last executing test programs:

2.932460133s ago: executing program 3 (id=1162):
socket$nl_xfrm(0x10, 0x3, 0x6)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000640)=0x4, 0x4)
sendmsg$netlink(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)={0x24, 0x12, 0x401, 0x0, 0x0, "", [@nested={0x4, 0x0, 0x0, 0x0}, @typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x38}}]}, 0x24}], 0x1}, 0x0)
r1 = openat$cgroup_type(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)
rmdir(&(0x7f0000000700)='./cgroup/../file0\x00')
preadv(r1, &(0x7f0000000040)=[{&(0x7f00000003c0)=""/183, 0xb7}], 0x1, 0x9, 0x0)

2.818963152s ago: executing program 3 (id=1166):
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0xa, 0x300)
r1 = open(&(0x7f0000000100)='./file0\x00', 0x40801, 0x192)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000000)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
write$binfmt_aout(r2, &(0x7f0000000b40)=ANY=[], 0x926)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)}], 0x1}, 0x8040)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x68)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000003a80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x50, 0x3, 0xa, 0x301, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_COUNTERS={0x10, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc}]}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}]}], {0x14}}, 0x98}}, 0x0)

2.752167017s ago: executing program 3 (id=1168):
creat(0x0, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c00, 0x0)

2.521663746s ago: executing program 3 (id=1169):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r1, &(0x7f00000001c0)='O', 0x1, 0x0, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
shutdown(r1, 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f0000001300)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x201, 0x0, 0x0, {}, [@NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x38}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
r4 = openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000580)={0x400120, 0x0, 0x10}, 0x18)
utimensat(r4, 0x0, &(0x7f0000000600)={{0x77359400}}, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000000c0), 0x4)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
getitimer(0x1, &(0x7f00000003c0))
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0x7, &(0x7f0000000300)={0x6, 0x5, 0x5, 0x7}, 0x10)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

2.419549004s ago: executing program 3 (id=1170):
socket$inet6(0xa, 0x2, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000640)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12e4569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d7756bf4fcaff0c23374ec7c4aadbb8b985f14893a91d750e168350685e0f4f079d2d8e79be174ef9355b70719c712c5d15d2e7505a8696b50738ece15ee5", 0xbe}, {&(0x7f0000000180)="316f825a3d29f96a2093a917017b4cd300000000bee70035ed313e19d6dd1fb41a20d7f7f7343067fd40cdd4b16742e94b62f4eb1c5d9f56ae62b0e6fe7766a0842912179154a96fa88e161d4adf77a486e10d1d50e44155790748b7", 0x5c}, {&(0x7f0000000700)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fc", 0x31}], 0x3}}], 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendmsg$inet(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000000)="14fafa37bf25f04bda99eefbbdd8d76b8136ee6cfdee25bdb2d1873ce347c7b623dd3140cfb2326fa1bf9f1dc2375eeba25df45aefdb3c49a4e7ffab4ed7181180bde98af644d11f", 0x48}, {&(0x7f0000000240)="16a6fca1943502d7ac24a672321690c0215b73b201e67576ef51abd7cb2bcd21ebc41893e255eea9bba2", 0x2a}, {&(0x7f0000000b80)="dfc56286b56ecc486c04bc14504d983be1f4ef618879be74e47bb41ea0ec8db85da5cfdb43e07b8cc7860bc152943651075c35a9e715afc516b3c84a77236602539578c21fa41ba1a52740bba9669431751337c09fb0f778ede72a047afffffffffffff0995db9a4c6b369", 0x6b}], 0x3}, 0x0)
r1 = memfd_create(&(0x7f0000000080)='\b\x9dF\xd8\b\xb3~u\xa5\x81\xb1\x8aSpA\xd4\x98\x85D\x89>N\x8ar\x17\x00\x00\x00\x00\xe2{mn\xcc\xbf2\xc0\x90kn\xe8\xfe/\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97\xe7\xe6\x97\xf9\xb3\xf6c\xc7\x95\x81\x8a\xe2\xe5\xb9\v\xb5$\xee\x84\x1cn,Bd8\x13<\xf0E\x86\xc0v\xd5?\xe5E:+P', 0x0)
pipe2(&(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x0)
splice(r2, 0x0, r1, 0x0, 0x4, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="08268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1.948803622s ago: executing program 4 (id=1176):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000005c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000580)={&(0x7f0000000400)={0x16c, 0x0, 0x1, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x10, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x3c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x30, 0x5, "96e19e5a8476e26d30ba5f1e6e75885661887ba330c6a9a02942f19d5f6047379776d1c394b1692428632f6a"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xffffff81}]}]}, 0x16c}, 0x1, 0x0, 0x0, 0x1}, 0xc0000)

1.947416762s ago: executing program 4 (id=1177):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000400), 0x216c00, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x20001400)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = dup(r1)
ioctl$TIOCGSID(r2, 0x5429, 0x0)
ioctl$SIOCPNADDRESOURCE(r2, 0x89e0, &(0x7f0000000040)=0x4f58)
ioctl$TUNSETOFFLOAD(r0, 0x8010743f, 0x20000000)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0xffffffd5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2e}, 0x90)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000180)=ANY=[@ANYBLOB="680000001000030400"/20, @ANYRES32=r5, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e003000028008000100100000001c0005800a000400aaaaaaaaaabb00000a000400aaaaaaaaaa0000000800030003"], 0x68}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0x2000000c, &(0x7f0000000600)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x20, 0x0, 0x0, 0x0, 0x0, 0x9, 0x10210, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000000), 0xb}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r9, &(0x7f0000000200), 0x43400)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.controllers\x00', 0x100002, 0x0)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
write$cgroup_int(r11, &(0x7f0000000580), 0x12)
ioctl$PERF_EVENT_IOC_PERIOD(r10, 0xc028660f, &(0x7f00000005c0)=0x3fffffffe)
ioctl$PERF_EVENT_IOC_PERIOD(r11, 0xc028660f, &(0x7f00000005c0)=0x400000001)
ioctl$PERF_EVENT_IOC_PERIOD(r8, 0x40086602, &(0x7f0000000540)=0x4000)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r7, 0x15, 0xfffffffffffffffe}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5}, 0x48)

1.899691387s ago: executing program 0 (id=1179):
creat(0x0, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c00, 0x0)

1.84786223s ago: executing program 1 (id=1180):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r1, &(0x7f00000001c0)='O', 0x1, 0x0, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
shutdown(r1, 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f0000001300)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x201, 0x0, 0x0, {}, [@NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x38}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
r4 = openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000580)={0x400120, 0x0, 0x10}, 0x18)
utimensat(r4, 0x0, &(0x7f0000000600)={{0x77359400}}, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000000c0), 0x4)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
getitimer(0x1, &(0x7f00000003c0))
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0x7, &(0x7f0000000300)={0x6, 0x5, 0x5, 0x7}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

1.847263011s ago: executing program 2 (id=1181):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x20000000)
socket$inet(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x1c, 0x40, 0x0, 0x0, 0x0, 0x0, 0x50033, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x11}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r2)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="68000000a1a9af4699dc4f355700810a4f2778f1f4e8aad06c648067a14ebf02a575269b2aace8968395acdd7937548b298d9fe4589617b13c4ba6350bbb9a32a8f2c0040bab9018f1aa611bfc24c47056e82219cf35857bf5d8c7555031cd5a4ee5ae599289ba6c2d22c0841f158c7e0b1f1943bef8ec86d6a2556cb0f37a9f32d0f3f3527b5fa63e01bd4ed240c0201cfeff0c9318c843c639391239c279da529f7feb", @ANYBLOB="01000000000000000000037400062c00070073797374656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a73300014000200ff0100000000000000000000000000011400060073797a6b616c6c657230000000000000"], 0x68}, 0x1, 0xffffffff00000003}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r3, @ANYRES8=r1, @ANYRES32=r3, @ANYBLOB="0000000000000000b70200002beb0609f3ffffb01500000086"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket(0x10, 0x3, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_opts(r5, 0x29, 0x4d, &(0x7f0000000140)=ANY=[], 0x8)
semget$private(0x0, 0x0, 0x0)
semget$private(0x0, 0x1, 0x0)
r6 = msgget$private(0x0, 0x0)
semctl$IPC_STAT(r6, 0x0, 0x2, &(0x7f00000003c0)=""/45)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x3)
fcntl$dupfd(r4, 0x0, r7)
setsockopt$inet6_int(r5, 0x29, 0x8, &(0x7f0000000300)=0x40, 0x4)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r8, &(0x7f0000000100)={0xa, 0xfffc, 0x0, @rand_addr=' \x01\x00', 0xffff0000}, 0xa)
socket$inet6_udplite(0xa, 0x2, 0x88)
sendto$inet6(r8, &(0x7f0000000300), 0x5aa, 0x0, 0x0, 0xfffffffffffffdfd)
setresuid(0xee01, 0xee00, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000000240)='R\x10rust\xe3c*sgrVex:Dd', 0x0)

1.805611284s ago: executing program 4 (id=1182):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000880)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000600)={[{@errors_remount}, {@init_itable_val={'init_itable', 0x3d, 0x3}}, {@usrquota}]}, 0xe1, 0x54a, &(0x7f0000000a80)="$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")
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, &(0x7f0000000180), 0x4)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x5fd, &(0x7f0000000d00)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
open(0x0, 0x0, 0x0)
remap_file_pages(&(0x7f000051c000/0x400000)=nil, 0x400000, 0x0, 0xfffffffffffffffc, 0x0)
creat(&(0x7f0000000580)='./bus\x00', 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x100000}], 0x2, 0x0, 0x0, 0xb)

1.805027784s ago: executing program 2 (id=1183):
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x19259, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x6, 0x4, 0x4, 0x4, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000a6000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_sys\x00', 0x26e1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280))
perf_event_open(&(0x7f0000000680)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000700)={'#! ', './file0', [], 0xa, "3adeaa6e1144a49890a8dd8fceba7215b32a6a8e220d35ad6f65e6ae024883a900061c6c6c4394737d69f9d64f264453f9dbe5fb7b5ae9cdadd757685af6bd88ac546b1c2dbb98c9fdbe613c7af9a73ad48118ffe536836a9e0e12bd0bb7e1380ba58b467dd9d02bd66bc978fd896fb2533ce79cc6570d55b6de549b0043ab2c77e8b208579c34011001b4723b4bc410b7d88ed88e562e51f7ecc672e8964c39dc0b7f"}, 0xae)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername$netlink(r2, 0x0, &(0x7f0000000040))

1.761870198s ago: executing program 0 (id=1184):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(0xffffffffffffffff, 0x40089413, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x520, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0xe8, 0x148, 0x0, {}, [@common=@set={{0x40}}, @common=@unspec=@statistic={{0x38}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x580) (fail_nth: 5)

1.176644925s ago: executing program 3 (id=1185):
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001030000000000000000fc0100000000000000000000000000003ed300000000000000000000000000000000000000000000020010"], 0xb8}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x2d)
socket$nl_sock_diag(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000100)=0x5)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa158f35f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d09dcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r4, &(0x7f0000000240)="c4", 0x1, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
shutdown(r4, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1.074126783s ago: executing program 2 (id=1186):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ed50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
pipe2$watch_queue(&(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000100)={'tunl0\x00', &(0x7f00000004c0)={'tunl0\x00', <r2=>0x0, 0x20, 0x700, 0x7, 0x4, {{0x8, 0x4, 0x1, 0xe, 0x20, 0x66, 0x0, 0x40, 0x4, 0x0, @empty, @private=0xa010101, {[@noop, @ssrr={0x89, 0x7, 0xe1, [@private=0xa010101]}, @timestamp_prespec={0x44, 0x4, 0x27}]}}}}})
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)={0x2, 0x4, 0x8, 0x1, 0x80, r1, 0x1c, '\x00', r2, r3, 0x2, 0x1, 0x1}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$802154_dgram(r1, &(0x7f0000000600)={&(0x7f00000001c0)={0x24, @short={0x2, 0x2, 0xfffe}}, 0x14, &(0x7f00000005c0)={&(0x7f0000000580)="65f37e00b6b2b2a945cab15f4435370987ee95319bbb9740abb0aa4678c9a4901b0b376e0b008ac57c418914a34826ea3adcc50b7bd384505713eca0", 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40c4)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000740)=ANY=[@ANYRESOCT, @ANYRES64=r1, @ANYBLOB="010800000000000000000f00000008000300", @ANYBLOB="fcaf128e54b81a337720217f5171ab8d7484ad3c319db1ce0b3570e30f3d99118aee9872f52d6c6a8ab761de089a36d9053626e4b8a8cad7533d979ae8154ea71a4acbd6aab69df30b4a54ea049089dca9ac44ebe42d2ed20e84e7e5f21050892648a8ff9f28137271cc6351a7336f3aae153577f0c73513f0092804438fefd3a55044d78e33054b816f120ec580874bf21b0e04fc67cf9890665741218083027ec1ea9cbd42460529ff5175cf08cb080aa258e5d89f65a34d5b39ad1614c9cf3aec0396971efbb6341ceedc51108069721739c3e9b1eb0eb1ce383f9441d4f5cfbbecf3c711d1a1dede194cc7f3", @ANYRES64], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
getpid()
r6 = dup(0xffffffffffffffff)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0x14)
r7 = perf_event_open(&(0x7f0000000240)={0x2, 0x7f, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x1000000000, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r9)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x21, &(0x7f0000000040), 0x4)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x0)
syz_emit_ethernet(0xda, &(0x7f0000000240)={@local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xcc, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x2a, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local, {[@cipso={0x86, 0x2a, 0x0, [{0x0, 0xd, "5e000000ff000000000000"}, {0x0, 0x5, "4eb8a6"}, {0x0, 0x12, "9606053d0006ff00800000b61af93a93"}]}, @lsrr={0x83, 0x13, 0x0, [@dev, @loopback, @loopback, @multicast2]}, @cipso={0x86, 0x49, 0x0, [{0x0, 0x7, "4b6cefc500"}, {0x0, 0xc, "df61168c24ac88ad078c"}, {0x0, 0xa, "2189ea43a2149b84"}, {0x0, 0x12, "ffd11634eea26b0faffa0dea2e903528"}, {0x0, 0x9, "02a20948fd7406"}, {0x0, 0xb, "ccf0294e2a3bdb4aa4"}]}, @ssrr={0x89, 0xb, 0x0, [@private, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}, "a811a23da43974ff"}}}}}, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x18}}, 0x20040000)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

988.03672ms ago: executing program 1 (id=1187):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000005c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000580)={&(0x7f0000000400)={0x16c, 0x0, 0x1, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x10, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}]}, @ETHTOOL_A_PRIVFLAGS_FLAGS={0x3c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x30, 0x5, "96e19e5a8476e26d30ba5f1e6e75885661887ba330c6a9a02942f19d5f6047379776d1c394b1692428632f6a"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xffffff81}]}]}, 0x16c}, 0x1, 0x0, 0x0, 0x1}, 0xc0000)

908.734686ms ago: executing program 1 (id=1188):
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x541b, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
pipe2(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f00000000c0)={0x3, 0x6, 0x1, 0x101, 0x4222})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r3, 0x0, r2, 0x0, 0x6, 0x0)
fcntl$setstatus(r2, 0x4, 0x7c00)
dup3(r3, r2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
read$msr(r1, &(0x7f0000000200)=""/116, 0x74)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000e50601"], 0x14}}, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(0xffffffffffffffff, 0x8982, 0x0)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)={0x3c, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x8000000}, @ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_RINGS_RX={0x8}]}, 0x3c}}, 0x0)
open(0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
creat(&(0x7f00000001c0)='./cgroup\x00', 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e00000018000280140010"], 0x50}}, 0x0)

777.880987ms ago: executing program 0 (id=1189):
r0 = syz_open_procfs(0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000a0000000900010073797a300000000080000000160a010200000000000000000a0000000900020073797a30000000005400038008000140000000000800024000000000404003801400010076657468315f746f"], 0xc8}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c0000002000090300000000000000000a008000000000010000000014000200ff02000000b622eae60000000000000108000f000300000008000a00040000005b001400", @ANYRES32=0x0, @ANYBLOB], 0x4c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000f8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
listen(r2, 0xc)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r3, 0x10d, 0xa, &(0x7f00001c9fff)="03", 0x19)
r4 = perf_event_open(0x0, 0x0, 0x5, r0, 0x2)
write(r4, &(0x7f0000000340)='(', 0x1)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f0000000140), 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)

767.926418ms ago: executing program 2 (id=1190):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000440)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=")
r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140))

640.241488ms ago: executing program 0 (id=1191):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000380)={0x10000, 0x7, 0x97ee, 0x102}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c00)={0x14, 0x12, 0xa01, 0x0, 0x0, {0x7}}, 0x14}}, 0x0)
ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f0000000680)={0x1f, 0x61, &(0x7f0000000600)="043bc230f92a4643be7bc6ab6bed26b0ade5b2ea9a05a1a7096569b598469b1ab9fec8896b6356191b71192273ecea8d69c47fb2f776fb6c21710a3e03acb05602c1a4ea37a283b94f98cdcdc7880c923d8bb9eb1d03a5ace262cb1a3ef93f677e"})
bind$l2tp6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip6_tables_names\x00')
readv(r3, &(0x7f0000000840)=[{&(0x7f00000009c0)=""/224, 0xe0}], 0x1)
lseek(r3, 0xd7, 0x0)
r4 = syz_open_procfs(0x0, 0x0)
preadv(r4, 0x0, 0x0, 0xfffffffd, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r6)
r7 = socket$netlink(0x10, 0x3, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x2000480, &(0x7f0000000340)={[{@commit={'commit', 0x3d, 0x74}}, {@jqfmt_vfsold}]}, 0x1, 0x784, &(0x7f0000000f80)="$eJzs3c1rHOUfAPDvbJKmSfv7JYKg9RQQNFC6MTW2Ch4qHkSwUNCz7bLZhppNtmQ3pQkBW0TwIqh4EPTSsy/15tWXq/4XHqSlalqseJDI7Eu7bXbTTZvdDeTzgck+z8xsnue7z8wzz+wMOwHsWRPpn0zEoYj4KIkYq89PImKomhqMOFFb7/b6Wj6dktjYePOPpLrOrfW1fDS9J3WgnnkyIn58P+JwZnO55ZXV+VyxWFiq56cqC+enyiurR84t5OYKc4XFY9MzM0ePv3D82M7F+tcvqwevf/zas9+c+Oe9J65++FMSJ+JgfVlzHDtlIibqn8lQ+hHe49WdLqzPkn5XgIeS7poDtb08DsVYDFRTbYz0smYAQLe8GxEbAMAekzj+A8Ae0/ge4Nb6Wr4x9fcbid668UpE7K/F37i+WVsyWL9mt796HXT0VnLPlZEkIsZ3oPyJiPjiu7e/Sqfo0nVIgFYuXY6IM+MTm/v/ZNM9C9v13FYLN4arLxP3zdb/Qe98n45/Xmw1/svcGf9Ei/HPcIt992E8eP/PXNuBYtpKx38vN93bdrsp/rrxgXruf9Ux31By9lyxkPZt/4+IyRgaTvPT1VVb3wU1efPfm+3Kbx7//fnJO1+m5aevd9fIXBscvvc9s7lK7lHjbrhxOeKpwVbxJ3faP2kz/j3VYRmvv/TB5+2WpfGn8TamzfF318aViGdatv/dtky2vD9xqro5TDU2iha+/fWz0XblN7d/OqXlN84FeiFt/9Gt4x9Pmu/XLG+/jJ+vjP3QbtmD42+9/e9L3qqm99XnXcxVKkvTEfuSNzbPP3r3vY18Y/00/smnW+//W23/6TnhmQ7jH7z++9cPH393pfHPbqv9t5+4ent+oF35nbX/TDU1WZ/TSf/XaQUf5bMDAAAAAAAAAAAAAAAAAAAAAAAAgE5lIuJgJJnsnXQmk83WnuH9eIxmiqVy5fDZ0vLibFSflT0eQ5nGT12ONf0e6nT99/Ab+aP35Z+PiMci4tPhkWo+my8VZ/sdPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADUHWjz/P/Ub8P9rh0A0DX7+10BAKDnHP8BYO/Z3vF/pGv1AAB6x/k/AOw9HR//z3S3HgBA7zj/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoMtOnTyZTht/r6/l0/zshZXl+dKFI7OF8nx2YTmfzZeWzmfnSqW5YiGbLy20/UeXai/FUun8TCwuX5yqFMqVqfLK6umF0vJi5fS5hdxc4XRhqGeRAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDnyiur87lisbAksWViZHdUY9ckBmNXVEOia4nmXmKkfx0UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwC73XwAAAP//+Lkq2Q==")
io_uring_setup(0x2592, &(0x7f00000002c0)={0x0, 0x2000})
socket$tipc(0x1e, 0x0, 0x0)
socketpair(0x1a, 0x1, 0x2, &(0x7f00000005c0))
accept$inet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0x8001}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x40}}, 0x0)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xb}, 0x20)
r8 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r8, &(0x7f00000024c0)={0xa, 0x7, 0x0, @dev={0xfe, 0x80, '\x00', 0xb}, 0x8}, 0x20)
r9 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r9, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x20)

267.867098ms ago: executing program 1 (id=1192):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r0, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000004c0)='k', 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r0, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000680)={0x0, {0x2, 0x4e21, @empty}, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3d}}, {0x2, 0x0, @broadcast}})
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @private}, {0x2, 0x0, @dev}, 0x592243c4f6d9427f, 0x0, 0x0, 0x0, 0x4})
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000001d00)='./bus/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x1, 0x126f, &(0x7f0000000a80)="$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")

253.406319ms ago: executing program 2 (id=1193):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x20000000)
socket$inet(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x1c, 0x40, 0x0, 0x0, 0x0, 0x0, 0x50033, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x11}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r2)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="68000000a1a9af4699dc4f355700810a4f2778f1f4e8aad06c648067a14ebf02a575269b2aace8968395acdd7937548b298d9fe4589617b13c4ba6350bbb9a32a8f2c0040bab9018f1aa611bfc24c47056e82219cf35857bf5d8c7555031cd5a4ee5ae599289ba6c2d22c0841f158c7e0b1f1943bef8ec86d6a2556cb0f37a9f32d0f3f3527b5fa63e01bd4ed240c0201cfeff0c9318c843c639391239c279da529f7feb", @ANYBLOB="01000000000000000000037400062c00070073797374656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a73300014000200ff0100000000000000000000000000011400060073797a6b616c6c657230000000000000"], 0x68}, 0x1, 0xffffffff00000003}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r3, @ANYRES8=r1, @ANYRES32=r3, @ANYBLOB="0000000000000000b70200002beb0609f3ffffb01500000086"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket(0x10, 0x3, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_opts(r5, 0x29, 0x4d, &(0x7f0000000140)=ANY=[], 0x8)
semget$private(0x0, 0x0, 0x0)
semget$private(0x0, 0x1, 0x0)
r6 = msgget$private(0x0, 0x0)
semctl$IPC_STAT(r6, 0x0, 0x2, &(0x7f00000003c0)=""/45)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x3)
fcntl$dupfd(r4, 0x0, r7)
setsockopt$inet6_int(r5, 0x29, 0x8, &(0x7f0000000300)=0x40, 0x4)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r8, &(0x7f0000000100)={0xa, 0xfffc, 0x0, @rand_addr=' \x01\x00', 0xffff0000}, 0xa)
socket$inet6_udplite(0xa, 0x2, 0x88)
sendto$inet6(r8, &(0x7f0000000300), 0x5aa, 0x0, 0x0, 0xfffffffffffffdfd)
setresuid(0xee01, 0xee00, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000000240)='R\x10rust\xe3c*sgrVex:Dd', 0x0)

185.482624ms ago: executing program 4 (id=1194):
creat(0x0, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c00, 0x0)

184.908165ms ago: executing program 2 (id=1195):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000680)={&(0x7f00000005c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x3, 0x0, 0xd, 0x0, [{0xb}, {0xe}, {}]}]}}, &(0x7f0000000d40)=""/41, 0x3e, 0x29, 0x1}, 0x20)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

123.25836ms ago: executing program 4 (id=1196):
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x19259, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x6, 0x4, 0x4, 0x4, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000a6000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_sys\x00', 0x26e1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000700)={'#! ', './file0', [], 0xa, "3adeaa6e1144a49890a8dd8fceba7215b32a6a8e220d35ad6f65e6ae024883a900061c6c6c4394737d69f9d64f264453f9dbe5fb7b5ae9cdadd757685af6bd88ac546b1c2dbb98c9fdbe613c7af9a73ad48118ffe536836a9e0e12bd0bb7e1380ba58b467dd9d02bd66bc978fd896fb2533ce79cc6570d55b6de549b0043ab2c77e8b208579c34011001b4723b4bc410b7d88ed88e562e51f7ecc672e8964c39dc0b7f"}, 0xae)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername$netlink(r2, 0x0, &(0x7f0000000040))

122.49542ms ago: executing program 1 (id=1197):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r1, &(0x7f00000001c0)='O', 0x1, 0x0, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
shutdown(r1, 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001800)={&(0x7f0000001300)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x201, 0x0, 0x0, {}, [@NFTA_SET_DATA_TYPE={0x8}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x38}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
r4 = openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000580)={0x400120, 0x0, 0x10}, 0x18)
utimensat(r4, 0x0, &(0x7f0000000600)={{0x77359400}}, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000000c0), 0x4)
socket$nl_audit(0x10, 0x3, 0x9)
getitimer(0x1, &(0x7f00000003c0))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

65.918304ms ago: executing program 0 (id=1198):
socket$nl_xfrm(0x10, 0x3, 0x6)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f00000000c0), 0x2, 0x0)
rmdir(&(0x7f0000000700)='./cgroup/../file0\x00')
preadv(r1, &(0x7f0000000040)=[{&(0x7f00000003c0)=""/183, 0xb7}], 0x1, 0x9, 0x0)

65.639684ms ago: executing program 4 (id=1199):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000340)=0x7d, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000640)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12e4569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d7756bf4fcaff0c23374ec7c4aadbb8b985f14893a91d750e168350685e0f4f079d2d8e79be174ef9355b70719c712c5d15d2e7505a8696b50738ece15ee5", 0xbe}, {0x0}], 0x2}}], 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000000)="14fafa37bf25f04bda99eefbbdd8d76b8136ee6cfdee25bdb2d1873ce347c7b623dd3140cfb2326fa1bf9f1dc2375eeba25df45aefdb3c49a4e7ffab4ed7181180bde98af644d11f", 0x48}, {&(0x7f0000000240)="16a6fca1943502d7ac24a672321690c0215b73b201e67576ef51abd7cb2bcd21ebc41893e255eea9bb", 0x29}, {&(0x7f0000000b80)="dfc56286b56ecc486c04bc14504d983be1f4ef618879be74e47bb41ea0ec8db85da5cfdb43e07b8cc7860bc152943651075c35a9e715afc516b3c84a77236602539578c21fa41ba1a52740bba9669431751337c09fb0f778ede72a047afffffffffffff0995db9a4c6b369", 0x6b}], 0x3}, 0x0)
r1 = memfd_create(&(0x7f0000000080)='\b\x9dF\xd8\b\xb3~u\xa5\x81\xb1\x8aSpA\xd4\x98\x85D\x89>N\x8ar\x17\x00\x00\x00\x00\xe2{mn\xcc\xbf2\xc0\x90kn\xe8\xfe/\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97\xe7\xe6\x97\xf9\xb3\xf6\xb9\v\xb5$\xee\x84\x1cn,Bd8\x13<\xf0E\x86\xc0v\xd5?\xe5E:+Pm\x1d\xb4\xb8k\x11\x00', 0x0)
pipe2(&(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x0)
splice(r2, 0x0, r1, 0x0, 0x4, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="08268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

61.575305ms ago: executing program 0 (id=1200):
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x40, &(0x7f00000008c0)={[{@nobh}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@resuid}, {@dioread_nolock}, {@usrjquota}, {@discard}, {@jqfmt_vfsv1}]}, 0xfc, 0x564, &(0x7f0000002bc0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
openat$tcp_mem(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x8000003d) (async)
fcntl$setsig(r0, 0xa, 0x21)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
creat(&(0x7f0000000240)='./bus\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = socket(0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00'}) (async)
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000100)={@empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xfb16, 0xab8c, 0xe44, 0x0, 0x2})

0s ago: executing program 1 (id=1201):
r0 = syz_open_procfs(0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000a0000000900010073797a300000000080000000160a010200000000000000000a0000000900020073797a30000000005400038008000140000000000800024000000000404003801400010076657468315f746f"], 0xc8}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c0000002000090300000000000000000a008000000000010000000014000200ff02000000b622eae60000000000000108000f000300000008000a00040000005b001400", @ANYRES32=0x0, @ANYBLOB], 0x4c}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000f8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
listen(r2, 0xc)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r3, 0x10d, 0xa, &(0x7f00001c9fff)="03", 0x19)
r4 = perf_event_open(0x0, 0x0, 0x5, r0, 0x2)
write(r4, &(0x7f0000000340)='(', 0x1)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e20, @empty}, 0x10)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f0000000140), 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)

kernel console output (not intermixed with test programs):

00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.576892][    C1] eth0: bad gso: type: 1, size: 1408
[   79.577819][ T4379] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.582588][    C1] eth0: bad gso: type: 1, size: 1408
[   79.652021][ T5876] loop1: detected capacity change from 0 to 512
[   79.660969][ T5879] netlink: 12 bytes leftover after parsing attributes in process `syz.4.648'.
[   79.671590][ T5876] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   79.679461][ T5880] loop3: detected capacity change from 0 to 1024
[   79.695898][ T5880] EXT4-fs: Ignoring removed orlov option
[   79.697202][ T5876] EXT4-fs (loop1): 1 truncate cleaned up
[   79.717980][ T5876] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.746731][ T5880] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.753659][ T5884] netlink: 'syz.4.650': attribute type 18 has an invalid length.
[   79.766764][ T5884] netlink: 12 bytes leftover after parsing attributes in process `syz.4.650'.
[   79.788146][ T5884] tipc: Started in network mode
[   79.793090][ T5884] tipc: Node identity 2007ff, cluster identity 4711
[   79.799701][ T5884] tipc: Node number set to 2099199
[   79.808644][ T5747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.852249][ T5889] netlink: 4 bytes leftover after parsing attributes in process `syz.4.652'.
[   79.902385][ T5876] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.006955][ T5908] veth1_macvtap: left promiscuous mode
[   80.012519][ T5908] macsec0: entered promiscuous mode
[   80.017762][ T5908] macsec0: entered allmulticast mode
[   80.056886][ T5908] loop1: detected capacity change from 0 to 128
[   80.063368][ T5908] vfat: Unknown parameter '#! 
[   80.063368][ T5908] /ppp'
[   80.093264][ T5914] netlink: 'syz.2.664': attribute type 18 has an invalid length.
[   80.101365][ T5914] netlink: 12 bytes leftover after parsing attributes in process `syz.2.664'.
[   80.147611][ T5914] tipc: Started in network mode
[   80.152485][ T5914] tipc: Node identity 2007ff, cluster identity 4711
[   80.159307][ T5914] tipc: Node number set to 2099199
[   80.223393][ T5924] xt_SECMARK: invalid mode: 0
[   80.244034][ T5924] netlink: 4 bytes leftover after parsing attributes in process `syz.1.666'.
[   80.541137][ T5955] loop4: detected capacity change from 0 to 4096
[   80.577299][ T5955] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.608395][ T4379] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.669490][ T5960] loop4: detected capacity change from 0 to 512
[   80.691816][ T5962] netlink: 12 bytes leftover after parsing attributes in process `syz.2.682'.
[   80.706405][ T5960] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.719980][ T5960] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   80.748507][ T4379] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.816389][ T5970] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   80.872806][ T5977] loop3: detected capacity change from 0 to 512
[   80.882097][ T5977] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.687: casefold flag without casefold feature
[   80.896328][ T5977] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.687: couldn't read orphan inode 15 (err -117)
[   80.909525][ T5977] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.926328][ T5977] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.687: Directory hole found for htree leaf block 0
[   80.942437][ T5979] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.687: Directory hole found for htree leaf block 0
[   80.970622][ T5979] EXT4-fs error (device loop3): ext4_add_entry:2435: inode #2: comm syz.3.687: Directory hole found for htree leaf block 0
[   80.985958][ T5981] netlink: 32 bytes leftover after parsing attributes in process `syz.4.688'.
[   81.012019][ T5747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.045775][ T5983] netlink: 'syz.4.690': attribute type 1 has an invalid length.
[   81.060479][ T5988] netlink: 8 bytes leftover after parsing attributes in process `syz.3.691'.
[   81.085542][ T5983] 8021q: adding VLAN 0 to HW filter on device batadv1
[   81.093279][ T5983] bond1: (slave batadv1): Enslaving as a backup interface with an up link
[   81.126128][ T5983] 9pnet_fd: Insufficient options for proto=fd
[   81.152555][ T5992] loop3: detected capacity change from 0 to 256
[   81.160495][ T5992] vfat: Unknown parameter 's'
[   81.167268][ T5992] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   81.180130][ T5992] netlink: 12 bytes leftover after parsing attributes in process `syz.3.693'.
[   82.061311][    C1] eth0: bad gso: type: 1, size: 1408
[   82.164263][ T6026] FAULT_INJECTION: forcing a failure.
[   82.164263][ T6026] name failslab, interval 1, probability 0, space 0, times 0
[   82.176927][ T6026] CPU: 0 UID: 0 PID: 6026 Comm: syz.4.708 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   82.187234][ T6026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   82.197282][ T6026] Call Trace:
[   82.200551][ T6026]  <TASK>
[   82.203482][ T6026]  dump_stack_lvl+0xf2/0x150
[   82.208086][ T6026]  dump_stack+0x15/0x20
[   82.212289][ T6026]  should_fail_ex+0x229/0x230
[   82.217065][ T6026]  ? __alloc_skb+0x10b/0x310
[   82.221665][ T6026]  should_failslab+0x8f/0xb0
[   82.226258][ T6026]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   82.232198][ T6026]  __alloc_skb+0x10b/0x310
[   82.236709][ T6026]  netlink_alloc_large_skb+0xad/0xe0
[   82.242007][ T6026]  netlink_sendmsg+0x3b4/0x6e0
[   82.246871][ T6026]  ? __pfx_netlink_sendmsg+0x10/0x10
[   82.252158][ T6026]  __sock_sendmsg+0x140/0x180
[   82.256931][ T6026]  ____sys_sendmsg+0x312/0x410
[   82.261694][ T6026]  __sys_sendmsg+0x1e9/0x280
[   82.266347][ T6026]  __x64_sys_sendmsg+0x46/0x50
[   82.271214][ T6026]  x64_sys_call+0x26f8/0x2e00
[   82.275924][ T6026]  do_syscall_64+0xc9/0x1c0
[   82.280454][ T6026]  ? clear_bhb_loop+0x55/0xb0
[   82.285127][ T6026]  ? clear_bhb_loop+0x55/0xb0
[   82.289941][ T6026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.295851][ T6026] RIP: 0033:0x7f55556b7299
[   82.300267][ T6026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.319888][ T6026] RSP: 002b:00007f5554337048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   82.328894][ T6026] RAX: ffffffffffffffda RBX: 00007f5555845f80 RCX: 00007f55556b7299
[   82.336916][ T6026] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000006
[   82.344881][ T6026] RBP: 00007f55543370a0 R08: 0000000000000000 R09: 0000000000000000
[   82.352927][ T6026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.360984][ T6026] R13: 000000000000000b R14: 00007f5555845f80 R15: 00007ffff2689588
[   82.369020][ T6026]  </TASK>
[   82.465969][ T5122] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.509008][   T40] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.547489][ T6043] loop4: detected capacity change from 0 to 2048
[   82.555071][   T40] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.564297][ T6043] EXT4-fs: Ignoring removed mblk_io_submit option
[   82.596443][ T6043] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.617947][ T6043] FAULT_INJECTION: forcing a failure.
[   82.617947][ T6043] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.631027][ T6043] CPU: 0 UID: 0 PID: 6043 Comm: syz.4.712 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   82.641345][ T6043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   82.651468][ T6043] Call Trace:
[   82.654739][ T6043]  <TASK>
[   82.657660][ T6043]  dump_stack_lvl+0xf2/0x150
[   82.662307][ T6043]  dump_stack+0x15/0x20
[   82.666463][ T6043]  should_fail_ex+0x229/0x230
[   82.671155][ T6043]  should_fail+0xb/0x10
[   82.675362][ T6043]  should_fail_usercopy+0x1a/0x20
[   82.680480][ T6043]  copy_page_from_iter_atomic+0x22a/0xda0
[   82.686312][ T6043]  ? ext4_da_write_begin+0x437/0x550
[   82.691635][ T6043]  generic_perform_write+0x323/0x580
[   82.697002][ T6043]  ext4_buffered_write_iter+0x1f6/0x380
[   82.702625][ T6043]  ext4_file_write_iter+0x29f/0xe30
[   82.707817][ T6043]  ? kstrtouint+0x77/0xc0
[   82.712137][ T6043]  ? kstrtouint_from_user+0xb0/0xe0
[   82.717335][ T6043]  ? avc_policy_seqno+0x15/0x20
[   82.722180][ T6043]  ? selinux_file_permission+0x22c/0x360
[   82.727869][ T6043]  vfs_write+0x78f/0x900
[   82.732149][ T6043]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   82.737875][ T6043]  ksys_write+0xeb/0x1b0
[   82.742135][ T6043]  __x64_sys_write+0x42/0x50
[   82.746849][ T6043]  x64_sys_call+0x2a40/0x2e00
[   82.751531][ T6043]  do_syscall_64+0xc9/0x1c0
[   82.756046][ T6043]  ? clear_bhb_loop+0x55/0xb0
[   82.760808][ T6043]  ? clear_bhb_loop+0x55/0xb0
[   82.765531][ T6043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.771448][ T6043] RIP: 0033:0x7f55556b7299
[   82.775855][ T6043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.795450][ T6043] RSP: 002b:00007f5554337048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   82.804136][ T6043] RAX: ffffffffffffffda RBX: 00007f5555845f80 RCX: 00007f55556b7299
[   82.812129][ T6043] RDX: 00000000ffffff6a RSI: 0000000020000000 RDI: 0000000000000005
[   82.820123][ T6043] RBP: 00007f55543370a0 R08: 0000000000000000 R09: 0000000000000000
[   82.828095][ T6043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   82.836063][ T6043] R13: 000000000000000b R14: 00007f5555845f80 R15: 00007ffff2689588
[   82.844266][ T6043]  </TASK>
[   82.854936][   T40] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.896892][ T6040] chnl_net:caif_netlink_parms(): no params data found
[   82.911529][   T40] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.024510][ T6040] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.031695][ T6040] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.064001][ T6040] bridge_slave_0: entered allmulticast mode
[   83.084585][ T6040] bridge_slave_0: entered promiscuous mode
[   83.139796][   T29] kauditd_printk_skb: 76 callbacks suppressed
[   83.139810][   T29] audit: type=1400 audit(1722026634.947:811): avc:  denied  { bind } for  pid=6075 comm="syz.1.718" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   83.204209][ T6080] loop1: detected capacity change from 0 to 164
[   83.209642][   T29] audit: type=1400 audit(1722026635.007:812): avc:  denied  { connect } for  pid=6079 comm="syz.1.719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   83.216751][ T6080] iso9660: Unknown parameter 'cruf'
[   83.281865][ T6043] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.712: bg 0: block 234: padding at end of block bitmap is not set
[   83.298377][ T6043] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117
[   83.302357][ T6082] loop1: detected capacity change from 0 to 1024
[   83.310910][ T6043] EXT4-fs (loop4): This should not happen!! Data will be lost
[   83.310910][ T6043] 
[   83.347690][   T40] bond0 (unregistering): Released all slaves
[   83.347694][ T6082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.358650][   T40] bond1 (unregistering): Released all slaves
[   83.373608][ T1848] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   83.386320][ T1848] EXT4-fs (loop4): This should not happen!! Data will be lost
[   83.386320][ T1848] 
[   83.396004][ T1848] EXT4-fs (loop4): Total free blocks count 0
[   83.402175][ T1848] EXT4-fs (loop4): Free/Dirty block details
[   83.408081][ T1848] EXT4-fs (loop4): free_blocks=0
[   83.413001][ T1848] EXT4-fs (loop4): dirty_blocks=6144
[   83.418381][ T1848] EXT4-fs (loop4): Block reservation details
[   83.424560][ T6040] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.431645][ T6040] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.444417][ T6040] bridge_slave_1: entered allmulticast mode
[   83.453485][ T6083] Invalid ELF header magic: != ELF
[   83.458978][   T29] audit: type=1400 audit(1722026635.257:813): avc:  denied  { module_load } for  pid=6081 comm="syz.1.720" path="/89/file1/bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=system permissive=1
[   83.485122][ T6040] bridge_slave_1: entered promiscuous mode
[   83.514728][   T40] tipc: Left network mode
[   83.555074][ T6040] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   83.574515][   T40] hsr_slave_0: left promiscuous mode
[   83.580866][ T4007] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.590943][   T40] hsr_slave_1: left promiscuous mode
[   83.599766][   T40] veth1_macvtap: left promiscuous mode
[   83.605266][   T40] veth0_macvtap: left promiscuous mode
[   83.610819][   T40] veth1_vlan: left promiscuous mode
[   83.645227][ T6096] loop1: detected capacity change from 0 to 2048
[   83.774738][ T6040] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   83.814436][ T6040] team0: Port device team_slave_0 added
[   83.823992][ T6040] team0: Port device team_slave_1 added
[   83.853071][ T6040] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.860065][ T6040] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.886231][ T6040] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   83.926428][ T6040] batman_adv: batadv0: Adding interface: batadv_slave_1
[   83.926440][ T6040] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.926464][ T6040] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.941970][ T6108] loop3: detected capacity change from 0 to 256
[   83.942134][ T6108] vfat: Unknown parameter 's'
[   83.943716][ T6108] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   83.983532][ T6109] loop1: detected capacity change from 0 to 1024
[   84.018202][ T6109] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.032570][ T6040] hsr_slave_0: entered promiscuous mode
[   84.038739][ T6040] hsr_slave_1: entered promiscuous mode
[   84.044641][ T6040] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   84.052363][ T6040] Cannot create hsr debugfs directory
[   84.075545][   T29] audit: type=1326 audit(1722026635.867:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6107 comm="syz.3.728" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67f4817299 code=0x0
[   84.107786][   T29] audit: type=1400 audit(1722026635.917:815): avc:  denied  { create } for  pid=6105 comm="syz.1.727" name=E91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1
[   84.196694][ T6063] chnl_net:caif_netlink_parms(): no params data found
[   84.284480][ T6063] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.291689][ T6063] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.305626][ T6063] bridge_slave_0: entered allmulticast mode
[   84.312173][ T6063] bridge_slave_0: entered promiscuous mode
[   84.331066][ T6063] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.338281][ T6063] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.365641][ T6063] bridge_slave_1: entered allmulticast mode
[   84.376434][ T6063] bridge_slave_1: entered promiscuous mode
[   84.395945][ T4007] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.408988][ T6063] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.426886][ T6063] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.477308][ T6063] team0: Port device team_slave_0 added
[   84.483877][ T6063] team0: Port device team_slave_1 added
[   84.520840][ T6063] batman_adv: batadv0: Adding interface: batadv_slave_0
[   84.527834][ T6063] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.553864][ T6063] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.569429][ T6063] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.576472][ T6063] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.602480][ T6063] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   84.652433][ T6040] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   84.668745][ T6063] hsr_slave_0: entered promiscuous mode
[   84.674816][ T6063] hsr_slave_1: entered promiscuous mode
[   84.681126][ T6063] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   84.688792][ T6063] Cannot create hsr debugfs directory
[   84.694245][ T6040] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   84.712492][ T6040] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   84.721211][ T6040] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   84.747978][ T6131] __nla_validate_parse: 2 callbacks suppressed
[   84.748050][ T6131] netlink: 12 bytes leftover after parsing attributes in process `syz.1.734'.
[   84.794167][ T6136] loop1: detected capacity change from 0 to 1024
[   84.805895][ T6136] EXT4-fs: Ignoring removed orlov option
[   84.811622][ T6136] EXT4-fs: Ignoring removed nomblk_io_submit option
[   84.867916][ T6136] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.907415][ T6063] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.923934][ T6142] loop3: detected capacity change from 0 to 512
[   84.935716][ T6040] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.959457][ T6142] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   84.977390][ T6063] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.993888][ T6143] process 'syz.1.736' launched './file0/file0' with NULL argv: empty string added
[   84.994842][   T29] audit: type=1400 audit(1722026636.797:816): avc:  denied  { execute } for  pid=6135 comm="syz.1.736" name="file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   85.034395][ T6040] 8021q: adding VLAN 0 to HW filter on device team0
[   85.042124][ T6142] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.058651][ T3338] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.061329][   T29] audit: type=1400 audit(1722026636.807:817): avc:  denied  { execute_no_trans } for  pid=6135 comm="syz.1.736" path="/99/file1/file0/file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   85.065736][ T3338] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.077306][ T6142] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.117615][ T3338] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.124704][ T3338] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.147893][ T4007] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.177283][ T5747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.187475][ T6063] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.201800][ T6040] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   85.256822][ T6063] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.295559][ T6161] loop3: detected capacity change from 0 to 256
[   85.302057][ T6161] vfat: Unknown parameter 's'
[   85.307834][ T6040] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.313462][ T6161] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   85.326525][ T6161] netlink: 12 bytes leftover after parsing attributes in process `syz.3.743'.
[   85.345733][   T29] audit: type=1326 audit(1722026637.147:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6160 comm="syz.3.743" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67f4817299 code=0x0
[   85.384375][ T6063] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   85.396656][ T6063] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   85.416089][ T6167] netlink: 12 bytes leftover after parsing attributes in process `syz.4.744'.
[   85.434437][ T6063] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   85.443951][ T6063] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   85.467120][ T6040] veth0_vlan: entered promiscuous mode
[   85.492718][ T6040] veth1_vlan: entered promiscuous mode
[   85.537472][ T6040] veth0_macvtap: entered promiscuous mode
[   85.559504][ T6040] veth1_macvtap: entered promiscuous mode
[   85.584060][ T6063] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.596187][ T6040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.606779][ T6040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.616686][ T6040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.627119][ T6040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.636971][ T6040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.647533][ T6040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.657369][ T6040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.667782][ T6040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.711345][ T6040] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.725271][ T6063] 8021q: adding VLAN 0 to HW filter on device team0
[   85.748773][ T6040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.759385][ T6040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.769502][ T6040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.779982][ T6040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.789836][ T6040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.800308][ T6040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.810237][ T6040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.820728][ T6040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.837464][ T6040] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.848409][ T6040] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.857210][ T6040] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.865953][ T6040] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.874695][ T6040] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.923559][ T3322] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.930662][ T3322] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.939824][ T3322] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.946900][ T3322] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.969844][ T6063] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   86.023352][ T6177] loop2: detected capacity change from 0 to 256
[   86.040232][ T6063] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.047051][ T6177] vfat: Unknown parameter 's'
[   86.048513][ T6177] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   86.085209][ T6177] netlink: 12 bytes leftover after parsing attributes in process `syz.2.709'.
[   86.122558][   T29] audit: type=1326 audit(1722026637.927:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6175 comm="syz.2.709" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0c79fe7299 code=0x0
[   86.177380][ T6063] veth0_vlan: entered promiscuous mode
[   86.191665][ T6196] (unnamed net_device) (uninitialized): option lp_interval: invalid value (0)
[   86.200617][ T6196] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[   86.218780][ T6197] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   86.220891][ T6063] veth1_vlan: entered promiscuous mode
[   86.244477][ T6063] veth0_macvtap: entered promiscuous mode
[   86.256423][   T29] audit: type=1400 audit(1722026638.067:820): avc:  denied  { execute } for  pid=6193 comm="syz.4.748" path=2F6D656D66643A59FFFF202864656C6574656429 dev="hugetlbfs" ino=16367 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   86.283019][ T6199] netlink: 4 bytes leftover after parsing attributes in process `syz.3.750'.
[   86.292323][ T6199] netlink: 12 bytes leftover after parsing attributes in process `syz.3.750'.
[   86.310529][ T6063] veth1_macvtap: entered promiscuous mode
[   86.333771][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.344311][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.354150][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.364680][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.374595][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.385160][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.395036][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.405453][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.415338][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.425845][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.438506][ T6063] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.451313][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.461935][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.471867][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.482351][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.492222][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.502647][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.512511][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.522962][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.532809][ T6063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.543307][ T6063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.563206][ T6063] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.575756][ T6207] netlink: 12 bytes leftover after parsing attributes in process `syz.4.753'.
[   86.594991][ T6063] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.604189][ T6063] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.612963][ T6063] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.621764][ T6063] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.772109][ T6229] loop4: detected capacity change from 0 to 1024
[   86.785041][ T6229] EXT4-fs: Ignoring removed nobh option
[   86.787932][ T6231] loop0: detected capacity change from 0 to 512
[   86.790838][ T6229] EXT4-fs: Ignoring removed orlov option
[   86.816398][ T6231] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   86.817064][ T6229] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.852783][ T6231] EXT4-fs (loop0): 1 truncate cleaned up
[   86.860913][ T6237] loop2: detected capacity change from 0 to 512
[   86.866040][ T6231] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.916234][ T6237] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.942108][ T6237] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.958117][ T4379] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.992484][ T6247] netlink: 12 bytes leftover after parsing attributes in process `syz.4.765'.
[   87.129863][ T6257] loop4: detected capacity change from 0 to 512
[   87.141773][ T6257] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz.4.769: iget: bad i_size value: -2594073385365405596
[   87.157953][ T6257] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.769: couldn't read orphan inode 17 (err -117)
[   87.242628][ T6267] loop1: detected capacity change from 0 to 1024
[   87.249424][ T6267] EXT4-fs: Ignoring removed orlov option
[   87.255832][ T6267] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   87.266970][ T6267] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   87.277861][ T6267] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   87.288604][ T6267] EXT4-fs (loop1): invalid journal inode
[   87.294261][ T6267] EXT4-fs (loop1): can't get journal size
[   87.360847][ T6275] loop2: detected capacity change from 0 to 512
[   87.388421][ T6275] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.452574][ T6281] loop4: detected capacity change from 0 to 512
[   87.469831][ T6281] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.522059][ T6287] FAULT_INJECTION: forcing a failure.
[   87.522059][ T6287] name failslab, interval 1, probability 0, space 0, times 0
[   87.534857][ T6287] CPU: 1 UID: 0 PID: 6287 Comm: syz.2.779 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   87.545123][ T6287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   87.555171][ T6287] Call Trace:
[   87.558492][ T6287]  <TASK>
[   87.561423][ T6287]  dump_stack_lvl+0xf2/0x150
[   87.566022][ T6287]  dump_stack+0x15/0x20
[   87.570186][ T6287]  should_fail_ex+0x229/0x230
[   87.574971][ T6287]  ? skb_clone+0x154/0x1f0
[   87.579535][ T6287]  should_failslab+0x8f/0xb0
[   87.584154][ T6287]  kmem_cache_alloc_noprof+0x4c/0x290
[   87.589538][ T6287]  skb_clone+0x154/0x1f0
[   87.593852][ T6287]  __netlink_deliver_tap+0x2bd/0x4c0
[   87.599221][ T6287]  netlink_unicast+0x641/0x670
[   87.603982][ T6287]  netlink_sendmsg+0x5cc/0x6e0
[   87.608823][ T6287]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.614185][ T6287]  __sock_sendmsg+0x140/0x180
[   87.618882][ T6287]  ____sys_sendmsg+0x312/0x410
[   87.623671][ T6287]  __sys_sendmsg+0x1e9/0x280
[   87.628312][ T6287]  __x64_sys_sendmsg+0x46/0x50
[   87.633087][ T6287]  x64_sys_call+0x26f8/0x2e00
[   87.637766][ T6287]  do_syscall_64+0xc9/0x1c0
[   87.642284][ T6287]  ? clear_bhb_loop+0x55/0xb0
[   87.646995][ T6287]  ? clear_bhb_loop+0x55/0xb0
[   87.651777][ T6287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.657727][ T6287] RIP: 0033:0x7f0c79fe7299
[   87.662132][ T6287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.681893][ T6287] RSP: 002b:00007f0c78c67048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.690388][ T6287] RAX: ffffffffffffffda RBX: 00007f0c7a175f80 RCX: 00007f0c79fe7299
[   87.698348][ T6287] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[   87.706744][ T6287] RBP: 00007f0c78c670a0 R08: 0000000000000000 R09: 0000000000000000
[   87.714703][ T6287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.722789][ T6287] R13: 000000000000000b R14: 00007f0c7a175f80 R15: 00007ffc4b9a5938
[   87.730757][ T6287]  </TASK>
[   87.784760][ T6293] loop3: detected capacity change from 0 to 1024
[   87.854584][ T6296] netlink: 8 bytes leftover after parsing attributes in process `syz.2.783'.
[   88.159205][ T6319] loop1: detected capacity change from 0 to 1764
[   88.174826][ T6319] iso9660: Unknown parameter 'nocompre†s'
[   88.183960][ T6323] netlink: 72 bytes leftover after parsing attributes in process `syz.3.795'.
[   88.212460][   T29] kauditd_printk_skb: 5 callbacks suppressed
[   88.212474][   T29] audit: type=1400 audit(1722026640.017:826): avc:  denied  { write } for  pid=6316 comm="syz.2.792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   88.406419][ T6344] loop0: detected capacity change from 0 to 1024
[   88.450333][ T6344] EXT4-fs (loop0): shut down requested (0)
[   88.591307][ T6354] loop4: detected capacity change from 0 to 1024
[   89.079764][ T6394] loop4: detected capacity change from 0 to 1024
[   89.094276][ T6401] loop0: detected capacity change from 0 to 512
[   89.136507][ T6401] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.266595][ T6410] loop2: detected capacity change from 0 to 1024
[   89.357103][ T3336] IPVS: starting estimator thread 0...
[   89.364292][   T29] audit: type=1326 audit(1722027153.163:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6418 comm="syz.1.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593ea47299 code=0x7ffc0000
[   89.374402][ T6419] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   89.394760][ T6419] IPv6: NLM_F_CREATE should be set when creating new route
[   89.428846][   T29] audit: type=1326 audit(1722027153.163:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6418 comm="syz.1.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593ea47299 code=0x7ffc0000
[   89.452177][   T29] audit: type=1326 audit(1722027153.173:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6418 comm="syz.1.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f593ea47299 code=0x7ffc0000
[   89.475391][   T29] audit: type=1326 audit(1722027153.173:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6418 comm="syz.1.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593ea47299 code=0x7ffc0000
[   89.475560][ T6420] IPVS: using max 2784 ests per chain, 139200 per kthread
[   89.498614][   T29] audit: type=1326 audit(1722027153.173:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6418 comm="syz.1.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f593ea47299 code=0x7ffc0000
[   89.528996][   T29] audit: type=1326 audit(1722027153.173:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6418 comm="syz.1.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593ea47299 code=0x7ffc0000
[   89.552231][   T29] audit: type=1326 audit(1722027153.173:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6418 comm="syz.1.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f593ea47299 code=0x7ffc0000
[   89.575389][   T29] audit: type=1326 audit(1722027153.173:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6418 comm="syz.1.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f593ea47299 code=0x7ffc0000
[   89.598712][   T29] audit: type=1326 audit(1722027153.173:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6418 comm="syz.1.830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f593ea47299 code=0x7ffc0000
[   89.785732][ T6433] FAULT_INJECTION: forcing a failure.
[   89.785732][ T6433] name failslab, interval 1, probability 0, space 0, times 0
[   89.798834][ T6433] CPU: 0 UID: 0 PID: 6433 Comm: syz.2.833 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   89.809135][ T6433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   89.819424][ T6433] Call Trace:
[   89.822697][ T6433]  <TASK>
[   89.825629][ T6433]  dump_stack_lvl+0xf2/0x150
[   89.830281][ T6433]  dump_stack+0x15/0x20
[   89.834453][ T6433]  should_fail_ex+0x229/0x230
[   89.839218][ T6433]  ? nf_tables_newrule+0xd09/0x1620
[   89.844500][ T6433]  should_failslab+0x8f/0xb0
[   89.849093][ T6433]  __kmalloc_noprof+0xa5/0x370
[   89.853861][ T6433]  nf_tables_newrule+0xd09/0x1620
[   89.858971][ T6433]  nfnetlink_rcv+0xb1d/0x15b0
[   89.863647][ T6433]  netlink_unicast+0x593/0x670
[   89.868400][ T6433]  netlink_sendmsg+0x5cc/0x6e0
[   89.873288][ T6433]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.878636][ T6433]  __sock_sendmsg+0x140/0x180
[   89.883306][ T6433]  ____sys_sendmsg+0x312/0x410
[   89.888074][ T6433]  __sys_sendmsg+0x1e9/0x280
[   89.892659][ T6433]  __x64_sys_sendmsg+0x46/0x50
[   89.897414][ T6433]  x64_sys_call+0x26f8/0x2e00
[   89.902119][ T6433]  do_syscall_64+0xc9/0x1c0
[   89.906662][ T6433]  ? clear_bhb_loop+0x55/0xb0
[   89.911475][ T6433]  ? clear_bhb_loop+0x55/0xb0
[   89.916173][ T6433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.922056][ T6433] RIP: 0033:0x7f0c79fe7299
[   89.926457][ T6433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.946160][ T6433] RSP: 002b:00007f0c78c67048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.954624][ T6433] RAX: ffffffffffffffda RBX: 00007f0c7a175f80 RCX: 00007f0c79fe7299
[   89.962652][ T6433] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[   89.970643][ T6433] RBP: 00007f0c78c670a0 R08: 0000000000000000 R09: 0000000000000000
[   89.978634][ T6433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.986608][ T6433] R13: 000000000000000b R14: 00007f0c7a175f80 R15: 00007ffc4b9a5938
[   89.994566][ T6433]  </TASK>
[   90.040786][ T6437] loop3: detected capacity change from 0 to 512
[   90.127647][ T6437] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   90.135756][ T6437] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   90.144720][ T6444] loop1: detected capacity change from 0 to 1024
[   90.145568][ T6437] System zones: 0-1, 15-15, 18-18, 34-34
[   90.159601][ T6437] EXT4-fs (loop3): orphan cleanup on readonly fs
[   90.166067][ T6437] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   90.180641][ T6437] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   90.192964][ T6437] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.836: bg 0: block 40: padding at end of block bitmap is not set
[   90.196888][ T6444] EXT4-fs (loop1): shut down requested (0)
[   90.223790][ T6437] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem
[   90.245632][ T6437] EXT4-fs (loop3): 1 truncate cleaned up
[   90.272464][ T6437] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.836: corrupted xattr block 19: bad e_name length
[   90.297061][ T6461] netlink: 'syz.1.840': attribute type 3 has an invalid length.
[   90.307559][ T3338] kernel write not supported for file 304/task/305/clear_refs (pid: 3338 comm: kworker/0:6)
[   90.319572][ T6437] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   90.942622][ T6488] loop3: detected capacity change from 0 to 2048
[   90.951753][ T6488] EXT4-fs (loop3): stripe (1025) is not aligned with cluster size (16), stripe is disabled
[   91.022721][ T6493] loop2: detected capacity change from 0 to 1024
[   91.148857][ T6499] loop0: detected capacity change from 0 to 1024
[   91.150909][ T6501] loop4: detected capacity change from 0 to 1024
[   91.214942][ T6501] EXT4-fs (loop4): shut down requested (0)
[   91.229890][    C1] eth0: bad gso: type: 1, size: 1408
[   91.305057][ T6510] netlink: 'syz.4.856': attribute type 3 has an invalid length.
[   91.331652][ T3338] kernel write not supported for file 343/task/344/clear_refs (pid: 3338 comm: kworker/0:6)
[   91.399476][ T6517] loop4: detected capacity change from 0 to 512
[   91.418689][ T6517] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   91.421810][ T6519] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=83 sclass=netlink_route_socket pid=6519 comm=syz.1.862
[   91.436012][ T6517] EXT4-fs (loop4): invalid journal inode
[   91.445638][ T6517] EXT4-fs (loop4): can't get journal size
[   91.460321][ T6517] EXT4-fs (loop4): 1 truncate cleaned up
[   91.475633][ T6517] capability: warning: `syz.4.861' uses deprecated v2 capabilities in a way that may be insecure
[   91.526843][ T6532] __nla_validate_parse: 2 callbacks suppressed
[   91.526855][ T6532] netlink: 12 bytes leftover after parsing attributes in process `syz.1.864'.
[   91.543811][ T6533] netlink: 72 bytes leftover after parsing attributes in process `syz.2.865'.
[   91.592667][ T6538] loop2: detected capacity change from 0 to 128
[   91.607182][ T6538] ext4 filesystem being mounted at /21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   91.758648][ T6548] loop2: detected capacity change from 0 to 512
[   91.775698][ T6548] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   91.807858][ T5747] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   91.824681][ T6548] EXT4-fs (loop2): 1 truncate cleaned up
[   91.837431][ T5747] EXT4-fs (loop3): Remounting filesystem read-only
[   91.850014][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.859419][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.876552][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.885467][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.896149][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.905099][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.919190][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.928201][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=13
[   91.938664][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.947599][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=13
[   91.958459][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.969190][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.980378][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=14
[   91.989637][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   91.999632][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=14
[   92.008572][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   92.018522][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   92.027664][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   92.037601][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   92.046507][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   92.055424][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=16
[   92.067894][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=17
[   92.078245][ T5747] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=17
[   92.269781][ T6573] netlink: 12 bytes leftover after parsing attributes in process `syz.0.877'.
[   92.333908][ T6576] netlink: 72 bytes leftover after parsing attributes in process `syz.0.878'.
[   92.358073][ T6577] loop3: detected capacity change from 0 to 128
[   92.480001][ T6587] loop0: detected capacity change from 0 to 512
[   92.488457][ T6587] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   92.502921][ T6587] EXT4-fs (loop0): 1 truncate cleaned up
[   92.579997][ T6590] loop1: detected capacity change from 0 to 1024
[   92.603828][ T6595] loop4: detected capacity change from 0 to 1024
[   92.650946][ T6595] EXT4-fs (loop4): shut down requested (0)
[   92.668152][ T6597] xt_bpf: check failed: parse error
[   92.728121][ T6603] netlink: 'syz.4.886': attribute type 3 has an invalid length.
[   92.768216][ T6605] netlink: 72 bytes leftover after parsing attributes in process `syz.2.889'.
[   92.787089][ T3338] kernel write not supported for file 363/task/364/clear_refs (pid: 3338 comm: kworker/0:6)
[   92.930179][ T6628] loop1: detected capacity change from 0 to 512
[   92.937113][ T6628] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   92.943324][ T6631] FAULT_INJECTION: forcing a failure.
[   92.943324][ T6631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.960139][ T6631] CPU: 1 UID: 0 PID: 6631 Comm: syz.0.898 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   92.970365][ T6631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   92.980456][ T6631] Call Trace:
[   92.983723][ T6631]  <TASK>
[   92.986662][ T6631]  dump_stack_lvl+0xf2/0x150
[   92.991253][ T6631]  dump_stack+0x15/0x20
[   92.995457][ T6631]  should_fail_ex+0x229/0x230
[   93.000210][ T6631]  should_fail+0xb/0x10
[   93.004416][ T6631]  should_fail_usercopy+0x1a/0x20
[   93.009461][ T6631]  _copy_from_user+0x1e/0xd0
[   93.014129][ T6631]  ____sys_sendmsg+0x1a4/0x410
[   93.018899][ T6631]  __sys_sendmmsg+0x269/0x500
[   93.023599][ T6631]  __x64_sys_sendmmsg+0x57/0x70
[   93.028525][ T6631]  x64_sys_call+0x2b4e/0x2e00
[   93.033277][ T6631]  do_syscall_64+0xc9/0x1c0
[   93.037000][ T6636] netlink: 96 bytes leftover after parsing attributes in process `syz.2.900'.
[   93.037780][ T6631]  ? clear_bhb_loop+0x55/0xb0
[   93.051350][ T6631]  ? clear_bhb_loop+0x55/0xb0
[   93.056034][ T6631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.061959][ T6631] RIP: 0033:0x7f288bb77299
[   93.066511][ T6631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.077383][ T6642] netlink: 76 bytes leftover after parsing attributes in process `syz.2.901'.
[   93.086121][ T6631] RSP: 002b:00007f288a7f7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   93.086143][ T6631] RAX: ffffffffffffffda RBX: 00007f288bd05f80 RCX: 00007f288bb77299
[   93.111326][ T6631] RDX: 0000000000000001 RSI: 0000000020000b80 RDI: 0000000000000003
[   93.119286][ T6631] RBP: 00007f288a7f70a0 R08: 0000000000000000 R09: 0000000000000000
[   93.127343][ T6631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.135369][ T6631] R13: 000000000000000b R14: 00007f288bd05f80 R15: 00007ffda28ab218
[   93.143342][ T6631]  </TASK>
[   93.152335][ T6628] EXT4-fs (loop1): 1 truncate cleaned up
[   93.152499][ T6642] FAULT_INJECTION: forcing a failure.
[   93.152499][ T6642] name failslab, interval 1, probability 0, space 0, times 0
[   93.170759][ T6642] CPU: 1 UID: 0 PID: 6642 Comm: syz.2.901 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   93.180989][ T6642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   93.191121][ T6642] Call Trace:
[   93.194441][ T6642]  <TASK>
[   93.197369][ T6642]  dump_stack_lvl+0xf2/0x150
[   93.201981][ T6642]  dump_stack+0x15/0x20
[   93.206217][ T6642]  should_fail_ex+0x229/0x230
[   93.210974][ T6642]  ? getname_flags+0x81/0x3b0
[   93.215649][ T6642]  should_failslab+0x8f/0xb0
[   93.220278][ T6642]  kmem_cache_alloc_noprof+0x4c/0x290
[   93.225652][ T6642]  getname_flags+0x81/0x3b0
[   93.230152][ T6642]  getname+0x17/0x20
[   93.234038][ T6642]  do_sys_openat2+0x67/0x120
[   93.238659][ T6642]  __x64_sys_openat+0xf3/0x120
[   93.243503][ T6642]  x64_sys_call+0x1ac/0x2e00
[   93.248136][ T6642]  do_syscall_64+0xc9/0x1c0
[   93.252683][ T6642]  ? clear_bhb_loop+0x55/0xb0
[   93.257353][ T6642]  ? clear_bhb_loop+0x55/0xb0
[   93.262021][ T6642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.267986][ T6642] RIP: 0033:0x7f0c79fe5cd0
[   93.272414][ T6642] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 79 8d 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 cc 8d 02 00 8b 44
[   93.292013][ T6642] RSP: 002b:00007f0c78c66a10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   93.300460][ T6642] RAX: ffffffffffffffda RBX: 0000000000080001 RCX: 00007f0c79fe5cd0
[   93.308438][ T6642] RDX: 0000000000080001 RSI: 00007f0c7a043c38 RDI: 00000000ffffff9c
[   93.316394][ T6642] RBP: 00007f0c7a043c38 R08: 0000000000000000 R09: 0000000000000000
[   93.324389][ T6642] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000008
[   93.332411][ T6642] R13: 00007f0c78c66ab0 R14: 00007f0c7a175f80 R15: 00007ffc4b9a5938
[   93.340437][ T6642]  </TASK>
[   93.350400][ T3338] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   93.351984][   T29] kauditd_printk_skb: 90 callbacks suppressed
[   93.351996][   T29] audit: type=1400 audit(1722028181.152:925): avc:  denied  { read write } for  pid=6643 comm="syz.0.902" name="uhid" dev="devtmpfs" ino=228 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   93.357885][ T3338] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   93.357906][ T3338] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   93.357928][ T3338] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   93.357947][ T3338] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   93.363987][   T29] audit: type=1400 audit(1722028181.152:926): avc:  denied  { open } for  pid=6643 comm="syz.0.902" path="/dev/uhid" dev="devtmpfs" ino=228 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[   93.387317][ T3338] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   93.387409][ T3338] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   93.454888][ T3338] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   93.462395][ T3338] hid-generic 0000:0000:0000.0001: item fetching failed at offset 8/43
[   93.473983][ T6648] netlink: 72 bytes leftover after parsing attributes in process `syz.3.903'.
[   93.493048][ T3338] hid-generic 0000:0000:0000.0001: probe with driver hid-generic failed with error -22
[   93.504361][ T6652] FAULT_INJECTION: forcing a failure.
[   93.504361][ T6652] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   93.517659][ T6652] CPU: 0 UID: 0 PID: 6652 Comm: syz.3.905 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   93.527895][ T6652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   93.537945][ T6652] Call Trace:
[   93.541211][ T6652]  <TASK>
[   93.544127][ T6652]  dump_stack_lvl+0xf2/0x150
[   93.548733][ T6652]  dump_stack+0x15/0x20
[   93.552901][ T6652]  should_fail_ex+0x229/0x230
[   93.557575][ T6652]  should_fail_alloc_page+0xfd/0x110
[   93.562852][ T6652]  __alloc_pages_noprof+0x109/0x360
[   93.568045][ T6652]  ___kmalloc_large_node+0x7a/0x120
[   93.573299][ T6652]  __kmalloc_large_noprof+0x1f/0xb0
[   93.578556][ T6652]  bpf_check+0x78/0xa200
[   93.582784][ T6652]  ? cgroup_rstat_updated+0x99/0x550
[   93.588108][ T6652]  ? pcpu_block_update_hint_alloc+0x685/0x6a0
[   93.594278][ T6652]  ? cgroup_rstat_updated+0x99/0x550
[   93.599551][ T6652]  ? pcpu_chunk_relocate+0x183/0x280
[   93.604825][ T6652]  ? __mod_memcg_state+0x10d/0x200
[   93.609952][ T6652]  ? __rcu_read_unlock+0x4e/0x70
[   93.614905][ T6652]  ? bpf_prog_alloc+0x59/0x150
[   93.619709][ T6652]  ? pcpu_alloc_noprof+0xb92/0x10c0
[   93.624892][ T6652]  ? should_fail_ex+0xd7/0x230
[   93.629694][ T6652]  ? selinux_bpf_prog_load+0x35/0xe0
[   93.634968][ T6652]  ? should_failslab+0x8f/0xb0
[   93.639795][ T6652]  ? __kmalloc_cache_noprof+0x10b/0x2a0
[   93.645449][ T6652]  ? selinux_bpf_prog_load+0xbb/0xe0
[   93.650739][ T6652]  bpf_prog_load+0xed4/0x1060
[   93.655410][ T6652]  __sys_bpf+0x463/0x7a0
[   93.659711][ T6652]  __x64_sys_bpf+0x43/0x50
[   93.664192][ T6652]  x64_sys_call+0x23d5/0x2e00
[   93.668855][ T6652]  do_syscall_64+0xc9/0x1c0
[   93.673349][ T6652]  ? clear_bhb_loop+0x55/0xb0
[   93.678084][ T6652]  ? clear_bhb_loop+0x55/0xb0
[   93.682748][ T6652]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.688634][ T6652] RIP: 0033:0x7f67f4817299
[   93.693031][ T6652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.712623][ T6652] RSP: 002b:00007f67f3497048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   93.721023][ T6652] RAX: ffffffffffffffda RBX: 00007f67f49a5f80 RCX: 00007f67f4817299
[   93.729009][ T6652] RDX: 0000000000000090 RSI: 0000000020000400 RDI: 0000000000000005
[   93.737005][ T6652] RBP: 00007f67f34970a0 R08: 0000000000000000 R09: 0000000000000000
[   93.745043][ T6652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.753046][ T6652] R13: 000000000000000b R14: 00007f67f49a5f80 R15: 00007ffd50030fa8
[   93.761009][ T6652]  </TASK>
[   93.830909][ T6664] loop1: detected capacity change from 0 to 512
[   93.831051][ T6664] EXT4-fs: Ignoring removed bh option
[   93.838464][ T6664] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.909: bad orphan inode 4
[   93.840755][ T6666] EXT4-fs error (device loop1): ext4_append:79: inode #2: comm syz.1.909: Logical block already allocated
[   93.885979][ T6676] loop3: detected capacity change from 0 to 1024
[   93.929013][ T6681] loop4: detected capacity change from 0 to 512
[   93.957431][ T6681] ext4 filesystem being mounted at /149/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.080917][ T6699] loop3: detected capacity change from 0 to 128
[   94.097678][ T6699] vfat: Unknown parameter 'À
'
[   94.108444][ T6702] dccp_invalid_packet: P.Data Offset(172) too large
[   94.143555][   T29] audit: type=1400 audit(1722028181.942:927): avc:  denied  { mount } for  pid=6704 comm="syz.4.924" name="/" dev="ramfs" ino=18476 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   94.189315][   T29] audit: type=1400 audit(1722028181.992:928): avc:  denied  { unmount } for  pid=4379 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   94.241678][   T29] audit: type=1400 audit(1722028182.042:929): avc:  denied  { module_request } for  pid=6712 comm="syz.3.927" kmod="net-pf-0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   94.279284][ T6716] loop4: detected capacity change from 0 to 512
[   94.298455][ T6716] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.363512][ T6726] IPv6: Can't replace route, no match found
[   94.466593][   T29] audit: type=1400 audit(1722028182.272:930): avc:  denied  { read write } for  pid=6728 comm="syz.4.933" name="rdma_cm" dev="devtmpfs" ino=227 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   94.489831][   T29] audit: type=1400 audit(1722028182.272:931): avc:  denied  { open } for  pid=6728 comm="syz.4.933" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=227 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   94.589091][ T6735] loop4: detected capacity change from 0 to 512
[   94.602938][ T6735] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   94.616783][ T6735] EXT4-fs (loop4): 1 truncate cleaned up
[   94.797931][ T6746] loop1: detected capacity change from 0 to 256
[   94.804506][ T6746] vfat: Unknown parameter 's'
[   94.821317][ T6746] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   94.836070][ T6746] netlink: 12 bytes leftover after parsing attributes in process `syz.1.940'.
[   94.848300][   T29] audit: type=1326 audit(1722028182.652:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6745 comm="syz.1.940" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f593ea47299 code=0x0
[   94.886442][ T6752] loop4: detected capacity change from 0 to 512
[   94.898874][ T6752] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.949909][ T6759] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   94.963475][ T6761] loop4: detected capacity change from 0 to 512
[   94.975016][ T6761] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   94.987289][ T6761] EXT4-fs (loop4): 1 truncate cleaned up
[   95.273498][ T6776] loop3: detected capacity change from 0 to 128
[   95.293896][ T6776] ext4 filesystem being mounted at /63/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   95.396655][   T29] audit: type=1400 audit(1722028183.202:933): avc:  denied  { map } for  pid=6783 comm="syz.3.954" path="socket:[18635]" dev="sockfs" ino=18635 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   95.419661][   T29] audit: type=1400 audit(1722028183.202:934): avc:  denied  { read } for  pid=6783 comm="syz.3.954" path="socket:[18635]" dev="sockfs" ino=18635 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   95.511477][ T6784] ip6_tunnel: non-ECT from fe80:0040:0000:0000:0000:0000:0000:00aa with DS=0xe
[   95.730170][ T6797] FAULT_INJECTION: forcing a failure.
[   95.730170][ T6797] name failslab, interval 1, probability 0, space 0, times 0
[   95.742940][ T6797] CPU: 1 UID: 0 PID: 6797 Comm: syz.3.959 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   95.753208][ T6797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   95.763284][ T6797] Call Trace:
[   95.766554][ T6797]  <TASK>
[   95.769476][ T6797]  dump_stack_lvl+0xf2/0x150
[   95.774151][ T6797]  dump_stack+0x15/0x20
[   95.778436][ T6797]  should_fail_ex+0x229/0x230
[   95.783122][ T6797]  ? nfnetlink_rcv+0x994/0x15b0
[   95.787974][ T6797]  should_failslab+0x8f/0xb0
[   95.792593][ T6797]  __kmalloc_cache_noprof+0x4b/0x2a0
[   95.797896][ T6797]  nfnetlink_rcv+0x994/0x15b0
[   95.802584][ T6797]  netlink_unicast+0x593/0x670
[   95.807396][ T6797]  netlink_sendmsg+0x5cc/0x6e0
[   95.812181][ T6797]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.817455][ T6797]  __sock_sendmsg+0x140/0x180
[   95.822203][ T6797]  ____sys_sendmsg+0x312/0x410
[   95.826999][ T6797]  __sys_sendmsg+0x1e9/0x280
[   95.831601][ T6797]  __x64_sys_sendmsg+0x46/0x50
[   95.836432][ T6797]  x64_sys_call+0x26f8/0x2e00
[   95.841098][ T6797]  do_syscall_64+0xc9/0x1c0
[   95.845593][ T6797]  ? clear_bhb_loop+0x55/0xb0
[   95.850295][ T6797]  ? clear_bhb_loop+0x55/0xb0
[   95.855019][ T6797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.861006][ T6797] RIP: 0033:0x7f67f4817299
[   95.865405][ T6797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.885087][ T6797] RSP: 002b:00007f67f3497048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   95.893484][ T6797] RAX: ffffffffffffffda RBX: 00007f67f49a5f80 RCX: 00007f67f4817299
[   95.901438][ T6797] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[   95.909392][ T6797] RBP: 00007f67f34970a0 R08: 0000000000000000 R09: 0000000000000000
[   95.917346][ T6797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.925299][ T6797] R13: 000000000000000b R14: 00007f67f49a5f80 R15: 00007ffd50030fa8
[   95.933258][ T6797]  </TASK>
[   96.066208][ T6809] FAULT_INJECTION: forcing a failure.
[   96.066208][ T6809] name failslab, interval 1, probability 0, space 0, times 0
[   96.079187][ T6809] CPU: 1 UID: 0 PID: 6809 Comm: syz.3.965 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   96.089455][ T6809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   96.099637][ T6809] Call Trace:
[   96.102906][ T6809]  <TASK>
[   96.105825][ T6809]  dump_stack_lvl+0xf2/0x150
[   96.110451][ T6809]  dump_stack+0x15/0x20
[   96.114722][ T6809]  should_fail_ex+0x229/0x230
[   96.119427][ T6809]  ? __alloc_skb+0x10b/0x310
[   96.124103][ T6809]  should_failslab+0x8f/0xb0
[   96.128728][ T6809]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   96.129997][ T6813] 8021q: VLANs not supported on ipvlan0
[   96.134589][ T6809]  __alloc_skb+0x10b/0x310
[   96.134613][ T6809]  netlink_alloc_large_skb+0xad/0xe0
[   96.134641][ T6809]  netlink_sendmsg+0x3b4/0x6e0
[   96.154697][ T6809]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.159979][ T6809]  __sock_sendmsg+0x140/0x180
[   96.164906][ T6809]  ____sys_sendmsg+0x312/0x410
[   96.169711][ T6809]  __sys_sendmsg+0x1e9/0x280
[   96.174284][ T6809]  __x64_sys_sendmsg+0x46/0x50
[   96.179101][ T6809]  x64_sys_call+0x26f8/0x2e00
[   96.183820][ T6809]  do_syscall_64+0xc9/0x1c0
[   96.188320][ T6809]  ? clear_bhb_loop+0x55/0xb0
[   96.193005][ T6809]  ? clear_bhb_loop+0x55/0xb0
[   96.197690][ T6809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.203595][ T6809] RIP: 0033:0x7f67f4817299
[   96.208083][ T6809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.227918][ T6809] RSP: 002b:00007f67f3497048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.236328][ T6809] RAX: ffffffffffffffda RBX: 00007f67f49a5f80 RCX: 00007f67f4817299
[   96.244315][ T6809] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000005
[   96.252339][ T6809] RBP: 00007f67f34970a0 R08: 0000000000000000 R09: 0000000000000000
[   96.260316][ T6809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.268276][ T6809] R13: 000000000000000b R14: 00007f67f49a5f80 R15: 00007ffd50030fa8
[   96.276315][ T6809]  </TASK>
[   96.337590][ T6820] loop3: detected capacity change from 0 to 128
[   96.877031][ T6845] netlink: 12 bytes leftover after parsing attributes in process `syz.1.977'.
[   97.077750][ T6860] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   97.434112][ T6866] loop0: detected capacity change from 0 to 2048
[   97.461031][ T6866] EXT4-fs: Ignoring removed oldalloc option
[   97.467039][ T6866] EXT4-fs: Ignoring removed i_version option
[   97.483292][ T6868] loop3: detected capacity change from 0 to 8192
[   97.508780][ T6868] FAULT_INJECTION: forcing a failure.
[   97.508780][ T6868] name failslab, interval 1, probability 0, space 0, times 0
[   97.521722][ T6868] CPU: 1 UID: 0 PID: 6868 Comm: syz.3.985 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   97.532008][ T6868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   97.542051][ T6868] Call Trace:
[   97.543590][ T6866] EXT4-fs (loop0): bad geometry: first data block 0 is beyond end of filesystem (0)
[   97.545313][ T6868]  <TASK>
[   97.545322][ T6868]  dump_stack_lvl+0xf2/0x150
[   97.562212][ T6868]  dump_stack+0x15/0x20
[   97.566456][ T6868]  should_fail_ex+0x229/0x230
[   97.571210][ T6868]  ? __d_alloc+0x3d/0x340
[   97.575597][ T6868]  should_failslab+0x8f/0xb0
[   97.580194][ T6868]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[   97.585924][ T6868]  ? __d_lookup+0x342/0x370
[   97.590499][ T6868]  __d_alloc+0x3d/0x340
[   97.594652][ T6868]  d_alloc+0x2e/0x100
[   97.598703][ T6868]  lookup_one_qstr_excl+0x97/0x1a0
[   97.603986][ T6868]  filename_create+0x14d/0x2b0
[   97.608890][ T6868]  do_mkdirat+0x63/0x2a0
[   97.613215][ T6868]  __x64_sys_mkdirat+0x4e/0x60
[   97.618089][ T6868]  x64_sys_call+0x2cde/0x2e00
[   97.622772][ T6868]  do_syscall_64+0xc9/0x1c0
[   97.627339][ T6868]  ? clear_bhb_loop+0x55/0xb0
[   97.632080][ T6868]  ? clear_bhb_loop+0x55/0xb0
[   97.636755][ T6868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.642676][ T6868] RIP: 0033:0x7f67f4817299
[   97.647103][ T6868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.666801][ T6868] RSP: 002b:00007f67f3497048 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   97.675253][ T6868] RAX: ffffffffffffffda RBX: 00007f67f49a5f80 RCX: 00007f67f4817299
[   97.683220][ T6868] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: ffffffffffffff9c
[   97.691213][ T6868] RBP: 00007f67f34970a0 R08: 0000000000000000 R09: 0000000000000000
[   97.699183][ T6868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.707157][ T6868] R13: 000000000000000b R14: 00007f67f49a5f80 R15: 00007ffd50030fa8
[   97.715195][ T6868]  </TASK>
[   97.816518][ T6875] loop4: detected capacity change from 0 to 512
[   97.836966][ T6875] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[   97.868940][ T6877] loop1: detected capacity change from 0 to 512
[   97.896747][ T6877] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   97.904752][ T6877] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   97.915624][ T6877] System zones: 0-1, 15-15, 18-18, 34-34
[   97.926716][ T6888] loop0: detected capacity change from 0 to 1024
[   97.928845][ T6877] EXT4-fs (loop1): orphan cleanup on readonly fs
[   97.959755][ T6888] EXT4-fs mount: 62 callbacks suppressed
[   97.959770][ T6888] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.975575][ T6877] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   97.978770][ T6888] FAULT_INJECTION: forcing a failure.
[   97.978770][ T6888] name failslab, interval 1, probability 0, space 0, times 0
[   97.992557][ T6877] EXT4-fs (loop1): Cannot turn on quotas: error -22
[   98.005138][ T6888] CPU: 1 UID: 0 PID: 6888 Comm: syz.0.991 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   98.005161][ T6888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   98.005171][ T6888] Call Trace:
[   98.005178][ T6888]  <TASK>
[   98.038290][ T6888]  dump_stack_lvl+0xf2/0x150
[   98.042878][ T6888]  dump_stack+0x15/0x20
[   98.047025][ T6888]  should_fail_ex+0x229/0x230
[   98.051694][ T6888]  ? mas_alloc_nodes+0x1d3/0x4a0
[   98.056665][ T6888]  should_failslab+0x8f/0xb0
[   98.061276][ T6888]  kmem_cache_alloc_noprof+0x4c/0x290
[   98.066689][ T6888]  mas_alloc_nodes+0x1d3/0x4a0
[   98.071497][ T6888]  mas_preallocate+0x773/0xc30
[   98.076260][ T6888]  __split_vma+0x244/0x690
[   98.080734][ T6888]  do_vmi_align_munmap+0x227/0xa60
[   98.085841][ T6888]  do_vmi_munmap+0x1fb/0x250
[   98.090440][ T6888]  __vm_munmap+0xec/0x210
[   98.094763][ T6888]  __x64_sys_munmap+0x36/0x40
[   98.099469][ T6888]  x64_sys_call+0xe1b/0x2e00
[   98.104049][ T6888]  do_syscall_64+0xc9/0x1c0
[   98.108600][ T6888]  ? clear_bhb_loop+0x55/0xb0
[   98.113274][ T6888]  ? clear_bhb_loop+0x55/0xb0
[   98.118034][ T6888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.123962][ T6888] RIP: 0033:0x7f288bb77299
[   98.128362][ T6888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.148136][ T6888] RSP: 002b:00007f288a7f7048 EFLAGS: 00000246 ORIG_RAX: 000000000000000b
[   98.156578][ T6888] RAX: ffffffffffffffda RBX: 00007f288bd05f80 RCX: 00007f288bb77299
[   98.164547][ T6888] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020001000
[   98.172513][ T6888] RBP: 00007f288a7f70a0 R08: 0000000000000000 R09: 0000000000000000
[   98.180540][ T6888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.188533][ T6888] R13: 000000000000000b R14: 00007f288bd05f80 R15: 00007ffda28ab218
[   98.196554][ T6888]  </TASK>
[   98.201569][ T6877] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.989: bg 0: block 40: padding at end of block bitmap is not set
[   98.231815][ T6877] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[   98.252501][ T6877] EXT4-fs (loop1): 1 truncate cleaned up
[   98.258487][ T6877] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   98.274404][ T6877] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #15: comm syz.1.989: corrupted xattr block 19: bad e_name length
[   98.274416][ T6063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.322714][ T6877] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[   98.342089][ T6877] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #15: comm syz.1.989: corrupted xattr block 19: bad e_name length
[   98.358265][ T6877] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[   98.370687][   T29] kauditd_printk_skb: 10 callbacks suppressed
[   98.370700][   T29] audit: type=1326 audit(1722028186.177:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.405001][ T6917] loop0: detected capacity change from 0 to 256
[   98.411385][ T6877] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #15: comm syz.1.989: corrupted xattr block 19: bad e_name length
[   98.431831][ T6917] FAT-fs (loop0): Directory bread(block 64) failed
[   98.438528][ T6877] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[   98.445641][   T29] audit: type=1326 audit(1722028186.207:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.447513][ T6917] FAT-fs (loop0): Directory bread(block 65) failed
[   98.470504][   T29] audit: type=1326 audit(1722028186.207:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.470596][   T29] audit: type=1326 audit(1722028186.207:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.484845][ T6917] FAT-fs (loop0): Directory bread(block 66) failed
[   98.500262][   T29] audit: type=1326 audit(1722028186.207:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.524750][ T6917] FAT-fs (loop0): Directory bread(block 67) failed
[   98.529880][   T29] audit: type=1326 audit(1722028186.207:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.556791][ T6917] FAT-fs (loop0): Directory bread(block 68) failed
[   98.559560][   T29] audit: type=1326 audit(1722028186.207:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.559583][   T29] audit: type=1326 audit(1722028186.207:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.584777][ T6917] FAT-fs (loop0): Directory bread(block 69) failed
[   98.589348][   T29] audit: type=1326 audit(1722028186.207:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.620644][ T6917] FAT-fs (loop0): Directory bread(block 70) failed
[   98.635698][   T29] audit: type=1326 audit(1722028186.207:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6916 comm="syz.0.999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288bb77299 code=0x7ffc0000
[   98.696519][ T4007] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.729950][ T6917] FAT-fs (loop0): Directory bread(block 71) failed
[   98.737907][ T6922] loop3: detected capacity change from 0 to 512
[   98.745365][ T6917] FAT-fs (loop0): Directory bread(block 72) failed
[   98.766205][ T6922] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[   98.768282][ T6917] FAT-fs (loop0): Directory bread(block 73) failed
[   98.845242][ T6917] syz.0.999: attempt to access beyond end of device
[   98.845242][ T6917] loop0: rw=2049, sector=1296, nr_sectors = 4 limit=256
[   98.873814][ T6917] syz.0.999: attempt to access beyond end of device
[   98.873814][ T6917] loop0: rw=2051, sector=1224, nr_sectors = 96 limit=256
[   98.977198][ T6937] FAULT_INJECTION: forcing a failure.
[   98.977198][ T6937] name failslab, interval 1, probability 0, space 0, times 0
[   98.989879][ T6937] CPU: 0 UID: 0 PID: 6937 Comm: syz.1.1008 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[   99.000210][ T6937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   99.010342][ T6937] Call Trace:
[   99.013614][ T6937]  <TASK>
[   99.016539][ T6937]  dump_stack_lvl+0xf2/0x150
[   99.021133][ T6937]  dump_stack+0x15/0x20
[   99.025291][ T6937]  should_fail_ex+0x229/0x230
[   99.030018][ T6937]  ? __alloc_skb+0x10b/0x310
[   99.034633][ T6937]  should_failslab+0x8f/0xb0
[   99.039234][ T6937]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   99.045060][ T6937]  __alloc_skb+0x10b/0x310
[   99.049546][ T6937]  netlink_alloc_large_skb+0xad/0xe0
[   99.055100][ T6937]  netlink_sendmsg+0x3b4/0x6e0
[   99.058478][ T6942] loop3: detected capacity change from 0 to 256
[   99.059865][ T6937]  ? __pfx_netlink_sendmsg+0x10/0x10
[   99.059890][ T6937]  __sock_sendmsg+0x140/0x180
[   99.059919][ T6937]  ____sys_sendmsg+0x312/0x410
[   99.076579][ T6942] vfat: Unknown parameter 's'
[   99.080891][ T6937]  __sys_sendmsg+0x1e9/0x280
[   99.090288][ T6937]  __x64_sys_sendmsg+0x46/0x50
[   99.095070][ T6937]  x64_sys_call+0x26f8/0x2e00
[   99.099666][ T6942] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   99.099781][ T6937]  do_syscall_64+0xc9/0x1c0
[   99.114379][ T6937]  ? clear_bhb_loop+0x55/0xb0
[   99.119069][ T6937]  ? clear_bhb_loop+0x55/0xb0
[   99.121248][ T6942] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1009'.
[   99.123837][ T6937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.138657][ T6937] RIP: 0033:0x7f593ea47299
[   99.143064][ T6937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.162674][ T6937] RSP: 002b:00007f593d6c7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   99.171074][ T6937] RAX: ffffffffffffffda RBX: 00007f593ebd5f80 RCX: 00007f593ea47299
[   99.179033][ T6937] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   99.186988][ T6937] RBP: 00007f593d6c70a0 R08: 0000000000000000 R09: 0000000000000000
[   99.194942][ T6937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.202897][ T6937] R13: 000000000000000b R14: 00007f593ebd5f80 R15: 00007ffcd4498588
[   99.210887][ T6937]  </TASK>
[   99.219829][ T6945] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1010'.
[   99.319693][ T6952] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1013'.
[   99.392502][ T6950] loop2: detected capacity change from 0 to 8192
[   99.482516][ T6959] loop1: detected capacity change from 0 to 256
[   99.484324][ T6964] loop2: detected capacity change from 0 to 512
[   99.506778][ T6959] FAT-fs (loop1): Directory bread(block 64) failed
[   99.513487][ T6959] FAT-fs (loop1): Directory bread(block 65) failed
[   99.521514][ T6959] FAT-fs (loop1): Directory bread(block 66) failed
[   99.528948][ T6959] FAT-fs (loop1): Directory bread(block 67) failed
[   99.535684][ T6959] FAT-fs (loop1): Directory bread(block 68) failed
[   99.542372][ T6959] FAT-fs (loop1): Directory bread(block 69) failed
[   99.550693][ T6959] FAT-fs (loop1): Directory bread(block 70) failed
[   99.557440][ T6959] FAT-fs (loop1): Directory bread(block 71) failed
[   99.564520][ T6959] FAT-fs (loop1): Directory bread(block 72) failed
[   99.565705][ T6964] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.572442][ T6959] FAT-fs (loop1): Directory bread(block 73) failed
[   99.618223][ T6964] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.630352][ T6959] syz.1.1016: attempt to access beyond end of device
[   99.630352][ T6959] loop1: rw=2049, sector=1296, nr_sectors = 4 limit=256
[   99.654583][ T6959] syz.1.1016: attempt to access beyond end of device
[   99.654583][ T6959] loop1: rw=2051, sector=1224, nr_sectors = 96 limit=256
[   99.688827][ T6040] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.728575][ T6979] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1024'.
[   99.765283][ T6981] loop2: detected capacity change from 0 to 128
[   99.773806][ T6981] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   99.803705][   T28] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   99.903250][ T6996] loop1: detected capacity change from 0 to 256
[   99.916828][ T6991] loop3: detected capacity change from 0 to 8192
[   99.916973][ T6996] FAT-fs (loop1): Directory bread(block 64) failed
[   99.945796][ T6996] FAT-fs (loop1): Directory bread(block 65) failed
[   99.952509][ T6996] FAT-fs (loop1): Directory bread(block 66) failed
[   99.962404][ T6996] FAT-fs (loop1): Directory bread(block 67) failed
[   99.969899][ T6998] loop2: detected capacity change from 0 to 512
[   99.978192][ T6996] FAT-fs (loop1): Directory bread(block 68) failed
[   99.985768][ T6996] FAT-fs (loop1): Directory bread(block 69) failed
[   99.992497][ T6996] FAT-fs (loop1): Directory bread(block 70) failed
[   99.999577][ T6996] FAT-fs (loop1): Directory bread(block 71) failed
[  100.009729][ T6998] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.022627][ T7003] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1035'.
[  100.033004][ T6996] FAT-fs (loop1): Directory bread(block 72) failed
[  100.039609][ T6998] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.053712][ T6996] FAT-fs (loop1): Directory bread(block 73) failed
[  100.099780][ T6996] syz.1.1032: attempt to access beyond end of device
[  100.099780][ T6996] loop1: rw=2049, sector=1296, nr_sectors = 4 limit=256
[  100.134149][ T6040] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.184302][   T28] kworker/u8:1: attempt to access beyond end of device
[  100.184302][   T28] loop1: rw=1, sector=1224, nr_sectors = 72 limit=256
[  100.214664][ T7012] loop0: detected capacity change from 0 to 256
[  100.223864][ T7014] loop1: detected capacity change from 0 to 256
[  100.235714][ T7012] vfat: Unknown parameter 's'
[  100.241310][ T7014] msdos: Unknown parameter 'nˆƒhòs'
[  100.258028][ T7012] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  100.306505][ T7012] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1039'.
[  100.411737][ T7014] loop1: detected capacity change from 0 to 512
[  100.425683][ T7014] ext4: Unknown parameter 'uid'
[  100.434265][ T7014] loop1: detected capacity change from 0 to 512
[  100.446698][ T7014] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  100.605236][ T7035] loop4: detected capacity change from 0 to 512
[  100.614490][ T7035] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1045: corrupted in-inode xattr: invalid ea_ino
[  100.628362][ T7035] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1045: couldn't read orphan inode 15 (err -117)
[  100.640696][ T7035] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.804077][ T4379] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.844680][    C1] eth0: bad gso: type: 1, size: 1408
[  100.877595][ T7043] loop1: detected capacity change from 0 to 512
[  100.907204][ T7043] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.934860][ T7043] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.966395][ T7044] loop4: detected capacity change from 0 to 2048
[  100.978585][ T7044] EXT4-fs: Ignoring removed oldalloc option
[  100.984546][ T7044] EXT4-fs: Ignoring removed i_version option
[  101.005039][ T4007] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.070744][ T7044] EXT4-fs (loop4): bad geometry: first data block 0 is beyond end of filesystem (0)
[  101.137929][ T7055] loop0: detected capacity change from 0 to 256
[  101.176710][ T7054] loop2: detected capacity change from 0 to 8192
[  101.177147][ T7055] FAT-fs (loop0): Directory bread(block 64) failed
[  101.207522][ T7055] FAT-fs (loop0): Directory bread(block 65) failed
[  101.215223][ T7060] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1053'.
[  101.231485][ T7055] FAT-fs (loop0): Directory bread(block 66) failed
[  101.248572][ T7055] FAT-fs (loop0): Directory bread(block 67) failed
[  101.255325][ T7055] FAT-fs (loop0): Directory bread(block 68) failed
[  101.262939][ T7055] FAT-fs (loop0): Directory bread(block 69) failed
[  101.302808][ T7055] FAT-fs (loop0): Directory bread(block 70) failed
[  101.313331][ T7067] loop2: detected capacity change from 0 to 512
[  101.321519][ T7067] EXT4-fs (loop2): ea_inode feature is not supported for Hurd
[  101.329617][ T7055] FAT-fs (loop0): Directory bread(block 71) failed
[  101.345762][ T7055] FAT-fs (loop0): Directory bread(block 72) failed
[  101.352432][ T7055] FAT-fs (loop0): Directory bread(block 73) failed
[  101.397350][ T7055] syz.0.1050: attempt to access beyond end of device
[  101.397350][ T7055] loop0: rw=2049, sector=1296, nr_sectors = 4 limit=256
[  101.413742][ T7070] sctp: [Deprecated]: syz.2.1057 (pid 7070) Use of int in max_burst socket option.
[  101.413742][ T7070] Use struct sctp_assoc_value instead
[  101.452175][ T7070] loop2: detected capacity change from 0 to 512
[  101.458784][   T28] kworker/u8:1: attempt to access beyond end of device
[  101.458784][   T28] loop0: rw=1, sector=1224, nr_sectors = 72 limit=256
[  101.473880][ T7070] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  101.495017][ T7070] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002]
[  101.510052][ T7070] System zones: 1-12
[  101.517152][ T7070] EXT4-fs (loop2): 1 truncate cleaned up
[  101.525930][ T7070] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.556821][ T7070] EXT4-fs (loop2): shut down requested (0)
[  101.567054][ T7070] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  101.587481][ T7070] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=12
[  101.647006][ T6040] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.698345][ T7078] loop2: detected capacity change from 0 to 256
[  101.700269][ T7080] loop4: detected capacity change from 0 to 512
[  101.704814][ T7078] vfat: Unknown parameter 's'
[  101.726987][ T7080] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.739227][ T7078] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  101.740643][ T7080] ext4 filesystem being mounted at /184/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.756451][ T7078] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1060'.
[  101.802263][ T4379] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.836263][ T7084] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1062'.
[  101.892001][    C1] hrtimer: interrupt took 47962 ns
[  102.040962][ T7095] loop4: detected capacity change from 0 to 8192
[  102.113340][ T7108] loop4: detected capacity change from 0 to 512
[  102.126865][ T7108] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.147274][ T7108] ext4 filesystem being mounted at /189/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.192468][ T4379] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.408932][ T7128] loop4: detected capacity change from 0 to 2048
[  102.580778][ T7136] loop0: detected capacity change from 0 to 8192
[  102.671957][ T7142] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1086'.
[  102.716688][ T7144] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  102.768234][ T7147] loop0: detected capacity change from 0 to 512
[  102.780264][ T7141] loop2: detected capacity change from 0 to 512
[  102.786804][ T7141] EXT4-fs: Ignoring removed nomblk_io_submit option
[  102.806613][ T7141] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2812: inode #11: comm syz.2.1084: corrupted xattr block 95: invalid header
[  102.815066][ T7147] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  102.821177][ T7141] EXT4-fs (loop2): Remounting filesystem read-only
[  102.836108][ T7141] EXT4-fs warning (device loop2): ext4_evict_inode:254: couldn't mark inode dirty (err -5)
[  102.846431][ T7141] EXT4-fs (loop2): 1 orphan inode deleted
[  102.852611][ T7141] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.852621][ T7150] loop3: detected capacity change from 0 to 1024
[  102.866901][ T7150] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.871253][ T7141] SELinux: (dev loop2, type ext4) getxattr errno 5
[  102.891575][ T7141] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.892382][ T7147] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  102.915380][ T7147] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec02c, mo2=0002]
[  102.927306][ T7147] System zones: 0-2, 18-18, 34-34
[  102.932881][ T7147] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  102.957096][ T5747] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.967414][ T7147] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1088: bg 0: block 408: padding at end of block bitmap is not set
[  102.989280][ T7147] EXT4-fs (loop0): Remounting filesystem read-only
[  103.004152][ T7147] EXT4-fs (loop0): 1 truncate cleaned up
[  103.016455][ T7147] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.036847][ T7161] loop3: detected capacity change from 0 to 256
[  103.051176][ T7161] msdos: Unknown parameter '·åÝGJY¨Ý•ë¼quiet'
[  103.058702][ T7147] SELinux: (dev loop0, type ext4) getxattr errno 5
[  103.072354][ T7147] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.097948][ T7161] loop3: detected capacity change from 0 to 1764
[  103.165336][ T7166] loop1: detected capacity change from 0 to 1024
[  103.178743][ T7166] EXT4-fs (loop1): Can't support bigalloc feature without extents feature
[  103.178743][ T7166] 
[  103.189473][ T7166] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  103.209430][ T7166] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1093'.
[  103.231222][ T7147] loop0: detected capacity change from 0 to 2048
[  103.305385][ T7168] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1091'.
[  103.418406][ T7147]  loop0: p1 < > p4
[  103.447270][ T7147] loop0: p4 size 8388608 extends beyond EOD, truncated
[  103.473978][   T29] kauditd_printk_skb: 260 callbacks suppressed
[  103.473992][   T29] audit: type=1326 audit(1722028191.277:1214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f288bb75b4a code=0x7ffc0000
[  103.526601][    C1] vcan0: j1939_tp_rxtimer: 0xffff8881147fea00: rx timeout, send abort
[  103.534823][    C1] vcan0: j1939_tp_rxtimer: 0xffff8881147fec00: rx timeout, send abort
[  103.545514][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8881147fea00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  103.559968][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8881147fec00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  103.569382][   T29] audit: type=1326 audit(1722028191.327:1215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f288bb768b7 code=0x7ffc0000
[  103.597767][   T29] audit: type=1326 audit(1722028191.327:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f288bb75b4a code=0x7ffc0000
[  103.621170][   T29] audit: type=1326 audit(1722028191.327:1217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f288bb75b4a code=0x7ffc0000
[  103.644837][   T29] audit: type=1326 audit(1722028191.327:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f288bb75b4a code=0x7ffc0000
[  103.668269][   T29] audit: type=1326 audit(1722028191.327:1219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f288bb768b7 code=0x7ffc0000
[  103.691801][   T29] audit: type=1326 audit(1722028191.327:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f288bb75b4a code=0x7ffc0000
[  103.715385][   T29] audit: type=1326 audit(1722028191.337:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f288bb75b4a code=0x7ffc0000
[  103.738946][   T29] audit: type=1326 audit(1722028191.337:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f288bb75b4a code=0x7ffc0000
[  103.762339][   T29] audit: type=1326 audit(1722028191.337:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7146 comm="syz.0.1088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f288bb75fca code=0x7ffc0000
[  103.800800][ T7171] loop2: detected capacity change from 0 to 256
[  103.810382][ T7171] vfat: Unknown parameter 's'
[  103.814840][    C1] eth0: bad gso: type: 1, size: 1408
[  103.823866][ T7171] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  103.849571][ T7171] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1094'.
[  103.919372][ T7180] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1097'.
[  103.969089][ T7182] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  104.552800][ T7199] loop2: detected capacity change from 0 to 256
[  104.578353][ T7199] vfat: Unknown parameter 's'
[  104.603211][ T7199] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  104.643368][ T7199] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1104'.
[  104.778809][ T7200] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  104.945841][ T7206] loop4: detected capacity change from 0 to 128
[  104.967887][ T7206] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (16076!=39978)
[  104.996851][ T7206] EXT4-fs error (device loop4): __ext4_fill_super:5435: inode #2: comm syz.4.1106: iget: checksum invalid
[  105.021035][ T7206] EXT4-fs (loop4): get root inode failed
[  105.022835][ T7211] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1108'.
[  105.026834][ T7206] EXT4-fs (loop4): mount failed
[  105.221548][ T7220] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  105.300734][ T7227] loop3: detected capacity change from 0 to 256
[  105.307892][ T7227] vfat: Unknown parameter 's'
[  105.314728][ T7227] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  105.328725][ T7227] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1114'.
[  105.391133][ T7233] sctp: [Deprecated]: syz.2.1117 (pid 7233) Use of struct sctp_assoc_value in delayed_ack socket option.
[  105.391133][ T7233] Use struct sctp_sack_info instead
[  105.408692][ T7233] FAULT_INJECTION: forcing a failure.
[  105.408692][ T7233] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.421973][ T7233] CPU: 1 UID: 0 PID: 7233 Comm: syz.2.1117 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  105.432319][ T7233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  105.442372][ T7233] Call Trace:
[  105.445757][ T7233]  <TASK>
[  105.448777][ T7233]  dump_stack_lvl+0xf2/0x150
[  105.453467][ T7233]  dump_stack+0x15/0x20
[  105.457678][ T7233]  should_fail_ex+0x229/0x230
[  105.462384][ T7233]  should_fail+0xb/0x10
[  105.466623][ T7233]  should_fail_usercopy+0x1a/0x20
[  105.471698][ T7233]  _copy_to_user+0x1e/0xa0
[  105.476249][ T7233]  simple_read_from_buffer+0xa0/0x110
[  105.481791][ T7233]  proc_fail_nth_read+0xfc/0x140
[  105.486738][ T7233]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  105.492290][ T7233]  vfs_read+0x1a2/0x6e0
[  105.496448][ T7233]  ? __rcu_read_unlock+0x4e/0x70
[  105.501403][ T7233]  ? __fget_files+0x1da/0x210
[  105.506095][ T7233]  ksys_read+0xeb/0x1b0
[  105.510269][ T7233]  __x64_sys_read+0x42/0x50
[  105.514824][ T7233]  x64_sys_call+0x2a36/0x2e00
[  105.519588][ T7233]  do_syscall_64+0xc9/0x1c0
[  105.524098][ T7233]  ? clear_bhb_loop+0x55/0xb0
[  105.528843][ T7233]  ? clear_bhb_loop+0x55/0xb0
[  105.533612][ T7233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.539508][ T7233] RIP: 0033:0x7f0c79fe5d7c
[  105.543920][ T7233] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  105.563536][ T7233] RSP: 002b:00007f0c78c67040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  105.571961][ T7233] RAX: ffffffffffffffda RBX: 00007f0c7a175f80 RCX: 00007f0c79fe5d7c
[  105.579925][ T7233] RDX: 000000000000000f RSI: 00007f0c78c670b0 RDI: 0000000000000005
[  105.587893][ T7233] RBP: 00007f0c78c670a0 R08: 0000000000000000 R09: 0000000000000000
[  105.596005][ T7233] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000001
[  105.604051][ T7233] R13: 000000000000000b R14: 00007f0c7a175f80 R15: 00007ffc4b9a5938
[  105.612026][ T7233]  </TASK>
[  105.638922][ T7236] loop2: detected capacity change from 0 to 256
[  105.652097][ T7236] FAT-fs (loop2): Directory bread(block 64) failed
[  105.660053][ T7236] FAT-fs (loop2): Directory bread(block 65) failed
[  105.667197][ T7236] FAT-fs (loop2): Directory bread(block 66) failed
[  105.673904][ T7236] FAT-fs (loop2): Directory bread(block 67) failed
[  105.681744][ T7236] FAT-fs (loop2): Directory bread(block 68) failed
[  105.688452][ T7236] FAT-fs (loop2): Directory bread(block 69) failed
[  105.695003][ T7236] FAT-fs (loop2): Directory bread(block 70) failed
[  105.702760][ T7236] FAT-fs (loop2): Directory bread(block 71) failed
[  105.714729][ T7236] FAT-fs (loop2): Directory bread(block 72) failed
[  105.722495][ T7236] FAT-fs (loop2): Directory bread(block 73) failed
[  105.759486][ T7238] loop0: detected capacity change from 0 to 2048
[  105.778046][ T7238] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.802502][ T7245] loop4: detected capacity change from 0 to 1024
[  105.836558][ T7245] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.887132][ T6063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.098211][ T7259] FAULT_INJECTION: forcing a failure.
[  106.098211][ T7259] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.098235][ T7259] CPU: 0 UID: 0 PID: 7259 Comm: syz.2.1125 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  106.098297][ T7259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  106.098309][ T7259] Call Trace:
[  106.098315][ T7259]  <TASK>
[  106.098321][ T7259]  dump_stack_lvl+0xf2/0x150
[  106.098355][ T7259]  dump_stack+0x15/0x20
[  106.098383][ T7259]  should_fail_ex+0x229/0x230
[  106.098427][ T7259]  should_fail+0xb/0x10
[  106.098449][ T7259]  should_fail_usercopy+0x1a/0x20
[  106.098480][ T7259]  _copy_from_iter+0xd3/0xb00
[  106.098508][ T7259]  ? __virt_addr_valid+0x1ed/0x250
[  106.098592][ T7259]  ? __check_object_size+0x35b/0x510
[  106.098623][ T7259]  bcm_tx_setup+0x3cb/0xd30
[  106.098650][ T7259]  bcm_sendmsg+0x38b/0x470
[  106.098718][ T7259]  ? __pfx_bcm_sendmsg+0x10/0x10
[  106.098738][ T7259]  __sock_sendmsg+0x140/0x180
[  106.098795][ T7259]  ____sys_sendmsg+0x312/0x410
[  106.098817][ T7259]  __sys_sendmsg+0x1e9/0x280
[  106.098861][ T7259]  __x64_sys_sendmsg+0x46/0x50
[  106.098951][ T7259]  x64_sys_call+0x26f8/0x2e00
[  106.098976][ T7259]  do_syscall_64+0xc9/0x1c0
[  106.098998][ T7259]  ? clear_bhb_loop+0x55/0xb0
[  106.099091][ T7259]  ? clear_bhb_loop+0x55/0xb0
[  106.099112][ T7259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.099156][ T7259] RIP: 0033:0x7f0c79fe7299
[  106.099171][ T7259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.099192][ T7259] RSP: 002b:00007f0c78c67048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  106.099212][ T7259] RAX: ffffffffffffffda RBX: 00007f0c7a175f80 RCX: 00007f0c79fe7299
[  106.099304][ T7259] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000004
[  106.099315][ T7259] RBP: 00007f0c78c670a0 R08: 0000000000000000 R09: 0000000000000000
[  106.099325][ T7259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.099336][ T7259] R13: 000000000000000b R14: 00007f0c7a175f80 R15: 00007ffc4b9a5938
[  106.099351][ T7259]  </TASK>
[  106.142740][ T4379] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.307789][ T7269] FAULT_INJECTION: forcing a failure.
[  106.307789][ T7269] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.347259][ T7269] CPU: 1 UID: 0 PID: 7269 Comm: syz.1.1130 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  106.347281][ T7269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  106.347291][ T7269] Call Trace:
[  106.347299][ T7269]  <TASK>
[  106.347306][ T7269]  dump_stack_lvl+0xf2/0x150
[  106.347345][ T7269]  dump_stack+0x15/0x20
[  106.347406][ T7269]  should_fail_ex+0x229/0x230
[  106.347438][ T7269]  should_fail+0xb/0x10
[  106.347465][ T7269]  should_fail_usercopy+0x1a/0x20
[  106.347493][ T7269]  _copy_from_user+0x1e/0xd0
[  106.347540][ T7269]  kstrtouint_from_user+0x76/0xe0
[  106.347568][ T7269]  proc_fail_nth_write+0x4f/0x160
[  106.347595][ T7269]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  106.347620][ T7269]  vfs_write+0x28b/0x900
[  106.347652][ T7269]  ? __fget_files+0x1da/0x210
[  106.347750][ T7269]  ksys_write+0xeb/0x1b0
[  106.347774][ T7269]  __x64_sys_write+0x42/0x50
[  106.347800][ T7269]  x64_sys_call+0x2a40/0x2e00
[  106.347857][ T7269]  do_syscall_64+0xc9/0x1c0
[  106.347886][ T7269]  ? clear_bhb_loop+0x55/0xb0
[  106.347909][ T7269]  ? clear_bhb_loop+0x55/0xb0
[  106.348007][ T7269]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.348091][ T7269] RIP: 0033:0x7f593ea45e1f
[  106.348106][ T7269] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  106.348134][ T7269] RSP: 002b:00007f593d6c7040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  106.348154][ T7269] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f593ea45e1f
[  106.348167][ T7269] RDX: 0000000000000001 RSI: 00007f593d6c70b0 RDI: 0000000000000003
[  106.348180][ T7269] RBP: 00007f593d6c70a0 R08: 0000000000000000 R09: 0000000000000000
[  106.348191][ T7269] R10: 0000000000000076 R11: 0000000000000293 R12: 0000000000000001
[  106.348202][ T7269] R13: 000000000000000b R14: 00007f593ebd5f80 R15: 00007ffcd4498588
[  106.348216][ T7269]  </TASK>
[  106.375445][ T7271] loop2: detected capacity change from 0 to 256
[  106.403279][ T7271] FAT-fs (loop2): Directory bread(block 64) failed
[  106.598204][ T7271] FAT-fs (loop2): Directory bread(block 65) failed
[  106.598482][ T7275] loop4: detected capacity change from 0 to 256
[  106.604730][ T7271] FAT-fs (loop2): Directory bread(block 66) failed
[  106.618011][ T7275] vfat: Unknown parameter 's'
[  106.624226][ T7271] FAT-fs (loop2): Directory bread(block 67) failed
[  106.627264][ T7275] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1132'.
[  106.630962][ T7271] FAT-fs (loop2): Directory bread(block 68) failed
[  106.655051][ T7271] FAT-fs (loop2): Directory bread(block 69) failed
[  106.661982][ T7271] FAT-fs (loop2): Directory bread(block 70) failed
[  106.668757][ T7271] FAT-fs (loop2): Directory bread(block 71) failed
[  106.675329][ T7271] FAT-fs (loop2): Directory bread(block 72) failed
[  106.682399][ T7271] FAT-fs (loop2): Directory bread(block 73) failed
[  106.794988][ T7290] loop1: detected capacity change from 0 to 1024
[  106.804240][ T7290] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.023955][ T7296] loop3: detected capacity change from 0 to 256
[  107.045586][ T7296] vfat: Unknown parameter 's'
[  107.056284][ T7296] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  107.082649][ T7296] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1139'.
[  107.139540][ T7302] FAULT_INJECTION: forcing a failure.
[  107.139540][ T7302] name failslab, interval 1, probability 0, space 0, times 0
[  107.152379][ T7302] CPU: 0 UID: 0 PID: 7302 Comm: syz.2.1141 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  107.162707][ T7302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  107.172753][ T7302] Call Trace:
[  107.176034][ T7302]  <TASK>
[  107.178958][ T7302]  dump_stack_lvl+0xf2/0x150
[  107.183594][ T7302]  dump_stack+0x15/0x20
[  107.187828][ T7302]  should_fail_ex+0x229/0x230
[  107.192516][ T7302]  ? bpf_test_init+0xc7/0x170
[  107.197250][ T7302]  should_failslab+0x8f/0xb0
[  107.201852][ T7302]  __kmalloc_noprof+0xa5/0x370
[  107.206747][ T7302]  bpf_test_init+0xc7/0x170
[  107.211243][ T7302]  bpf_prog_test_run_xdp+0x321/0x890
[  107.216526][ T7302]  ? __fget_files+0x1da/0x210
[  107.221204][ T7302]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  107.227006][ T7302]  bpf_prog_test_run+0x26d/0x3e0
[  107.232020][ T7302]  __sys_bpf+0x400/0x7a0
[  107.236259][ T7302]  __x64_sys_bpf+0x43/0x50
[  107.240713][ T7302]  x64_sys_call+0x23d5/0x2e00
[  107.245393][ T7302]  do_syscall_64+0xc9/0x1c0
[  107.249903][ T7302]  ? clear_bhb_loop+0x55/0xb0
[  107.254575][ T7302]  ? clear_bhb_loop+0x55/0xb0
[  107.259242][ T7302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.265208][ T7302] RIP: 0033:0x7f0c79fe7299
[  107.269607][ T7302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.289343][ T7302] RSP: 002b:00007f0c78c67048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  107.297742][ T7302] RAX: ffffffffffffffda RBX: 00007f0c7a175f80 RCX: 00007f0c79fe7299
[  107.305723][ T7302] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  107.313699][ T7302] RBP: 00007f0c78c670a0 R08: 0000000000000000 R09: 0000000000000000
[  107.321671][ T7302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  107.329633][ T7302] R13: 000000000000000b R14: 00007f0c7a175f80 R15: 00007ffc4b9a5938
[  107.337592][ T7302]  </TASK>
[  107.346666][ T4007] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.866532][ T7334] FAULT_INJECTION: forcing a failure.
[  107.866532][ T7334] name failslab, interval 1, probability 0, space 0, times 0
[  107.879431][ T7334] CPU: 0 UID: 0 PID: 7334 Comm: syz.0.1152 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  107.889825][ T7334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  107.900006][ T7334] Call Trace:
[  107.903273][ T7334]  <TASK>
[  107.906196][ T7334]  dump_stack_lvl+0xf2/0x150
[  107.910802][ T7334]  dump_stack+0x15/0x20
[  107.914989][ T7334]  should_fail_ex+0x229/0x230
[  107.919690][ T7334]  ? __alloc_skb+0x10b/0x310
[  107.924279][ T7334]  should_failslab+0x8f/0xb0
[  107.928923][ T7334]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  107.934734][ T7334]  __alloc_skb+0x10b/0x310
[  107.939218][ T7334]  netlink_alloc_large_skb+0xad/0xe0
[  107.944534][ T7334]  netlink_sendmsg+0x3b4/0x6e0
[  107.949357][ T7334]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.954663][ T7334]  __sock_sendmsg+0x140/0x180
[  107.959430][ T7334]  ____sys_sendmsg+0x312/0x410
[  107.964253][ T7334]  __sys_sendmsg+0x1e9/0x280
[  107.968902][ T7334]  __x64_sys_sendmsg+0x46/0x50
[  107.973800][ T7334]  x64_sys_call+0x26f8/0x2e00
[  107.978475][ T7334]  do_syscall_64+0xc9/0x1c0
[  107.983063][ T7334]  ? clear_bhb_loop+0x55/0xb0
[  107.987789][ T7334]  ? clear_bhb_loop+0x55/0xb0
[  107.992490][ T7334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  107.998434][ T7334] RIP: 0033:0x7f288bb77299
[  108.002833][ T7334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.022531][ T7334] RSP: 002b:00007f288a7f7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  108.030928][ T7334] RAX: ffffffffffffffda RBX: 00007f288bd05f80 RCX: 00007f288bb77299
[  108.038882][ T7334] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  108.046864][ T7334] RBP: 00007f288a7f70a0 R08: 0000000000000000 R09: 0000000000000000
[  108.054823][ T7334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.062790][ T7334] R13: 000000000000000b R14: 00007f288bd05f80 R15: 00007ffda28ab218
[  108.070768][ T7334]  </TASK>
[  108.167031][ T7349] loop3: detected capacity change from 0 to 1024
[  108.173823][ T7349] ext4: Unknown parameter 'subj_user'
[  108.279118][ T7360] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1161'.
[  108.644701][ T7372] loop2: detected capacity change from 0 to 8192
[  108.934534][ T7387] loop0: detected capacity change from 0 to 512
[  108.996432][ T7387] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.134429][ T7387] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.199277][ T7393] loop1: detected capacity change from 0 to 512
[  109.237410][ T7393] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  109.261420][ T7398] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1175'.
[  109.276613][ T7393] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.321563][ T6063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.324286][ T7403] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1177'.
[  109.347690][ T4007] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  109.401653][ T7415] loop4: detected capacity change from 0 to 512
[  109.425111][ T7415] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  109.431893][ T7418] FAULT_INJECTION: forcing a failure.
[  109.431893][ T7418] name failslab, interval 1, probability 0, space 0, times 0
[  109.446816][ T7418] CPU: 0 UID: 0 PID: 7418 Comm: syz.0.1184 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  109.457148][ T7418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  109.467275][ T7418] Call Trace:
[  109.470537][ T7418]  <TASK>
[  109.473467][ T7418]  dump_stack_lvl+0xf2/0x150
[  109.478048][ T7418]  dump_stack+0x15/0x20
[  109.482229][ T7418]  should_fail_ex+0x229/0x230
[  109.486915][ T7418]  ? __get_vm_area_node+0xf7/0x1b0
[  109.492019][ T7418]  should_failslab+0x8f/0xb0
[  109.496604][ T7418]  __kmalloc_cache_node_noprof+0x50/0x2b0
[  109.502333][ T7418]  ? xas_load+0x3ae/0x3d0
[  109.506659][ T7418]  __get_vm_area_node+0xf7/0x1b0
[  109.511626][ T7418]  __vmalloc_node_range_noprof+0x2eb/0xef0
[  109.517418][ T7418]  ? htable_create+0xee/0x430
[  109.522081][ T7418]  ? memcg_list_lru_alloc+0xd2/0x740
[  109.527357][ T7418]  ? xas_load+0x3ae/0x3d0
[  109.531680][ T7418]  ? pcpu_block_refresh_hint+0x11f/0x180
[  109.537317][ T7418]  ? htable_create+0xee/0x430
[  109.541979][ T7418]  vmalloc_noprof+0x5e/0x70
[  109.546470][ T7418]  ? htable_create+0xee/0x430
[  109.551131][ T7418]  htable_create+0xee/0x430
[  109.555672][ T7418]  hashlimit_mt_check_common+0x597/0x6a0
[  109.561373][ T7418]  hashlimit_mt_check_v1+0x116/0x140
[  109.566734][ T7418]  xt_check_match+0x259/0x4b0
[  109.571401][ T7418]  ? try_module_get+0xae/0x1a0
[  109.576153][ T7418]  ? xt_find_match+0x1c1/0x1e0
[  109.580928][ T7418]  translate_table+0xa99/0xf70
[  109.585691][ T7418]  ? _copy_from_user+0x9a/0xd0
[  109.590487][ T7418]  do_ipt_set_ctl+0x7bd/0x8b0
[  109.595150][ T7418]  ? _raw_spin_unlock_bh+0x36/0x40
[  109.600256][ T7418]  ? lock_sock_nested+0x10f/0x140
[  109.605289][ T7418]  nf_setsockopt+0x195/0x1b0
[  109.609946][ T7418]  ip_setsockopt+0xea/0x100
[  109.614523][ T7418]  udp_setsockopt+0x95/0xb0
[  109.619021][ T7418]  sock_common_setsockopt+0x64/0x80
[  109.624214][ T7418]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  109.630152][ T7418]  __sys_setsockopt+0x1d8/0x250
[  109.635023][ T7418]  __x64_sys_setsockopt+0x66/0x80
[  109.640035][ T7418]  x64_sys_call+0x2a0e/0x2e00
[  109.644706][ T7418]  do_syscall_64+0xc9/0x1c0
[  109.649307][ T7418]  ? clear_bhb_loop+0x55/0xb0
[  109.653972][ T7418]  ? clear_bhb_loop+0x55/0xb0
[  109.658732][ T7418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.664746][ T7418] RIP: 0033:0x7f288bb77299
[  109.669147][ T7418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.688791][ T7418] RSP: 002b:00007f288a7f7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  109.697352][ T7418] RAX: ffffffffffffffda RBX: 00007f288bd05f80 RCX: 00007f288bb77299
[  109.705307][ T7418] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000004
[  109.713319][ T7418] RBP: 00007f288a7f70a0 R08: 0000000000000580 R09: 0000000000000000
[  109.721275][ T7418] R10: 0000000020000580 R11: 0000000000000246 R12: 0000000000000001
[  109.729318][ T7418] R13: 000000000000000b R14: 00007f288bd05f80 R15: 00007ffda28ab218
[  109.737290][ T7418]  </TASK>
[  109.740830][ T7418] syz.0.1184: vmalloc error: size 65736, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz0,mems_allowed=0
[  109.755594][ T7418] CPU: 0 UID: 0 PID: 7418 Comm: syz.0.1184 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  109.765978][ T7418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  109.776019][ T7418] Call Trace:
[  109.779326][ T7418]  <TASK>
[  109.782240][ T7418]  dump_stack_lvl+0xf2/0x150
[  109.786926][ T7418]  dump_stack+0x15/0x20
[  109.791227][ T7418]  warn_alloc+0x145/0x1b0
[  109.795625][ T7418]  ? xas_load+0x3ae/0x3d0
[  109.800006][ T7418]  __vmalloc_node_range_noprof+0x310/0xef0
[  109.805921][ T7418]  ? memcg_list_lru_alloc+0xd2/0x740
[  109.811197][ T7418]  ? xas_load+0x3ae/0x3d0
[  109.815546][ T7418]  ? pcpu_block_refresh_hint+0x11f/0x180
[  109.821193][ T7418]  ? htable_create+0xee/0x430
[  109.826006][ T7418]  vmalloc_noprof+0x5e/0x70
[  109.830496][ T7418]  ? htable_create+0xee/0x430
[  109.835291][ T7418]  htable_create+0xee/0x430
[  109.839787][ T7418]  hashlimit_mt_check_common+0x597/0x6a0
[  109.845440][ T7418]  hashlimit_mt_check_v1+0x116/0x140
[  109.850715][ T7418]  xt_check_match+0x259/0x4b0
[  109.855406][ T7418]  ? try_module_get+0xae/0x1a0
[  109.860251][ T7418]  ? xt_find_match+0x1c1/0x1e0
[  109.865125][ T7418]  translate_table+0xa99/0xf70
[  109.869884][ T7418]  ? _copy_from_user+0x9a/0xd0
[  109.874694][ T7418]  do_ipt_set_ctl+0x7bd/0x8b0
[  109.879417][ T7418]  ? _raw_spin_unlock_bh+0x36/0x40
[  109.884523][ T7418]  ? lock_sock_nested+0x10f/0x140
[  109.889590][ T7418]  nf_setsockopt+0x195/0x1b0
[  109.894179][ T7418]  ip_setsockopt+0xea/0x100
[  109.898720][ T7418]  udp_setsockopt+0x95/0xb0
[  109.903264][ T7418]  sock_common_setsockopt+0x64/0x80
[  109.908506][ T7418]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  109.914399][ T7418]  __sys_setsockopt+0x1d8/0x250
[  109.919238][ T7418]  __x64_sys_setsockopt+0x66/0x80
[  109.924250][ T7418]  x64_sys_call+0x2a0e/0x2e00
[  109.928925][ T7418]  do_syscall_64+0xc9/0x1c0
[  109.933422][ T7418]  ? clear_bhb_loop+0x55/0xb0
[  109.938099][ T7418]  ? clear_bhb_loop+0x55/0xb0
[  109.942823][ T7418]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.948706][ T7418] RIP: 0033:0x7f288bb77299
[  109.953105][ T7418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.972740][ T7418] RSP: 002b:00007f288a7f7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  109.981301][ T7418] RAX: ffffffffffffffda RBX: 00007f288bd05f80 RCX: 00007f288bb77299
[  109.989314][ T7418] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000004
[  109.997375][ T7418] RBP: 00007f288a7f70a0 R08: 0000000000000580 R09: 0000000000000000
[  110.005332][ T7418] R10: 0000000020000580 R11: 0000000000000246 R12: 0000000000000001
[  110.013432][ T7418] R13: 000000000000000b R14: 00007f288bd05f80 R15: 00007ffda28ab218
[  110.021424][ T7418]  </TASK>
[  110.024526][ T7418] Mem-Info:
[  110.027678][ T7418] active_anon:2878 inactive_anon:9 isolated_anon:0
[  110.027678][ T7418]  active_file:20661 inactive_file:2129 isolated_file:0
[  110.027678][ T7418]  unevictable:0 dirty:240 writeback:0
[  110.027678][ T7418]  slab_reclaimable:2745 slab_unreclaimable:14544
[  110.027678][ T7418]  mapped:24880 shmem:342 pagetables:798
[  110.027678][ T7418]  sec_pagetables:0 bounce:0
[  110.027678][ T7418]  kernel_misc_reclaimable:0
[  110.027678][ T7418]  free:1896919 free_pcp:7855 free_cma:0
[  110.049284][ T7415] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  110.072370][ T7418] Node 0 active_anon:11512kB inactive_anon:36kB active_file:82644kB inactive_file:8516kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:99520kB dirty:960kB writeback:0kB shmem:1368kB writeback_tmp:0kB kernel_stack:2976kB pagetables:3192kB sec_pagetables:0kB all_unreclaimable? no
[  110.108811][ T7418] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  110.135849][ T7418] lowmem_reserve[]: 0 2866 7844 0
[  110.140885][ T7418] Node 0 DMA32 free:2950312kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953944kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:100kB free_cma:0kB
[  110.154059][ T7415] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec02c, mo2=0002]
[  110.169460][ T7418] lowmem_reserve[]: 0 0 4978 0
[  110.182264][ T7418] Node 0 Normal free:4621772kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:11512kB inactive_anon:36kB active_file:82644kB inactive_file:8516kB unevictable:0kB writepending:956kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:27572kB local_pcp:25920kB free_cma:0kB
[  110.212652][ T7418] lowmem_reserve[]: 0 0 0 0
[  110.217211][ T7418] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  110.229908][ T7418] Node 0 DMA32: 2*4kB (M) 0*8kB 2*16kB (M) 2*32kB (M) 3*64kB (M) 3*128kB (M) 4*256kB (M) 3*512kB (M) 2*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950312kB
[  110.245802][ T7418] Node 0 Normal: 663*4kB (UME) 647*8kB (UME) 173*16kB (UME) 260*32kB (UME) 525*64kB (UME) 99*128kB (UME) 63*256kB (UME) 42*512kB (UME) 43*1024kB (UME) 41*2048kB (UME) 1072*4096kB (UM) = 4621732kB
[  110.255667][ T7415] System zones: 
[  110.265283][ T7418] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  110.268900][ T7415] 0-2
[  110.278129][ T7418] 23113 total pagecache pages
[  110.278138][ T7418] 10 pages in swap cache
[  110.278144][ T7418] Free swap  = 124188kB
[  110.280700][ T7415] , 18-18
[  110.285343][ T7418] Total swap = 124996kB
[  110.285351][ T7418] 2097051 pages RAM
[  110.289576][ T7415] , 34-34
[  110.293701][ T7418] 0 pages HighMem/MovableOnly
[  110.293708][ T7418] 80173 pages reserved
[  110.296626][ T7415] 
[  110.399752][ T7415] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  110.424015][ T7415] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1182: bg 0: block 408: padding at end of block bitmap is not set
[  110.462960][ T7434] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1189'.
[  110.473922][ T7415] EXT4-fs (loop4): Remounting filesystem read-only
[  110.488199][ T7436] loop2: detected capacity change from 0 to 512
[  110.495064][ T7415] EXT4-fs (loop4): 1 truncate cleaned up
[  110.526914][ T7415] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.541251][ T7415] SELinux: (dev loop4, type ext4) getxattr errno 5
[  110.550036][ T7415] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.564282][ T7436] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.590565][ T7436] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.622791][ T7432] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1188'.
[  110.635193][   T29] kauditd_printk_skb: 120 callbacks suppressed
[  110.635204][   T29] audit: type=1326 audit(1722028198.437:1344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.677181][ T7415] loop4: detected capacity change from 0 to 2048
[  110.683582][   T29] audit: type=1326 audit(1722028198.477:1345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.704232][ T7444] loop0: detected capacity change from 0 to 2048
[  110.706905][   T29] audit: type=1326 audit(1722028198.477:1346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.736617][   T29] audit: type=1326 audit(1722028198.477:1347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.760373][   T29] audit: type=1326 audit(1722028198.477:1348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.783914][   T29] audit: type=1326 audit(1722028198.477:1349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.807918][   T29] audit: type=1326 audit(1722028198.477:1350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.831507][   T29] audit: type=1326 audit(1722028198.477:1351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.854775][   T29] audit: type=1326 audit(1722028198.477:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.878186][   T29] audit: type=1326 audit(1722028198.477:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7410 comm="syz.4.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55556b7299 code=0x7ffc0000
[  110.895664][ T7444] EXT4-fs (loop0): can't mount with commit=116, fs mounted w/o journal
[  110.916078][ T7415]  loop4: p1 < > p4
[  110.921040][ T7415] loop4: p4 size 8388608 extends beyond EOD, truncated
[  110.970763][ T6040] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.029417][ T7450] loop1: detected capacity change from 0 to 8192
[  111.199381][ T7469] loop0: detected capacity change from 0 to 1024
[  111.221458][ T7469] EXT4-fs: Ignoring removed nobh option
[  111.236839][ T7473] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1201'.
[  111.268989][ T7469] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.418996][ T7476] ==================================================================
[  111.427100][ T7476] BUG: KCSAN: data-race in atime_needs_update / inode_update_timestamps
[  111.435425][ T7476] 
[  111.437744][ T7476] write to 0xffff8881046cbc84 of 4 bytes by task 7469 on cpu 1:
[  111.445369][ T7476]  inode_update_timestamps+0x166/0x280
[  111.450834][ T7476]  file_modified_flags+0x2a1/0x340
[  111.455963][ T7476]  file_modified+0x17/0x20
[  111.460381][ T7476]  ext4_buffered_write_iter+0x1d8/0x380
[  111.465933][ T7476]  ext4_file_write_iter+0x29f/0xe30
[  111.471149][ T7476]  iter_file_splice_write+0x5e6/0x970
[  111.476536][ T7476]  direct_splice_actor+0x16c/0x2c0
[  111.481653][ T7476]  splice_direct_to_actor+0x305/0x670
[  111.487033][ T7476]  do_splice_direct+0xd7/0x150
[  111.491796][ T7476]  do_sendfile+0x3ab/0x950
[  111.496215][ T7476]  __x64_sys_sendfile64+0x110/0x150
[  111.501417][ T7476]  x64_sys_call+0xfc3/0x2e00
[  111.506013][ T7476]  do_syscall_64+0xc9/0x1c0
[  111.510527][ T7476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.516426][ T7476] 
[  111.518735][ T7476] read to 0xffff8881046cbc84 of 4 bytes by task 7476 on cpu 0:
[  111.526276][ T7476]  atime_needs_update+0x2aa/0x3e0
[  111.531309][ T7476]  touch_atime+0x4a/0x350
[  111.535640][ T7476]  filemap_splice_read+0x8b0/0x920
[  111.540751][ T7476]  ext4_file_splice_read+0x95/0xc0
[  111.545861][ T7476]  splice_direct_to_actor+0x26c/0x670
[  111.551238][ T7476]  do_splice_direct+0xd7/0x150
[  111.555999][ T7476]  do_sendfile+0x3ab/0x950
[  111.560412][ T7476]  __x64_sys_sendfile64+0x110/0x150
[  111.565699][ T7476]  x64_sys_call+0xfc3/0x2e00
[  111.570295][ T7476]  do_syscall_64+0xc9/0x1c0
[  111.574801][ T7476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.580698][ T7476] 
[  111.583016][ T7476] value changed: 0x0cf0df7d -> 0x0d8975fd
[  111.588724][ T7476] 
[  111.591035][ T7476] Reported by Kernel Concurrency Sanitizer on:
[  111.597175][ T7476] CPU: 0 UID: 0 PID: 7476 Comm: syz.0.1200 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0
[  111.607513][ T7476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  111.617558][ T7476] ==================================================================
[  111.720401][ T6063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.