last executing test programs:

4.347835054s ago: executing program 4 (id=666):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(0x0, 0x0)
add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x8847, &(0x7f0000000140)=[{&(0x7f0000000180)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe55a10a0007000140020203600e4109000800ac00060311000000160012000a00f6000000035c3b61c1d67f6f94007134cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000000008af26c8b7b55f4d2a6823a45f28fcb1d", 0xd8}], 0x1}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000001140)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in=@local, @in6=@mcast1}, {@in=@remote, 0x0, 0x33}, @in6=@mcast1, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x13c}}, 0x0)

4.108242824s ago: executing program 4 (id=669):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f00000000c0)=0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
ioctl$TCSETS(r0, 0x5420, &(0x7f0000000000)={0x8100000, 0x0, 0x0, 0x0, 0x0, "9e4d2236078f0080000004ff98023dffffffff"})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
bind$bt_sco(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
socket$kcm(0x29, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)

4.097358825s ago: executing program 4 (id=672):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x42}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r0, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000001b40), 0x0, 0x0, 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x47, 0x0}}, 0x10)

4.058349948s ago: executing program 0 (id=673):
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f00000005c0)={0x48, r0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_DEVKEY={0x28, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x18, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}]}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x48}}, 0x0)

4.015813461s ago: executing program 0 (id=675):
openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="b80000001900010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)=ANY=[@ANYBLOB="b80000001400010000000000000000000000000000000000b98ce2a25e6b7a33b50000000000000000000000000000040002de4bb2c1d47001f789d42775d61723396e85564780d2002eddd8b3e2740eabda573688665b751afd1ac9a345ede3f6f796159b00aad8a2b3a84700"/123], 0xb8}}, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x41, &(0x7f0000000000)=0x2ff, 0x4)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x56000000, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)

3.884197972s ago: executing program 0 (id=676):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000240)=ANY=[], 0x0}, 0x90)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000c00000095"], &(0x7f0000000240)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='netlink_extack\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000002240)={'veth1_to_batadv\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="400000001400010000000000000000000a000000", @ANYRES32=r5, @ANYBLOB="140001"], 0x40}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000003040)={@val={0x8, 0x800}, @val={0x1}, @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0xfc0, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr, @multicast2=0xe0000001}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@exp_fastopen={0xfe, 0x4}]}}, {"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"}}}}, 0xfce)

3.690632988s ago: executing program 0 (id=680):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000400), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=ANY=[@ANYBLOB='d\x00\n\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000010000000800020001000000080001"], 0x64}}, 0x0)

3.674733569s ago: executing program 0 (id=681):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)=@ceph_nfs_fh={0x8, 0x1, {0x600000000000000}}, 0x0, 0x200)

3.606922425s ago: executing program 0 (id=682):
socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
ptrace(0x10, 0x1)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x48, &(0x7f00000003c0)=[@in6={0xa, 0x4e24, 0x0, @private1}, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e24, 0x0, @remote, 0x5}]}, &(0x7f0000000180)=0x10)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000380)={0x0, <r2=>0x0})
ptrace$getenv(0xc, r2, 0x0, &(0x7f0000000000))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f00000016c0)={0xa, 0x4e23, 0x0, @remote}, 0x1c)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r6 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x48080)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x2010400, &(0x7f0000000400), 0x1, 0x4b9, &(0x7f0000000480)="$eJzs3M9rHFUcAPDvTH606Q8Ta/3RWnW1ikExaVN/9ODBioIXQdBDBS8xSUvttpUmgi0Bo0h7lII3D+JNwb/Ak15EvSgoeNG7FER6sXpa2Z2ZZHe7u83vrdnPB3b3vZ238953Zt5k5r3NBtCzStWnJGJXRPwWEcNZtrFAKXu5fm1+6p9r81NJVCqv/pXUyv19bX6qKFp8bmeeGU0j0g+TYkF//WpnL1w8PVkuz5zP8+NzZ94en71w8YlTZyZPzpycOTtx9OiTRw4/8/TEU2uM8Nfa83CeO7DvpdevvDx1/Mqb3395eXcWdzTFsXppQ64UpcZtWeeRtVd2S9ldl076u9gQVqQv75gDtf4/HH113XQ4Xvyg44e3b0IDgQ1TqVQq29ovXqhkYnsF2HqSyF/7I7rdFmAzFX/oq/e/xWOTLj1uCX8ey26AqnFfzx/Zkv7Fu/mBpvvb9VSKiOML/35afUTzOMTgBlUKAPS0r49FLOTpxuu/NO6qK3dbPocyEhG3R8SeiLgjIvZGxJ1DUSt7d0Tcs8L6S035vphvGlVOr644qBWoXv89m89tNV7/5Vd/gzHSl+d2Z0PlyYlT5ZlD+TYZjYFSNX84K9003VObCYtvXvj5o3b111//VR/V+mvXgkNFifRqf9MA3fTk3OS6xf9+xP7+VvEnizMB1aD2RcT+Vit47uZ1nHrsiwPtlrWNfznWYZ6p8lnEo9n+X4g8/uyye2lXJp3nJ8e3R3nm0HhxVNzoh58uvdKu/jXFvw6q+39Hy+O/iH+kllqcr53N3h1aQR2Xfr88VVvfwo3Lbh5/6+N/MHmtlh6se642tmhX8c67k3Nz5yeWPlvka6+Hs/hHD7bu/3tiaUvcGxHVg/i+iLg/Ih7I2/5gRDwUEQc7xP/d8w+/VZe9YXr9eBJd3f/T2f7f1nr/x0jj/l95ou/0t1+1qz+bIe+4/395I0+N5q/LOP+VyjPni7NDxwaucrMBAADA/0oaEbsiSccW02k6NpaNXO6NHWn53Ozc4yfOvXN2Ovuu/EgMpMVIVzYePJAU458jdfmJpvyRfNz4476hWn5s6lx5utvBQ4/b2ab/V/3R1+3WARvO/2tB79L/oXfp/9C7+uOTTt9fArao925eZGAz2gF0RdrqzWWcF4AtwP0/9C79H3qX/g+9q3P/9y1A2KJmK6v/v/5yMXDYZlHjO8lSmeJHGlZVaWMibb2oOGetYc2rTnye/1bgpla6jERlfVcYadtFQ81bPul27EuJyvILp+tziK53oji2O5T5cQ1VVPLEZp+JAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANsZ/AQAA///EtcDm")
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1807000000000000000001000000000000000000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff64, 0x0, r5, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.696084832s ago: executing program 1 (id=704):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x8049, &(0x7f00000041c0)={[{@jqfmt_vfsold}, {@data_err_ignore}, {@acl}, {@noload}, {@noinit_itable}, {@usrjquota, 0x22}, {@acl}, {@nomblk_io_submit}, {@noblock_validity}]}, 0xfe, 0x44e, &(0x7f0000000900)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001c40)=ANY=[@ANYBLOB="140000004a00010200800000000000000a0000"], 0x14}}, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
r4 = socket$kcm(0x10, 0x400000002, 0x0)
recvmsg$kcm(r4, &(0x7f0000006480)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000180)=""/246, 0xf6}, {&(0x7f00000014c0)=""/4096, 0x1000}, {&(0x7f0000006280)=""/108, 0x6c}, {&(0x7f00000008c0)=""/200, 0xc8}, {&(0x7f00000024c0)=""/4096, 0x1000}, {&(0x7f0000000a00)=""/97, 0x61}, {&(0x7f0000000b80)=""/80, 0x50}, {&(0x7f0000000c00)=""/40, 0x28}, {&(0x7f0000000400)=""/9, 0x9}], 0x9}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000e40)={0x18, 0x18, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x7}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @generic={0x40, 0xa, 0x2, 0x101, 0xfffffff7}, @map_val={0x18, 0x8, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x8}]}, &(0x7f0000000500)='GPL\x00', 0x3ff, 0x4f, &(0x7f0000000800)=""/79, 0x40f00, 0x0, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f0000000880)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000d80)={0x4, 0x10, 0x9a6c, 0x5}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000dc0)=[r3, r3], &(0x7f0000000e00)=[{0x4, 0x1, 0xf, 0x9}, {0x4, 0x1, 0x9, 0x4}, {0x1, 0x1, 0x3, 0xc}, {0x5, 0x1, 0x6, 0xa}], 0x10, 0x8}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000f00)='fsi_master_acf_cmd_rel_addr\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
close(r6)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x61}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r6, 0x0, 0xe, 0x300, &(0x7f00000002c0)="f57b0bb7994307a7ac95a7c71016", 0x0, 0x0, 0x0, 0x0, 0x38, 0x0, &(0x7f0000000180)="b8"}, 0x3a)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/msg\x00', 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
unshare(0x6020400)
bind$phonet(r1, &(0x7f0000000f40)={0x23, 0x7, 0xdc, 0xc}, 0x10)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
write$UHID_INPUT(r3, &(0x7f0000002080)={0xc, {"a2e3ad214fc752f91b2538f70e06d038e7ff7fc6e5539b3250078b089b3908386d090890e0878f0e1ac6e7049b3367959b619a240d5b67f3988f7e0319520100ffe8d178708c523c921b1b5b31330d095d0936cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4040d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a4d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d606495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07840900000000000000f5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c000003716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f22b625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a605fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b611fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47afed367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006)

1.273030676s ago: executing program 3 (id=714):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00')
preadv(r0, &(0x7f0000000b00)=[{&(0x7f0000000900)=""/243, 0x16a}, {&(0x7f0000000100)=""/31, 0x77}, {&(0x7f0000000200)=""/68, 0x44}, {&(0x7f0000000400)=""/20, 0x14}], 0x4, 0x0, 0x0)

1.22997092s ago: executing program 3 (id=715):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000002880)={[{@user_xattr}, {@nombcache}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7e}}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@jqfmt_vfsold}, {@grpjquota}]}, 0xfe, 0x564, &(0x7f0000002240)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0) (async, rerun: 64)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0) (async, rerun: 64)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x400e, &(0x7f00000002c0)={[{@init_itable}, {@nobh}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@nobarrier}]}, 0x1, 0x42f, &(0x7f0000000940)="$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") (async, rerun: 64)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000009004b64ffec850000007d000000850000002a00000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x90) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
ioctl$SIOCGSTAMPNS(0xffffffffffffffff, 0x8907, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x8401)
ioctl$USBDEVFS_ALLOW_SUSPEND(r3, 0x5522) (async, rerun: 64)
creat(&(0x7f0000000080)='./file0\x00', 0x1de) (rerun: 64)
close(0xffffffffffffffff) (async)
execve(0x0, 0x0, 0xfffffffffffffffd) (async)
ioctl$USBDEVFS_BULK(r3, 0x5523, 0x0) (async, rerun: 32)
ioctl$USBDEVFS_FORBID_SUSPEND(r3, 0x5521) (rerun: 32)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x2, &(0x7f00000003c0)=ANY=[@ANYBLOB="850000008d000000950000000000000032c6abb5506ccd10d38e3e097f4921126ce7815caaf0227cd61982f6979cc94fc15ccbf084a5de297445049adb2e5cf6a4efcc52f1e0fe27"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x80) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='damon_aggregated\x00', r2}, 0x10)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x5422, 0x0) (async)
setxattr$trusted_overlay_upper(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), &(0x7f0000000540)={0x0, 0xfb, 0x19, 0x1, 0x6, "5f5b756edbb5da9180f2dc85a5147ea0", "5cd9514e"}, 0x19, 0x3) (async)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x0, &(0x7f00000001c0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x20, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x2008006, &(0x7f0000000440), 0x9, 0x55f, &(0x7f0000001540)="$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")
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f00000000c0)=[{0x1, 0x0, 0x0, 0x9}, {0x64}, {0x6}]})

1.131983368s ago: executing program 3 (id=718):
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
vmsplice(r0, &(0x7f00000013c0)=[{&(0x7f0000000400)="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", 0xfb}], 0x1, 0x0)
ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000240))
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x6c, 0x3}, {0x6, 0x0, 0x0, 0x934}]}, 0x10)
r2 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r2, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x30004081)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r3, 0x8905, &(0x7f0000000400))
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, &(0x7f00000002c0)=<r5=>0x0, &(0x7f0000000380)=0x4)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@ifindex=<r6=>r5, 0x1f, 0x0, 0xe, &(0x7f0000000080)=[0x0, 0x0, 0x0], 0x3, 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0], <r7=>0x0}, 0x40)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000200)={@cgroup=r0, r4, 0x36, 0x18, 0x0, @link_id, r7}, 0x20)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r8, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
sendfile(r0, r0, &(0x7f00000001c0)=0x100, 0x100000001)
r9 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r9, 0x1, 0x11, &(0x7f0000caaffb)={<r10=>0x0, <r11=>0x0, <r12=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r11)
r13 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r14=>0x0}, 0x800)
setresuid(0x0, r14, 0x0)
shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000580)={{0x0, r14, r12, r11, r12, 0x1, 0xda22}, 0xfffffffe, 0x7035fe74, 0x9, 0x7, r10, r13, 0x8000})
move_pages(r13, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r8, 0x11a, 0x1, &(0x7f0000000000)=@gcm_256={{0x303}, "41328ac34a4ad2ba", "e8582491a0c4050000000000f6542a9b6800000000000000003967d2daa45b4e", "61241765", "89b06aff130000fd"}, 0x38)
sendmsg$inet(r8, &(0x7f00000003c0)={0x0, 0x12, 0x0, 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="00000000000000010000006600000000000000000000000000000000000000020000001d1a000061da26ea968380c652184600000000000000000000000000000000010000000400000000000000000000000000000000000000020000000300"/112, @ANYRES32=r6, @ANYBLOB="ac14142de0000002000000000000000000000000000000000200000002000000000000000000000000000000000000000700000094000a8aa5785ac165222955cdede647"], 0x30}, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000300)={[{@jqfmt_vfsv1}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@nombcache}, {@sysvgroups}], [{@smackfsroot={'smackfsroot', 0x3d, 'nombcache'}}, {@subj_role={'subj_role', 0x3d, ',{'}}, {@obj_role={'obj_role', 0x3d, 'sysvgroups'}}]}, 0x1, 0x55a, &(0x7f00000021c0)="$eJzs3c9vG1kdAPDvTH622920sAdYAS2wUFBVu3F3q1Uv215AaLUSAnFAHLohcaNQuy61s9qESmT/BjhwhT+BAxIHpD1x4MYRiQNCWg5IBSpQiwSS0YzHiTe1W2/t2DT+fKSp5703M9/3mozfy3MyL4CZdS4i9iJiMSLeiYiVIj8ptrjW2bLjHj64t/7owb31JNrtb/89ycuzvOg5J/NCcc3liPjW1yO+nzwet7mze2utVqveLdLlVv1Oubmze3GrvrZZ3azerlSurF659Mbl1ytja+vZ+i/vf23rre/85tef/fD3e1/9UVatU0VZbzvGqdP0hf04mfmIeOsogk3BXPG6OOV68GzSiPhERHwhv/9XYi7/7gQAjrN2eyXaK71pAOC4S/M5sCQtRUSaFoOAUmcO7+U4mdYazdaFm43t2xudubLTsZDe3KpVL51Z+uMP84MXkiy9mpfl5Xm6cih9OSLORMRPl07k6dJ6o7YxnSEPAMy8F3r7/4j411KalkpDndrnUz0A4LmxPO0KAAATp/8HgNnzLP2/MQMAPN+G6MuLD/v3jrwuAMBk+FkeAGaP/h8AZo/+HwBmyjfffjvb2o+K519vvLuzfavx7sWNavNWqb69Xlpv3L1T2mw0NvNn9tSfdr1ao3Fn9bXYfq/cqjZb5ebO7o16Y/t260b+XO8b1YWJtAoAeJIzZz/4QxIRe1dPxN7VpTyvu5aDvhqOt3TaFQCmZm6Ukw0Q4LlmtS+YXUN14fkg4XdHXhdgOvo+zHu57+5H/exjBPF7RvB/5fyne+f/T+R5g+b/rfEMx4v5f5hdzzb//+bY6wFMnvl/mF3tdnJ4zf/F/aLCtcMZAMBzbYRf4Wv/eBwDEGDqnraY91g+/wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBj5lRE/CCStJSvBZ5m/6alUsSLEXE6FpKbW7XqpYh4Kc5GxMJSll6ddqUBgBGlf02K9b/Or7x66nDpYvLvpex1rki/t9Zq3V3N8v+R5y9GxFJ3+bDKwXkjrCsIAIxZ3n9XDvrxrocP7q13t0nW5/71+G+xFPH6owf38q1TMh9ZZsRyPpY4+c8k5otzliPilZ4xySj23o+IT/Vrf5LPjZw+0Vn5tDd+FLFfnET86MZPPxI/zcs6r9ng65NjqAvMmg+uR8S1fvdfGufy1/73/3L+DjW6+9c7F+u+9z3qiT9fRJrrEz+7588NG+O1337jscz2Sqfs/YhX5vvFT/bjJwPivzpk/D995nM/eXNAWfvnEeejf/zeWOVW/U65ubN7cau+tlndrN6uVK6sXrn0xuXXK+V8jrrcnal+3N+uXnhpUN2y9p8cEH+5b/sX98/90pDt/8V/3vne5w+SS4fjf+WL/b/+L/eN35H1iV8eMv7ayV8NXL47i78xoP1P+/pfGDL+h3/Z3RjyUABgApo7u7fWarXq3ZF2sp9Cx3Gdx3ayKhY5WYwnHNwdLo4W9M9PCvFxdxYPKv9M11k4qv/VI9+Z3x8rjvfK382uOOHmpGNvxUg7DycVa3rvScBkHNz0064JAAAAAAAAAAAAAAAwyBB/xDbynxNNu40AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcX/8LAAD//7xHvu8=")

1.064120804s ago: executing program 2 (id=719):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
pipe2$9p(0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000002800)={0xa, 0x4e1f, 0x0, @empty}, 0x1c)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
write$binfmt_aout(r1, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0000fa00ea8000"})
r2 = syz_open_pts(r1, 0x0)
r3 = dup3(r2, r1, 0x0)
ioctl$TIOCSETD(r3, 0x541b, &(0x7f0000000ec0))
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000700)=@raw={'raw\x00', 0x8, 0x3, 0x650, 0x0, 0xa, 0x148, 0x368, 0x10, 0x5b8, 0x2a8, 0x2a8, 0x5b8, 0x2a8, 0x3, 0x0, {[{{@ip={@multicast2=0xe000000b, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x2f8, 0x368, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x7a, 0x8000000, 0x0, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x64, './file0\x00'}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @broadcast, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x1f0, 0x250, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth1_to_bond\x00'}}, @inet=@rpfilter={{0x28}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x6b0)

1.063547494s ago: executing program 3 (id=720):
r0 = perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000280)={[{@user_xattr}]}, 0x9, 0x537, &(0x7f0000000fc0)="$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")
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x89901)
move_mount(r3, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x1000, 0x0)
mount$bind(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x10a5840, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f0000000380)='./file0/file0\x00', r3, &(0x7f00000000c0)='./file0/file0\x00', 0x8cffffff)

982.00075ms ago: executing program 3 (id=721):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f}, 0x48) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff}) (async, rerun: 64)
perf_event_open$cgroup(&(0x7f0000000080)={0x0, 0x41, 0x9b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xa, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x2, 0x8, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000680)=ANY=[@ANYBLOB="9feb01001800000000000000240000002400000005000000030000000000000800000000000000000000000203000000000000000000000d020000000000002e"], 0x0, 0x41}, 0x20) (async, rerun: 64)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r2}, 0x4) (rerun: 64)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000640)={{r0}, &(0x7f0000000600), &(0x7f0000000240)='%pK    \x00'}, 0x20) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async, rerun: 32)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='ata_bmdma_status\x00', r5}, 0x10)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 64)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x403}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff}) (async, rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='pstate_sample\x00', r5}, 0x10) (async, rerun: 64)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) (async)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r7, &(0x7f00000003c0)=0x8e, 0x12) (async, rerun: 64)
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async, rerun: 64)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f00000004c0)={'veth0_vlan\x00'}) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0xd, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffffffff}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}, @generic={0x79, 0x0, 0x0, 0x83}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, @exit, @alu={0x6, 0x0, 0xa, 0xa}, @printk={@x}], {0x95, 0x0, 0x30}}, &(0x7f0000000000)='GPL\x00', 0x4, 0xde, &(0x7f0000000340)=""/222}, 0x90)

821.080363ms ago: executing program 1 (id=722):
r0 = fsopen(&(0x7f00000002c0)='rpc_pipefs\x00', 0x0)
getpid()
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB, @ANYBLOB="01"], 0x50}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140), 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = socket$unix(0x1, 0x5, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r3 = dup2(r2, r1)
close_range(r3, 0xffffffffffffffff, 0x2000000)

512.324409ms ago: executing program 1 (id=723):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="032786dd0501100ee1fdf00000006000000601002f0081e949b93897bc3b0000000000007d01ff020000000000000000000000000001"], 0xfdef)

511.895249ms ago: executing program 3 (id=724):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc}, @NFTA_LIMIT_UNIT={0xc}]}}}, {0x14, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xe0}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0)

496.61447ms ago: executing program 4 (id=674):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r2=>0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x93}, 0xe)
syz_io_uring_setup(0x3154, &(0x7f00000003c0), &(0x7f00000002c0)=<r3=>0x0, &(0x7f0000000140))
r4 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000080)={0x0, 0x1, 0x5, 0x1a, 0x17a, &(0x7f0000000440)="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"})
r5 = syz_io_uring_setup(0x52ba, &(0x7f0000000380), &(0x7f0000000340), &(0x7f0000000280))
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0x11, 0x2000ac0a, r6)
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}})
io_uring_enter(r1, 0x48e9, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
shutdown(r0, 0x1)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r7, &(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10)

466.306612ms ago: executing program 1 (id=726):
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f00000005c0)={0x3c, r0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_DEVKEY={0x1c, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x3c}}, 0x0)

453.283604ms ago: executing program 1 (id=727):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000300)='asymmetric\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x3030400, &(0x7f0000000400), 0x1, 0x4b9, &(0x7f0000000480)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x9)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r1 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000340)='cpuacct.usage_percpu\x00', 0x26e1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000300)=0x4)
sendmsg$nl_route(r2, &(0x7f0000000680)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000500)=@mpls_getroute={0x140, 0x1a, 0x1, 0x70bd29, 0x25dfdbfb, {0x1c, 0x0, 0x0, 0x4, 0xfd, 0x1, 0xfd, 0x2, 0xa00}, [@RTA_MULTIPATH={0xc, 0x9, {0x6f8, 0x0, 0xf7, r3}}, @RTA_NEWDST={0x84, 0x13, [{0x6, 0x0, 0x1}, {0xfff}, {0x8, 0x0, 0x1}, {}, {0x5d6f, 0x0, 0x1}, {0x3ff}, {0x80000}, {0x67f93, 0x0, 0x1}, {0x8001}, {0x7}, {0x81, 0x0, 0x1}, {0x9}, {0x4}, {0x3}, {0x80}, {0x9, 0x0, 0x1}, {0x5}, {0x9, 0x0, 0x1}, {0x0, 0x0, 0x1}, {0x9, 0x0, 0x1}, {}, {0x0, 0x0, 0x1}, {0x1, 0x0, 0x1}, {0x1}, {0x6, 0x0, 0x1}, {0x9, 0x0, 0x1}, {0x3ff}, {0x3, 0x0, 0x1}, {0x8}, {0x6}, {0x9d3}, {0xad9, 0x0, 0x1}]}, @RTA_NEWDST={0x84, 0x13, [{0x6, 0x0, 0x1}, {0x1, 0x0, 0x1}, {0x9}, {0xbd, 0x0, 0x1}, {0x4, 0x0, 0x1}, {0x2}, {0x400}, {0x3f}, {0x0, 0x0, 0x1}, {0x3f}, {0x4, 0x0, 0x1}, {0x20, 0x0, 0x1}, {0x4, 0x0, 0x1}, {0x7f, 0x0, 0x1}, {0xfffff}, {0x9b}, {}, {}, {0x0, 0x0, 0x1}, {0x1000, 0x0, 0x1}, {0x4}, {0x7, 0x0, 0x1}, {0x5}, {0x2, 0x0, 0x1}, {0x7f}, {0x200}, {0x4}, {0x3}, {0xe36}, {0xffde1, 0x0, 0x1}, {0x0, 0x0, 0x1}, {0x400}]}, @RTA_OIF={0x8}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x4}]}, 0x140}, 0x1, 0x0, 0x0, 0x10}, 0x24040090)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
fsetxattr$security_selinux(r0, &(0x7f0000000000), &(0x7f0000000200)='system_u:object_r:mnt_t:s0\x00', 0x1b, 0x2)
flock(r4, 0x5)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0)
flock(r5, 0x5)
r6 = syz_open_procfs(0x0, &(0x7f0000000280)='fdinfo/4\x00')
preadv(r6, &(0x7f0000001600)=[{&(0x7f0000000040)=""/35, 0x2b}], 0x1, 0x0, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
write$sndseq(r7, 0x0, 0x0)
poll(&(0x7f00000001c0)=[{r7}], 0x1, 0x100)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r7, 0x40087602, &(0x7f0000000140)={0x80, 0x1})

364.157081ms ago: executing program 4 (id=728):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$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")
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x2ddd, &(0x7f00000006c0)={0x0, 0x0, 0x2}, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
creat(&(0x7f00000001c0)='./bus\x00', 0x0)
truncate(&(0x7f0000000340)='./file2\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x200000, &(0x7f0000000200)={[], [{@flag='sync'}]}, 0x1, 0x544, &(0x7f0000000540)="$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")
socket$inet(0x2, 0x0, 0x0)
r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000003200)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x3d)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x0)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_script(0xffffffffffffffff, 0x0, 0xb)
splice(r3, 0x0, r2, 0x0, 0x1000, 0x0)
write$binfmt_misc(r4, &(0x7f00000000c0)=ANY=[], 0xfdef)
splice(0xffffffffffffffff, 0x0, r4, 0x0, 0x80, 0x0)

236.676501ms ago: executing program 2 (id=729):
syz_clone3(&(0x7f0000003540)={0x80, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000003500)=[0x0], 0x1}, 0x58) (fail_nth: 100)

220.555983ms ago: executing program 2 (id=730):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="24000000021401000000000000000000080001000000fcff0800020073797a30"], 0x24}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xc, 0x13, &(0x7f0000000680)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'wlan0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8943, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x4, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="b4080000f8d9000073110b00000000008510000002000000b7000000000000009500c2000000000095000012000000004a3ee7553c243963fde38abe5a2e71017ef592f4dcc5125321c4d0d86023f1d089f534a774ebce041517fb99d6"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r2, 0xfca804a0, 0x7, 0x8, &(0x7f00000002c0)="b8000005000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r4)
perf_event_open(0x0, 0x0, 0x6, 0xffffffffffffffff, 0x9)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
r5 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0x6, 0x118, 0x7, 0x7f, 0x80}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000740)=ANY=[@ANYBLOB="006f3dc5c9d518f300000000000000000000000000001812fe90", @ANYRES32=r5, @ANYBLOB="0000000000000000850000000c0000009500000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x80)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000780)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xb4, 0xb4, 0x3, [@struct={0x8, 0x7, 0x0, 0x4, 0x1, 0x603, [{0xa, 0x1, 0x80000000}, {0x7, 0x5, 0x5e}, {0xc, 0x1, 0x800}, {0x3, 0x3, 0x4}, {0x7, 0x3, 0x6}, {0x1, 0x4, 0x7}, {0x10, 0x3, 0x10000}]}, @fwd={0x9}, @restrict={0x8, 0x0, 0x0, 0xb, 0x1}, @func={0x2, 0x0, 0x0, 0xc, 0x3}, @struct={0xb, 0x2, 0x0, 0x4, 0x0, 0x1f, [{0xb, 0x3, 0x608d}, {0x10, 0x5, 0x2f1e}]}, @restrict={0x6, 0x0, 0x0, 0xb, 0x1}]}, {0x0, [0x2e]}}, &(0x7f0000000240)=""/10, 0xcf, 0xa, 0x1, 0xffffff75}, 0x20)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x13, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r6}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000640)={r7, 0x58, &(0x7f00000005c0)}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000900)={'bridge0\x00', @random='\x00\x00\x00 \x00'})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000900)={'bridge0\x00', @broadcast})
socket$nl_generic(0x10, 0x3, 0x10)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r10, 0x7, &(0x7f00000006c0))
ioctl$TCSETSW(r10, 0x5403, &(0x7f00000000c0)={0x17, 0x0, 0x4, 0x0, 0xa, "a5ed82b3c7aa4a4d33bd7649060349f733f5e9"})
r11 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_GET(r10, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f00000001c0)={&(0x7f0000000f40)=ANY=[@ANYBLOB="fc0000d23a8e6fb57981ec48431603bea621ca45f950864fc99edef3a048040023c13e1d6749d8e8a50ee94ea85fd70c3f56952726c02eb6cb9fe98653da96db402b7bd777dd74ef8fcb1314cc7782a8f1278f192ee36935287eeff2736bbe71dc64efe0b6661a8e3127e349684774472d962a90ea5382e82ee8ad1fce601957e09d97cf4f00e3916af3fe4b90cc7651f2fb214d86e21a1ac3a63578d7c3f97b6d77a5c1c14c1aab4fddd9798162ba597627e3a0b0a0cb76d19c5fdce91619d1b8f7", @ANYRES16=r11, @ANYBLOB="100025bd7000ffdbdf250b000000080001007063690011000200303030303a30303a31302e300000000008000b00080000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000b00000000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000b0000000020080001007063690011000200303030303a30303a31302e300000000008000b00080000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000b00020000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000b0000000000"], 0xfc}, 0x1, 0x0, 0x0, 0x40014}, 0x4)

195.737624ms ago: executing program 4 (id=731):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x413, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x7fff8}, @IFLA_GROUP={0x8}]}, 0x44}}, 0x0)

93.185963ms ago: executing program 1 (id=732):
ioperm(0x0, 0xab50, 0x8)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x6, 0x0)
setsockopt$inet_int(r1, 0x0, 0x17, &(0x7f0000000340)=0xfffffffc, 0x4)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000080)=0x8, 0x4)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000000000)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b904021d080211000000040000a118000200e002000100000e1208000f0100810401a80016ea1f000440032e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$unix(0x1, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r6=>0x0})
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r7, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r7, &(0x7f0000000200)={&(0x7f0000000340)={0x1d, r6, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r5, @ANYBLOB="3bf81bb9f9"], 0x20000600}}, 0x0)
sendmsg$can_bcm(r7, &(0x7f0000000080)={&(0x7f0000000340)={0x1d, r4, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000080)={'wpan1\x00'})
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = socket$rxrpc(0x21, 0x2, 0xa)
setsockopt$RXRPC_SECURITY_KEY(r8, 0x110, 0x1, &(0x7f00000001c0)='.\x00', 0x2)
r9 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r9, 0x29, 0x1000000000021, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000200)={0xa, 0x0, 0x8, @remote}, 0x1c, 0x0, 0x0, &(0x7f00000005c0)=ANY=[], 0xf}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
getpid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
timerfd_create(0x8, 0x800)

62.321945ms ago: executing program 2 (id=733):
socket$inet_icmp_raw(0x2, 0x3, 0x1) (async, rerun: 32)
r0 = syz_open_procfs(0x0, 0x0) (async, rerun: 32)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x0, 0x0) (async)
io_uring_setup(0xfc2, &(0x7f0000000180)) (async, rerun: 64)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) (async, rerun: 64)
ioctl$EVIOCGPROP(0xffffffffffffffff, 0x40047438, 0x0) (async)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
socket$key(0xf, 0x3, 0x2)
r2 = socket$inet_udp(0x2, 0x2, 0x0) (async)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0207a20802"], 0x10}}, 0x0) (async)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async, rerun: 32)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) (async, rerun: 32)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000380)={{{@in=@multicast2, @in=@local, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {}, {}, 0x9, 0x0, 0x1}, {{@in, 0x0, 0x32}, 0x0, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x3, 0x0, 0xb7, 0xae, 0xffffffff}}, 0xe8) (async, rerun: 32)
sendmmsg(r2, &(0x7f0000000180), 0x400000000000077, 0x0) (async, rerun: 32)
quotactl$Q_SETQUOTA(0x0, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r4 = socket(0x2000000000000021, 0x2, 0x10000000000002) (async)
r5 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000140)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000021001000001000000dc00000000000000"], 0x18}, 0x0) (async)
connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x2, 0x2, 0x10}, 0x24)
sendmmsg(r4, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01c223141689b300f4ff00220000687189874fca5aaa51be1ab5fc7334ef93872fde52b01324542fc406bc36bb67bee0c1b386e1cef2c6c0332c55b4bd42181a487b000000000000"], 0x18}}], 0x1, 0x0) (async)
sendmmsg(r4, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000400000000001001000001000000fdffffff00000000"], 0x18, 0x7000000}, 0xf401}], 0x1, 0x0) (async, rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (rerun: 64)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
socket$nl_rdma(0x10, 0x3, 0x14) (async)
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB], 0x18}}, 0x0)
fcntl$lock(r1, 0x26, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xfffffffffffffffd}) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) (async, rerun: 32)
getpgrp(0x0) (rerun: 32)

56.251226ms ago: executing program 2 (id=734):
unshare(0x24020400)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000480)="fb", 0x1}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="c0"], 0xc0}, 0x1)
recvmmsg(r0, &(0x7f0000000340)=[{{0x0, 0x0, 0x0}, 0xc00}], 0x1, 0x3, 0x0)

0s ago: executing program 2 (id=735):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000680)={[{@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@init_itable_val={'init_itable', 0x3d, 0x2}}, {@jqfmt_vfsold}, {@usrquota}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x0, 0x9, 0x4, 0x0, 0x0, 0x9, 0x2, 0x0, 0x9d})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000640)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x6611, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42c040, 0x10)
sendmsg$unix(r1, &(0x7f0000000200)={0x0, 0x2, &(0x7f00000002c0)=[{&(0x7f00000003c0)="9b44"}], 0x0, &(0x7f0000000680)}, 0x40)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000040), 0x4)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x88}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x40}, {0x6}]}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000009c0))
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r3, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef288563018270001406"], 0xffdd)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x4500, &(0x7f0000000200)={[{@errors_remount}, {@noquota}, {@nouid32}, {@auto_da_alloc_val}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1}}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@barrier}, {@nobh}, {@nogrpid}]}, 0x10, 0x4d1, &(0x7f00000013c0)="$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")
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r5, 0x1, 0x11, 0x0, &(0x7f0000000280))
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r6, 0x1, 0x42, &(0x7f0000000100)={0x0, 0x2710}, 0x10)
listen(r6, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   42.201620][ T3865] Call Trace:
[   42.204961][ T3865]  <TASK>
[   42.207899][ T3865]  dump_stack_lvl+0xf2/0x150
[   42.212508][ T3865]  dump_stack+0x15/0x20
[   42.216681][ T3865]  should_fail_ex+0x229/0x230
[   42.221387][ T3865]  ? sctp_add_bind_addr+0x6f/0x1e0
[   42.226553][ T3865]  __should_failslab+0x92/0xa0
[   42.231367][ T3865]  should_failslab+0x9/0x20
[   42.235903][ T3865]  __kmalloc_cache_noprof+0x4b/0x2a0
[   42.241221][ T3865]  sctp_add_bind_addr+0x6f/0x1e0
[   42.246181][ T3865]  sctp_copy_local_addr_list+0x19b/0x220
[   42.251838][ T3865]  sctp_copy_one_addr+0x83/0x410
[   42.256866][ T3865]  sctp_bind_addr_copy+0x81/0x2b0
[   42.262000][ T3865]  sctp_assoc_set_bind_addr_from_ep+0xc0/0xd0
[   42.268117][ T3865]  sctp_connect_new_asoc+0x1d0/0x3b0
[   42.273471][ T3865]  sctp_sendmsg+0xf05/0x1920
[   42.278091][ T3865]  ? __pfx_sctp_sendmsg+0x10/0x10
[   42.283143][ T3865]  inet_sendmsg+0xc5/0xd0
[   42.287506][ T3865]  __sock_sendmsg+0x102/0x180
[   42.292209][ T3865]  ____sys_sendmsg+0x312/0x410
[   42.296984][ T3865]  __sys_sendmmsg+0x269/0x500
[   42.301687][ T3865]  __x64_sys_sendmmsg+0x57/0x70
[   42.306588][ T3865]  x64_sys_call+0x2b4e/0x2e00
[   42.311422][ T3865]  do_syscall_64+0xc9/0x1c0
[   42.316016][ T3865]  ? clear_bhb_loop+0x55/0xb0
[   42.320724][ T3865]  ? clear_bhb_loop+0x55/0xb0
[   42.325432][ T3865]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.331413][ T3865] RIP: 0033:0x7f30ca1f5b59
[   42.335900][ T3865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.355534][ T3865] RSP: 002b:00007f30c9477048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   42.364045][ T3865] RAX: ffffffffffffffda RBX: 00007f30ca385f60 RCX: 00007f30ca1f5b59
[   42.372280][ T3865] RDX: 0000000000000001 RSI: 0000000020001680 RDI: 0000000000000007
[   42.380394][ T3865] RBP: 00007f30c94770a0 R08: 0000000000000000 R09: 0000000000000000
[   42.388395][ T3865] R10: 00000000000000fc R11: 0000000000000246 R12: 0000000000000002
[   42.396373][ T3865] R13: 000000000000000b R14: 00007f30ca385f60 R15: 00007ffe379353a8
[   42.404366][ T3865]  </TASK>
[   42.421702][   T29] audit: type=1400 audit(1721489951.960:307): avc:  denied  { create } for  pid=3864 comm="syz.4.160" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   42.441166][   T29] audit: type=1400 audit(1721489952.200:308): avc:  denied  { mount } for  pid=3854 comm="syz.0.155" name="/" dev="rpc_pipefs" ino=5835 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[   42.469763][ T3863] loop3: detected capacity change from 0 to 8192
[   42.500289][   T29] audit: type=1400 audit(1721489952.290:309): avc:  denied  { read } for  pid=3872 comm="syz.1.159" name="ptp0" dev="devtmpfs" ino=220 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   42.503103][ T3863] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   42.523191][   T29] audit: type=1400 audit(1721489952.290:310): avc:  denied  { open } for  pid=3872 comm="syz.1.159" path="/dev/ptp0" dev="devtmpfs" ino=220 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   42.575094][   T29] audit: type=1400 audit(1721489952.350:311): avc:  denied  { ioctl } for  pid=3872 comm="syz.1.159" path="/dev/ptp0" dev="devtmpfs" ino=220 ioctlcmd=0x3d0f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   42.620609][ T3880] loop2: detected capacity change from 0 to 128
[   42.662705][   T29] audit: type=1400 audit(1721489952.440:312): avc:  denied  { ioctl } for  pid=3881 comm="syz.1.163" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=226 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   42.688483][   T29] audit: type=1400 audit(1721489952.440:313): avc:  denied  { wake_alarm } for  pid=3881 comm="syz.1.163" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   42.717031][ T3890] syz.2.162: attempt to access beyond end of device
[   42.717031][ T3890] loop2: rw=2049, sector=225, nr_sectors = 3 limit=128
[   42.837258][ T3901] SELinux:  Context ‰©‘&	O—˼¦´ìb¬‚¤6mœãz™
ß² }¶+ád.ˆ¹XK¢ONFÊ~gW±*ÃE‰].ýs^Êá€+©![3ˆþsAÜÍà,^8YÖïpO¹ge.ÖU(ɾ›È½Ðv¦˜SíÄ is not valid (left unmapped).
[   42.899239][ T3901] SELinux:  Context ìgS is not valid (left unmapped).
[   43.048739][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   43.048684][ T3918] loop2: detected capacity change from 0 to 2048
[   43.065680][ T3918] ext4: Unknown parameter 'fsname'
[   43.087192][ T3920] loop0: detected capacity change from 0 to 2048
[   43.100376][ T3920] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.288980][ T3920] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.178: bg 0: block 234: padding at end of block bitmap is not set
[   43.303771][ T3920] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   43.316235][ T3920] EXT4-fs (loop0): This should not happen!! Data will be lost
[   43.316235][ T3920] 
[   43.325876][ T3920] EXT4-fs (loop0): Total free blocks count 0
[   43.331899][ T3920] EXT4-fs (loop0): Free/Dirty block details
[   43.337835][ T3920] EXT4-fs (loop0): free_blocks=0
[   43.342805][ T3920] EXT4-fs (loop0): dirty_blocks=8192
[   43.348352][ T3920] EXT4-fs (loop0): Block reservation details
[   43.354355][ T3920] EXT4-fs (loop0): i_reserved_data_blocks=512
[   43.371889][ T3927] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   43.411446][ T3920] syz.0.178 (3920) used greatest stack depth: 9680 bytes left
[   43.736207][ T3941] __nla_validate_parse: 5 callbacks suppressed
[   43.736223][ T3941] netlink: 20 bytes leftover after parsing attributes in process `syz.1.181'.
[   43.775699][ T3941] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.830750][ T3941] bridge_slave_0 (unregistering): left allmulticast mode
[   43.837851][ T3941] bridge_slave_0 (unregistering): left promiscuous mode
[   43.844859][ T3941] bridge0: port 1(bridge_slave_0) entered disabled state
[   43.903317][ T3944] FAULT_INJECTION: forcing a failure.
[   43.903317][ T3944] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   43.916828][ T3944] CPU: 0 PID: 3944 Comm: syz.3.182 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   43.926617][ T3944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   43.936742][ T3944] Call Trace:
[   43.940088][ T3944]  <TASK>
[   43.943032][ T3944]  dump_stack_lvl+0xf2/0x150
[   43.947672][ T3944]  dump_stack+0x15/0x20
[   43.951846][ T3944]  should_fail_ex+0x229/0x230
[   43.956615][ T3944]  __should_fail_alloc_page+0xfd/0x110
[   43.962139][ T3944]  __alloc_pages_noprof+0x109/0x360
[   43.967468][ T3944]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   43.972874][ T3944]  shmem_get_folio_gfp+0x3e4/0xb70
[   43.978026][ T3944]  shmem_write_begin+0xa0/0x1c0
[   43.982919][ T3944]  generic_perform_write+0x1b4/0x580
[   43.988222][ T3944]  shmem_file_write_iter+0xc8/0xf0
[   43.993358][ T3944]  vfs_write+0x78f/0x900
[   43.997707][ T3944]  ? __pfx_shmem_file_write_iter+0x10/0x10
[   44.003594][ T3944]  ksys_write+0xeb/0x1b0
[   44.007955][ T3944]  __x64_sys_write+0x42/0x50
[   44.012570][ T3944]  x64_sys_call+0x2a40/0x2e00
[   44.017260][ T3944]  do_syscall_64+0xc9/0x1c0
[   44.021818][ T3944]  ? clear_bhb_loop+0x55/0xb0
[   44.026529][ T3944]  ? clear_bhb_loop+0x55/0xb0
[   44.031318][ T3944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.037226][ T3944] RIP: 0033:0x7f8ad3cf46df
[   44.041655][ T3944] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[   44.061368][ T3944] RSP: 002b:00007f8ad2f76e00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   44.069830][ T3944] RAX: ffffffffffffffda RBX: 0000000000020000 RCX: 00007f8ad3cf46df
[   44.077836][ T3944] RDX: 0000000000020000 RSI: 00007f8acab57000 RDI: 0000000000000005
[   44.085816][ T3944] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000266
[   44.093792][ T3944] R10: 0000000020000342 R11: 0000000000000293 R12: 0000000000000005
[   44.101770][ T3944] R13: 00007f8ad2f76f00 R14: 00007f8ad2f76ec0 R15: 00007f8acab57000
[   44.109751][ T3944]  </TASK>
[   44.137501][ T3953] FAULT_INJECTION: forcing a failure.
[   44.137501][ T3953] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   44.150706][ T3953] CPU: 0 PID: 3953 Comm: syz.2.184 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   44.160354][ T3953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   44.170424][ T3953] Call Trace:
[   44.173719][ T3953]  <TASK>
[   44.176671][ T3953]  dump_stack_lvl+0xf2/0x150
[   44.181363][ T3953]  dump_stack+0x15/0x20
[   44.185634][ T3953]  should_fail_ex+0x229/0x230
[   44.190357][ T3953]  should_fail+0xb/0x10
[   44.194553][ T3953]  should_fail_usercopy+0x1a/0x20
[   44.199632][ T3953]  _copy_from_iter+0xd3/0xb00
[   44.204511][ T3953]  ? __build_skb_around+0x196/0x1f0
[   44.209765][ T3953]  ? __alloc_skb+0x244/0x310
[   44.214361][ T3953]  ? __virt_addr_valid+0x1ed/0x250
[   44.219507][ T3953]  ? __check_object_size+0x35b/0x510
[   44.224787][ T3953]  tcp_sendmsg_locked+0x13d1/0x2640
[   44.230053][ T3953]  ? __pfx_tcp_sendmsg+0x10/0x10
[   44.235065][ T3953]  tcp_sendmsg+0x30/0x50
[   44.239343][ T3953]  inet_sendmsg+0x77/0xd0
[   44.243734][ T3953]  __sock_sendmsg+0x102/0x180
[   44.248449][ T3953]  __sys_sendto+0x1e5/0x260
[   44.253080][ T3953]  __x64_sys_sendto+0x78/0x90
[   44.257790][ T3953]  x64_sys_call+0x2bc6/0x2e00
[   44.262488][ T3953]  do_syscall_64+0xc9/0x1c0
[   44.267146][ T3953]  ? clear_bhb_loop+0x55/0xb0
[   44.271866][ T3953]  ? clear_bhb_loop+0x55/0xb0
[   44.276663][ T3953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.282799][ T3953] RIP: 0033:0x7f55a4b55b59
[   44.287225][ T3953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.306997][ T3953] RSP: 002b:00007f55a3dd7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   44.315448][ T3953] RAX: ffffffffffffffda RBX: 00007f55a4ce5f60 RCX: 00007f55a4b55b59
[   44.323533][ T3953] RDX: 00000000000020c8 RSI: 00000000200012c0 RDI: 0000000000000003
[   44.331528][ T3953] RBP: 00007f55a3dd70a0 R08: 0000000000000000 R09: 0000000000000027
[   44.339524][ T3953] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000002
[   44.347498][ T3953] R13: 000000000000000b R14: 00007f55a4ce5f60 R15: 00007ffd4a8d5cf8
[   44.355501][ T3953]  </TASK>
[   44.412748][ T3956] mmap: syz.1.186 (3956) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   44.543322][ T3978] loop3: detected capacity change from 0 to 1024
[   44.560885][ T3978] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.589662][ T3982] loop2: detected capacity change from 0 to 128
[   44.635117][ T3982] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   44.729801][ T3982] ext4 filesystem being mounted at /52/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   44.738786][ T3992] netlink: 168 bytes leftover after parsing attributes in process `syz.4.198'.
[   44.773762][ T3507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.003347][ T3998] netlink: 48 bytes leftover after parsing attributes in process `syz.4.201'.
[   45.109962][ T4000] loop4: detected capacity change from 0 to 1024
[   45.136633][ T4000] EXT4-fs: Ignoring removed orlov option
[   45.142338][ T4000] EXT4-fs: Ignoring removed nomblk_io_submit option
[   45.170404][ T2787] udevd[2787]: worker [3076] terminated by signal 33 (Unknown signal 33)
[   45.179612][ T2787] udevd[2787]: worker [3076] failed while handling '/devices/virtual/block/loop3'
[   45.196162][ T4000] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.223288][ T3094] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.259315][ T4015] xt_hashlimit: invalid interval
[   45.290261][    C0] eth0: bad gso: type: 1, size: 1408
[   45.341841][ T3090] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   45.555464][ T4037] loop0: detected capacity change from 0 to 2048
[   45.590863][ T4043] FAULT_INJECTION: forcing a failure.
[   45.590863][ T4043] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   45.604269][ T4043] CPU: 1 PID: 4043 Comm: syz.4.215 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   45.614013][ T4043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   45.624089][ T4043] Call Trace:
[   45.627414][ T4043]  <TASK>
[   45.630528][ T4043]  dump_stack_lvl+0xf2/0x150
[   45.635272][ T4043]  dump_stack+0x15/0x20
[   45.639512][ T4043]  should_fail_ex+0x229/0x230
[   45.644216][ T4043]  __should_fail_alloc_page+0xfd/0x110
[   45.649695][ T4043]  __alloc_pages_noprof+0x109/0x360
[   45.654921][ T4043]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   45.660413][ T4043]  shmem_get_folio_gfp+0x3e4/0xb70
[   45.665547][ T4043]  shmem_write_begin+0xa0/0x1c0
[   45.670478][ T4043]  generic_perform_write+0x1b4/0x580
[   45.675776][ T4043]  shmem_file_write_iter+0xc8/0xf0
[   45.681053][ T4043]  vfs_write+0x78f/0x900
[   45.685312][ T4043]  ? __pfx_shmem_file_write_iter+0x10/0x10
[   45.691272][ T4043]  ksys_write+0xeb/0x1b0
[   45.695600][ T4043]  __x64_sys_write+0x42/0x50
[   45.700199][ T4043]  x64_sys_call+0x2a40/0x2e00
[   45.704889][ T4043]  do_syscall_64+0xc9/0x1c0
[   45.709404][ T4043]  ? clear_bhb_loop+0x55/0xb0
[   45.714150][ T4043]  ? clear_bhb_loop+0x55/0xb0
[   45.718990][ T4043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.724981][ T4043] RIP: 0033:0x7f30ca1f46df
[   45.729398][ T4043] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[   45.749107][ T4043] RSP: 002b:00007f30c9476e00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   45.757596][ T4043] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007f30ca1f46df
[   45.765643][ T4043] RDX: 0000000000040000 RSI: 00007f30c1057000 RDI: 0000000000000004
[   45.773711][ T4043] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000045e
[   45.781691][ T4043] R10: 00000000200009c2 R11: 0000000000000293 R12: 0000000000000004
[   45.789703][ T4043] R13: 00007f30c9476f00 R14: 00007f30c9476ec0 R15: 00007f30c1057000
[   45.797685][ T4043]  </TASK>
[   45.807189][ T4049] netlink: 40 bytes leftover after parsing attributes in process `syz.0.213'.
[   45.832451][ T4037]  loop0: p1 < > p4
[   45.840821][ T4037] loop0: p4 size 8388608 extends beyond EOD, truncated
[   45.890770][ T4058] team0 (unregistering): Port device team_slave_0 removed
[   45.908859][ T4058] team0 (unregistering): Port device team_slave_1 removed
[   45.920800][ T4060] FAULT_INJECTION: forcing a failure.
[   45.920800][ T4060] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   45.933909][ T4060] CPU: 1 PID: 4060 Comm: syz.1.221 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   45.943565][ T4060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   45.953635][ T4060] Call Trace:
[   45.956929][ T4060]  <TASK>
[   45.959878][ T4060]  dump_stack_lvl+0xf2/0x150
[   45.962263][    C0] hrtimer: interrupt took 22779 ns
[   45.964518][ T4060]  dump_stack+0x15/0x20
[   45.973784][ T4060]  should_fail_ex+0x229/0x230
[   45.978533][ T4060]  should_fail+0xb/0x10
[   45.982736][ T4060]  should_fail_usercopy+0x1a/0x20
[   45.987783][ T4060]  _copy_from_iter+0xd3/0xb00
[   45.992507][ T4060]  ? kernel_fpu_begin_mask+0x19d/0x200
[   45.998001][ T4060]  ? kernel_fpu_end+0x5e/0x80
[   46.002764][ T4060]  ? blake2s_compress+0xab/0xd0
[   46.007743][ T4060]  ? blake2s_update+0x120/0x140
[   46.012672][ T4060]  write_pool_user+0x80/0x1e0
[   46.017415][ T4060]  ? import_ubuf+0xe9/0x120
[   46.021957][ T4060]  random_ioctl+0x2c6/0x3f0
[   46.026547][ T4060]  ? __pfx_random_ioctl+0x10/0x10
[   46.031644][ T4060]  __se_sys_ioctl+0xd3/0x150
[   46.036376][ T4060]  __x64_sys_ioctl+0x43/0x50
[   46.041240][ T4060]  x64_sys_call+0x1688/0x2e00
[   46.045950][ T4060]  do_syscall_64+0xc9/0x1c0
[   46.050513][ T4060]  ? clear_bhb_loop+0x55/0xb0
[   46.055231][ T4060]  ? clear_bhb_loop+0x55/0xb0
[   46.059940][ T4060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.065965][ T4060] RIP: 0033:0x7fc7e6655b59
[   46.070404][ T4060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.090449][ T4060] RSP: 002b:00007fc7e58b6048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   46.098889][ T4060] RAX: ffffffffffffffda RBX: 00007fc7e67e6038 RCX: 00007fc7e6655b59
[   46.106900][ T4060] RDX: 0000000020000000 RSI: 0000000040085203 RDI: 0000000000000004
[   46.114895][ T4060] RBP: 00007fc7e58b60a0 R08: 0000000000000000 R09: 0000000000000000
[   46.122891][ T4060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   46.130934][ T4060] R13: 000000000000006e R14: 00007fc7e67e6038 R15: 00007ffcef31e878
[   46.138964][ T4060]  </TASK>
[   46.316991][ T4066] netlink: 'syz.0.222': attribute type 12 has an invalid length.
[   46.324778][ T4066] netlink: 'syz.0.222': attribute type 29 has an invalid length.
[   46.332006][ T4081] FAULT_INJECTION: forcing a failure.
[   46.332006][ T4081] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.332618][ T4066] netlink: 'syz.0.222': attribute type 2 has an invalid length.
[   46.345602][ T4081] CPU: 0 PID: 4081 Comm: syz.4.227 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   46.353282][ T4066] netlink: 'syz.0.222': attribute type 2 has an invalid length.
[   46.362852][ T4081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   46.362871][ T4081] Call Trace:
[   46.362880][ T4081]  <TASK>
[   46.362889][ T4081]  dump_stack_lvl+0xf2/0x150
[   46.370912][ T4066] netlink: 'syz.0.222': attribute type 1 has an invalid length.
[   46.381013][ T4081]  dump_stack+0x15/0x20
[   46.381044][ T4081]  should_fail_ex+0x229/0x230
[   46.381085][ T4081]  should_fail+0xb/0x10
[   46.381120][ T4081]  should_fail_usercopy+0x1a/0x20
[   46.381157][ T4081]  _copy_to_user+0x1e/0xa0
[   46.381259][ T4081]  simple_read_from_buffer+0xa0/0x110
[   46.384589][ T4066] netlink: 'syz.0.222': attribute type 37 has an invalid length.
[   46.384603][ T4066] netlink: 'syz.0.222': attribute type 2 has an invalid length.
[   46.387793][ T4081]  proc_fail_nth_read+0xfc/0x140
[   46.387835][ T4081]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   46.387891][ T4081]  vfs_read+0x1a2/0x6e0
[   46.387914][ T4081]  ? __rcu_read_unlock+0x4e/0x70
[   46.387939][ T4081]  ? __fget_files+0x1da/0x210
[   46.387967][ T4081]  ksys_read+0xeb/0x1b0
[   46.387997][ T4081]  __x64_sys_read+0x42/0x50
[   46.392654][ T4066] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.400232][ T4081]  x64_sys_call+0x2a36/0x2e00
[   46.400271][ T4081]  do_syscall_64+0xc9/0x1c0
[   46.421345][ T4084] netlink: 16 bytes leftover after parsing attributes in process `syz.2.228'.
[   46.422746][ T4081]  ? clear_bhb_loop+0x55/0xb0
[   46.506399][ T4081]  ? clear_bhb_loop+0x55/0xb0
[   46.511269][ T4081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.517187][ T4081] RIP: 0033:0x7f30ca1f463c
[   46.521630][ T4081] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[   46.541341][ T4081] RSP: 002b:00007f30c9477040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   46.549854][ T4081] RAX: ffffffffffffffda RBX: 00007f30ca385f60 RCX: 00007f30ca1f463c
[   46.557933][ T4081] RDX: 000000000000000f RSI: 00007f30c94770b0 RDI: 0000000000000004
[   46.566293][ T4081] RBP: 00007f30c94770a0 R08: 0000000000000000 R09: 0000000000000000
[   46.574271][ T4081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.582322][ T4081] R13: 000000000000000b R14: 00007f30ca385f60 R15: 00007ffe379353a8
[   46.590314][ T4081]  </TASK>
[   46.607390][ T4082] loop3: detected capacity change from 0 to 1024
[   46.618809][ T4082] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869)
[   46.635895][ T4082] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   46.640945][ T4079] loop1: detected capacity change from 0 to 2048
[   46.653953][ T4082] EXT4-fs (loop3): invalid journal inode
[   46.666211][ T4084] netlink: 'syz.2.228': attribute type 10 has an invalid length.
[   46.674026][ T4079] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   46.691854][ T4089] loop4: detected capacity change from 0 to 128
[   46.729385][ T4089] syz.4.230: attempt to access beyond end of device
[   46.729385][ T4089] loop4: rw=2049, sector=225, nr_sectors = 3 limit=128
[   46.790761][ T4098] loop2: detected capacity change from 0 to 512
[   46.816982][ T4098] EXT4-fs: Ignoring removed oldalloc option
[   46.825514][ T4098] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   46.847032][ T4098] EXT4-fs (loop2): 1 truncate cleaned up
[   46.863418][ T4098] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.881926][ T4102] loop3: detected capacity change from 0 to 512
[   46.900128][ T3090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.904606][ T4102] EXT4-fs: Invalid journal IO priority (must be 0-7)
[   46.917992][ T4100] loop4: detected capacity change from 0 to 2048
[   46.967046][ T4100] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.072896][ T4128] loop7: detected capacity change from 0 to 16384
[   47.081371][ T4129] netlink: set zone limit has 8 unknown bytes
[   47.101239][ T4133] loop1: detected capacity change from 0 to 128
[   47.117935][ T4131] loop0: detected capacity change from 0 to 128
[   47.162688][ T4133] syz.1.244: attempt to access beyond end of device
[   47.162688][ T4133] loop1: rw=2049, sector=225, nr_sectors = 3 limit=128
[   47.176208][   T29] kauditd_printk_skb: 27 callbacks suppressed
[   47.176220][   T29] audit: type=1400 audit(1721489956.950:341): avc:  denied  { audit_read } for  pid=4136 comm="syz.2.247" capability=37  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   47.216125][ T4131] syz.0.245: attempt to access beyond end of device
[   47.216125][ T4131] loop0: rw=2049, sector=225, nr_sectors = 3 limit=128
[   47.271310][ T4146] netlink: 'syz.1.250': attribute type 1 has an invalid length.
[   47.283332][   T29] audit: type=1400 audit(1721489957.070:342): avc:  denied  { create } for  pid=4136 comm="syz.2.247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   47.320172][   T29] audit: type=1400 audit(1721489957.110:343): avc:  denied  { bind } for  pid=4150 comm="syz.3.252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   47.345421][ T4152] loop3: detected capacity change from 0 to 1024
[   47.352170][ T4152] EXT4-fs: Ignoring removed orlov option
[   47.358060][ T4152] EXT4-fs: Ignoring removed nomblk_io_submit option
[   47.362348][ T3094] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.374374][   T29] audit: type=1400 audit(1721489957.130:344): avc:  denied  { setopt } for  pid=4150 comm="syz.3.252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   47.382791][ T4153] netlink: 24 bytes leftover after parsing attributes in process `syz.1.250'.
[   47.419687][ T4152] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.430577][ T4151] loop0: detected capacity change from 0 to 8192
[   47.460744][   T29] audit: type=1400 audit(1721489957.250:345): avc:  denied  { ioctl } for  pid=4156 comm="syz.4.253" path="socket:[6593]" dev="sockfs" ino=6593 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   47.485015][ T4160] loop1: detected capacity change from 0 to 2048
[   47.505003][ T4160] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   47.532532][   T29] audit: type=1400 audit(1721489957.320:346): avc:  denied  { read } for  pid=4156 comm="syz.4.253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   47.568181][ T3162] IPVS: starting estimator thread 0...
[   47.580861][ T4170] netlink: 'syz.0.255': attribute type 2 has an invalid length.
[   47.648380][ T4174] loop4: detected capacity change from 0 to 512
[   47.660561][ T4174] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   47.674437][ T4180] tipc: Started in network mode
[   47.678222][ T4171] IPVS: using max 2496 ests per chain, 124800 per kthread
[   47.679412][ T4180] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[   47.689933][ T4174] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.695760][ T4180] tipc: Enabled bearer <udp:syz0>, priority 10
[   47.709647][ T4174] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.747958][   T29] audit: type=1400 audit(1721489957.540:347): avc:  denied  { create } for  pid=4173 comm="syz.4.256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   47.754449][ T4184] loop1: detected capacity change from 0 to 2048
[   47.789612][ T3094] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.849162][ T4184] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.863276][ T4184] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.258: bg 0: block 234: padding at end of block bitmap is not set
[   47.879547][ T4184] EXT4-fs (loop1): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 117
[   47.892208][ T4184] EXT4-fs (loop1): This should not happen!! Data will be lost
[   47.892208][ T4184] 
[   47.903347][   T29] audit: type=1400 audit(1721489957.700:348): avc:  denied  { recv } for  pid=4188 comm="syz.4.260" saddr=10.128.0.163 src=30030 daddr=10.128.0.2 dest=46596 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[   47.947449][ T4184] syz.1.258 (4184) used greatest stack depth: 9568 bytes left
[   47.961924][ T3086] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.036064][   T29] audit: type=1400 audit(1721489957.820:349): avc:  denied  { setopt } for  pid=4202 comm="syz.2.266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   48.085069][ T4215] FAULT_INJECTION: forcing a failure.
[   48.085069][ T4215] name failslab, interval 1, probability 0, space 0, times 0
[   48.097773][ T4215] CPU: 0 PID: 4215 Comm: syz.4.267 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   48.107509][ T4215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   48.117613][ T4215] Call Trace:
[   48.120907][ T4215]  <TASK>
[   48.123885][ T4215]  dump_stack_lvl+0xf2/0x150
[   48.128520][ T4215]  dump_stack+0x15/0x20
[   48.132722][ T4215]  should_fail_ex+0x229/0x230
[   48.137444][ T4215]  ? skb_clone+0x154/0x1f0
[   48.141870][ T4215]  __should_failslab+0x92/0xa0
[   48.146686][ T4215]  should_failslab+0x9/0x20
[   48.151193][ T4215]  kmem_cache_alloc_noprof+0x4c/0x290
[   48.156697][ T4215]  skb_clone+0x154/0x1f0
[   48.160951][ T4215]  dev_queue_xmit_nit+0x149/0x620
[   48.166027][ T4215]  dev_hard_start_xmit+0xcc/0x3f0
[   48.171102][ T4215]  ? validate_xmit_skb+0x658/0x8d0
[   48.173732][ T4217] loop0: detected capacity change from 0 to 128
[   48.176287][ T4215]  __dev_queue_xmit+0xfd4/0x1fe0
[   48.176351][ T4215]  ? __dev_queue_xmit+0x161/0x1fe0
[   48.192723][ T4215]  ? should_fail_ex+0xd7/0x230
[   48.197536][ T4215]  ? __skb_clone+0x2d0/0x2f0
[   48.198141][ T4217] syz.0.268: attempt to access beyond end of device
[   48.198141][ T4217] loop0: rw=2049, sector=225, nr_sectors = 3 limit=128
[   48.202149][ T4215]  __netlink_deliver_tap+0x39f/0x4c0
[   48.220808][ T4215]  netlink_unicast+0x641/0x670
[   48.225663][ T4215]  netlink_sendmsg+0x5cc/0x6e0
[   48.230448][ T4215]  ? __pfx_netlink_sendmsg+0x10/0x10
[   48.235841][ T4215]  __sock_sendmsg+0x140/0x180
[   48.240533][ T4215]  ____sys_sendmsg+0x312/0x410
[   48.245384][ T4215]  __sys_sendmsg+0x1e9/0x280
[   48.250056][ T4215]  __x64_sys_sendmsg+0x46/0x50
[   48.254872][ T4215]  x64_sys_call+0x26f8/0x2e00
[   48.259564][ T4215]  do_syscall_64+0xc9/0x1c0
[   48.264268][ T4215]  ? clear_bhb_loop+0x55/0xb0
[   48.269068][ T4215]  ? clear_bhb_loop+0x55/0xb0
[   48.273810][ T4215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.279806][ T4215] RIP: 0033:0x7f30ca1f5b59
[   48.284220][ T4215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.303911][ T4215] RSP: 002b:00007f30c9477048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   48.312348][ T4215] RAX: ffffffffffffffda RBX: 00007f30ca385f60 RCX: 00007f30ca1f5b59
[   48.320395][ T4215] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000004
[   48.328368][ T4215] RBP: 00007f30c94770a0 R08: 0000000000000000 R09: 0000000000000000
[   48.336381][ T4215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.344460][ T4215] R13: 000000000000000b R14: 00007f30ca385f60 R15: 00007ffe379353a8
[   48.352439][ T4215]  </TASK>
[   48.365106][ T4219] loop2: detected capacity change from 0 to 512
[   48.372818][ T4219] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[   48.381262][ T4219] System zones: 1-12
[   48.385412][ T4219] EXT4-fs (loop2): orphan cleanup on readonly fs
[   48.392757][ T4219] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.270: bg 0: block 328: padding at end of block bitmap is not set
[   48.399791][ T3507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.408714][ T4219] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6551: Corrupt filesystem
[   48.425641][ T4219] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.270: invalid indirect mapped block 65280 (level 0)
[   48.446056][ T4219] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.270: attempt to clear invalid blocks 33619980 len 1
[   48.471262][ T4219] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.270: invalid indirect mapped block 1819239214 (level 0)
[   48.489046][ T4227] netlink: 188 bytes leftover after parsing attributes in process `syz.3.271'.
[   48.503582][ T4219] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.270: invalid indirect mapped block 1819239214 (level 1)
[   48.519875][   T29] audit: type=1400 audit(1721489958.310:350): avc:  denied  { ioctl } for  pid=4221 comm="syz.4.272" path="socket:[7477]" dev="sockfs" ino=7477 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   48.545985][ T4219] EXT4-fs (loop2): 1 orphan inode deleted
[   48.552657][ T4219] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   48.598452][ T4231] loop0: detected capacity change from 0 to 1024
[   48.616692][ T4231] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869)
[   48.631074][ T4231] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   48.651826][ T4231] EXT4-fs (loop0): invalid journal inode
[   48.728321][ T4243] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=320 sclass=netlink_route_socket pid=4243 comm=syz.3.280
[   48.788893][ T4249] loop3: detected capacity change from 0 to 512
[   48.806123][   T35] tipc: Node number set to 4269801491
[   48.816943][ T4249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   48.839157][ T4249] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.861931][ T3507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   48.901291][ T4268] loop1: detected capacity change from 0 to 128
[   48.946027][ T4274] loop4: detected capacity change from 0 to 512
[   48.969492][ T4268] syz.1.288: attempt to access beyond end of device
[   48.969492][ T4268] loop1: rw=2049, sector=225, nr_sectors = 3 limit=128
[   48.987322][ T4274] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   49.000364][ T4274] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.013708][ T4274] EXT4-fs (loop4): shut down requested (0)
[   49.017552][ T4277] loop3: detected capacity change from 0 to 1024
[   49.036687][ T4277] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869)
[   49.081054][ T4277] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   49.096528][ T4277] EXT4-fs (loop3): invalid journal inode
[   49.116449][ T4285] loop0: detected capacity change from 0 to 512
[   49.123052][ T4285] devtmpfs: Unknown parameter 'errors'
[   49.200551][ T3090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.317058][ T4306] netlink: 48 bytes leftover after parsing attributes in process `syz.3.302'.
[   49.379354][ T4309] 9pnet_fd: p9_fd_create_unix (4309): address too long: ./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   49.435539][ T4311] netlink: 48 bytes leftover after parsing attributes in process `syz.3.303'.
[   49.582776][ T4314] dccp_v6_rcv: dropped packet with invalid checksum
[   49.600289][ T4314] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   49.609349][ T4314] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   49.758593][ T4325] loop3: detected capacity change from 0 to 512
[   49.766279][ T4325] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   49.787600][ T3094] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   49.789956][ T4325] raw_sendmsg: syz.3.308 forgot to set AF_INET. Fix it!
[   49.841396][ T4333] loop1: detected capacity change from 0 to 128
[   49.872522][ T4333] syz.1.313: attempt to access beyond end of device
[   49.872522][ T4333] loop1: rw=2049, sector=225, nr_sectors = 3 limit=128
[   49.908162][ T4344] netlink: 48 bytes leftover after parsing attributes in process `syz.4.314'.
[   49.950612][ T4346] loop1: detected capacity change from 0 to 2048
[   49.958575][ T4346] EXT4-fs: Ignoring removed mblk_io_submit option
[   49.985625][ T4350] netlink: 20 bytes leftover after parsing attributes in process `syz.4.318'.
[   50.000093][ T4350] vlan2: entered promiscuous mode
[   50.005174][ T4346] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[   50.039455][ T4357] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   50.097634][ T4364] netlink: 48 bytes leftover after parsing attributes in process `syz.4.323'.
[   50.122231][ T4362] loop1: detected capacity change from 0 to 2048
[   50.141693][ T4366] netlink: 236 bytes leftover after parsing attributes in process `syz.2.324'.
[   50.174748][ T4362] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.211487][ T4372] loop3: detected capacity change from 0 to 2048
[   50.236972][ T4375] loop2: detected capacity change from 0 to 128
[   50.248360][ T4372] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.279026][ T4375] syz.2.327: attempt to access beyond end of device
[   50.279026][ T4375] loop2: rw=2049, sector=225, nr_sectors = 3 limit=128
[   50.392556][ T3086] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.407016][ T3507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.518724][ T4407] netdevsim netdevsim0 netdevsim1: entered allmulticast mode
[   50.536613][ T4407] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[   51.273008][ T4420] loop0: detected capacity change from 0 to 1024
[   51.286415][ T4420] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869)
[   51.296278][ T4420] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   51.307636][ T4420] EXT4-fs (loop0): invalid journal inode
[   51.481256][ T4439] loop2: detected capacity change from 0 to 512
[   51.500737][ T4439] EXT4-fs: Ignoring removed oldalloc option
[   51.508178][ T4441] netlink: 48 bytes leftover after parsing attributes in process `syz.4.351'.
[   51.519111][ T4439] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   51.541466][ T4439] EXT4-fs (loop2): 1 truncate cleaned up
[   51.549874][ T4439] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.564833][ T4449] loop1: detected capacity change from 0 to 128
[   51.595883][ T4452] loop3: detected capacity change from 0 to 512
[   51.645819][ T4452] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   51.677873][ T4452] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   51.698435][   T36] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.713319][ T3090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.764043][ T4452] SELinux:  Context @ is not valid (left unmapped).
[   51.808931][   T36] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.848433][ T4478] netlink: 28 bytes leftover after parsing attributes in process `syz.2.361'.
[   51.873031][   T36] bond0: (slave netdevsim1): Releasing backup interface
[   51.873138][ T3507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   51.890129][   T36] netdevsim netdevsim0 netdevsim1 (unregistering): left allmulticast mode
[   51.910528][   T36] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.930563][ T4479] syzkaller0: entered allmulticast mode
[   51.983069][   T36] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.987397][ T4483] loop3: detected capacity change from 0 to 2048
[   52.012707][ T4483] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[   52.088044][ T4476] batadv0: mtu greater than device maximum
[   52.110315][ T4476] xt_TCPMSS: Only works on TCP SYN packets
[   52.162441][ T4435] chnl_net:caif_netlink_parms(): no params data found
[   52.184575][   T36] bridge_slave_1: left allmulticast mode
[   52.190284][   T36] bridge_slave_1: left promiscuous mode
[   52.196076][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.210472][   T36] bridge_slave_0: left allmulticast mode
[   52.216208][   T36] bridge_slave_0: left promiscuous mode
[   52.221980][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.349653][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   52.358468][   T36] bond_slave_0: left allmulticast mode
[   52.366187][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   52.375214][   T36] bond_slave_1: left allmulticast mode
[   52.382392][   T36] bond0 (unregistering): Released all slaves
[   52.430745][ T4435] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.437977][ T4435] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.445351][ T4435] bridge_slave_0: entered allmulticast mode
[   52.452029][ T4435] bridge_slave_0: entered promiscuous mode
[   52.459176][   T36] tipc: Disabling bearer <udp:syz0>
[   52.464462][   T36] tipc: Left network mode
[   52.469618][ T4435] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.476700][ T4435] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.498739][ T4435] bridge_slave_1: entered allmulticast mode
[   52.508610][ T4435] bridge_slave_1: entered promiscuous mode
[   52.522830][   T29] kauditd_printk_skb: 51 callbacks suppressed
[   52.522843][   T29] audit: type=1400 audit(1721489962.310:402): avc:  denied  { compute_member } for  pid=4499 comm="syz.3.364" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   52.559657][ T4435] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   52.571914][ T4435] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   52.597191][   T36] hsr_slave_0: left promiscuous mode
[   52.612907][   T36] hsr_slave_1: left promiscuous mode
[   52.624047][   T29] audit: type=1400 audit(1721489962.410:403): avc:  denied  { map } for  pid=4503 comm="syz.4.365" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=128 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   52.650980][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   52.658477][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[   52.667147][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   52.674563][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[   52.686404][   T36] veth1_macvtap: left promiscuous mode
[   52.692129][   T36] veth0_macvtap: left promiscuous mode
[   52.697959][   T36] veth1_vlan: left promiscuous mode
[   52.703199][   T36] veth0_vlan: left promiscuous mode
[   52.762572][   T29] audit: type=1400 audit(1721489962.550:404): avc:  denied  { write } for  pid=4512 comm="syz.4.367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   52.782519][   T29] audit: type=1400 audit(1721489962.550:405): avc:  denied  { setopt } for  pid=4512 comm="syz.4.367" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   52.817245][ T4518] loop3: detected capacity change from 0 to 128
[   52.849081][ T4518] syz.3.368: attempt to access beyond end of device
[   52.849081][ T4518] loop3: rw=2049, sector=225, nr_sectors = 3 limit=128
[   52.871754][ T4528] loop2: detected capacity change from 0 to 256
[   52.899004][   T29] audit: type=1400 audit(1721489962.680:406): avc:  denied  { execute } for  pid=4529 comm="syz.3.371" path="/51/cpu.stat" dev="tmpfs" ino=297 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   52.925205][   T36] team0 (unregistering): Port device team_slave_1 removed
[   52.937892][   T36] team0 (unregistering): Port device team_slave_0 removed
[   52.994393][   T29] audit: type=1400 audit(1721489962.780:407): avc:  denied  { write } for  pid=4536 comm="syz.3.374" name="ptp0" dev="devtmpfs" ino=220 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   53.020669][   T29] audit: type=1400 audit(1721489962.780:408): avc:  denied  { read write } for  pid=4536 comm="syz.3.374" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   53.045086][   T29] audit: type=1400 audit(1721489962.780:409): avc:  denied  { open } for  pid=4536 comm="syz.3.374" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   53.045151][   T29] audit: type=1400 audit(1721489962.780:410): avc:  denied  { setattr } for  pid=4536 comm="syz.3.374" path="socket:[8393]" dev="sockfs" ino=8393 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   53.113245][ T4539] netlink: 12 bytes leftover after parsing attributes in process `syz.3.375'.
[   53.123158][ T4435] team0: Port device team_slave_0 added
[   53.132089][ T4435] team0: Port device team_slave_1 added
[   53.149516][   T29] audit: type=1400 audit(1721489962.920:411): avc:  denied  { write } for  pid=4538 comm="syz.3.375" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   53.185220][ T4435] batman_adv: batadv0: Adding interface: batadv_slave_0
[   53.192240][ T4435] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.218320][ T4435] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   53.240165][ T4435] batman_adv: batadv0: Adding interface: batadv_slave_1
[   53.247240][ T4435] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   53.273257][ T4435] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   53.286639][ T4552] netlink: 48 bytes leftover after parsing attributes in process `syz.3.380'.
[   53.321330][ T4548] loop4: detected capacity change from 0 to 1024
[   53.339459][ T4548] EXT4-fs: Ignoring removed oldalloc option
[   53.353829][ T4435] hsr_slave_0: entered promiscuous mode
[   53.360383][ T4435] hsr_slave_1: entered promiscuous mode
[   53.404397][ T4548] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   53.458039][ T4548] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.487240][   T36] IPVS: stop unused estimator thread 0...
[   53.797147][ T4435] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   53.822078][ T4435] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   53.845668][ T4435] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   53.866293][ T4435] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   53.890740][ T4623] loop2: detected capacity change from 0 to 512
[   53.925665][ T4623] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #12: comm syz.2.391: corrupted in-inode xattr: invalid ea_ino
[   53.973138][ T4623] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.391: couldn't read orphan inode 12 (err -117)
[   54.006042][   T36] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.020019][ T4623] EXT4-fs (loop2): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.053267][ T4623] EXT4-fs error (device loop2): ext4_add_entry:2435: inode #2: comm syz.2.391: Directory hole found for htree leaf block 0
[   54.067433][ T3094] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.076959][ T4435] 8021q: adding VLAN 0 to HW filter on device bond0
[   54.092995][   T36] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.147763][ T4623] EXT4-fs error (device loop2): ext4_add_entry:2435: inode #2: comm syz.2.391: Directory hole found for htree leaf block 0
[   54.152332][ T4435] 8021q: adding VLAN 0 to HW filter on device team0
[   54.193778][   T36] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.212888][ T4671] loop4: detected capacity change from 0 to 1024
[   54.227893][  T705] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.235194][  T705] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.243891][ T4671] EXT4-fs: Ignoring removed nobh option
[   54.251469][ T3090] EXT4-fs (loop2): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[   54.252625][  T705] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.267566][  T705] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.299047][ T4605] chnl_net:caif_netlink_parms(): no params data found
[   54.309014][ T4671] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.322590][   T36] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.346931][ T3094] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.451573][ T4694] loop2: detected capacity change from 0 to 512
[   54.460471][ T4694] EXT4-fs: Ignoring removed oldalloc option
[   54.479177][ T4435] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   54.492897][ T4694] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   54.560798][   T36] bridge_slave_1: left allmulticast mode
[   54.566574][   T36] bridge_slave_1: left promiscuous mode
[   54.572276][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.581442][ T4694] EXT4-fs (loop2): 1 truncate cleaned up
[   54.592641][ T4694] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.701357][ T4729] loop4: detected capacity change from 0 to 128
[   54.718784][ T4723] loop3: detected capacity change from 0 to 512
[   54.719402][ T4729] syz.4.401: attempt to access beyond end of device
[   54.719402][ T4729] loop4: rw=2049, sector=225, nr_sectors = 3 limit=128
[   54.745987][ T4723] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   54.756744][ T4723] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended
[   54.768242][ T4723] EXT4-fs error (device loop3): ext4_orphan_get:1391: comm syz.3.400: inode #15: comm syz.3.400: iget: illegal inode #
[   54.781904][ T4723] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.400: couldn't read orphan inode 15 (err -117)
[   54.795911][ T4723] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.810947][ T4723] __nla_validate_parse: 2 callbacks suppressed
[   54.810959][ T4723] netlink: 104 bytes leftover after parsing attributes in process `syz.3.400'.
[   54.830124][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   54.841540][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   54.852006][   T36] bond0 (unregistering): Released all slaves
[   54.860584][   T36] bond1 (unregistering): Released all slaves
[   54.873600][ T4710] netlink: 5 bytes leftover after parsing attributes in process `syz.3.400'.
[   54.901279][ T3507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.917388][ T4605] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.924476][ T4605] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.943472][ T4605] bridge_slave_0: entered allmulticast mode
[   54.952687][ T4605] bridge_slave_0: entered promiscuous mode
[   54.969232][ T4605] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.976573][ T4605] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.987828][ T4605] bridge_slave_1: entered allmulticast mode
[   54.995248][ T4605] bridge_slave_1: entered promiscuous mode
[   55.008009][ T4435] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.019059][   T36] hsr_slave_0: left promiscuous mode
[   55.025432][ T4751] loop4: detected capacity change from 0 to 512
[   55.037365][   T36] hsr_slave_1: left promiscuous mode
[   55.044230][ T4751] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.405: bad orphan inode 15
[   55.056352][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   55.063785][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[   55.072744][ T4751] ext4_test_bit(bit=14, block=5) = 0
[   55.079293][ T4751] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.094151][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   55.099127][ T4758] loop3: detected capacity change from 0 to 512
[   55.101867][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[   55.121886][ T4758] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   55.134608][ T4751] EXT4-fs error (device loop4): __ext4_new_inode:1070: comm syz.4.405: reserved inode found cleared - inode=1
[   55.148119][   T36] veth1_macvtap: left promiscuous mode
[   55.153637][   T36] veth0_macvtap: left promiscuous mode
[   55.159317][   T36] veth1_vlan: left promiscuous mode
[   55.164684][   T36] veth0_vlan: left promiscuous mode
[   55.173236][ T4751] netlink: 60 bytes leftover after parsing attributes in process `syz.4.405'.
[   55.182826][ T4767] netlink: 60 bytes leftover after parsing attributes in process `syz.4.405'.
[   55.184107][ T4758] EXT4-fs (loop3): 1 orphan inode deleted
[   55.197628][ T4758] EXT4-fs (loop3): 1 truncate cleaned up
[   55.204268][ T3094] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.261262][ T4771] netlink: 148 bytes leftover after parsing attributes in process `syz.3.409'.
[   55.364208][   T36] team0 (unregistering): Port device team_slave_1 removed
[   55.375626][   T36] team0 (unregistering): Port device team_slave_0 removed
[   55.463788][ T4605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.506709][ T4605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.542602][ T4787] netlink: 8 bytes leftover after parsing attributes in process `syz.2.414'.
[   55.581507][ T4605] team0: Port device team_slave_0 added
[   55.690262][ T4605] team0: Port device team_slave_1 added
[   55.700646][ T4813] netlink: 48 bytes leftover after parsing attributes in process `syz.2.418'.
[   55.749504][ T4819] vhci_hcd: default hub control req: 0000 v0000 i0000 l2
[   55.762031][ T4605] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.769058][ T4605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.769091][ T4605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.779644][ T4605] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.814132][ T4605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.840156][ T4605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.870107][ T4825] loop4: detected capacity change from 0 to 1024
[   55.875426][ T4825] EXT4-fs: quotafile must be on filesystem root
[   55.919660][ T4605] hsr_slave_0: entered promiscuous mode
[   55.934015][ T4605] hsr_slave_1: entered promiscuous mode
[   55.970607][ T4605] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   55.979303][ T4605] Cannot create hsr debugfs directory
[   56.062097][ T4435] veth0_vlan: entered promiscuous mode
[   56.079696][ T4435] veth1_vlan: entered promiscuous mode
[   56.216442][ T4852] netlink: 48 bytes leftover after parsing attributes in process `syz.4.427'.
[   56.263293][ T4435] veth0_macvtap: entered promiscuous mode
[   56.280700][ T4859] FAULT_INJECTION: forcing a failure.
[   56.280700][ T4859] name failslab, interval 1, probability 0, space 0, times 0
[   56.289477][ T4435] veth1_macvtap: entered promiscuous mode
[   56.293415][ T4859] CPU: 1 PID: 4859 Comm: syz.4.428 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   56.308789][ T4859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   56.318935][ T4859] Call Trace:
[   56.322287][ T4859]  <TASK>
[   56.325223][ T4859]  dump_stack_lvl+0xf2/0x150
[   56.329931][ T4859]  dump_stack+0x15/0x20
[   56.334097][ T4859]  should_fail_ex+0x229/0x230
[   56.338802][ T4859]  ? wakeup_source_sysfs_add+0x37/0x1a0
[   56.344419][ T4859]  __should_failslab+0x92/0xa0
[   56.349217][ T4859]  should_failslab+0x9/0x20
[   56.353743][ T4859]  __kmalloc_cache_noprof+0x4b/0x2a0
[   56.359040][ T4859]  wakeup_source_sysfs_add+0x37/0x1a0
[   56.364472][ T4859]  wakeup_source_register+0x106/0x250
[   56.369935][ T4859]  ep_insert+0x7da/0xd20
[   56.374259][ T4859]  do_epoll_ctl+0x628/0x950
[   56.378800][ T4859]  __x64_sys_epoll_ctl+0xc6/0xf0
[   56.383831][ T4859]  x64_sys_call+0x278e/0x2e00
[   56.388607][ T4859]  do_syscall_64+0xc9/0x1c0
[   56.393118][ T4859]  ? clear_bhb_loop+0x55/0xb0
[   56.397835][ T4859]  ? clear_bhb_loop+0x55/0xb0
[   56.402578][ T4859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.408529][ T4859] RIP: 0033:0x7f30ca1f5b59
[   56.412946][ T4859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.432561][ T4859] RSP: 002b:00007f30c9477048 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[   56.441021][ T4859] RAX: ffffffffffffffda RBX: 00007f30ca385f60 RCX: 00007f30ca1f5b59
[   56.448999][ T4859] RDX: 0000000000000005 RSI: 0000000000000001 RDI: 0000000000000003
[   56.456975][ T4859] RBP: 00007f30c94770a0 R08: 0000000000000000 R09: 0000000000000000
[   56.465039][ T4859] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[   56.473021][ T4859] R13: 000000000000000b R14: 00007f30ca385f60 R15: 00007ffe379353a8
[   56.481001][ T4859]  </TASK>
[   56.509834][ T4435] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   56.520319][ T4435] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.530156][ T4435] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   56.540916][ T4435] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.550837][ T4435] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   56.561805][ T4435] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.574187][ T4435] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.593912][ T4863] netlink: 4 bytes leftover after parsing attributes in process `syz.2.429'.
[   56.611772][ T4435] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   56.622371][ T4435] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.632252][ T4435] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   56.642879][ T4435] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.652731][ T4435] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   56.663180][ T4435] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   56.692636][ T4871] loop4: detected capacity change from 0 to 256
[   56.712554][ T3094] FAT-fs (loop4): error, corrupted directory (invalid entries)
[   56.712615][ T4435] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.722557][ T3094] FAT-fs (loop4): error, corrupted directory (invalid entries)
[   56.751678][ T4861] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[   56.762065][ T4861] batman_adv: batadv0: Adding interface: ip6gretap1
[   56.768755][ T4861] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.794624][ T4861] batman_adv: batadv0: Not using interface ip6gretap1 (retrying later): interface not active
[   56.815012][ T4873] validate_nla: 2 callbacks suppressed
[   56.815030][ T4873] netlink: 'syz.3.434': attribute type 27 has an invalid length.
[   56.863359][ T4876] ieee802154 phy0 wpan0: encryption failed: -22
[   56.899908][ T4882] netlink: 48 bytes leftover after parsing attributes in process `syz.2.437'.
[   56.985721][ T4873] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.993070][ T4873] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.098861][ T4873] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   57.112438][ T4873] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   57.199945][ T4873] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.209124][ T4873] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.218072][ T4873] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.227046][ T4873] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.301040][ T4874] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.309548][ T4874] 8021q: adding VLAN 0 to HW filter on device team0
[   57.321206][ T4874] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   57.337953][ T4435] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.346880][ T4435] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.355598][ T4435] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.364409][ T4435] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.380607][ T4876] delete_channel: no stack
[   57.445476][ T4905] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=24592 sclass=netlink_route_socket pid=4905 comm=syz.3.441
[   57.517553][ T4605] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   57.545480][ T4605] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   57.568627][   T36] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.576659][ T4918] loop3: detected capacity change from 0 to 512
[   57.586538][ T4918] EXT4-fs: Ignoring removed oldalloc option
[   57.614348][ T4918] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   57.638248][ T4605] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   57.658331][ T4605] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   57.677774][ T4930] loop0: detected capacity change from 0 to 2048
[   57.685493][   T36] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.698220][ T4930] ext4: Unknown parameter 'measure'
[   57.713026][ T4918] EXT4-fs (loop3): 1 truncate cleaned up
[   57.743221][   T29] kauditd_printk_skb: 35 callbacks suppressed
[   57.743235][   T29] audit: type=1400 audit(1721490991.531:447): avc:  denied  { bind } for  pid=4928 comm="syz.0.448" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   57.773624][ T4930] loop0: detected capacity change from 0 to 512
[   57.793673][   T36] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.804057][ T4930] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   57.804081][ T4930] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[   57.804100][ T4930] EXT4-fs (loop0): group descriptors corrupted!
[   57.877410][   T36] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.939158][ T4605] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.982850][ T4605] 8021q: adding VLAN 0 to HW filter on device team0
[   57.991851][   T36] bridge_slave_1: left allmulticast mode
[   57.997656][   T36] bridge_slave_1: left promiscuous mode
[   58.003327][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.012692][ T4965] loop0: detected capacity change from 0 to 128
[   58.054137][ T4965] syz.0.449: attempt to access beyond end of device
[   58.054137][ T4965] loop0: rw=2049, sector=225, nr_sectors = 3 limit=128
[   58.208786][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   58.219469][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   58.229769][   T36] bond0 (unregistering): Released all slaves
[   58.263662][ T4890] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.270781][ T4890] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.280659][ T4890] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.287730][ T4890] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.314424][ T4924] chnl_net:caif_netlink_parms(): no params data found
[   58.394322][   T36] hsr_slave_0: left promiscuous mode
[   58.402219][   T29] audit: type=1400 audit(1721490992.191:448): avc:  denied  { connect } for  pid=5000 comm="syz.0.456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   58.433940][   T36] hsr_slave_1: left promiscuous mode
[   58.452697][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.460275][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[   58.512646][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.520157][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[   58.535286][ T5014] loop3: detected capacity change from 0 to 2048
[   58.542576][   T36] veth1_macvtap: left promiscuous mode
[   58.548395][   T36] veth0_macvtap: left promiscuous mode
[   58.554280][   T36] veth1_vlan: left promiscuous mode
[   58.559581][   T36] veth0_vlan: left promiscuous mode
[   58.567741][ T5014] ext4: Unknown parameter 'measure'
[   58.735757][   T36] team0 (unregistering): Port device team_slave_1 removed
[   58.757828][   T29] audit: type=1400 audit(1721490992.551:449): avc:  denied  { ioctl } for  pid=5025 comm="syz.0.464" path="/dev/mISDNtimer" dev="devtmpfs" ino=223 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   58.786083][   T36] team0 (unregistering): Port device team_slave_0 removed
[   58.814343][    C0] eth0: bad gso: type: 1, size: 1408
[   58.824845][ T5031] loop0: detected capacity change from 0 to 128
[   58.885068][ T5038] syz.0.466: attempt to access beyond end of device
[   58.885068][ T5038] loop0: rw=2049, sector=217, nr_sectors = 3 limit=128
[   58.897639][ T5031] syz.0.466: attempt to access beyond end of device
[   58.897639][ T5031] loop0: rw=2049, sector=225, nr_sectors = 8 limit=128
[   58.914322][ T4924] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.921499][ T4924] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.929144][ T4924] bridge_slave_0: entered allmulticast mode
[   58.935612][ T4924] bridge_slave_0: entered promiscuous mode
[   58.965722][ T4924] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.972893][ T4924] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.007933][ T4924] bridge_slave_1: entered allmulticast mode
[   59.016964][ T4924] bridge_slave_1: entered promiscuous mode
[   59.024051][ T5048] loop0: detected capacity change from 0 to 512
[   59.033576][ T4605] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.074131][ T4924] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.087374][ T5048] EXT4-fs: Ignoring removed oldalloc option
[   59.103102][ T5048] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   59.117458][ T4924] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.158249][ T5048] EXT4-fs (loop0): 1 truncate cleaned up
[   59.175102][ T4924] team0: Port device team_slave_0 added
[   59.193064][ T4924] team0: Port device team_slave_1 added
[   59.197999][ T5068] loop3: detected capacity change from 0 to 2048
[   59.207392][ T5068] ext4: Unknown parameter 'measure'
[   59.230326][ T5068] loop3: detected capacity change from 0 to 512
[   59.255272][ T5068] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   59.266365][ T5068] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[   59.276634][ T5068] EXT4-fs (loop3): group descriptors corrupted!
[   59.302994][ T4924] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.310192][ T4924] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.336153][ T4924] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.375255][ T4924] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.382339][ T4924] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.408378][ T4924] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.438274][ T4605] veth0_vlan: entered promiscuous mode
[   59.473290][ T5095] loop3: detected capacity change from 0 to 512
[   59.480445][ T5095] EXT4-fs: Ignoring removed nobh option
[   59.491147][ T4924] hsr_slave_0: entered promiscuous mode
[   59.498054][ T4924] hsr_slave_1: entered promiscuous mode
[   59.509670][ T4924] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.523798][ T4924] Cannot create hsr debugfs directory
[   59.541171][ T4605] veth1_vlan: entered promiscuous mode
[   59.564814][ T4605] veth0_macvtap: entered promiscuous mode
[   59.572600][ T4605] veth1_macvtap: entered promiscuous mode
[   59.584205][ T5095] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.587106][ T4605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.605096][ T4605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.614991][ T4605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.625478][ T4605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.641528][ T4605] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.666521][   T29] audit: type=1400 audit(1721490993.461:450): avc:  denied  { create } for  pid=5108 comm="syz.2.476" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   59.713498][ T5109] loop2: detected capacity change from 0 to 512
[   59.718733][ T4605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.730261][ T4605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.730856][ T5109] EXT4-fs: Ignoring removed nobh option
[   59.740563][ T4605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.757121][ T4605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.770252][ T4605] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.790388][ T5109] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[   59.799085][ T5109] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #13: comm syz.2.476: casefold flag without casefold feature
[   59.813791][ T5109] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.476: couldn't read orphan inode 13 (err -117)
[   59.830272][ T4605] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.839267][ T4605] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.848078][ T4605] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.856915][ T4605] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.886560][    C0] eth0: bad gso: type: 1, size: 1408
[   59.980162][ T5134] loop1: detected capacity change from 0 to 512
[   60.008184][ T5134] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   60.033170][   T29] audit: type=1326 audit(1721490993.821:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5133 comm="syz.1.388" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb12e235b59 code=0x0
[   60.107205][ T4924] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   60.130617][ T4924] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   60.159510][ T4924] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   60.175384][ T5163] loop0: detected capacity change from 0 to 2048
[   60.185001][ T4924] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   60.186496][ T5163] ext4: Unknown parameter 'measure'
[   60.266534][ T5163] loop0: detected capacity change from 0 to 512
[   60.275676][ T5163] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   60.286585][ T5163] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[   60.289762][ T4924] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.296594][ T5163] EXT4-fs (loop0): group descriptors corrupted!
[   60.333221][ T4924] 8021q: adding VLAN 0 to HW filter on device team0
[   60.349813][ T3162] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.357058][ T3162] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.368469][ T3162] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.375589][ T3162] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.390507][ T5171] loop3: detected capacity change from 0 to 128
[   60.410762][ T5171] syz.3.483: attempt to access beyond end of device
[   60.410762][ T5171] loop3: rw=2049, sector=225, nr_sectors = 3 limit=128
[   60.452030][ T4924] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   60.462661][ T4924] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   60.491820][   T29] audit: type=1400 audit(1721490994.281:452): avc:  denied  { setopt } for  pid=5179 comm="syz.0.484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   60.527617][ T5180] __nla_validate_parse: 3 callbacks suppressed
[   60.527645][ T5180] netlink: 4 bytes leftover after parsing attributes in process `syz.0.484'.
[   60.630553][ T5189] netlink: 'syz.3.485': attribute type 15 has an invalid length.
[   60.638437][ T5189] netlink: 723 bytes leftover after parsing attributes in process `syz.3.485'.
[   60.662560][ T5189] netlink: 4 bytes leftover after parsing attributes in process `syz.3.485'.
[   60.706751][ T4924] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.714227][   T29] audit: type=1400 audit(1721490994.501:453): avc:  denied  { map } for  pid=5198 comm="syz.3.486" path="socket:[11490]" dev="sockfs" ino=11490 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   60.737687][   T29] audit: type=1400 audit(1721490994.501:454): avc:  denied  { read } for  pid=5198 comm="syz.3.486" path="socket:[11490]" dev="sockfs" ino=11490 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   60.773424][ T5205] netlink: 32 bytes leftover after parsing attributes in process `syz.3.487'.
[   60.986759][ T4924] veth0_vlan: entered promiscuous mode
[   61.000082][ T4924] veth1_vlan: entered promiscuous mode
[   61.017110][ T4924] veth0_macvtap: entered promiscuous mode
[   61.024912][ T4924] veth1_macvtap: entered promiscuous mode
[   61.027803][   T29] audit: type=1400 audit(1721490994.821:455): avc:  denied  { ioctl } for  pid=5246 comm="syz.1.491" path="socket:[11088]" dev="sockfs" ino=11088 ioctlcmd=0xf513 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   61.114015][ T4924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.114631][ T5258] loop2: detected capacity change from 0 to 2048
[   61.124564][ T4924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.124585][ T4924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.151780][ T4924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.161660][ T4924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   61.172224][ T4924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.197624][ T5266] netlink: 48 bytes leftover after parsing attributes in process `syz.1.494'.
[   61.198039][ T5258] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.492: bad orphan inode 8192
[   61.217285][   T29] audit: type=1400 audit(1721490995.011:456): avc:  denied  { write } for  pid=2769 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   61.218960][ T4924] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.247590][ T4924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.258196][ T4924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.268231][ T4924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.278741][ T4924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.288603][ T4924] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.299167][ T4924] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.311226][ T4924] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.326642][ T4924] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.335589][ T4924] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.344536][ T4924] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.353801][ T4924] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.462003][ T5279] loop4: detected capacity change from 0 to 4096
[   61.473097][ T5281] loop1: detected capacity change from 0 to 2048
[   61.480175][ T5281] EXT4-fs: Ignoring removed orlov option
[   61.521552][ T5285] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   61.537686][ T5285] EXT4-fs (loop1): Remounting filesystem read-only
[   61.658449][ T5295] loop3: detected capacity change from 0 to 1024
[   61.665793][ T5297] netlink: 'syz.0.502': attribute type 2 has an invalid length.
[   61.669292][ T5295] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869)
[   61.683775][ T5295] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   61.694961][ T5295] EXT4-fs (loop3): invalid journal inode
[   61.713109][ T5301] loop1: detected capacity change from 0 to 128
[   61.728009][ T5305] netlink: 48 bytes leftover after parsing attributes in process `syz.0.504'.
[   61.779809][ T5301] syz.1.503: attempt to access beyond end of device
[   61.779809][ T5301] loop1: rw=2049, sector=225, nr_sectors = 3 limit=128
[   61.843109][ T5316] netlink: 32 bytes leftover after parsing attributes in process `syz.2.512'.
[   61.861912][ T5320] loop4: detected capacity change from 0 to 128
[   61.866236][ T5323] loop3: detected capacity change from 0 to 512
[   61.890809][ T5323] EXT4-fs: Ignoring removed oldalloc option
[   61.895293][ T5325] netlink: 12 bytes leftover after parsing attributes in process `syz.0.514'.
[   61.915367][ T5322] loop1: detected capacity change from 0 to 1024
[   61.921886][ T5325] netlink: 'syz.0.514': attribute type 1 has an invalid length.
[   61.976234][ T5323] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   62.013939][ T5323] EXT4-fs (loop3): 1 truncate cleaned up
[   62.017065][ T5334] loop0: detected capacity change from 0 to 512
[   62.054249][ T5335] loop1: detected capacity change from 0 to 512
[   62.066452][ T5334] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.090861][ T5335] ext4 filesystem being mounted at /13/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.207504][ T5334] EXT4-fs error (device loop0): ext4_add_entry:2435: inode #2: comm syz.0.516: Directory hole found for htree leaf block 0
[   62.766476][ T5353] bridge: RTM_NEWNEIGH with invalid state 0x0
[   62.791145][ T5355] netlink: 8 bytes leftover after parsing attributes in process `syz.3.521'.
[   62.809264][ T5357] loop2: detected capacity change from 0 to 128
[   62.873868][ T5357] syz.2.522: attempt to access beyond end of device
[   62.873868][ T5357] loop2: rw=2049, sector=225, nr_sectors = 3 limit=128
[   62.941069][   T29] kauditd_printk_skb: 11 callbacks suppressed
[   62.941083][   T29] audit: type=1400 audit(1721490996.731:468): avc:  denied  { mounton } for  pid=5366 comm="syz.2.527" path="/126/file0" dev="tmpfs" ino=698 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[   62.972538][ T5367] netlink: 'syz.2.527': attribute type 2 has an invalid length.
[   63.032784][   T29] audit: type=1400 audit(1721490996.821:469): avc:  denied  { bind } for  pid=5369 comm="syz.3.528" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   63.064087][ T5361] loop4: detected capacity change from 0 to 128
[   63.075829][ T5376] netlink: 48 bytes leftover after parsing attributes in process `syz.0.531'.
[   63.114340][ T5361] vfat: Unknown parameter 'ÿÿ'
[   63.132899][ T5345] syz.1.518 (5345) used greatest stack depth: 8872 bytes left
[   63.142272][ T5347] syz.1.518 (5347) used greatest stack depth: 8480 bytes left
[   63.153245][ T5348] syz.1.518 (5348) used greatest stack depth: 8272 bytes left
[   63.202388][   T29] audit: type=1400 audit(1721490996.991:470): avc:  denied  { setattr } for  pid=5373 comm="syz.2.530" path="/dev/snd/seq" dev="devtmpfs" ino=230 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sound_device_t tclass=chr_file permissive=1
[   63.273505][   T29] audit: type=1400 audit(1721490997.061:471): avc:  denied  { getopt } for  pid=5393 comm="syz.3.536" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   63.372314][   T29] audit: type=1326 audit(1721490997.161:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.538" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ad3cf5b59 code=0x0
[   63.415381][ T5407] loop4: detected capacity change from 0 to 2048
[   63.422132][   T29] audit: type=1326 audit(1721490997.191:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.538" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ad3cf5b59 code=0x0
[   63.445557][ T5407] EXT4-fs: Ignoring removed mblk_io_submit option
[   63.460656][ T5410] loop2: detected capacity change from 0 to 512
[   63.467156][ T5408] xt_CT: You must specify a L4 protocol and not use inversions on it
[   63.477426][   T29] audit: type=1400 audit(1721490997.261:474): avc:  denied  { remount } for  pid=5409 comm="syz.2.541" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   63.479866][ T5410] loop2: detected capacity change from 0 to 256
[   63.531359][ T5417] FAULT_INJECTION: forcing a failure.
[   63.531359][ T5417] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.544512][ T5417] CPU: 0 PID: 5417 Comm: syz.3.542 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   63.554303][ T5417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   63.564514][ T5417] Call Trace:
[   63.567887][ T5417]  <TASK>
[   63.570899][ T5417]  dump_stack_lvl+0xf2/0x150
[   63.575573][ T5417]  dump_stack+0x15/0x20
[   63.579786][ T5417]  should_fail_ex+0x229/0x230
[   63.584588][ T5417]  should_fail+0xb/0x10
[   63.588784][ T5417]  should_fail_usercopy+0x1a/0x20
[   63.593829][ T5417]  _copy_from_iter+0xd3/0xb00
[   63.598543][ T5417]  ? alloc_pages_mpol_noprof+0xd5/0x1e0
[   63.604124][ T5417]  copy_page_from_iter+0x14f/0x280
[   63.609262][ T5417]  tun_get_user+0x689/0x24b0
[   63.613912][ T5417]  ? kstrtoull+0x110/0x140
[   63.618353][ T5417]  ? ref_tracker_alloc+0x1f5/0x2f0
[   63.623507][ T5417]  tun_chr_write_iter+0x18e/0x240
[   63.628588][ T5417]  vfs_write+0x78f/0x900
[   63.632911][ T5417]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   63.638492][ T5417]  ksys_write+0xeb/0x1b0
[   63.642771][ T5417]  __x64_sys_write+0x42/0x50
[   63.647453][ T5417]  x64_sys_call+0x2a40/0x2e00
[   63.652211][ T5417]  do_syscall_64+0xc9/0x1c0
[   63.656728][ T5417]  ? clear_bhb_loop+0x55/0xb0
[   63.661471][ T5417]  ? clear_bhb_loop+0x55/0xb0
[   63.666167][ T5417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.672160][ T5417] RIP: 0033:0x7f8ad3cf46df
[   63.676709][ T5417] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[   63.696342][ T5417] RSP: 002b:00007f8ad2f77010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   63.704812][ T5417] RAX: ffffffffffffffda RBX: 00007f8ad3e85f60 RCX: 00007f8ad3cf46df
[   63.712807][ T5417] RDX: 000000000000002a RSI: 00000000200002c0 RDI: 00000000000000c8
[   63.720832][ T5417] RBP: 00007f8ad2f770a0 R08: 0000000000000000 R09: 0000000000000000
[   63.728806][ T5417] R10: 000000000000002a R11: 0000000000000293 R12: 0000000000000001
[   63.736839][ T5417] R13: 000000000000000b R14: 00007f8ad3e85f60 R15: 00007fff62d5da78
[   63.744816][ T5417]  </TASK>
[   63.767912][   T29] audit: type=1400 audit(1721490997.561:475): avc:  denied  { create } for  pid=5421 comm="syz.4.543" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   63.794182][ T5346] syz.1.518 (5346) used greatest stack depth: 6424 bytes left
[   63.813308][ T5422] ALSA: seq fatal error: cannot create timer (-22)
[   63.914601][ T5441] loop3: detected capacity change from 0 to 512
[   63.922091][ T5433] loop4: detected capacity change from 0 to 512
[   63.948479][ T5433] EXT4-fs (loop4): orphan cleanup on readonly fs
[   63.958156][ T5433] Quota error (device loop4): v2_read_file_info: Block with free entry 9 out of range (1, 6).
[   63.970831][ T5433] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   63.987341][ T5433] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   63.997649][ T5433] EXT4-fs (loop4): 1 truncate cleaned up
[   64.024314][ T5449] loop1: detected capacity change from 0 to 512
[   64.036910][ T5449] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   64.048560][ T5449] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #17: comm syz.1.554: iget: bad extended attribute block 131072
[   64.064196][ T5449] EXT4-fs (loop1): Remounting filesystem read-only
[   64.071394][ T5449] SELinux: (dev loop1, type ext4) getxattr errno 5
[   64.083965][ T5447] loop3: detected capacity change from 0 to 4096
[   64.088066][ T5454] loop0: detected capacity change from 0 to 256
[   64.107074][ T5454] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   64.133331][ T5447] EXT4-fs error (device loop3): ext4_quota_enable:7022: inode #3: comm syz.3.553: casefold flag without casefold feature
[   64.152289][ T5449] loop1: detected capacity change from 0 to 4096
[   64.167107][ T5447] EXT4-fs (loop3): Remounting filesystem read-only
[   64.173687][ T5447] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   64.193141][ T5449] EXT4-fs: Ignoring removed nobh option
[   64.198875][ T5449] EXT4-fs: Ignoring removed i_version option
[   64.216235][ T5447] EXT4-fs (loop3): mount failed
[   64.322940][   T29] audit: type=1400 audit(1721490998.111:476): avc:  denied  { bind } for  pid=5446 comm="syz.3.553" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   64.360604][ T5484] loop1: detected capacity change from 0 to 512
[   64.369958][ T5484] EXT4-fs: Ignoring removed oldalloc option
[   64.380338][ T5484] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   64.397036][ T5484] EXT4-fs (loop1): 1 truncate cleaned up
[   64.444749][ T5494] loop0: detected capacity change from 0 to 1024
[   64.457112][ T5494] EXT4-fs: Ignoring removed orlov option
[   64.462891][ T5494] EXT4-fs: Ignoring removed nomblk_io_submit option
[   64.499792][ T5502] loop3: detected capacity change from 0 to 128
[   64.514846][ T5502] syz.3.569: attempt to access beyond end of device
[   64.514846][ T5502] loop3: rw=2049, sector=225, nr_sectors = 3 limit=128
[   64.574098][ T5509] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   64.581072][ T5507] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5507 comm=syz.0.571
[   64.581853][ T5509] vhci_hcd: invalid port number 23
[   64.649649][ T5517] loop2: detected capacity change from 0 to 2048
[   65.543597][ T5554] loop3: detected capacity change from 0 to 512
[   65.554818][ T5554] EXT4-fs (loop3): orphan cleanup on readonly fs
[   65.562849][ T5554] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #4: comm syz.3.586: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   65.570615][ T5557] loop0: detected capacity change from 0 to 1024
[   65.583833][ T5554] EXT4-fs error (device loop3): ext4_quota_enable:7025: comm syz.3.586: Bad quota inode: 4, type: 1
[   65.599588][ T5554] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   65.609717][ T5557] EXT4-fs: Ignoring removed orlov option
[   65.617675][ T5554] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   65.620153][ T5557] EXT4-fs: Ignoring removed nomblk_io_submit option
[   65.673619][ T5566] __nla_validate_parse: 5 callbacks suppressed
[   65.673636][ T5566] netlink: 48 bytes leftover after parsing attributes in process `syz.3.590'.
[   65.733101][ T5577] dccp_invalid_packet: P.Data Offset(172) too large
[   65.753343][ T5579] loop3: detected capacity change from 0 to 256
[   65.778857][ T5579] FAT-fs (loop3): error, corrupted file size (i_pos 196, 2097152)
[   65.786782][ T5579] FAT-fs (loop3): Filesystem has been set read-only
[   65.953485][ T5601] netlink: 48 bytes leftover after parsing attributes in process `syz.2.603'.
[   66.020177][ T5608] loop1: detected capacity change from 0 to 512
[   66.028419][ T5608] EXT4-fs: Ignoring removed orlov option
[   66.038420][ T5608] ext4 filesystem being mounted at /27/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.055658][ T5613] dccp_invalid_packet: P.Data Offset(172) too large
[   66.126491][ T5616] netlink: 'syz.1.608': attribute type 2 has an invalid length.
[   66.353776][ T5642] FAULT_INJECTION: forcing a failure.
[   66.353776][ T5642] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.366998][ T5642] CPU: 0 PID: 5642 Comm: syz.1.617 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   66.376773][ T5642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   66.387014][ T5642] Call Trace:
[   66.390316][ T5642]  <TASK>
[   66.393246][ T5642]  dump_stack_lvl+0xf2/0x150
[   66.397925][ T5642]  dump_stack+0x15/0x20
[   66.402087][ T5642]  should_fail_ex+0x229/0x230
[   66.406775][ T5642]  should_fail+0xb/0x10
[   66.410949][ T5642]  should_fail_usercopy+0x1a/0x20
[   66.415973][ T5642]  _copy_to_user+0x1e/0xa0
[   66.420479][ T5642]  simple_read_from_buffer+0xa0/0x110
[   66.425881][ T5642]  proc_fail_nth_read+0xfc/0x140
[   66.430830][ T5642]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   66.436579][ T5642]  vfs_read+0x1a2/0x6e0
[   66.440744][ T5642]  ? __rcu_read_unlock+0x4e/0x70
[   66.445688][ T5642]  ? __fget_files+0x1da/0x210
[   66.450372][ T5642]  ksys_read+0xeb/0x1b0
[   66.454564][ T5642]  __x64_sys_read+0x42/0x50
[   66.459087][ T5642]  x64_sys_call+0x2a36/0x2e00
[   66.463854][ T5642]  do_syscall_64+0xc9/0x1c0
[   66.468360][ T5642]  ? clear_bhb_loop+0x55/0xb0
[   66.473096][ T5642]  ? clear_bhb_loop+0x55/0xb0
[   66.477776][ T5642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.483725][ T5642] RIP: 0033:0x7fb12e23463c
[   66.488214][ T5642] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[   66.507933][ T5642] RSP: 002b:00007fb12d4b7040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   66.516363][ T5642] RAX: ffffffffffffffda RBX: 00007fb12e3c5f60 RCX: 00007fb12e23463c
[   66.524351][ T5642] RDX: 000000000000000f RSI: 00007fb12d4b70b0 RDI: 0000000000000006
[   66.532356][ T5642] RBP: 00007fb12d4b70a0 R08: 0000000000000000 R09: 0000000000000000
[   66.540431][ T5642] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000001
[   66.548404][ T5642] R13: 000000000000000b R14: 00007fb12e3c5f60 R15: 00007ffd035eb2c8
[   66.556529][ T5642]  </TASK>
[   66.595576][ T5652] loop1: detected capacity change from 0 to 128
[   66.610668][ T5652] syz.1.620: attempt to access beyond end of device
[   66.610668][ T5652] loop1: rw=2049, sector=225, nr_sectors = 3 limit=128
[   66.636669][ T5654] loop1: detected capacity change from 0 to 128
[   66.664476][ T5656] loop1: detected capacity change from 0 to 256
[   66.734707][ T5666] loop1: detected capacity change from 0 to 4096
[   66.743850][ T5666] EXT4-fs error (device loop1): ext4_quota_enable:7022: inode #3: comm syz.1.626: casefold flag without casefold feature
[   66.758093][ T5666] EXT4-fs (loop1): Remounting filesystem read-only
[   66.764665][ T5666] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   66.779636][ T5666] EXT4-fs (loop1): mount failed
[   66.860019][ T5671] netlink: 8 bytes leftover after parsing attributes in process `syz.4.627'.
[   66.980310][ T5692] FAULT_INJECTION: forcing a failure.
[   66.980310][ T5692] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.993606][ T5692] CPU: 1 PID: 5692 Comm: syz.1.635 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   66.996852][ T5694] loop4: detected capacity change from 0 to 2048
[   67.003258][ T5692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   67.003274][ T5692] Call Trace:
[   67.003284][ T5692]  <TASK>
[   67.015191][ T5685] loop0: detected capacity change from 0 to 1024
[   67.019632][ T5692]  dump_stack_lvl+0xf2/0x150
[   67.019671][ T5692]  dump_stack+0x15/0x20
[   67.024028][ T5685] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869)
[   67.025877][ T5692]  should_fail_ex+0x229/0x230
[   67.025918][ T5692]  should_fail+0xb/0x10
[   67.033215][ T5685] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   67.036821][ T5692]  should_fail_usercopy+0x1a/0x20
[   67.036850][ T5692]  _copy_from_user+0x1e/0xd0
[   67.041959][ T5685] EXT4-fs (loop0): invalid journal inode
[   67.050731][ T5692]  ucma_resolve_addr+0x4f/0x1c0
[   67.050779][ T5692]  ucma_write+0x1aa/0x240
[   67.050802][ T5692]  ? __pfx_ucma_write+0x10/0x10
[   67.050827][ T5692]  vfs_write+0x28b/0x900
[   67.050852][ T5692]  ? __fget_files+0x1da/0x210
[   67.050911][ T5692]  ksys_write+0xeb/0x1b0
[   67.050938][ T5692]  __x64_sys_write+0x42/0x50
[   67.050965][ T5692]  x64_sys_call+0x2a40/0x2e00
[   67.050998][ T5692]  do_syscall_64+0xc9/0x1c0
[   67.126642][ T5692]  ? clear_bhb_loop+0x55/0xb0
[   67.131348][ T5692]  ? clear_bhb_loop+0x55/0xb0
[   67.136089][ T5692]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.142002][ T5692] RIP: 0033:0x7fb12e235b59
[   67.146436][ T5692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.166415][ T5692] RSP: 002b:00007fb12d4b7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   67.174834][ T5692] RAX: ffffffffffffffda RBX: 00007fb12e3c5f60 RCX: 00007fb12e235b59
[   67.182821][ T5692] RDX: 0000000000000118 RSI: 0000000020000140 RDI: 0000000000000003
[   67.190814][ T5692] RBP: 00007fb12d4b70a0 R08: 0000000000000000 R09: 0000000000000000
[   67.199377][ T5692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.207402][ T5692] R13: 000000000000000b R14: 00007fb12e3c5f60 R15: 00007ffd035eb2c8
[   67.215391][ T5692]  </TASK>
[   67.287771][ T5703] dccp_v6_rcv: dropped packet with invalid checksum
[   67.300972][ T5708] netlink: 104 bytes leftover after parsing attributes in process `syz.2.641'.
[   67.333540][ T5705] loop0: detected capacity change from 0 to 512
[   67.341960][ T5705] EXT4-fs (loop0): orphan cleanup on readonly fs
[   67.349391][ T5705] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.640: Failed to acquire dquot type 1
[   67.370685][ T5705] EXT4-fs (loop0): 1 truncate cleaned up
[   67.403846][ T5712] loop2: detected capacity change from 0 to 1024
[   67.448817][ T5712] EXT4-fs mount: 43 callbacks suppressed
[   67.448836][ T5712] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.451342][ T5716] netlink: 'syz.0.644': attribute type 4 has an invalid length.
[   67.454756][ T5712] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.511760][ T5712] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #15: comm syz.2.642: corrupted xattr block 128: overlapping e_value 
[   67.521644][ T5725] netlink: 'syz.0.644': attribute type 4 has an invalid length.
[   67.534814][ T5712] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   67.543987][ T5712] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #15: comm syz.2.642: corrupted xattr block 128: overlapping e_value 
[   67.566032][ T5712] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   67.577110][ T5712] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #15: comm syz.2.642: corrupted xattr block 128: overlapping e_value 
[   67.609679][ T3090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.661835][ T5737] loop4: detected capacity change from 0 to 512
[   67.684308][ T5737] EXT4-fs: Ignoring removed orlov option
[   67.702154][ T5737] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.650: lblock 0 mapped to illegal pblock 3 (length 1)
[   67.713761][ T5744] netlink: 'syz.0.653': attribute type 5 has an invalid length.
[   67.736347][ T5737] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.650: error -117 reading directory block
[   67.749086][ T5737] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[   67.757669][ T5737] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.788893][ T5737] netlink: 16 bytes leftover after parsing attributes in process `syz.4.650'.
[   67.855682][ T5762] EXT4-fs error (device loop4): ext4_map_blocks:609: inode #2: block 3: comm syz.4.650: lblock 0 mapped to illegal pblock 3 (length 1)
[   67.870723][ T5759] loop3: detected capacity change from 0 to 128
[   67.885118][ T5759] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978)
[   67.901353][ T5762] EXT4-fs warning (device loop4): dx_probe:823: inode #2: lblock 0: comm syz.4.650: error -117 reading directory block
[   67.922513][ T5759] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[   67.939091][ T5759] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #2: comm syz.3.660: No space for directory leaf checksum. Please run e2fsck -D.
[   67.954468][ T5759] EXT4-fs error (device loop3): __ext4_find_entry:1652: inode #2: comm syz.3.660: checksumming directory block 0
[   67.964671][ T5770] loop2: detected capacity change from 0 to 128
[   67.973169][ T5759] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #2: comm syz.3.660: No space for directory leaf checksum. Please run e2fsck -D.
[   67.984047][ T5770] FAT-fs (loop2): Directory bread(block 160) failed
[   67.988535][ T5759] EXT4-fs error (device loop3): __ext4_find_entry:1652: inode #2: comm syz.3.660: checksumming directory block 0
[   68.005222][ T5770] FAT-fs (loop2): Directory bread(block 161) failed
[   68.016274][ T4924] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.017334][ T5759] netlink: 12 bytes leftover after parsing attributes in process `syz.3.660'.
[   68.026089][ T5770] FAT-fs (loop2): Directory bread(block 162) failed
[   68.050589][ T5770] FAT-fs (loop2): Directory bread(block 163) failed
[   68.057617][ T5770] FAT-fs (loop2): Directory bread(block 164) failed
[   68.057646][ T5770] FAT-fs (loop2): Directory bread(block 165) failed
[   68.057670][ T5770] FAT-fs (loop2): Directory bread(block 166) failed
[   68.057709][ T5770] FAT-fs (loop2): Directory bread(block 167) failed
[   68.102234][ T5774] netlink: 'syz.4.666': attribute type 7 has an invalid length.
[   68.102255][ T5774] netlink: 140 bytes leftover after parsing attributes in process `syz.4.666'.
[   68.106934][ T5759] netlink: 8 bytes leftover after parsing attributes in process `syz.3.660'.
[   68.107731][ T5759] xt_hashlimit: invalid rate
[   68.159126][ T3507] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   68.235484][ T5770] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5770 comm=syz.2.664
[   68.265004][ T5782] loop3: detected capacity change from 0 to 1024
[   68.301313][ T5782] EXT4-fs: Ignoring removed orlov option
[   68.307156][ T5782] EXT4-fs: Ignoring removed nomblk_io_submit option
[   68.334031][ T5792] netlink: 104 bytes leftover after parsing attributes in process `syz.0.675'.
[   68.352649][ T5770] FAT-fs (loop2): Directory bread(block 160) failed
[   68.364362][   T29] kauditd_printk_skb: 133 callbacks suppressed
[   68.364379][   T29] audit: type=1400 audit(1721491002.151:608): avc:  denied  { setopt } for  pid=5791 comm="syz.0.675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   68.376341][ T5770] FAT-fs (loop2): Directory bread(block 161) failed
[   68.413809][ T5782] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.467515][ T5800] netlink: 20 bytes leftover after parsing attributes in process `syz.0.676'.
[   68.477364][ T5800] syzkaller1: entered promiscuous mode
[   68.482880][ T5800] syzkaller1: entered allmulticast mode
[   68.560295][ T3507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.564708][   T29] audit: type=1400 audit(1721491002.351:609): avc:  denied  { nlmsg_write } for  pid=5815 comm="syz.1.679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   68.595705][ T5816] loop1: detected capacity change from 0 to 512
[   68.608801][ T5816] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.613358][ T5822] loop3: detected capacity change from 0 to 512
[   68.621580][ T5816] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.636178][ T3113] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.673297][   T29] audit: type=1400 audit(1721491002.461:610): avc:  denied  { ioctl } for  pid=5815 comm="syz.1.679" path="socket:[13067]" dev="sockfs" ino=13067 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   68.681555][ T5829] loop0: detected capacity change from 0 to 512
[   68.708649][ T5829] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.682: corrupted in-inode xattr: bad e_name length
[   68.725723][ T4605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.732088][ T5829] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.682: couldn't read orphan inode 15 (err -117)
[   68.735663][ T5822] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.678: bg 0: block 35: padding at end of block bitmap is not set
[   68.762996][ T5829] EXT4-fs (loop0): mounted filesystem 00000004-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.771172][ T5822] EXT4-fs (loop3): Remounting filesystem read-only
[   68.777431][ T3113] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.783660][ T5822] EXT4-fs (loop3): 1 truncate cleaned up
[   68.798533][ T5822] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.810744][ T5822] SELinux: (dev loop3, type ext4) getxattr errno 5
[   68.816358][ T5796] chnl_net:caif_netlink_parms(): no params data found
[   68.817716][ T5822] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.840684][ T3113] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.865031][   T29] audit: type=1400 audit(1721491002.651:611): avc:  denied  { relabelfrom } for  pid=5834 comm="syz.1.683" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   68.884780][   T29] audit: type=1400 audit(1721491002.651:612): avc:  denied  { relabelto } for  pid=5834 comm="syz.1.683" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[   68.910885][ T3113] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.934929][ T5796] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.942076][ T5796] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.949596][ T5796] bridge_slave_0: entered allmulticast mode
[   68.956269][ T5796] bridge_slave_0: entered promiscuous mode
[   68.963344][ T5796] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.970425][ T5796] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.977653][ T5796] bridge_slave_1: entered allmulticast mode
[   68.984152][ T5796] bridge_slave_1: entered promiscuous mode
[   69.019971][ T5796] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.030792][ T5796] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.061389][ T5846] loop3: detected capacity change from 0 to 256
[   69.068385][ T3113] bridge_slave_1: left allmulticast mode
[   69.074159][ T3113] bridge_slave_1: left promiscuous mode
[   69.079923][ T3113] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.088713][ T3113] bridge_slave_0: left allmulticast mode
[   69.094406][ T3113] bridge_slave_0: left promiscuous mode
[   69.100136][ T3113] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.127807][   T29] audit: type=1400 audit(1721491002.921:613): avc:  denied  { remount } for  pid=5843 comm="syz.3.687" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   69.200559][ T3113] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   69.211542][ T3113] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   69.223732][ T3113] bond0 (unregistering): Released all slaves
[   69.233809][ T5845] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[   69.243443][ T5796] team0: Port device team_slave_0 added
[   69.251175][ T5851] process 'syz.3.687' launched './file1' with NULL argv: empty string added
[   69.253997][ T5796] team0: Port device team_slave_1 added
[   69.260107][ T5851] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[   69.275660][ T5851] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[   69.285934][ T5851] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[   69.297882][ T5796] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.304835][ T5796] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.330893][ T5796] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.352969][ T5847] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[   69.366159][ T5796] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.373234][ T5796] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.376951][ T5855] loop1: detected capacity change from 0 to 512
[   69.399185][ T5796] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.400270][    C0] eth0: bad gso: type: 1, size: 1408
[   69.408216][ T5855] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   69.417159][    C0] eth0: bad gso: type: 1, size: 1408
[   69.423944][ T5855] EXT4-fs (loop1): invalid journal inode
[   69.430399][    C0] eth0: bad gso: type: 1, size: 1408
[   69.443149][ T5853] ip6gretap0: entered promiscuous mode
[   69.448452][ T5855] EXT4-fs (loop1): can't get journal size
[   69.457625][ T5853] ip6gretap0: left promiscuous mode
[   69.458515][ T5855] EXT4-fs (loop1): 1 truncate cleaned up
[   69.469375][ T5855] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.493524][ T3113] hsr_slave_0: left promiscuous mode
[   69.499522][ T3113] hsr_slave_1: left promiscuous mode
[   69.505458][ T3113] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   69.512949][ T3113] batman_adv: batadv0: Removing interface: batadv_slave_0
[   69.520752][ T3113] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   69.528226][ T3113] batman_adv: batadv0: Removing interface: batadv_slave_1
[   69.537990][ T3113] veth1_macvtap: left promiscuous mode
[   69.543468][ T3113] veth0_macvtap: left promiscuous mode
[   69.549095][ T3113] veth1_vlan: left promiscuous mode
[   69.554417][ T3113] veth0_vlan: left promiscuous mode
[   69.655613][ T3113] team0 (unregistering): Port device team_slave_1 removed
[   69.669342][ T3113] team0 (unregistering): Port device team_slave_0 removed
[   69.738292][ T5796] hsr_slave_0: entered promiscuous mode
[   69.744427][ T5796] hsr_slave_1: entered promiscuous mode
[   69.751310][ T5796] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   69.759323][ T5796] Cannot create hsr debugfs directory
[   69.803613][ T5869] ip6gretap0: entered promiscuous mode
[   69.811249][ T5869] ip6gretap0: left promiscuous mode
[   69.897538][   T29] audit: type=1400 audit(1721491003.691:614): avc:  denied  { unmount } for  pid=3090 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   69.932853][   T29] audit: type=1400 audit(1721491003.721:615): avc:  denied  { append } for  pid=5875 comm="syz.2.693" name="pfkey" dev="proc" ino=4026532836 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   70.035342][ T5888] syz.3.698[5888] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.035465][ T5888] syz.3.698[5888] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.166607][ T5892] xt_bpf: check failed: parse error
[   70.237994][ T4605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.319920][ T5894] FAULT_INJECTION: forcing a failure.
[   70.319920][ T5894] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.333139][ T5894] CPU: 1 PID: 5894 Comm: syz.1.700 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   70.342837][ T5894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   70.352919][ T5894] Call Trace:
[   70.356257][ T5894]  <TASK>
[   70.359246][ T5894]  dump_stack_lvl+0xf2/0x150
[   70.363866][ T5894]  dump_stack+0x15/0x20
[   70.368049][ T5894]  should_fail_ex+0x229/0x230
[   70.372762][ T5894]  should_fail+0xb/0x10
[   70.377001][ T5894]  should_fail_usercopy+0x1a/0x20
[   70.382045][ T5894]  _copy_to_iter+0xd3/0xaf0
[   70.386676][ T5894]  ? try_charge_memcg+0xab5/0xcd0
[   70.391737][ T5894]  ? xa_load+0xb9/0xe0
[   70.395846][ T5894]  ? __virt_addr_valid+0x1ed/0x250
[   70.401194][ T5894]  ? __check_object_size+0x35b/0x510
[   70.406540][ T5894]  __skb_datagram_iter+0x2aa/0x5c0
[   70.411672][ T5894]  ? __pfx_simple_copy_to_iter+0x10/0x10
[   70.417328][ T5894]  skb_copy_datagram_iter+0x41/0x130
[   70.422654][ T5894]  mptcp_recvmsg+0x37b/0x16a0
[   70.427362][ T5894]  ? __pfx_mptcp_recvmsg+0x10/0x10
[   70.432512][ T5894]  inet6_recvmsg+0x171/0x290
[   70.437135][ T5894]  sock_recvmsg+0x9a/0x170
[   70.441577][ T5894]  ____sys_recvmsg+0xf9/0x280
[   70.446307][ T5894]  do_recvmmsg+0x2eb/0x720
[   70.450829][ T5894]  __x64_sys_recvmmsg+0xe2/0x170
[   70.455821][ T5894]  x64_sys_call+0x1b8b/0x2e00
[   70.460655][ T5894]  do_syscall_64+0xc9/0x1c0
[   70.465324][ T5894]  ? clear_bhb_loop+0x55/0xb0
[   70.470101][ T5894]  ? clear_bhb_loop+0x55/0xb0
[   70.474835][ T5894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.480763][ T5894] RIP: 0033:0x7fb12e235b59
[   70.485228][ T5894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.504858][ T5894] RSP: 002b:00007fb12d4b7048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   70.513291][ T5894] RAX: ffffffffffffffda RBX: 00007fb12e3c5f60 RCX: 00007fb12e235b59
[   70.521280][ T5894] RDX: 0000000000000001 RSI: 0000000020000900 RDI: 0000000000000003
[   70.529275][ T5894] RBP: 00007fb12d4b70a0 R08: 0000000000000000 R09: 0000000000000000
[   70.537568][ T5894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.545562][ T5894] R13: 000000000000004d R14: 00007fb12e3c5f60 R15: 00007ffd035eb2c8
[   70.553623][ T5894]  </TASK>
[   70.593587][ T5902] loop1: detected capacity change from 0 to 512
[   70.600628][ T5902] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.610263][ T5902] EXT4-fs (loop1): orphan cleanup on readonly fs
[   70.616916][ T5902] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   70.625438][ T5902] EXT4-fs (loop1): 1 truncate cleaned up
[   70.632522][ T5902] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.648869][ T5902] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   70.649352][ T5905] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=5905 comm=syz.2.705
[   70.718595][ T5796] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   70.732728][ T5796] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   70.742396][ T5796] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   70.751836][ T5796] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   70.817423][ T5796] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.842305][ T5796] 8021q: adding VLAN 0 to HW filter on device team0
[   70.856283][ T4888] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.863379][ T4888] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.884923][ T5796] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   70.895394][ T5796] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   70.910695][ T3165] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.918054][ T3165] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.960034][ T5925] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61466 sclass=netlink_route_socket pid=5925 comm=syz.3.710
[   71.027630][ T5935] netlink: 'syz.2.712': attribute type 4 has an invalid length.
[   71.035310][ T5935] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.712'.
[   71.061895][ T5796] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.076088][   T29] audit: type=1400 audit(1721491004.861:616): avc:  denied  { map } for  pid=5934 comm="syz.2.712" path="socket:[14367]" dev="sockfs" ino=14367 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[   71.119681][ T5947] loop3: detected capacity change from 0 to 1024
[   71.120251][   T29] audit: type=1400 audit(1721491004.891:617): avc:  denied  { module_request } for  pid=5796 comm="syz-executor" kmod="netdevsim4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   71.150572][ T5947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.181623][ T3507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.258874][ T5971] loop3: detected capacity change from 0 to 512
[   71.289438][ T5971] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.293001][ T5796] veth0_vlan: entered promiscuous mode
[   71.302581][ T5971] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.322636][ T5974] xt_bpf: check failed: parse error
[   71.341779][ T5796] veth1_vlan: entered promiscuous mode
[   71.344352][ T3507] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 3: comm syz-executor: path /135/file0: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=113, rec_len=0, size=2048 fake=0
[   71.367659][ T5796] veth0_macvtap: entered promiscuous mode
[   71.374468][ T3507] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 12: comm syz-executor: path /135/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[   71.378691][ T5796] veth1_macvtap: entered promiscuous mode
[   71.403636][ T3507] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 13: comm syz-executor: path /135/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[   71.410347][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.435424][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.445523][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.456084][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.465893][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.467672][ T3507] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 14: comm syz-executor: path /135/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=1, rec_len=0, size=2048 fake=0
[   71.476376][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.509313][ T3507] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 15: comm syz-executor: path /135/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[   71.510327][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.531369][ T4605] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.537659][ T5414] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 312: padding at end of block bitmap is not set
[   71.548986][ T3507] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /135/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[   71.564536][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.592881][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.593095][ T3507] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 17: comm syz-executor: path /135/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[   71.602707][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.624643][ T3507] EXT4-fs error (device loop3): ext4_map_blocks:609: inode #2: block 18: comm syz-executor: lblock 23 mapped to illegal pblock 18 (length 1)
[   71.633618][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.633638][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.650583][ T3507] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz-executor: Failed to acquire dquot type 0
[   71.657965][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.670268][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.698060][ T5479] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.700219][ T5796] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.715816][ T5796] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.724596][ T5796] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.733350][ T5796] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.889456][ T5991] loop1: detected capacity change from 0 to 512
[   71.900133][ T5991] SELinux:  Context system_u:object_r:mnt_t:s0 is not valid (left unmapped).
[   71.938737][ T5998] loop4: detected capacity change from 0 to 512
[   71.945333][ T5998] EXT4-fs: Ignoring removed oldalloc option
[   71.972542][ T5998] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   71.988071][ T1171] bridge_slave_1: left allmulticast mode
[   71.993916][ T1171] bridge_slave_1: left promiscuous mode
[   71.999565][ T1171] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.007949][ T5998] EXT4-fs (loop4): 1 truncate cleaned up
[   72.013803][ T1171] bridge_slave_0: left allmulticast mode
[   72.014157][ T5998] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.019602][ T1171] bridge_slave_0: left promiscuous mode
[   72.019819][ T1171] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.076162][   T24] SELinux: failure in sel_netif_sid_slow(), invalid network interface (13)
[   72.128459][ T5796] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 18: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[   72.148661][ T1171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   72.160810][ T1171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   72.170863][ T1171] bond0 (unregistering): Released all slaves
[   72.225472][ T6008] bridge0: entered promiscuous mode
[   72.230740][ T6008] bridge0: entered allmulticast mode
[   72.242049][ T6015] netlink: 'syz.1.732': attribute type 2 has an invalid length.
[   72.249782][ T6015] netlink: 'syz.1.732': attribute type 4 has an invalid length.
[   72.257557][ T6015] netlink: 132 bytes leftover after parsing attributes in process `syz.1.732'.
[   72.279727][ T5983] chnl_net:caif_netlink_parms(): no params data found
[   72.298594][ T6030] loop2: detected capacity change from 0 to 1024
[   72.310873][ T6030] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   72.331937][ T6030] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.374507][    C0] ==================================================================
[   72.382638][    C0] BUG: KCSAN: data-race in can_send / can_send
[   72.388846][    C0] 
[   72.391183][    C0] read-write to 0xffff8881122690f0 of 8 bytes by interrupt on cpu 1:
[   72.399271][    C0]  can_send+0x576/0x5d0
[   72.403465][    C0]  bcm_can_tx+0x314/0x420
[   72.407822][    C0]  bcm_tx_timeout_handler+0xdb/0x260
[   72.413138][    C0]  __hrtimer_run_queues+0x20d/0x5e0
[   72.418367][    C0]  hrtimer_run_softirq+0xe4/0x2c0
[   72.423604][    C0]  handle_softirqs+0xc3/0x280
[   72.428318][    C0]  do_softirq+0x5e/0x90
[   72.432507][    C0]  __local_bh_enable_ip+0x6e/0x70
[   72.437564][    C0]  _raw_spin_unlock_bh+0x36/0x40
[   72.442525][    C0]  batadv_nc_purge_paths+0x21d/0x270
[   72.447844][    C0]  batadv_nc_worker+0x402/0xac0
[   72.452803][    C0]  process_scheduled_works+0x483/0x9a0
[   72.458314][    C0]  worker_thread+0x526/0x700
[   72.462929][    C0]  kthread+0x1d1/0x210
[   72.467037][    C0]  ret_from_fork+0x4b/0x60
[   72.471496][    C0]  ret_from_fork_asm+0x1a/0x30
[   72.476476][    C0] 
[   72.478808][    C0] read-write to 0xffff8881122690f0 of 8 bytes by interrupt on cpu 0:
[   72.486915][    C0]  can_send+0x576/0x5d0
[   72.491109][    C0]  bcm_can_tx+0x314/0x420
[   72.495452][    C0]  bcm_tx_timeout_handler+0xdb/0x260
[   72.500749][    C0]  __hrtimer_run_queues+0x20d/0x5e0
[   72.506015][    C0]  hrtimer_run_softirq+0xe4/0x2c0
[   72.511090][    C0]  handle_softirqs+0xc3/0x280
[   72.515793][    C0]  do_softirq+0x5e/0x90
[   72.519975][    C0]  __local_bh_enable_ip+0x6e/0x70
[   72.525030][    C0]  _raw_spin_unlock_bh+0x36/0x40
[   72.529981][    C0]  icmp6_dst_alloc+0x2c4/0x320
[   72.534770][    C0]  ndisc_send_skb+0x175/0x6b0
[   72.539472][    C0]  ndisc_send_rs+0x3b8/0x3f0
[   72.544063][    C0]  addrconf_dad_completed+0x626/0x8a0
[   72.549461][    C0]  addrconf_dad_work+0x891/0xbd0
[   72.554409][    C0]  process_scheduled_works+0x483/0x9a0
[   72.559881][    C0]  worker_thread+0x526/0x700
[   72.564568][    C0]  kthread+0x1d1/0x210
[   72.568655][    C0]  ret_from_fork+0x4b/0x60
[   72.573077][    C0]  ret_from_fork_asm+0x1a/0x30
[   72.577938][    C0] 
[   72.580259][    C0] value changed: 0x0000000000000b41 -> 0x0000000000000b42
[   72.587452][    C0] 
[   72.589769][    C0] Reported by Kernel Concurrency Sanitizer on:
[   72.595912][    C0] CPU: 0 PID: 50 Comm: kworker/u8:3 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   72.605630][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   72.615688][    C0] Workqueue: ipv6_addrconf addrconf_dad_work
[   72.621686][    C0] ==================================================================
[   72.642646][    C1] ==================================================================
[   72.650791][    C1] BUG: KCSAN: data-race in can_receive / can_receive
[   72.657521][    C1] 
[   72.659850][    C1] read-write to 0xffff888112269088 of 8 bytes by interrupt on cpu 0:
[   72.667959][    C1]  can_receive+0x4e/0x1f0
[   72.672317][    C1]  canfd_rcv+0xe7/0x180
[   72.676502][    C1]  __netif_receive_skb+0x123/0x280
[   72.681633][    C1]  process_backlog+0x22e/0x440
[   72.686416][    C1]  __napi_poll+0x63/0x3c0
[   72.690755][    C1]  net_rx_action+0x3a1/0x7f0
[   72.695363][    C1]  handle_softirqs+0xc3/0x280
[   72.700075][    C1]  run_ksoftirqd+0x1c/0x30
[   72.704507][    C1]  smpboot_thread_fn+0x31c/0x4c0
[   72.709472][    C1]  kthread+0x1d1/0x210
[   72.713573][    C1]  ret_from_fork+0x4b/0x60
[   72.718094][    C1]  ret_from_fork_asm+0x1a/0x30
[   72.722882][    C1] 
[   72.725211][    C1] read-write to 0xffff888112269088 of 8 bytes by interrupt on cpu 1:
[   72.733387][    C1]  can_receive+0x4e/0x1f0
[   72.737756][    C1]  canfd_rcv+0xe7/0x180
[   72.741941][    C1]  __netif_receive_skb+0x123/0x280
[   72.747068][    C1]  process_backlog+0x22e/0x440
[   72.751852][    C1]  __napi_poll+0x63/0x3c0
[   72.756205][    C1]  net_rx_action+0x3a1/0x7f0
[   72.760827][    C1]  handle_softirqs+0xc3/0x280
[   72.765546][    C1]  do_softirq+0x5e/0x90
[   72.769826][    C1]  __local_bh_enable_ip+0x6e/0x70
[   72.774891][    C1]  _raw_spin_unlock_bh+0x36/0x40
[   72.779942][    C1]  batadv_tt_local_purge+0x1a8/0x1f0
[   72.785261][    C1]  batadv_tt_purge+0x2b/0x630
[   72.789968][    C1]  process_scheduled_works+0x483/0x9a0
[   72.795459][    C1]  worker_thread+0x526/0x700
[   72.800074][    C1]  kthread+0x1d1/0x210
[   72.804173][    C1]  ret_from_fork+0x4b/0x60
[   72.808612][    C1]  ret_from_fork_asm+0x1a/0x30
[   72.813409][    C1] 
[   72.815737][    C1] value changed: 0x000000000000259b -> 0x000000000000259d
[   72.822963][    C1] 
[   72.825297][    C1] Reported by Kernel Concurrency Sanitizer on:
[   72.831450][    C1] CPU: 1 PID: 28 Comm: kworker/u8:1 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   72.841267][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   72.851326][    C1] Workqueue: bat_events batadv_tt_purge
[   72.856891][    C1] ==================================================================
[   73.125953][ T1171] hsr_slave_0: left promiscuous mode
[   73.134437][ T1171] hsr_slave_1: left promiscuous mode
[   73.172029][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_0
[   73.195830][    C0] ==================================================================
[   73.203966][    C0] BUG: KCSAN: data-race in can_send / can_send
[   73.210166][    C0] 
[   73.212502][    C0] read-write to 0xffff888112269090 of 8 bytes by interrupt on cpu 1:
[   73.220754][    C0]  can_send+0x562/0x5d0
[   73.225139][    C0]  bcm_can_tx+0x314/0x420
[   73.229570][    C0]  bcm_tx_timeout_handler+0xdb/0x260
[   73.234872][    C0]  __hrtimer_run_queues+0x20d/0x5e0
[   73.240106][    C0]  hrtimer_run_softirq+0xe4/0x2c0
[   73.245191][    C0]  handle_softirqs+0xc3/0x280
[   73.249905][    C0]  run_ksoftirqd+0x1c/0x30
[   73.254345][    C0]  smpboot_thread_fn+0x31c/0x4c0
[   73.259317][    C0]  kthread+0x1d1/0x210
[   73.263425][    C0]  ret_from_fork+0x4b/0x60
[   73.267867][    C0]  ret_from_fork_asm+0x1a/0x30
[   73.272660][    C0] 
[   73.274990][    C0] read-write to 0xffff888112269090 of 8 bytes by interrupt on cpu 0:
[   73.283076][    C0]  can_send+0x562/0x5d0
[   73.287369][    C0]  bcm_can_tx+0x314/0x420
[   73.291732][    C0]  bcm_tx_timeout_handler+0xdb/0x260
[   73.297044][    C0]  __hrtimer_run_queues+0x20d/0x5e0
[   73.302275][    C0]  hrtimer_run_softirq+0xe4/0x2c0
[   73.307326][    C0]  handle_softirqs+0xc3/0x280
[   73.312041][    C0]  run_ksoftirqd+0x1c/0x30
[   73.316475][    C0]  smpboot_thread_fn+0x31c/0x4c0
[   73.321446][    C0]  kthread+0x1d1/0x210
[   73.325552][    C0]  ret_from_fork+0x4b/0x60
[   73.329996][    C0]  ret_from_fork_asm+0x1a/0x30
[   73.334786][    C0] 
[   73.337115][    C0] value changed: 0x0000000000006ed0 -> 0x0000000000006ed1
[   73.344371][    C0] 
[   73.346708][    C0] Reported by Kernel Concurrency Sanitizer on:
[   73.352901][    C0] CPU: 0 PID: 15 Comm: ksoftirqd/0 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   73.362553][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   73.372638][    C0] ==================================================================
[   73.382879][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_1
[   73.435526][    C1] ==================================================================
[   73.443655][    C1] BUG: KCSAN: data-race in can_receive / can_receive
[   73.450384][    C1] 
[   73.452715][    C1] read-write to 0xffff8881122690e8 of 8 bytes by interrupt on cpu 0:
[   73.460885][    C1]  can_receive+0x62/0x1f0
[   73.465251][    C1]  canfd_rcv+0xe7/0x180
[   73.469486][    C1]  __netif_receive_skb+0x123/0x280
[   73.474617][    C1]  process_backlog+0x22e/0x440
[   73.479437][    C1]  __napi_poll+0x63/0x3c0
[   73.483959][    C1]  net_rx_action+0x3a1/0x7f0
[   73.488574][    C1]  handle_softirqs+0xc3/0x280
[   73.493296][    C1]  do_softirq+0x5e/0x90
[   73.497486][    C1]  __local_bh_enable_ip+0x6e/0x70
[   73.502557][    C1]  _raw_spin_unlock_bh+0x36/0x40
[   73.507516][    C1]  batadv_hash_add+0x30b/0x320
[   73.512329][    C1]  batadv_tt_local_add+0xc6d/0x1010
[   73.517556][    C1]  batadv_mcast_mla_update+0x1112/0x1700
[   73.523228][    C1]  process_scheduled_works+0x483/0x9a0
[   73.528719][    C1]  worker_thread+0x526/0x700
[   73.533343][    C1]  kthread+0x1d1/0x210
[   73.537464][    C1]  ret_from_fork+0x4b/0x60
[   73.541925][    C1]  ret_from_fork_asm+0x1a/0x30
[   73.546827][    C1] 
[   73.549165][    C1] read-write to 0xffff8881122690e8 of 8 bytes by interrupt on cpu 1:
[   73.557246][    C1]  can_receive+0x62/0x1f0
[   73.561615][    C1]  canfd_rcv+0xe7/0x180
[   73.565799][    C1]  __netif_receive_skb+0x123/0x280
[   73.570939][    C1]  process_backlog+0x22e/0x440
[   73.575748][    C1]  __napi_poll+0x63/0x3c0
[   73.580187][    C1]  net_rx_action+0x3a1/0x7f0
[   73.584804][    C1]  handle_softirqs+0xc3/0x280
[   73.589528][    C1]  do_softirq+0x5e/0x90
[   73.593727][    C1]  __local_bh_enable_ip+0x6e/0x70
[   73.598801][    C1]  _raw_spin_unlock_bh+0x36/0x40
[   73.603768][    C1]  batadv_purge_outstanding_packets+0x33d/0x460
[   73.610120][    C1]  batadv_hardif_disable_interface+0x576/0xa90
[   73.616314][    C1]  batadv_softif_destroy_netlink+0x6d/0x310
[   73.622396][    C1]  default_device_exit_batch+0x596/0x660
[   73.628056][    C1]  cleanup_net+0x4cf/0x830
[   73.632501][    C1]  process_scheduled_works+0x483/0x9a0
[   73.637991][    C1]  worker_thread+0x526/0x700
[   73.642610][    C1]  kthread+0x1d1/0x210
[   73.646726][    C1]  ret_from_fork+0x4b/0x60
[   73.651163][    C1]  ret_from_fork_asm+0x1a/0x30
[   73.656038][    C1] 
[   73.658367][    C1] value changed: 0x000000000000ae8a -> 0x000000000000ae8b
[   73.665486][    C1] 
[   73.667831][    C1] Reported by Kernel Concurrency Sanitizer on:
[   73.673994][    C1] CPU: 1 PID: 1171 Comm: kworker/u8:5 Not tainted 6.10.0-syzkaller-10729-g3c3ff7be9729 #0
[   73.683920][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   73.694001][    C1] Workqueue: netns cleanup_net
[   73.698808][    C1] ==================================================================
[   74.767765][ T1171] team0 (unregistering): Port device team_slave_1 removed
[   74.854011][ T1171] team0 (unregistering): Port device team_slave_0 removed
[   75.253415][ T5983] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.260666][ T5983] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.267558][ T3090] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.268631][ T5983] bridge_slave_0: entered allmulticast mode
[   75.284822][ T5983] bridge_slave_0: entered promiscuous mode
[   75.293236][ T5983] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.300388][ T5983] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.307553][ T5983] bridge_slave_1: entered allmulticast mode
[   75.314168][ T5983] bridge_slave_1: entered promiscuous mode
[   75.342789][ T5983] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.354714][ T5983] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.377659][ T5983] team0: Port device team_slave_0 added
[   75.384636][ T5983] team0: Port device team_slave_1 added
[   75.402784][ T5983] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.409853][ T5983] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.435829][ T5983] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.447142][ T5983] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.454178][ T5983] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.480200][ T5983] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.510638][ T5983] hsr_slave_0: entered promiscuous mode
[   75.516869][ T5983] hsr_slave_1: entered promiscuous mode
[   75.523059][ T5983] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   75.530874][ T5983] Cannot create hsr debugfs directory
[   75.760328][ T5983] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   75.769345][ T5983] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   75.778038][ T5983] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   75.786730][ T5983] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   75.801264][ T5983] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.808456][ T5983] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.841475][ T5983] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.852593][ T4888] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.868928][ T5983] 8021q: adding VLAN 0 to HW filter on device team0
[   75.879442][ T4724] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.886576][ T4724] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.909617][ T4888] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.916846][ T4888] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.974458][ T5983] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.044884][ T5983] veth0_vlan: entered promiscuous mode
[   76.055797][ T5983] veth1_vlan: entered promiscuous mode
[   76.072498][ T5983] veth0_macvtap: entered promiscuous mode
[   76.080310][ T5983] veth1_macvtap: entered promiscuous mode
[   76.091555][ T5983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.102010][ T5983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.111856][ T5983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.122371][ T5983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.132269][ T5983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.142837][ T5983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.152714][ T5983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.163283][ T5983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.174673][ T5983] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.183610][ T5983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.194160][ T5983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.204105][ T5983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.214615][ T5983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.224506][ T5983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.227825][ T6002] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.235064][ T5983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.253816][ T5983] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.264303][ T5983] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.277242][ T5983] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.290547][ T5983] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.299556][ T5983] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.308545][ T5983] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.317274][ T5983] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.338020][ T3113] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.130032][ T3113] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.281912][ T3113] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.339892][ T3113] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.410948][ T3113] bridge_slave_1: left allmulticast mode
[   78.416676][ T3113] bridge_slave_1: left promiscuous mode
[   78.422316][ T3113] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.431428][ T3113] bridge_slave_0: left allmulticast mode
[   78.437139][ T3113] bridge_slave_0: left promiscuous mode
[   78.443062][ T3113] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.559432][ T3113] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   78.571275][ T3113] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.581732][ T3113] bond0 (unregistering): Released all slaves
[   78.698717][ T3113] hsr_slave_0: left promiscuous mode
[   78.705433][ T3113] hsr_slave_1: left promiscuous mode
[   78.712434][ T3113] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.719886][ T3113] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.729407][ T3113] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.736897][ T3113] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.747557][ T3113] veth1_macvtap: left promiscuous mode
[   78.753173][ T3113] veth0_macvtap: left promiscuous mode
[   78.758777][ T3113] veth1_vlan: left promiscuous mode
[   78.764059][ T3113] veth0_vlan: left promiscuous mode
[   78.866422][ T3113] team0 (unregistering): Port device team_slave_1 removed
[   78.879674][ T3113] team0 (unregistering): Port device team_slave_0 removed