185] RBP: 00007f6465d87090 R08: 0000000000000000 R09: 0000000000000000
[  206.604585][T13185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.612581][T13185] R13: 0000000000000000 R14: 00007f64672c5f80 R15: 00007ffd4a8ce978
[  206.620589][T13185]  </TASK>
[  206.667368][T13187] syz.3.3225[13187] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  206.667467][T13187] syz.3.3225[13187] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  206.708182][T13191] loop3: detected capacity change from 0 to 128
[  206.806479][T13194] loop1: detected capacity change from 0 to 512
[  206.817280][T13194] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  206.847359][T13194] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  206.858100][T13194] EXT4-fs (loop1): orphan cleanup on readonly fs
[  206.865101][T13194] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3228: bg 0: block 361: padding at end of block bitmap is not set
[  206.883244][T13194] EXT4-fs (loop1): Remounting filesystem read-only
[  206.890439][T13194] EXT4-fs (loop1): 1 truncate cleaned up
[  206.897035][T13194] SELinux: (dev loop1, type ext4) getxattr errno 5
[  206.964594][T13199] loop1: detected capacity change from 0 to 512
[  206.971344][T13199] EXT4-fs: quotafile must be on filesystem root
[  207.061832][T13203] syz.1.3231[13203] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.061900][T13203] syz.1.3231[13203] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.751892][T13218] loop4: detected capacity change from 0 to 512
[  207.786049][T13218] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  207.808454][T13218] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  207.831486][T13218] EXT4-fs (loop4): orphan cleanup on readonly fs
[  207.851784][T13218] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3236: bg 0: block 361: padding at end of block bitmap is not set
[  207.902015][T13224] FAULT_INJECTION: forcing a failure.
[  207.902015][T13224] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.915305][T13224] CPU: 0 UID: 0 PID: 13224 Comm: syz.3.3238 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  207.918716][T13218] EXT4-fs (loop4): Remounting filesystem read-only
[  207.927213][T13224] Tainted: [W]=WARN
[  207.927223][T13224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  207.927236][T13224] Call Trace:
[  207.927244][T13224]  <TASK>
[  207.927290][T13224]  dump_stack_lvl+0xf2/0x150
[  207.927329][T13224]  dump_stack+0x15/0x20
[  207.962858][T13224]  should_fail_ex+0x229/0x230
[  207.967552][T13224]  should_fail+0xb/0x10
[  207.971772][T13224]  should_fail_usercopy+0x1a/0x20
[  207.976809][T13224]  _copy_from_user+0x1e/0xd0
[  207.981421][T13224]  copy_msghdr_from_user+0x54/0x2a0
[  207.986653][T13224]  __sys_sendmsg+0x171/0x270
[  207.991327][T13224]  __x64_sys_sendmsg+0x46/0x50
[  207.996117][T13224]  x64_sys_call+0x2689/0x2d60
[  208.000832][T13224]  do_syscall_64+0xc9/0x1c0
[  208.005427][T13224]  ? clear_bhb_loop+0x55/0xb0
[  208.010135][T13224]  ? clear_bhb_loop+0x55/0xb0
[  208.014892][T13224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.020822][T13224] RIP: 0033:0x7f4bb99adef9
[  208.025286][T13224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.045114][T13224] RSP: 002b:00007f4bb8621038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.053608][T13224] RAX: ffffffffffffffda RBX: 00007f4bb9b65f80 RCX: 00007f4bb99adef9
[  208.061591][T13224] RDX: 0000000000000000 RSI: 0000000020003fc0 RDI: 0000000000000003
[  208.069636][T13224] RBP: 00007f4bb8621090 R08: 0000000000000000 R09: 0000000000000000
[  208.077797][T13224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.085861][T13224] R13: 0000000000000000 R14: 00007f4bb9b65f80 R15: 00007ffdbe97d098
[  208.093912][T13224]  </TASK>
[  208.201535][T13218] EXT4-fs (loop4): 1 truncate cleaned up
[  208.207828][T13218] SELinux: (dev loop4, type ext4) getxattr errno 5
[  208.224628][T13227] loop1: detected capacity change from 0 to 512
[  208.235842][T13227] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  208.256411][T13227] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  208.264579][T13227] EXT4-fs (loop1): orphan cleanup on readonly fs
[  208.273874][T13227] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3239: bg 0: block 361: padding at end of block bitmap is not set
[  208.288812][T13227] EXT4-fs (loop1): Remounting filesystem read-only
[  208.298778][T13227] EXT4-fs (loop1): 1 truncate cleaned up
[  208.305223][T13227] SELinux: (dev loop1, type ext4) getxattr errno 5
[  208.382108][   T29] kauditd_printk_skb: 184 callbacks suppressed
[  208.382123][   T29] audit: type=1400 audit(1726838683.338:9231): avc:  denied  { setattr } for  pid=13225 comm="syz.3.3240" name="" dev="pipefs" ino=38897 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  208.470623][T13231] 9pnet_fd: Insufficient options for proto=fd
[  208.596393][T13237] loop0: detected capacity change from 0 to 1024
[  208.605690][T13237] EXT4-fs: Ignoring removed oldalloc option
[  208.620664][   T29] audit: type=1326 audit(1726838683.588:9232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13239 comm="syz.4.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  208.644831][   T29] audit: type=1326 audit(1726838683.588:9233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13239 comm="syz.4.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  208.672500][T13241] loop4: detected capacity change from 0 to 512
[  208.680647][   T29] audit: type=1326 audit(1726838683.638:9234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13239 comm="syz.4.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  208.704349][   T29] audit: type=1326 audit(1726838683.638:9235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13239 comm="syz.4.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  208.727965][   T29] audit: type=1326 audit(1726838683.638:9236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13239 comm="syz.4.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f97dd32def9 code=0x7ffc0000
[  208.743671][T13241] ext4 filesystem being mounted at /150/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  208.751701][   T29] audit: type=1326 audit(1726838683.638:9237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13239 comm="syz.4.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f97dd32df33 code=0x7ffc0000
[  208.785443][   T29] audit: type=1326 audit(1726838683.638:9238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13239 comm="syz.4.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f97dd32c9df code=0x7ffc0000
[  208.808885][   T29] audit: type=1326 audit(1726838683.638:9239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13239 comm="syz.4.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f97dd32df87 code=0x7ffc0000
[  208.832627][   T29] audit: type=1326 audit(1726838683.638:9240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13239 comm="syz.4.3245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f97dd32c890 code=0x7ffc0000
[  208.890356][T13250] loop2: detected capacity change from 0 to 4096
[  209.075639][T13261] loop1: detected capacity change from 0 to 4096
[  209.095912][T13259] serio: Serial port ptm0
[  209.189947][T13268] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3251'.
[  209.215440][T13270] netlink: 'syz.0.3253': attribute type 4 has an invalid length.
[  209.269204][T13274] netlink: 68 bytes leftover after parsing attributes in process `syz.0.3255'.
[  209.271237][T13276] loop2: detected capacity change from 0 to 512
[  209.289124][T13276] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  209.300265][T13274] loop0: detected capacity change from 0 to 512
[  209.311012][T13276] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  209.319268][T13276] EXT4-fs (loop2): orphan cleanup on readonly fs
[  209.325837][T13276] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3256: bg 0: block 361: padding at end of block bitmap is not set
[  209.328418][T13274] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  209.341420][T13276] EXT4-fs (loop2): Remounting filesystem read-only
[  209.357083][T13274] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  209.357600][T13276] EXT4-fs (loop2): 1 truncate cleaned up
[  209.377440][T13274] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 2 with error 28
[  209.389802][T13274] EXT4-fs (loop0): This should not happen!! Data will be lost
[  209.389802][T13274] 
[  209.399388][T13276] SELinux: (dev loop2, type ext4) getxattr errno 5
[  209.399537][T13274] EXT4-fs (loop0): Total free blocks count 0
[  209.412046][T13274] EXT4-fs (loop0): Free/Dirty block details
[  209.417981][T13274] EXT4-fs (loop0): free_blocks=65281
[  209.423340][T13274] EXT4-fs (loop0): dirty_blocks=2
[  209.428401][T13274] EXT4-fs (loop0): Block reservation details
[  209.434434][T13274] EXT4-fs (loop0): i_reserved_data_blocks=2
[  209.457992][T13284] loop3: detected capacity change from 0 to 1024
[  209.464896][T13284] EXT4-fs: Ignoring removed oldalloc option
[  209.478887][T13276] 9pnet_fd: Insufficient options for proto=fd
[  209.511686][T13289] loop0: detected capacity change from 0 to 512
[  209.543084][T13289] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  209.558600][T13289] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  209.566982][T13289] EXT4-fs (loop0): orphan cleanup on readonly fs
[  209.573779][T13289] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3259: bg 0: block 361: padding at end of block bitmap is not set
[  209.597181][T13298] netlink: 140 bytes leftover after parsing attributes in process `syz.3.3260'.
[  209.610601][T13289] EXT4-fs (loop0): Remounting filesystem read-only
[  209.612992][T13300] netlink: 140 bytes leftover after parsing attributes in process `syz.3.3260'.
[  209.618812][T13289] EXT4-fs (loop0): 1 truncate cleaned up
[  209.634179][T13289] SELinux: (dev loop0, type ext4) getxattr errno 5
[  209.659153][T13302] loop3: detected capacity change from 0 to 512
[  209.671794][T13291] loop2: detected capacity change from 0 to 512
[  209.712752][T13308] FAULT_INJECTION: forcing a failure.
[  209.712752][T13308] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  209.725908][T13308] CPU: 1 UID: 0 PID: 13308 Comm: syz.1.3267 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  209.737943][T13308] Tainted: [W]=WARN
[  209.741872][T13308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  209.752052][T13308] Call Trace:
[  209.755454][T13308]  <TASK>
[  209.758399][T13308]  dump_stack_lvl+0xf2/0x150
[  209.758661][T13312] loop0: detected capacity change from 0 to 512
[  209.763071][T13308]  dump_stack+0x15/0x20
[  209.773558][T13308]  should_fail_ex+0x229/0x230
[  209.775785][T13312] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  209.778325][T13308]  should_fail+0xb/0x10
[  209.792024][T13308]  should_fail_usercopy+0x1a/0x20
[  209.797079][T13308]  strncpy_from_user+0x25/0x270
[  209.801544][T13312] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  209.802063][T13308]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  209.812546][T13312] EXT4-fs (loop0): orphan cleanup on readonly fs
[  209.815584][T13308]  getname_flags+0xb0/0x3b0
[  209.826467][T13308]  getname+0x17/0x20
[  209.830383][T13308]  do_sys_openat2+0x67/0x120
[  209.834658][T13312] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3268: bg 0: block 361: padding at end of block bitmap is not set
[  209.835060][T13308]  __x64_sys_openat+0xf3/0x120
[  209.854143][T13308]  x64_sys_call+0x1025/0x2d60
[  209.858899][T13308]  do_syscall_64+0xc9/0x1c0
[  209.863412][T13308]  ? clear_bhb_loop+0x55/0xb0
[  209.868173][T13308]  ? clear_bhb_loop+0x55/0xb0
[  209.872908][T13308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.878824][T13308] RIP: 0033:0x7f0e6af3c890
[  209.883248][T13308] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  209.902912][T13308] RSP: 002b:00007f0e69bb4ef0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  209.911334][T13308] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0e6af3c890
[  209.919467][T13308] RDX: 0000000000000002 RSI: 00007f0e6afb090c RDI: 00000000ffffff9c
[  209.927535][T13308] RBP: 00007f0e6afb090c R08: 0000000000000000 R09: 0000000000000000
[  209.935520][T13308] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005
[  209.943501][T13308] R13: 0000000000000036 R14: 0000000020000040 R15: 00007ffc256e2b48
[  209.951523][T13308]  </TASK>
[  209.959761][T13312] EXT4-fs (loop0): Remounting filesystem read-only
[  209.966935][T13312] EXT4-fs (loop0): 1 truncate cleaned up
[  209.967109][T13291] ext4 filesystem being mounted at /123/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  209.975470][T13312] SELinux: (dev loop0, type ext4) getxattr errno 5
[  209.995334][T13302] ext4 filesystem being mounted at /165/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.024074][T13321] SELinux:  Context Ü is not valid (left unmapped).
[  210.032110][T13312] 9pnet_fd: Insufficient options for proto=fd
[  210.562833][T13343] loop1: detected capacity change from 0 to 512
[  210.581325][T13343] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  210.611704][T13343] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  210.628169][T13343] EXT4-fs (loop1): orphan cleanup on readonly fs
[  210.635850][T13343] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3277: bg 0: block 361: padding at end of block bitmap is not set
[  210.653213][T13343] EXT4-fs (loop1): Remounting filesystem read-only
[  210.660836][T13343] EXT4-fs (loop1): 1 truncate cleaned up
[  210.667193][T13343] SELinux: (dev loop1, type ext4) getxattr errno 5
[  210.803494][T13346] netlink: 'syz.1.3278': attribute type 4 has an invalid length.
[  210.832333][T13348] 9pnet_fd: p9_fd_create_tcp (13348): problem connecting socket to 127.0.0.1
[  210.857692][T13350] loop1: detected capacity change from 0 to 128
[  210.889251][T13352] loop1: detected capacity change from 0 to 512
[  210.918638][T13354] loop0: detected capacity change from 0 to 512
[  210.931387][T13354] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  210.946660][T13358] loop3: detected capacity change from 0 to 512
[  210.966622][T13354] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  210.982669][T13354] EXT4-fs (loop0): orphan cleanup on readonly fs
[  210.989984][T13354] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3282: bg 0: block 361: padding at end of block bitmap is not set
[  210.990139][T13352] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.005225][T13354] EXT4-fs (loop0): Remounting filesystem read-only
[  211.034119][T13358] ext4 filesystem being mounted at /168/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.051777][T13354] EXT4-fs (loop0): 1 truncate cleaned up
[  211.058766][T13354] SELinux: (dev loop0, type ext4) getxattr errno 5
[  211.105111][T13354] 9pnet_fd: Insufficient options for proto=fd
[  211.107354][T13370] loop2: detected capacity change from 0 to 512
[  211.119033][T13371] FAULT_INJECTION: forcing a failure.
[  211.119033][T13371] name failslab, interval 1, probability 0, space 0, times 0
[  211.131921][T13371] CPU: 1 UID: 0 PID: 13371 Comm: syz.1.3285 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  211.143860][T13371] Tainted: [W]=WARN
[  211.147633][T13374] loop0: detected capacity change from 0 to 512
[  211.147752][T13371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  211.164085][T13371] Call Trace:
[  211.167377][T13371]  <TASK>
[  211.170313][T13371]  dump_stack_lvl+0xf2/0x150
[  211.175015][T13371]  dump_stack+0x15/0x20
[  211.179192][T13371]  should_fail_ex+0x229/0x230
[  211.183878][T13371]  ? security_inode_alloc+0x32/0x100
[  211.189193][T13371]  should_failslab+0x8f/0xb0
[  211.193881][T13371]  kmem_cache_alloc_noprof+0x4c/0x290
[  211.199270][T13371]  security_inode_alloc+0x32/0x100
[  211.204410][T13371]  inode_init_always+0x438/0x480
[  211.209379][T13371]  ? __pfx_sock_alloc_inode+0x10/0x10
[  211.214802][T13371]  alloc_inode+0x7d/0x160
[  211.219151][T13371]  new_inode_pseudo+0x15/0x20
[  211.223849][T13371]  do_accept+0xdb/0x390
[  211.228035][T13371]  ? vfs_write+0x580/0x910
[  211.232540][T13371]  __sys_accept4+0xc4/0x150
[  211.237059][T13371]  __x64_sys_accept+0x44/0x50
[  211.241755][T13371]  x64_sys_call+0x294f/0x2d60
[  211.246499][T13371]  do_syscall_64+0xc9/0x1c0
[  211.251010][T13371]  ? clear_bhb_loop+0x55/0xb0
[  211.255746][T13371]  ? clear_bhb_loop+0x55/0xb0
[  211.260442][T13371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.266358][T13371] RIP: 0033:0x7f0e6af3def9
[  211.270868][T13371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.290509][T13371] RSP: 002b:00007f0e69bb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b
[  211.298942][T13371] RAX: ffffffffffffffda RBX: 00007f0e6b0f5f80 RCX: 00007f0e6af3def9
[  211.306919][T13371] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  211.314948][T13371] RBP: 00007f0e69bb7090 R08: 0000000000000000 R09: 0000000000000000
[  211.323033][T13371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  211.331011][T13371] R13: 0000000000000000 R14: 00007f0e6b0f5f80 R15: 00007ffc256e2b48
[  211.338997][T13371]  </TASK>
[  211.358177][T13374] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  211.372849][T13367] loop4: detected capacity change from 0 to 128
[  211.388019][T13374] EXT4-fs (loop0): 1 truncate cleaned up
[  211.410309][T13370] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.410361][T13381] loop1: detected capacity change from 0 to 1024
[  211.428079][T13381] EXT4-fs: Ignoring removed oldalloc option
[  211.434381][T13366] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  211.476036][T13373] coredump: 229(syz.0.3289): Error writing out the process memory
[  211.477499][T13384] syz.3.3291[13384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  211.483985][T13373] coredump: 229(syz.0.3289): written to core: VMAs: 29, size 89030656; core: 217774 bytes, pos 667648
[  211.484084][T13384] syz.3.3291[13384] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  211.665597][T13401] loop2: detected capacity change from 0 to 512
[  211.668463][T13403] loop1: detected capacity change from 0 to 512
[  211.691031][T13403] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  211.706398][T13403] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  211.714824][T13403] EXT4-fs (loop1): orphan cleanup on readonly fs
[  211.721528][T13403] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3299: bg 0: block 361: padding at end of block bitmap is not set
[  211.737522][T13401] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.738161][T13403] EXT4-fs (loop1): Remounting filesystem read-only
[  211.754944][T13403] EXT4-fs (loop1): 1 truncate cleaned up
[  211.762106][T13403] SELinux: (dev loop1, type ext4) getxattr errno 5
[  211.787209][T13403] 9pnet_fd: Insufficient options for proto=fd
[  211.810286][T13408] loop3: detected capacity change from 0 to 512
[  211.830257][T13408] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[  211.838539][T13408] System zones: 0-2, 18-18, 34-34
[  211.847697][T13412] loop1: detected capacity change from 0 to 512
[  211.849265][T13408] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3301: bg 0: block 248: padding at end of block bitmap is not set
[  211.871503][T13408] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.3301: Failed to acquire dquot type 1
[  211.885031][T13412] ext4 filesystem being mounted at /67/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  211.904880][T13408] EXT4-fs (loop3): 1 truncate cleaned up
[  211.911176][T13408] ext4 filesystem being mounted at /172/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.929632][T13408] @: renamed from bond0 (while UP)
[  211.968825][T13422] loop3: detected capacity change from 0 to 512
[  211.983021][T13422] ext4 filesystem being mounted at /173/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.033430][T13428] loop1: detected capacity change from 0 to 1024
[  212.040824][T13428] EXT4-fs: Ignoring removed oldalloc option
[  212.096856][T13436] loop1: detected capacity change from 0 to 512
[  212.104790][T13436] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  212.126304][T13436] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  212.134572][T13436] EXT4-fs (loop1): orphan cleanup on readonly fs
[  212.141335][T13436] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3309: bg 0: block 361: padding at end of block bitmap is not set
[  212.155912][T13436] EXT4-fs (loop1): Remounting filesystem read-only
[  212.163644][T13436] EXT4-fs (loop1): 1 truncate cleaned up
[  212.169793][T13436] SELinux: (dev loop1, type ext4) getxattr errno 5
[  212.199056][T13441] loop1: detected capacity change from 0 to 512
[  212.213512][T13441] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.267891][T13447] loop1: detected capacity change from 0 to 512
[  212.275213][T13447] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  212.285787][T13447] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  212.294003][T13447] EXT4-fs (loop1): orphan cleanup on readonly fs
[  212.300718][T13447] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3312: bg 0: block 361: padding at end of block bitmap is not set
[  212.315422][T13447] EXT4-fs (loop1): Remounting filesystem read-only
[  212.322404][T13447] EXT4-fs (loop1): 1 truncate cleaned up
[  212.328502][T13447] SELinux: (dev loop1, type ext4) getxattr errno 5
[  212.339897][T13447] 9pnet_fd: Insufficient options for proto=fd
[  212.363711][T13450] loop1: detected capacity change from 0 to 512
[  212.380992][T13450] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.437930][T13454] loop4: detected capacity change from 0 to 4096
[  212.452253][T13456] loop0: detected capacity change from 0 to 512
[  212.483451][T13456] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  212.533448][T13459] loop1: detected capacity change from 0 to 512
[  212.554346][T13459] ext4 filesystem being mounted at /74/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  212.775440][T13475] loop4: detected capacity change from 0 to 512
[  212.806811][T13475] ext4 filesystem being mounted at /161/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.873758][T13483] loop0: detected capacity change from 0 to 512
[  212.898268][T13485] netlink: 'syz.4.3325': attribute type 4 has an invalid length.
[  212.907544][T13483] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  212.918956][T13487] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  212.929549][T13487] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  212.948723][T13483] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  212.957898][T13493] FAULT_INJECTION: forcing a failure.
[  212.957898][T13493] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  212.961294][T13483] EXT4-fs (loop0): orphan cleanup on readonly fs
[  212.971098][T13493] CPU: 1 UID: 0 PID: 13493 Comm: syz.4.3329 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  212.989367][T13493] Tainted: [W]=WARN
[  212.991836][T13495] netlink: 184 bytes leftover after parsing attributes in process `syz.3.3327'.
[  212.993169][T13493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  213.012265][T13493] Call Trace:
[  213.015552][T13493]  <TASK>
[  213.018486][T13493]  dump_stack_lvl+0xf2/0x150
[  213.020201][T13483] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3324: bg 0: block 361: padding at end of block bitmap is not set
[  213.023167][T13493]  dump_stack+0x15/0x20
[  213.041582][T13493]  should_fail_ex+0x229/0x230
[  213.046369][T13493]  should_fail+0xb/0x10
[  213.050549][T13493]  should_fail_usercopy+0x1a/0x20
[  213.055318][T13483] EXT4-fs (loop0): Remounting filesystem read-only
[  213.055649][T13493]  _copy_from_user+0x1e/0xd0
[  213.066750][T13493]  __sys_bpf+0x14e/0x7a0
[  213.071070][T13493]  __x64_sys_bpf+0x43/0x50
[  213.076309][T13493]  x64_sys_call+0x2625/0x2d60
[  213.078202][T13483] EXT4-fs (loop0): 1 truncate cleaned up
[  213.081096][T13493]  do_syscall_64+0xc9/0x1c0
[  213.081123][T13493]  ? clear_bhb_loop+0x55/0xb0
[  213.096027][T13493]  ? clear_bhb_loop+0x55/0xb0
[  213.100757][T13493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.106687][T13493] RIP: 0033:0x7f97dd32def9
[  213.111145][T13493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  213.130776][T13493] RSP: 002b:00007f97dbfa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  213.139199][T13493] RAX: ffffffffffffffda RBX: 00007f97dd4e5f80 RCX: 00007f97dd32def9
[  213.147246][T13493] RDX: 0000000000000048 RSI: 0000000020000500 RDI: 0000000000000000
[  213.155315][T13493] RBP: 00007f97dbfa7090 R08: 0000000000000000 R09: 0000000000000000
[  213.163324][T13493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  213.171475][T13493] R13: 0000000000000000 R14: 00007f97dd4e5f80 R15: 00007ffc6909f228
[  213.179861][T13493]  </TASK>
[  213.191136][T13483] SELinux: (dev loop0, type ext4) getxattr errno 5
[  213.211342][T13483] 9pnet_fd: Insufficient options for proto=fd
[  213.233566][T13499] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3332'.
[  213.250091][T13501] loop4: detected capacity change from 0 to 512
[  213.257911][T13501] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  213.267267][T13503] loop0: detected capacity change from 0 to 4096
[  213.277992][T13501] EXT4-fs error (device loop4): __ext4_fill_super:5435: inode #2: comm syz.4.3331: iget: special inode unallocated
[  213.291217][T13501] EXT4-fs (loop4): get root inode failed
[  213.296917][T13501] EXT4-fs (loop4): mount failed
[  213.346095][T13509] loop2: detected capacity change from 0 to 512
[  213.365713][T13509] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  213.405934][T13514] 9pnet_fd: Insufficient options for proto=fd
[  213.506663][   T29] kauditd_printk_skb: 296 callbacks suppressed
[  213.506679][   T29] audit: type=1326 audit(1726838688.468:9535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13517 comm="syz.0.3338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f646710def9 code=0x7ffc0000
[  213.544718][T13522] loop1: detected capacity change from 0 to 512
[  213.545283][   T29] audit: type=1326 audit(1726838688.468:9536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13517 comm="syz.0.3338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f646710def9 code=0x7ffc0000
[  213.574832][   T29] audit: type=1326 audit(1726838688.468:9537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13517 comm="syz.0.3338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f646710def9 code=0x7ffc0000
[  213.574955][T13522] EXT4-fs: dax option not supported
[  213.578422][T13520] loop0: detected capacity change from 0 to 512
[  213.598480][   T29] audit: type=1326 audit(1726838688.468:9538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13517 comm="syz.0.3338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f646710def9 code=0x7ffc0000
[  213.621007][T13520] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3338: bg 0: block 248: padding at end of block bitmap is not set
[  213.633776][   T29] audit: type=1326 audit(1726838688.468:9539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13517 comm="syz.0.3338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f646710def9 code=0x7ffc0000
[  213.662961][T13520] Quota error (device loop0): write_blk: dquota write failed
[  213.671512][   T29] audit: type=1326 audit(1726838688.468:9540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13517 comm="syz.0.3338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f646710def9 code=0x7ffc0000
[  213.678894][T13520] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  213.702392][   T29] audit: type=1326 audit(1726838688.468:9541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13517 comm="syz.0.3338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f646710def9 code=0x7ffc0000
[  213.712257][T13520] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.3338: Failed to acquire dquot type 1
[  213.735800][   T29] audit: type=1326 audit(1726838688.468:9542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13517 comm="syz.0.3338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f646710def9 code=0x7ffc0000
[  213.752427][T13520] EXT4-fs (loop0): 1 truncate cleaned up
[  213.788951][T13522] batadv0: entered promiscuous mode
[  213.790684][T13520] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  213.805384][T13522] batadv_slave_0: entered promiscuous mode
[  213.811572][T13522] batadv_slave_0: left promiscuous mode
[  213.814194][T13518] syz.0.3338[13518] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  213.817270][T13518] syz.0.3338[13518] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  213.828794][T13522] batadv0: left promiscuous mode
[  213.864211][T13531] loop3: detected capacity change from 0 to 128
[  213.884218][ T5921] EXT4-fs error (device loop0): ext4_release_dquot:6871: comm kworker/u8:22: Failed to release dquot type 1
[  213.960821][T13538] loop1: detected capacity change from 0 to 128
[  213.977262][T13538] ext4 filesystem being mounted at /81/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  214.002002][T13543] netlink: 172 bytes leftover after parsing attributes in process `syz.0.3342'.
[  214.036015][T13545] netlink: 'syz.1.3346': attribute type 4 has an invalid length.
[  214.111698][T13549] loop1: detected capacity change from 0 to 1024
[  214.118600][T13549] EXT4-fs: Ignoring removed i_version option
[  214.124760][T13549] EXT4-fs: Ignoring removed i_version option
[  214.161772][T13551] loop4: detected capacity change from 0 to 4096
[  214.166402][T13549] geneve1: entered promiscuous mode
[  214.183681][T13548] geneve1: left promiscuous mode
[  214.307692][T13562] loop2: detected capacity change from 0 to 128
[  214.424077][T13565] loop2: detected capacity change from 0 to 128
[  214.548585][T13568] loop2: detected capacity change from 0 to 1024
[  214.572425][T13568] EXT4-fs: Ignoring removed oldalloc option
[  214.620561][T13570] FAULT_INJECTION: forcing a failure.
[  214.620561][T13570] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  214.633911][T13570] CPU: 1 UID: 0 PID: 13570 Comm: syz.4.3355 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  214.645911][T13570] Tainted: [W]=WARN
[  214.649771][T13570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  214.659977][T13570] Call Trace:
[  214.663330][T13570]  <TASK>
[  214.666383][T13570]  dump_stack_lvl+0xf2/0x150
[  214.671160][T13570]  dump_stack+0x15/0x20
[  214.675360][T13570]  should_fail_ex+0x229/0x230
[  214.680089][T13570]  should_fail+0xb/0x10
[  214.684397][T13570]  should_fail_usercopy+0x1a/0x20
[  214.689499][T13570]  _copy_from_user+0x1e/0xd0
[  214.694168][T13570]  copy_msghdr_from_user+0x54/0x2a0
[  214.699409][T13570]  __sys_sendmsg+0x171/0x270
[  214.704101][T13570]  __x64_sys_sendmsg+0x46/0x50
[  214.708975][T13570]  x64_sys_call+0x2689/0x2d60
[  214.713735][T13570]  do_syscall_64+0xc9/0x1c0
[  214.718279][T13570]  ? clear_bhb_loop+0x55/0xb0
[  214.723071][T13570]  ? clear_bhb_loop+0x55/0xb0
[  214.727771][T13570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.733685][T13570] RIP: 0033:0x7f97dd32def9
[  214.738109][T13570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.757731][T13570] RSP: 002b:00007f97dbfa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.766225][T13570] RAX: ffffffffffffffda RBX: 00007f97dd4e5f80 RCX: 00007f97dd32def9
[  214.774205][T13570] RDX: 0000000000000000 RSI: 000000002000c2c0 RDI: 0000000000000003
[  214.782188][T13570] RBP: 00007f97dbfa7090 R08: 0000000000000000 R09: 0000000000000000
[  214.790178][T13570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.798162][T13570] R13: 0000000000000000 R14: 00007f97dd4e5f80 R15: 00007ffc6909f228
[  214.806160][T13570]  </TASK>
[  214.923977][T13577] loop2: detected capacity change from 0 to 512
[  214.953783][T13579] netlink: 'syz.4.3358': attribute type 4 has an invalid length.
[  215.029288][T13577] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  215.067083][T13577] EXT4-fs (loop2): 1 truncate cleaned up
[  215.240994][T13576] coredump: 343(syz.2.3357): Error writing out the process memory
[  215.248903][T13576] coredump: 343(syz.2.3357): written to core: VMAs: 29, size 91127808; core: 217774 bytes, pos 667648
[  215.280314][T13593] loop0: detected capacity change from 0 to 512
[  215.321690][T13597] loop4: detected capacity change from 0 to 512
[  215.334086][T13599] loop2: detected capacity change from 0 to 512
[  215.341492][T13597] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  215.355606][T13593] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.366340][T13597] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  215.366554][T13597] EXT4-fs (loop4): orphan cleanup on readonly fs
[  215.384890][T13597] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3366: bg 0: block 361: padding at end of block bitmap is not set
[  215.400174][T13605] netlink: 172 bytes leftover after parsing attributes in process `syz.1.3367'.
[  215.401297][T13597] EXT4-fs (loop4): Remounting filesystem read-only
[  215.433538][T13597] EXT4-fs (loop4): 1 truncate cleaned up
[  215.440334][T13597] SELinux: (dev loop4, type ext4) getxattr errno 5
[  215.454214][T13599] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.508377][T13613] netlink: 'syz.2.3369': attribute type 4 has an invalid length.
[  215.548890][T13617] syz.0.3371[13617] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.549000][T13617] syz.0.3371[13617] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.549019][T13616] loop2: detected capacity change from 0 to 512
[  215.597944][T13616] ext4 filesystem being mounted at /147/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  215.606581][T13622] FAULT_INJECTION: forcing a failure.
[  215.606581][T13622] name failslab, interval 1, probability 0, space 0, times 0
[  215.621056][T13622] CPU: 0 UID: 0 PID: 13622 Comm: syz.0.3373 Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  215.633040][T13622] Tainted: [W]=WARN
[  215.636841][T13622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  215.647054][T13622] Call Trace:
[  215.650337][T13622]  <TASK>
[  215.653370][T13622]  dump_stack_lvl+0xf2/0x150
[  215.657985][T13622]  dump_stack+0x15/0x20
[  215.662157][T13622]  should_fail_ex+0x229/0x230
[  215.666982][T13623] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3372'.
[  215.667022][T13622]  ? __alloc_skb+0x10b/0x310
[  215.680594][T13622]  should_failslab+0x8f/0xb0
[  215.685275][T13622]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  215.691205][T13622]  __alloc_skb+0x10b/0x310
[  215.695696][T13622]  tipc_msg_create+0x45/0x220
[  215.700448][T13622]  tipc_group_proto_xmit+0xbd/0x320
[  215.705753][T13622]  tipc_group_delete+0x9e/0x290
[  215.710623][T13622]  tipc_sk_leave+0xac/0x270
[  215.715239][T13622]  tipc_release+0x83/0xa70
[  215.719705][T13622]  sock_close+0x68/0x150
[  215.724078][T13622]  ? __pfx_sock_close+0x10/0x10
[  215.728940][T13622]  __fput+0x17a/0x6d0
[  215.733008][T13622]  ____fput+0x1c/0x30
[  215.737005][T13622]  task_work_run+0x13a/0x1a0
[  215.741637][T13622]  syscall_exit_to_user_mode+0xbe/0x130
[  215.747213][T13622]  do_syscall_64+0xd6/0x1c0
[  215.751716][T13622]  ? clear_bhb_loop+0x55/0xb0
[  215.756494][T13622]  ? clear_bhb_loop+0x55/0xb0
[  215.761187][T13622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.767140][T13622] RIP: 0033:0x7f646710def9
[  215.771565][T13622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.791328][T13622] RSP: 002b:00007f6465d87038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  215.799939][T13622] RAX: 0000000000000000 RBX: 00007f64672c5f80 RCX: 00007f646710def9
[  215.807978][T13622] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000003
[  215.816213][T13622] RBP: 00007f6465d87090 R08: 0000000000000000 R09: 0000000000000000
[  215.824203][T13622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.832198][T13622] R13: 0000000000000000 R14: 00007f64672c5f80 R15: 00007ffd4a8ce978
[  215.840194][T13622]  </TASK>
[  216.059501][T13635] loop4: detected capacity change from 0 to 512
[  216.227091][T13635] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  216.239078][T13642] loop3: detected capacity change from 0 to 512
[  216.273906][T13642] ext4 filesystem being mounted at /181/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  216.308680][T13635] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  216.352856][T13635] EXT4-fs (loop4): orphan cleanup on readonly fs
[  216.359619][T13635] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3377: bg 0: block 361: padding at end of block bitmap is not set
[  216.374838][T13635] EXT4-fs (loop4): Remounting filesystem read-only
[  216.387599][T13635] EXT4-fs (loop4): 1 truncate cleaned up
[  216.395703][T13635] SELinux: (dev loop4, type ext4) getxattr errno 5
[  216.403715][ T2963] ==================================================================
[  216.411855][ T2963] BUG: KCSAN: data-race in block_uevent / inc_diskseq
[  216.418684][ T2963] 
[  216.421024][ T2963] write to 0xffff88810143b220 of 8 bytes by task 13635 on cpu 0:
[  216.428753][ T2963]  inc_diskseq+0x2c/0x40
[  216.433033][ T2963]  disk_force_media_change+0x9f/0xf0
[  216.438349][ T2963]  lo_release+0x2ca/0x400
[  216.442720][ T2963]  bdev_release+0x3c6/0x420
[  216.447252][ T2963]  blkdev_release+0x15/0x20
[  216.451864][ T2963]  __fput+0x17a/0x6d0
[  216.455914][ T2963]  __fput_sync+0x43/0x60
[  216.460204][ T2963]  __se_sys_close+0xf9/0x1a0
[  216.464815][ T2963]  __x64_sys_close+0x1f/0x30
[  216.469426][ T2963]  x64_sys_call+0x25cb/0x2d60
[  216.474135][ T2963]  do_syscall_64+0xc9/0x1c0
[  216.478662][ T2963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.484586][ T2963] 
[  216.486934][ T2963] read to 0xffff88810143b220 of 8 bytes by task 2963 on cpu 1:
[  216.494506][ T2963]  block_uevent+0x31/0x50
[  216.498879][ T2963]  dev_uevent+0x2fd/0x380
[  216.503262][ T2963]  uevent_show+0x10c/0x1f0
[  216.505386][T13649] netlink: 'syz.4.3382': attribute type 4 has an invalid length.
[  216.507701][ T2963]  dev_attr_show+0x3a/0xa0
[  216.519949][ T2963]  sysfs_kf_seq_show+0x17c/0x250
[  216.524920][ T2963]  kernfs_seq_show+0x7c/0x90
[  216.529536][ T2963]  seq_read_iter+0x2d1/0x930
[  216.534172][ T2963]  kernfs_fop_read_iter+0xc0/0x310
[  216.539315][ T2963]  vfs_read+0x5f6/0x720
[  216.543499][ T2963]  ksys_read+0xeb/0x1b0
[  216.547786][ T2963]  __x64_sys_read+0x42/0x50
[  216.552367][ T2963]  x64_sys_call+0x27d3/0x2d60
[  216.557085][ T2963]  do_syscall_64+0xc9/0x1c0
[  216.561618][ T2963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.567545][ T2963] 
[  216.569875][ T2963] value changed: 0x000000000000059b -> 0x000000000000059d
[  216.577004][ T2963] 
[  216.579343][ T2963] Reported by Kernel Concurrency Sanitizer on:
[  216.585559][ T2963] CPU: 1 UID: 0 PID: 2963 Comm: udevd Tainted: G        W          6.11.0-syzkaller-07341-gbaeb9a7d8b60 #0
[  216.596970][ T2963] Tainted: [W]=WARN
[  216.600785][ T2963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  216.610949][ T2963] ==================================================================
[  216.673162][T13653] loop3: detected capacity change from 0 to 512
[  216.687271][T13653] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  216.698611][T13653] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3381: bg 0: block 264: padding at end of block bitmap is not set
[  216.713547][T13653] EXT4-fs (loop3): Remounting filesystem read-only
[  216.721882][T13653] EXT4-fs (loop3): 1 truncate cleaned up
[  216.727875][T13653] SELinux: (dev loop3, type ext4) getxattr errno 5