last executing test programs:

2.523751064s ago: executing program 1 (id=2477):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000000)=@ccm_128={{0x304}, "515efa58272dd3fc", "38a96bdbbd657dc2be33049dec5a2c87", 'Jz]t', "360b5f8f068ad736"}, 0x28)
connect$can_bcm(r2, &(0x7f0000000200)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d7fe68ca7e4d5d5bdbe70000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r1, @ANYBLOB="480b0000f1"], 0x20000600}}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0xffffffffffffffa1, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)

2.315211352s ago: executing program 1 (id=2484):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$pidfd(0xffffffffffffff9c, 0x0, 0x40, 0x0)
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$link(0x9, r0, 0xfffffffffffffffb)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='mm_page_alloc\x00', r3}, 0x10)
socket(0x0, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1}, 0x48)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r4, 0x84, 0x82, &(0x7f0000000240)={r6}, &(0x7f0000000280)=0x14)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r7, 0x800448d4, &(0x7f0000000080)={0x0, 0x200, "00fa00"})
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
ioctl$int_in(r1, 0x5452, &(0x7f0000000100)=0x5)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r8 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r8, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r8, 0x29, 0x20, &(0x7f0000000100)={@loopback={0xff00000000000000, 0x7ffffffff000}, 0x800, 0x0, 0x2000000000903}, 0x21)

2.253047737s ago: executing program 4 (id=2487):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1018e58, &(0x7f0000000380)={[{@sysvgroups}, {@debug}, {@auto_da_alloc}, {@barrier_val={'barrier', 0x3d, 0x2d}}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@max_dir_size_kb}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}]}, 0x6, 0x64a, &(0x7f00000013c0)="$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")
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = dup2(r0, r0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5b000000000101040000000014b13f6f3a7e43551a00000600002924000180140001800800a514"], 0x64}}, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x4, [{0x11}, {0x0, 0x100000000000000}]}, 0x68)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x88408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000300)=@newtaction={0x18, 0x58, 0x284f, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'geneve1\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @private, @empty}, {0x0, 0x17c1, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "0b86c107cddd39d10e870794ae120f860174b07efe05336d54f519ebba5a2b26", "5e5992c2209db5127a4a84d3d6e03d081a4118a2bbd22f0ca038289c45b30eca6703476382c29175c40096a9c60c3cce", "6a9f3a451dd7eb4523e02c2a4a00f81073727f3ac9f91e284b975a32", {"8f865412904b133eebafc6eb170fb006", "21144ab13a642475fc21552dce5cda9c"}}}}}}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001440)=@bpf_lsm={0x1d, 0xe, &(0x7f0000001500)=ANY=[@ANYBLOB="18000000010000000000000002000000180100002020692500000000002020207b1af85bb76d0a4265efcbd9ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffffffeffc1b0a000600000018410000faffffff000000000000000085100000000000009500000000000000"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x1000, &(0x7f0000000100)=""/4096, 0x41000, 0x10, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000001100)={0x8, 0x2}, 0x8, 0x10, &(0x7f0000001140)={0x2, 0x5, 0x9, 0x8}, 0x10, 0x0, 0x0, 0x8, &(0x7f0000001180)=[0xffffffffffffffff, 0x1, 0x1], &(0x7f00000011c0)=[{0x0, 0x4, 0xf, 0x9}, {0x4, 0x5, 0x4, 0x9}, {0x8, 0x2, 0x6, 0x4}, {0x3, 0x4, 0x7, 0x7}, {0x2, 0x2, 0xf, 0xc}, {0x5, 0x2, 0x1, 0x5}, {0x2, 0x2, 0xd, 0x6}, {0x4, 0x2, 0x7, 0x8}], 0x10, 0x1f}, 0x90)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000001280)={0x184, 0x19, 0x1, 0x0, 0x0, {0x1d, 0xd601, 0x9}, [@nested={0x4d, 0x12, 0x0, 0x1, [@generic="25b57e3561934efacde0a223b473fe77f3e5ba760d3793b2f943b7528ea30683bc4a506cf756740574b88d396af9b596387005002e0ccb26a5680000050068fb1e53188181f2a2416a"]}, @nested={0x11e, 0x6, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @generic="fdabed5a4b5f483c891e72bff94ede0c87813f17017fb2aab03753b6f6206992be648b1e6c5cb2f0e568adda61dea8244ef2ce39c1af4b45f215", @generic="ce7fcda028d5efcc8176e9b1e3be3cb6685c7c13aec0e1c8df768ededadbb43f3c0ddbf349db2f29677ebb8ecbd27060f3e8afb7fbc41806b74c85941c371e5192619fd5b568542bd49aba8ec133d810b8a81ac1445ed8737b9563a7cf1ecdfab9c3433fd4bd8d8607d8807ee4294ec152c48b60c066877fecf8d3714c05535a2037dbc6be5de621166ec0758d0aa76269f21c55fc1f384bd03642e7c0283ad0", @typed={0x35, 0x0, 0x0, 0x0, @binary="6fd01322d9084105dc9925d74b05dad6723fe5cd28f0ab7cd9a02952aeb49c58f8190be91c7502e62f6816285af104b295"}]}]}, 0x184}}, 0x0)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0xe80, 0x4)
sendto$packet(r2, &(0x7f00000000c0)="3f030e02f00712002c051e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdc9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0x11, 0x0, r4, 0x4, 0x0, 0x6, @multicast}, 0x14)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x54000002, 0x0}, 0x0, 0x8, &(0x7f0000000440))
fallocate(0xffffffffffffffff, 0x0, 0x400000000000000, 0x7)

2.162134014s ago: executing program 1 (id=2488):
r0 = perf_event_open(&(0x7f0000000b40)={0x2, 0x80, 0x90, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x14}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x757, &(0x7f0000000800)="$eJzs3c9rHFUcAPDvbJKmptXkIGj1EhA0ULoxNbYKHioeRLBQ0LPtstmGmt1syW5KEwJaRPAiqCdBLz37o968+uOq/4UHaamaFiseJDKb2XTb7KabNsmi+/nAa9+bmc2b77yZeW93hpkA+tZ4+k8u4lBEfJREjGbTk4gYauQGI06sL3drdaWYpiTW1t74PWksc3N1pRgtn0kdyAqPR8QP70cczm2ut7a0PFcol0sLWXmyXjk/WVtaPnKuUpgtzZbmj01NTx89/vzxYzsX6J8/Lx+89vGrz3x94u/3Hrvy4Y9JnIiD2ezWOHbKeIxn22Qo3YR3eGWnK+uxpNcrwH1JD82B9aM8DsVoDDRyAMD/2TsRsQYA9JlE/w8Afab5O8DN1ZViM/X2F4m9df3liNi/Hn/z+ub6nMHsmt3+xnXQkZvJHVdGkogY24H6xyPi82/f+jJNsUvXIQHaefdSRJwZG998/k823bOwXc92scz4XWXnP9g736Xjnxfajf9yG+OfaDP+GW5z7N6Pex//uas7UE1H15+MeKnl3rZbLfFnxgay0sONMd9QcvZcuZSe2x6JiIkYGk7LU1vUMXHjnxud5rWO//745O0v0vrT/28vkbs6OHznZ2YK9cKDxNzq+qWIJwbbxZ9stH/SYfx7qss6Xnvxg886zUvjT+Ntps3x7661yxFPt23/23e0JVvenzjZ2B0mmztFG9/88ulIp/pb2z9Naf3N7wJ7IW3/ka3jH0ta79esbb+Ony6Pft9p3r3jb7//70vebOT3ZdMuFur1hamIfcnrm6cfvf3ZrPxQZMun8U881f7432r/T78Tnuky/sFrv311//HvrjT+mW21//YzV27NDXSqv7v2n27kJrIp3Zz/ul3BB9l2AAAAAAAAAAAAAAAAAAAAAAAAANCtXEQcjCSX38jncvn8+ju8H42RXLlaqx8+W12cn4nGu7LHYijXfNTlaMvzUKey5+E3y0fvKj/X8kTBtJwvVsszPY4dAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJoOdHj/f+rX4V6vHQCwa/b3egUAgD2n/weA/qP/B4D+o/8HgP6j/weA/qP/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYJedOnkyTWt/ra4U0/LMhaXFueqFIzOl2ly+sljMF6sL5/Oz1epsuZQvViv3+nvlavX8dMwvXpysl2r1ydrS8ulKdXG+fvpcpTBbOl0a2pOoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGB7akvLc4VyubQgIyMjs5Hp9ZkJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4L/h3wAAAP//HxYpBQ==")
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x4b71)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x1f, &(0x7f0000000580)={&(0x7f0000000740)=ANY=[@ANYBLOB="50000000100003040000000000000000f2000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100766c616e000000001800028006000100010000000c000200540a00001800000008000500", @ANYRES32=r5], 0x50}, 0x1, 0xba01, 0x0, 0x40000}, 0x20000000)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x0, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_REG(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYBLOB="010700000000"], 0x14}}, 0x0)
pipe2$9p(&(0x7f00000000c0)={<r7=>0xffffffffffffffff}, 0x4800)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in=@loopback, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in=@broadcast}, 0x0, @in=@multicast1}}, &(0x7f0000000240)=0xe8)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0x7, &(0x7f0000000200)=ANY=[@ANYRESHEX=r9], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r10}, 0x10)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r11, &(0x7f0000000400)=ANY=[@ANYBLOB="7f454c4600000000000000000000000003003e00000000000000000000000000400000000000000000000000000000000000000000003800010000d19800000003000000000000000000000000000040000000000000000000000000000000000008"], 0x78)
close(r11)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xa80025, &(0x7f00000007c0)=ANY=[@ANYRESHEX=r7, @ANYBLOB="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", @ANYRESHEX=r6, @ANYBLOB=',mmap,cache=loose,access=', @ANYRESDEC=r8, @ANYBLOB=',fscache,cache=mmap,debug=0x0000000000000000,debug=0x0004000000000004,version=9p2000.L,afid=0x0000000000000009,privport,fscontext=root,permit_directio,\x00'])
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)

1.951800211s ago: executing program 4 (id=2493):
socket(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000a40)={0x2c, r1, 0x1, 0x0, 0x0, {0xa}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}]}, 0x2c}}, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x4)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xf, 0x10}, [@ldst={0x3, 0x0, 0x6, 0xa}], {0x95, 0x0, 0x5}}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x22)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'nr0\x00', 0xe43986f95b0e4309})
ioctl$TUNGETSNDBUF(r3, 0x400454dc, &(0x7f0000001700))
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000100)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x89fdf1ceff4e6037}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008800}, 0x20000000)
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xe3589, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x405, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000a80)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb010018000000000000001400000014000000020000000000000001f9a96fc00000060400"], 0x0, 0x2e}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.throttle.io_serviced\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340)}, 0x4002, 0x0, 0x0, 0x7, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={0xffffffffffffffff, 0xe0, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880), 0x0, 0x8, &(0x7f0000000400)=[{}], 0x8, 0x10, &(0x7f0000000500), &(0x7f0000000680), 0x8, 0xae, 0x8, 0x8, &(0x7f0000000580)}}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x200})
socketpair(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x8914, &(0x7f0000000080))
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8901, &(0x7f0000000080))

1.742908438s ago: executing program 4 (id=2499):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
close(r0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x20081, 0x0)
sendmsg$NFC_CMD_GET_TARGET(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1d, 0x4, 0x8, 0x8}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYRES8=r3], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, r2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000200)='mptcp_subflow_get_send\x00'}, 0x10)
r4 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x802)
r5 = fcntl$getown(0xffffffffffffffff, 0x9)
syz_open_procfs$userns(r5, &(0x7f00000001c0))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f00000002c0)={'pim6reg0\x00', &(0x7f0000000140)=@ethtool_rxfh_indir={0x24, 0x2, [0x80000000, 0xe98]}})
r7 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r7, &(0x7f0000000000), 0x1c)
listen(0xffffffffffffffff, 0x0)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r8, 0x0, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r8, 0x0, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff030}, {0x6}]}, 0x10)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x3, 0x0, 0x0, 0x1fd}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x90)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0xc901, &(0x7f0000000440), 0x1, 0x4e8, &(0x7f0000000b80)="$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")
fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0)
write$evdev(r4, &(0x7f0000000000), 0x100000008)

1.391518067s ago: executing program 2 (id=2505):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000003c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x71, &(0x7f0000000500), 0x8)

1.317716323s ago: executing program 2 (id=2507):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000440)={'team0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newqdisc={0x58, 0x19, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x58}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
pipe2$9p(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
read(0xffffffffffffffff, &(0x7f0000000000)=""/212, 0xd4)
perf_event_open(&(0x7f00000003c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)

1.316431813s ago: executing program 2 (id=2510):
syz_genetlink_get_family_id$gtp(0x0, 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6)
bind$l2tp(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, 0x0, &(0x7f0000000080))
rt_sigprocmask(0x0, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000ac0)={0x964, 0x0, 0x5, 0x201, 0x0, 0x0, {0xa, 0x0, 0x8}, [{{0x254, 0x1, {{0x1}, 0xda, 0x4, 0x3, 0x6, 0xd, 'syz1\x00', "f3a7aa7f12056d3fe77d330eeba55da9621c9c7a9fbf583f2ee0bfad7fff3340", "34fbdfcc4498c1dbb64026a2d242f44355dc723d82e3c4aef8c20d48007eb716", [{0xfff0, 0x3da, {0x2, 0xffffffff}}, {0x7, 0xec9, {0x0, 0xc}}, {0x0, 0x1, {0x0, 0x4}}, {0x6, 0x3ff, {0x2, 0x5}}, {0xfff, 0x47d6, {0x1, 0x3}}, {0x2, 0x8, {0x0, 0x1}}, {0x4, 0xff, {0x0, 0x7}}, {0x3, 0x8, {0x1, 0x4}}, {0x6, 0x7, {0x1, 0xfffffff8}}, {0x3, 0x6, {0x0, 0x31a}}, {0x79b5, 0xfffc, {0x0, 0x1}}, {0xfff7, 0x1, {0x3, 0x8}}, {0x81, 0x3, {0x1, 0x8001}}, {0xa15e, 0x9, {0x1, 0x101}}, {0x3, 0xfff, {0x1, 0x8}}, {0x41eb, 0x1000, {0x1, 0xfe2}}, {0x7, 0x43, {0x1, 0x7}}, {0x3, 0x2, {0x2, 0x1}}, {0x5, 0x5, {0x3, 0x5}}, {0x4, 0xfffd, {0x1, 0x4}}, {0x9a, 0x1, {0x1, 0x3cf9}}, {0x3ff, 0x0, {0x0, 0x9}}, {0x2, 0xa7a, {0xe606ce25c729acd9, 0x7fffffff}}, {0x80, 0xff, {0x3, 0x80000000}}, {0x10b0, 0x5, {0x0, 0x5}}, {0xc66f, 0x7, {0x3, 0x1}}, {0x0, 0x2, {0x0, 0xffffffff}}, {0x6, 0x0, {0x1, 0x9}}, {0x7f, 0x10, {0x2, 0x1}}, {0x8, 0x0, {0x3, 0x2}}, {0x400, 0x400, {0x3, 0x3b9}}, {0xb1, 0x0, {0x0, 0x7}}, {0x6, 0xffff, {0x3, 0x9a8}}, {0x7, 0x11, {0x0, 0x100}}, {0x200, 0x5, {0x0, 0x8}}, {0x6, 0x5, {0x2, 0xffffffff}}, {0x8, 0xff00, {0x0, 0x578f}}, {0xff, 0x0, {0x0, 0x3}}, {0x1, 0x8, {0x2, 0x5}}, {0xe222, 0x1, {0x0, 0x80000001}}]}}}, {{0x254, 0x1, {{0x2, 0x3}, 0x1, 0x6, 0x0, 0x85, 0x11, 'syz0\x00', "6c82e093c6f567c5bf9562701822949d05495bc5e3fe9b2858528586b23e6104", "e45ddbb91119781a2470dd52d0ecbd25041faf8a62c9b4ed4db04293c70f9be0", [{0x2, 0x3, {0x3, 0x2a}}, {0xcdf, 0x9, {0x0, 0x3}}, {0xfd53, 0x4, {0x5c20763426229c27, 0x214}}, {0x4, 0x2f, {0x0, 0x5}}, {0x1, 0xfffa, {0x3}}, {0x3, 0x4, {0x2, 0x43ac}}, {0x9, 0x80, {0x0, 0x2}}, {0x9, 0x6, {0x0, 0x27e}}, {0x30, 0x9a, {0x0, 0x6}}, {0x7fff, 0x7e3, {0x3}}, {0xf7, 0x1, {0x0, 0x3}}, {0x5, 0x240, {0x0, 0x7ff}}, {0x4, 0x30, {0x0, 0x7f}}, {0x400, 0x7, {0x0, 0x6}}, {0x401, 0x3, {0x0, 0x2a45e268}}, {0x8, 0x88, {0x2, 0x7}}, {0xec3f, 0x1, {0x2, 0x1}}, {0x6, 0x6df, {0x3, 0x3ff}}, {0xaaa6, 0x8ea, {0x2, 0xe3}}, {0x624c, 0x9, {0x0, 0x3ff}}, {0x6ba, 0x4, {0x3, 0x9}}, {0xe99e, 0x2, {0x3, 0x80000001}}, {0x3, 0xb11, {0x0, 0xb1}}, {0x400, 0x2, {0x3, 0x9}}, {0x2c39, 0x1000, {0x2, 0x8}}, {0x100, 0x6, {0x0, 0xfcb}}, {0x4, 0x5, {0x3, 0x80000000}}, {0x0, 0x9, {0x0, 0x9}}, {0x40, 0x7, {0x2, 0x5}}, {0x3, 0x7, {0x1, 0x5}}, {0x4, 0x6501, {0x0, 0x1}}, {0x81, 0x38, {0x2, 0xfffffffc}}, {0x3, 0x8, {0x1, 0x81}}, {0x8, 0x3, {0x0, 0x401}}, {0x0, 0x9, {0x2, 0x10001}}, {0x0, 0xf425, {0x0, 0xa}}, {0x0, 0x9, {0x0, 0x401}}, {0x4, 0x8f, {0x0, 0x3}}, {0x3, 0x1, {0x3, 0xaf7}}, {0x1, 0x2, {0x2, 0x5}}]}}}, {{0x254, 0x1, {{0x0, 0xfff}, 0xa, 0x0, 0x76, 0x5, 0x23, 'syz1\x00', "1d39079eba5c447cdf4c5b33cab0eca7955afd937b8b43e70967375c602d4590", "4fc1c86a9b92a1113426f70f126743b9fa2e8c9bccb81ea73a0d0956d8061d1e", [{0x0, 0xff00, {0x2, 0x10}}, {0x4, 0x1, {0x2, 0x6}}, {0x87, 0x7fff, {0x1, 0x2}}, {0x4, 0xfffb, {0x0, 0x4ebc}}, {0x7, 0x84, {0x1, 0x7}}, {0x5, 0x3, {0x0, 0x9}}, {0x4, 0x5, {0x1, 0x60e}}, {0x4, 0x7, {0x0, 0xdb8e16c0}}, {0x79a2, 0xf94c, {0x3, 0x5eb}}, {0x40, 0x58c, {0x2, 0x400000}}, {0x3, 0xf000, {0x0, 0xf6d}}, {0xfff7, 0xffff, {0x3, 0x5700}}, {0x1ff, 0xd, {0x0, 0x401}}, {0x6, 0x200, {0x2, 0xfffffffd}}, {0x3, 0x7f, {0x0, 0x1}}, {0x2, 0x1, {0x3, 0xa}}, {0xa372, 0x7, {0x0, 0x1}}, {0x3, 0x8}, {0x1, 0x6, {0x3, 0x6}}, {0x7, 0x3, {0x2, 0x9}}, {0x4ee, 0xb5, {0x1, 0x9}}, {0x7, 0x6, {0x1, 0xfffffff8}}, {0x6, 0x1000, {0x2, 0xe6}}, {0x9, 0x2, {0x2, 0x1}}, {0x1, 0x0, {0x1}}, {0x4, 0x4, {0x1, 0x80000000}}, {0x6, 0xc893, {0x3, 0x9}}, {0xad, 0x401, {0x0, 0x2}}, {0x7, 0x80}, {0x0, 0x1, {0x1, 0x6}}, {0x6, 0x5, {0x0, 0x1}}, {0x8, 0x80, {0x2, 0x5}}, {0x6, 0xfff8, {0x0, 0x9e}}, {0x0, 0xff, {0x2, 0xfffffff7}}, {0x1, 0x0, {0x2, 0x7ee9}}, {0x21f0, 0x3, {0x9d44439aa3162e72, 0x3}}, {0x4, 0x401, {0x3, 0xe95}}, {0x1000, 0x0, {0x3, 0xd7}}, {0x2, 0x4cf2, {0x1, 0x9}}, {0x8000, 0x7, {0x2, 0x6}}]}}}, {{0x254, 0x1, {{0x1, 0x7f}, 0x6, 0x0, 0xf5, 0x0, 0x0, 'syz1\x00', "2b032f581535983cff760f6ac9f278f154f4272f4bcd9fb72bb4aff5d1e1366d", "50cadb5910e0a3542b2c0b3d77c5526ebcb100", [{0x1ff, 0xf5e, {0x0, 0x1000}}, {0x8000, 0x6, {0x0, 0x1000}}, {0x0, 0x8001, {0x0, 0x2}}, {0x4, 0x1, {0x0, 0x806}}, {0x0, 0x0, {0x3, 0x3}}, {0x9, 0x2, {0x0, 0xdb}}, {0x0, 0x3821, {0x3, 0x8000}}, {0xd, 0x2, {0x0, 0x1929bc94}}, {0x0, 0x0, {0x1}}, {0x4, 0x8000, {0x3, 0xfffff000}}, {0x7f, 0x9, {0x1, 0x4}}, {0x100, 0x4, {0x1, 0xb}}, {0x5, 0x2, {0x0, 0x7}}, {0x4, 0x4, {0x3, 0x200}}, {0xfff8, 0x22fc, {0x3, 0x6}}, {0xbb, 0x7}, {0x45f, 0x3dd, {0x0, 0x5}}, {0xff, 0x8, {0x1, 0x184e}}, {0x2, 0xfffe, {0x3, 0x6}}, {0x984, 0x0, {0x0, 0x4}}, {0x9, 0x3, {0x3, 0x7bc}}, {0x1ff, 0x4, {0x3, 0x3}}, {0x0, 0x0, {0x3, 0x3}}, {0x1, 0xffff, {0x0, 0xe1}}, {0x0, 0x7f, {0x1, 0x80}}, {0x6, 0x0, {0x0, 0x9}}, {0xfff, 0xdd0c, {0x2}}, {0x9, 0x0, {0x0, 0xb}}, {0x0, 0x1, {0x2, 0x5}}, {0x6, 0x7ff, {0x3}}, {0x2, 0x0, {0x1, 0x7}}, {0x0, 0x3, {0x3}}, {0x7, 0x3, {0x1, 0x3ff}}, {0xc6}, {0xce27, 0x69f7, {0x1, 0xc}}, {0x0, 0x6, {0x0, 0x6}}, {0x0, 0x4, {0x0, 0x4}}, {}, {0x0, 0x0, {0x0, 0x8}}, {0x400, 0x0, {0x3}}]}}}]}, 0x964}, 0x1, 0x0, 0x0, 0x18}, 0x24044055)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r2, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2}}, 0x40)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000d990e1efc427a700b703000000006c288500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095", @ANYRES64=r0, @ANYRESHEX=r1], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}, 0x0)

1.300830774s ago: executing program 2 (id=2511):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
writev(r0, &(0x7f0000000480)=[{&(0x7f0000001740)='9', 0x1}, {&(0x7f0000000100)='\n'}, {&(0x7f0000000340)="58314e235a0c3462704a77bb9e47d39f48a4a835a7ad8737857f6a6876e271fd52128d47ef8f2437844a34823f5852f5c955fe2d6ed0718cec97471c1e7665", 0x3f}, {&(0x7f0000000bc0)="936564af7b5a21db1256981c613becdf3c1b91a427cb8d0ca83998d12ad137b561632347cf3346a0a482a4d17f6dbddd39829782d1297620159ecb46753b035ba44989e0fb42ee13d09d795a8efad6130e782fca037c1a2e3ba7069cf573229e2f924a8239279fba849b2682858b1c565645f37ba4602310753099e19168f61eb5ea92b20c3b50f001d2b5947b2b51bd01167e0333d92e3ce3b4f84092abd561b1cab78a50d28f02309dc787e2618de8946ff26a5924421ad224f499ca86702306c76ec4a7bc3bf0fee8a3bc9044ecad7ad5c8fe77d7327565", 0xd9}, {&(0x7f0000000380)="d8f0df80fafaae77ab3b73f83ac3f69412f1ad75ffa282b04f1c3c218bbec01345865fd6682cee9cfed71f2b2de8f0938bd43887448c2b060172bea518b2ea491a8423a85b72549e9c70580bbf07623f1eb0fe4a718c0449780297af775c4c8e96b64a1499e1b6449b82b68c2095df27c52858791a943d801e0f106e59f4207a3693a75c0e30e5a9a931c3fd962b3327f636df", 0x93}], 0x5)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0x1a, 0x20000028, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket(0x10, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000300), r1)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/mnt\x00')
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1, 0x5, 0x103ba, 0x1}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000080), &(0x7f00000001c0)='%-5lx  \x00'}, 0x20)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000180), 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r2, &(0x7f0000000180), 0x0}, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180))
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x5, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8914, &(0x7f0000000080))
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xda00)
write$cgroup_devices(r3, &(0x7f0000000440)=ANY=[@ANYBLOB="1e0308004d8c71ef2885634a8270021411"], 0xffdd)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xec, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x8000000000000001}, 0x1, 0x7, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

1.196301903s ago: executing program 3 (id=2514):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x541e, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x1e, 0x200, &(0x7f0000000880)="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"})

1.079769292s ago: executing program 3 (id=2516):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={0x0}}, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000240)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000600)=ANY=[@ANYBLOB="0204000509000000000000000000000005000600000000000a00000000000000fe80000000000000000000000000000000000000000000000200010000000000000000000000000040d97978deff99d3b4cc309d996e6e8d7f535bd13fdd29f69d0ce5c46f3c82178e3c5e8f198a78784b1bc078425015e3140547d50c96d8f9f2b2894c58f4a02e4fbfb47081ff93f5b88ebf"], 0x69}, 0x1, 0x7}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001440)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb01001800000000000000180000f1b90000000200000000000100000e00"/47], 0x0, 0x32}, 0x20)
socket$inet_sctp(0x2, 0x0, 0x84)
socket$rds(0x15, 0x5, 0x0)
mknod(&(0x7f0000000140)='./file0\x00', 0x8001420, 0x0)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
open$dir(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000001c0)={0x4, &(0x7f0000000280)=[{0x9, 0x6, 0x56, 0x4000006}, {0x3, 0x2, 0x10, 0xf8f3}, {0xfff, 0x7f, 0x0, 0xd8c5}, {0x9, 0x0, 0xff}]})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f00000004c0)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000080)={r5, 0x3, r3, 0x5})
syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0x800711, &(0x7f0000001180)={[{@dioread_nolock}, {@data_err_ignore}, {@quota}, {@journal_checksum}, {@errors_continue}, {@journal_checksum}, {@norecovery}, {@delalloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x5}}, {@norecovery}, {@errors_continue}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}]}, 0xee, 0x442, &(0x7f0000000d00)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fallocate(r6, 0x0, 0x0, 0x2c2)
r7 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r7, &(0x7f0000004800)=""/4096, 0x1000)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x1e, 0x200, &(0x7f0000000880)="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"})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1004000, &(0x7f00000003c0)={[{@user_xattr}, {@abort}, {@quota}, {@usrjquota}, {@init_itable_val={'init_itable', 0x3d, 0x8000}}, {@lazytime}, {@bh}, {@data_journal}, {@acl}]}, 0x0, 0x57b, &(0x7f0000001480)="$eJzs3ctvVNUfAPDvnT6gwO9HSZCoC9OEhRhkSlsfmLjAnUaJJLrHSXtpSKcM6UwJrSTCQjZsDDExRhLjH+DeJXHj0r+CREmIIY0u3NTc6Z0ydKZPhnZgPp/kwjn30XPOnPs9c+7cO5kAetZI9k8h4pWI+CaJONy0rT/yjSMr+y09uj6ZLUksL3/2VxJJvq6xf5L/fzDPvBwRv34dcbLQWm51YXGmVC6nc3l+tDZ7ZbS6sHjq0mxpOp1OL49PTJx5e2L8vXff6Vhb3zj/z/ef3vvozO3jS9/9/ODInSTOxqF8W3M7nsKN5sxIjOSvyUCcXbPjWAcK6ybJXleAHenL43wgsjHgcPTlUQ+8+L6KiGWgRyXiH3pUYx7QuLbv0HXwc+PhBysXQK3t71/5bCT216+NDiwlT1wZZde7wx0oPyvjlz/v3smW6NznEACbunEzIk7397eOf0k+/u3c6S3ss7YM4x/snnvZ/OfNiKUPf1sT/4XV+U+0mf8cbBO7O7F5/BcetDks6dSn1Nn87/2289/Vm1bDfRHxUkT8rz7nG0guXiqn2dj2/4g4EQP7svxG93POLN1fXm9b8/wvW7LyG3PBvB4P+vc9ecxUqVZ6mjY3e3gz4tW2899ktf+TNv2fvTrnt1jGsfTua+tt27z9z9byTxGvt+3/x3e0ko3vT47Wz4fRxlnR6u9bx35fr/y9bn/W/wc2bv9w0ny/trr9Mn7c/2+63radnv+Dyef19GC+7lqpVpsbixhMPmldP/742Ea+sX/W/hPH28f/Ruf/UER8scX23zp6a91du6H/p7bV/9tP3P/4yx8elzi0zfZn/f9WPXUiX7OV8W+rFXza1w8AAAAAAAC6SSEiDkVSKK6mC4ViceX5jqNxoFCuVGsnL1bmL09F/buywzFQaNzpPtz0PMRY/jxsIz++Jj8REUci4tu+oXq+OFkpT+114wEAAAAAAAAAAAAAAAAAAKBLHFzn+/+ZP/raHjK4uzUEnik/+Q29a9P478QvPQFdafvv/2YM8KLYUTQPdb4ewO7zbg49amCvKwDsJe//0LvEP/Qu8Q+9a7vx7wlAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2ND5c+eyZXnp0fXJLD91dWF+pnL11FRanSnOzk8WJytzV4rTlcp0OS1OVmY3+3vlSuXK2HjMXxutpdXaaHVh8cJsZf5y7cKl2dJ0eiH1a0MAAAAAAAAAAAAAAAAAAADQqrqwOFMql9O5JxPzLWskJNom+rujGs9NInahrNsbR/eWEns8MAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAk/8CAAD//1/2NUc=")
mkdir(&(0x7f00000002c0)='./bus\x00', 0x20)
chdir(&(0x7f0000000140)='./bus\x00')
symlinkat(&(0x7f0000000140)='./file1\x00', 0xffffffffffffffff, &(0x7f0000000340)='./bus\x00')
execveat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)

894.526278ms ago: executing program 2 (id=2520):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2000799, &(0x7f00000003c0), 0xfd, 0x531, &(0x7f0000000f00)="$eJzs3cFvI1cZAPBvnDib7GabFDhApZZCi7IVrJ00tI04lCIhOFVClPsSEieK4sRR7LSbqILsX4CEECBxggsXJP4AJLQSF44IqRKcQSoCIdiCBAfoINvjJDjjxFuceNf5/aTZeW/GM9/3vHnjGc/TOIAr69mIeC0i3k/T9IWImMmWF7IpDttT83XvPXh7pTklkaZv/DWJJFvW2VeSzW9km01GxFe/HPGN5HTc+v7B5nK1WtnN6uXG1k65vn9we2Nreb2yXtleXFx4eemVpZeW5gfSzpsR8eoX//i9b//kS6/+4jNv/eHOn299s5nWdLb+ZDse0vhZK9tNL16b7Npg9wMGexQ121PsVKb62+beBeYDAEBvzXP8D0XEJyPihZiJsbNPZwEAAIDHUPr56fh3EpHmm+ixHAAAAHiMFFpjYJNCKRsLMB2FQqnUHsP7kbheqNbqjU+v1fa2V9tjZWejWFjbqFbms7HCs1FMmvWFVvm4/mJXfTEinoyI785MteqllVp1ddhffgAAAMAVcaPr+v8fM+3rfwAAAGDEzA47AQAAAODCuf4HAACA0ef6HwAAAEbaV15/vTmlnd+/Xn1zf2+z9ubt1Up9s7S1t1Jaqe3ulNZrtfXWM/u2zttftVbb+Wxs790tNyr1Rrm+f3Bnq7a33bizEZOX0iAAAADglCc/fv93SUQcfm6qNTVNDDsp4FKMH5WSbJ7T+3//RHv+7iUlBVyKsT5e8+61/OXOE+DxNt69oEdfB0ZPcdgJAEOXnLO+5+CdX2fzTww2HwAAYPDmPpZ///+864GIw8IlpAdcIJ0Yrq6u+//pzLASAS5d6/5/vwN5nCzASCn2NQIQGGX/9/3/c6XpQyUEAAAM3HRrSgql7Ou96SgUSqWIm62fBSgmaxvVynxEPBERv50pXmvWF1pbJn2MEQAAAAAAAAAAAAAAAAAAAAAAAAAAovVU7iRSAAAAYKRFFP6U/LL9LP+5meenu78fmEj+1fpJ4ImIeOuHb3z/7nKjsbvQXP63o+WNH2TLXxzGNxgAAABAt851emv+z2FnAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCoee/B2yudqY+XTw0q7l++EBGzefHHY7I1n4xiRFz/exLjJ7ZLImJsAPEP70XER/PiJ820jkLmxR/Em3BO/JjN3oW8+DcGEB+usvvN489ref2vEM+25vn9bzzif+ofVO/jXxwd/8Z69P+bfcZ46p2flXvGvxfx1Hj+8acTP+kR/7k+43/9awcHvdalP4qY63z+tI54JyMcl8qNrZ1yff/g9sbW8nplvbK9uLjw8tIrSy8tzZfXNqqV7N/cGN95+ufvn9X+67mff0mWTe/2P5+zv7zPpP+8c/fBhzuVw9Pxbz2XE/9XP85ecTp+IYvzqazcXD/XKR+2yyc989PfPHNW+1eP2198mP//W7122u1UR3m63z8dAOAC1PcPNper1cruyBaaV+mPQBoKj2DhWwPdYZqmabNP5ay6HxH97CeJAbe0kJ/PcaHnEWDYRyYAAGDQjk/6h50JAAAAAAAAAAAAAAAAAAAAXF2X8ZS17pjHj0BOBvEIbQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAgfhvAAAA//89e9P5")
syz_socket_connect_nvme_tcp()

819.749504ms ago: executing program 0 (id=2524):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
pread64(r0, &(0x7f00000010c0)=""/4096, 0x1000, 0x0)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000980)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000940)={&(0x7f0000000880)={0xa0, 0xa, 0x6, 0x3, 0x0, 0x0, {0x2, 0x0, 0x9}, [@IPSET_ATTR_DATA={0x48, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP2_TO={0xc, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0x1e}}}, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0xb}, @IPSET_ATTR_CIDR2={0x5, 0x15, 0xd}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x9}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x43268cdd}]}, @IPSET_ATTR_ADT={0x44, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x1}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x6}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x5, 0x1a, '\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x64}}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40}, 0x1)

819.240994ms ago: executing program 0 (id=2525):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x4, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000063010d000000000095"], &(0x7f0000000100)='GPL\x00'}, 0x90)
r0 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={<r1=>0x0, <r2=>0x0}, &(0x7f0000cab000)=0x32)
setresuid(0x0, r2, 0x0)
sendmmsg$unix(r0, &(0x7f0000000480)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000000c0)="14", 0x1}], 0x1, &(0x7f0000000600)=[@cred={{0x1c}}], 0x20}}], 0x1, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000080)=0x3)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=@newsa={0x154, 0x10, 0x5, 0x0, 0x0, {{@in6=@loopback, @in6=@local}, {@in=@remote, 0x0, 0x6c}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0x2}, [@encap={0x1c, 0x4, {0x0, 0x0, 0x0, @in=@remote}}, @algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x154}}, 0x0)
r5 = syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000000)=ANY=[], 0x4, 0x11ea, &(0x7f0000002480)="$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")
setitimer(0x2, &(0x7f0000000000)={{0x77359400}, {0x77359400}}, 0x0)
timer_create(0x2, &(0x7f0000000100)={0x0, 0x0, 0x1}, &(0x7f0000000340))
timer_settime(0x0, 0x1, &(0x7f00000003c0)={{}, {0x0, 0x989680}}, 0x0)
fcntl$setstatus(r5, 0x4, 0x800)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'ip6gre0\x00'})
r6 = socket$netlink(0x10, 0x3, 0x0)
writev(r6, &(0x7f0000000180)=[{&(0x7f0000000440)="390000001300034700bb65e1c3e4ff5b4ab6380d218d9531058ad9caf8b175ff01000000010000005600000025000000190004000400000007", 0x39}], 0x1)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000980)='./file0\x00', 0x10b010, &(0x7f0000000ac0), 0x1, 0x4b8, &(0x7f00000011c0)="$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")
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000140)={0x7, &(0x7f0000000100)=[{0xa, 0x5, 0x10, 0x7}, {0x4, 0x54, 0x4, 0x40000000}, {0x371, 0x5, 0x3, 0x2}, {0x3, 0x2, 0xb, 0x458}, {0x40, 0x1, 0xb, 0x3}, {0x7fff, 0xd, 0x8, 0x10001}, {0x2be6, 0x1, 0x40, 0xd}]}, 0x10)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0)
io_setup(0x3, &(0x7f0000000180)=<r7=>0x0)
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
io_submit(r7, 0x1, &(0x7f0000000800)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x0, r8, 0x0}])
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="400000002100010000000000000000000210140000000000000000000c0008400000000000000051c3045c107f2828cf1f0800010000000000080018034e224e2508000200ac1e0001"], 0x40}, 0x1, 0x0, 0x0, 0x60}, 0x0)
ioctl$FS_IOC_GETFLAGS(r3, 0x80086601, &(0x7f0000000180))

671.714725ms ago: executing program 2 (id=2526):
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x1e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000080)={0xffffffffffffffff}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x0, 0xc3, &(0x7f0000000600)=""/195, 0x0, 0x41, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, r0}, 0xe5)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x19, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000b7080000000000007b8af8ff00000000b7080000010000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$netlink(r6, 0x10e, 0x0, 0x0, &(0x7f0000000040))
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r7, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r7, 0x6, 0x1f, &(0x7f0000000100), 0x4)
setsockopt$inet6_tcp_TLS_TX(r7, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_256={{0x304}, "77746a315690a576", "07f217bd2e511e465bbbd5de32b495b2f9044677d4d588360663af84db44be59", "9bba8c07", "f37f20e2ff799aae"}, 0x38)
pidfd_send_signal(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendto$inet6(r7, &(0x7f0000000340)="d1", 0x1, 0x8000, 0x0, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)

665.121266ms ago: executing program 0 (id=2527):
r0 = socket$tipc(0x1e, 0x5, 0x0)
accept4$tipc(r0, 0x0, 0x0, 0x6000000)

654.002787ms ago: executing program 0 (id=2528):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xb6, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getresgid(0x0, 0x0, 0x0)
acct(0x0)
acct(0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000240)='./bus\x00', 0x0, &(0x7f0000000000)={[{@init_itable_val={'init_itable', 0x3d, 0x5}}, {@usrjquota_path={'usrjquota', 0x3d, './bus'}}]}, 0x1, 0x50e, &(0x7f0000002480)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$binfmt_script(r0, &(0x7f0000000340), 0x208e24b)

581.089163ms ago: executing program 1 (id=2529):
dup(0xffffffffffffffff)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast2}, 0x20)
socket(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r2, 0x20, 0x7, 0x513)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r4, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000080)=[{0x25}, {0x64}, {0x6}]}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000180)=ANY=[], 0x0)
r5 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}}, 0x0, 0x0, r3, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f00000001c0)={0x0, <r6=>0x0}, &(0x7f00000002c0)=0xc)
fchown(r3, r6, 0xffffffffffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a300000000028000480240001800b000100736f636b6574000014000280080002400000000e080001"], 0xd8}}, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x1e, 0x5, 0x0, 0x8000, 0x0, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r9)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r10, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r11=>0x0})
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r12, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000800)=ANY=[@ANYBLOB="440000001800010000000000000000000a0000000000000000000000180016000d0001000a00000000000000000010000000000008000400", @ANYRES32=r11, @ANYBLOB="0600150007"], 0x44}}, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r3, 0x0)
fallocate(r3, 0x0, 0x0, 0x1001f0)

380.865199ms ago: executing program 0 (id=2530):
syz_mount_image$ext4(&(0x7f0000000940)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f00000008c0)={[{@data_writeback}, {@sysvgroups}, {@nojournal_checksum}, {@noauto_da_alloc}, {@errors_continue}, {@data_err_abort}, {@jqfmt_vfsv1}]}, 0x3, 0x43a, &(0x7f0000000340)="$eJzs28tvG0UYAPBv13FKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWlUQECpHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZs4jp0mwY5L/ftJm8zsjjPzeXbs2Z1sAH1rJPuRROyJiN8jYqieXV1gpP7r5tLl6b+XLk8nUa2+9VdSK3dj6fJ0UbR43e48M5pGpJ8lcahFvfMXL52dqlRmL+T58YVz74/PX7z07JlzU6dnT8+enzxx4vixiReen3yuI3Fmbbpx8KO5wwdee+fqG9Mnr77787dJEX9THB0yst7BJ6rVDlfXW3sb0slADxvCppQiIuuucm38D0UpVjpvKF79tKeNA7qqWq1Wd7c/vFgF7mBJbLTk2fzzArgzFF/02fVvsW3T1OO2cP2l+gVQFvfNfKsfGYg0L1Nuur7tpJGIOLn4z1fZFt25DwEAsMr32fznmVbzvzTubyh3d742NBwR90TEvoi4NyL2R8R9EbWyD0TEg5usv3mRZO38J722pcA2KJv/vZivba2e/xWzvxgu5bm9tfjLyakzldmj+XsyGuUdWX5inTp+eOW3L9oda5z/ZVtWfzEXzNtxbWDH6tfMTC1M/ZeYG13/JOLgQKv4k+WVgCQiDkTEwS3Wceapbw63O9Yu/vJG/nAH1pmqX0c8We//xWiKv5Csvz45fldUZo+OF2fFWr/8euXNdvXfuv+7K+v/XS3P/+X4h5PG9dr5zddx5Y/P217TbPX8H0zerqUH830fTi0sXJiIGExerze6cf/kymuLfFE+i3/0SOvxvy9W3olDEZGdxA9FxMMR8Uje9kcj4rGIOLJO/D+9/Ph7W4+/u7L4ZzbV/yuJwWje0zpROvvjd6sqHd5M/Fn/H6+lRvM9G/n820i7tnY2AwAAwP9PGhF7IknHltNpOjZW/3/5/bErrczNLzx9au6D8zP1ZwSGo5wWd7qGGu6HTuSX9UV+sil/LL9v/GVpZy0/Nj1Xmel18NDndrcZ/5k/S71uHdB1nteC/mX8Q/8y/qF/Gf/Qv1qM/529aAew/Vp9/3/cg3YA269p/Fv2gz7i+h/6l/EP/cv4h740vzNu/ZC8hMSaRKS3RTMkupTo9ScTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAZ/wbAAD//9E940M=")
syz_mount_image$iso9660(0x0, &(0x7f0000000000)='./file0\x00', 0x80006, 0x0, 0x6, 0x0, &(0x7f0000000000))
mount$bpf(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='devpts\x00', 0x500, &(0x7f0000000200))

347.882242ms ago: executing program 1 (id=2531):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x8000000000a, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB])

330.371444ms ago: executing program 0 (id=2532):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(r3, &(0x7f0000001140), 0x700, 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r4, 0x84, 0x15, &(0x7f0000000040)={0xb}, 0x1)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r4, &(0x7f0000000500), 0x0, 0x80fe, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

264.513329ms ago: executing program 1 (id=2533):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
writev(r0, &(0x7f0000000480)=[{&(0x7f0000001740)='9', 0x1}, {&(0x7f0000000100)='\n'}, {&(0x7f0000000340)="58314e235a0c3462704a77bb9e47d39f48a4a835a7ad8737857f6a6876e271fd52128d47ef8f2437844a34823f5852f5c955fe2d6ed0718cec97471c1e7665", 0x3f}, {&(0x7f0000000bc0)="936564af7b5a21db1256981c613becdf3c1b91a427cb8d0ca83998d12ad137b561632347cf3346a0a482a4d17f6dbddd39829782d1297620159ecb46753b035ba44989e0fb42ee13d09d795a8efad6130e782fca037c1a2e3ba7069cf573229e2f924a8239279fba849b2682858b1c565645f37ba4602310753099e19168f61eb5ea92b20c3b50f001d2b5947b2b51bd01167e0333d92e3ce3b4f84092abd561b1cab78a50d28f02309dc787e2618de8946ff26a5924421ad224f499ca86702306c76ec4a7bc3bf0fee8a3bc9044ecad7ad5c8fe77d7327565", 0xd9}, {&(0x7f0000000380)="d8f0df80fafaae77ab3b73f83ac3f69412f1ad75ffa282b04f1c3c218bbec01345865fd6682cee9cfed71f2b2de8f0938bd43887448c2b060172bea518b2ea491a8423a85b72549e9c70580bbf07623f1eb0fe4a718c0449780297af775c4c8e96b64a1499e1b6449b82b68c2095df27c52858791a943d801e0f106e59f4207a3693a75c0e30e5a9a931c3fd962b3327f636df", 0x93}], 0x5)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0x1a, 0x20000028, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket(0x10, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000300), r1)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/mnt\x00')
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1, 0x5, 0x103ba, 0x1}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000080), &(0x7f00000001c0)='%-5lx  \x00'}, 0x20)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000180), 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r2, &(0x7f0000000180), 0x0}, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180))
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x5, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8914, &(0x7f0000000080))
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xda00)
write$cgroup_devices(r3, &(0x7f0000000440)=ANY=[@ANYBLOB="1e0308004d8c71ef2885634a8270021411"], 0xffdd)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xec, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x8000000000000001}, 0x1, 0x7, 0x7fffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

263.201509ms ago: executing program 3 (id=2534):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_io_uring_setup(0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0x1a, 0x20000028, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
setuid(0x0)
socket(0x10, 0x3, 0x0)
setsockopt$MRT6_ASSERT(0xffffffffffffffff, 0x29, 0xcf, 0x0, 0x0)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
ioperm(0x0, 0x3d, 0x80000000001f)
shmget$private(0x0, 0xfffffffffeffffff, 0x0, &(0x7f0000ffc000/0x3000)=nil)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x40002000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0xa, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="61125d000000000061138c0000000000bf20000000000000150003000d1400002d0301000000000095000000000000006916600000000000bf67000000000000260600000fff07106706000006000000170300000ee60060bf050000000000001d360000000000006507f9ff01000000470700004c000000cc75000000000000bf54000000000000070400000400f9ffad4301000000000095000023000000000500000000000000950000000000000032ff7f5be95e09b67754bb12feffffff8ecf264e0f84f9f17d3c51e3c7bdd2d17f2f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd399703d6c4f6f3be5b369289aa6812ade007e733a9a4f16d0abbd5ad9381806ef08513e3d3778a814261bdb94a05000000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe01c5473d51b546cad5b803306b17cf4ef3f1d45f65727546e7c955ccefa1f6ab689fde4de4e63edf10271a5144ddc8da3aa5b0ab733a1b901627b562ed04ae76002d4519af619e3a2a4d69e0dee5eb106774a8f3e6916dfec88b5634ef79b02d2ca8ff54c158f0200000000eafb735fd552bdc206004aeb0743eb2dc819cf5c8ac86d8a297dff0445a13d00dce431e56723888fb126a163f16fb2ad9bc1172ba7cbebe174cecac4d03723f1c932b3faffffffffffffff5fc998e13b670e373e3e5897f7ad2e99e0e67a993716dbf580469f0f53acbb40b401e3738270b315d362ed834f2a0700000096649a462e7ee4bcf8b07a101c879730beb4000000000000000000000000000000bc00f674629709e7e78f4ddc3d1bc3ebf0bd9d42ca019dd5d022cf7468659fbe2562671cd47840a7afaab43176e65ec1118d46d1e827f3472f4445d253887a5ad103649afa17690884f800031e03a651bb96589a7eab04871bc47287cd313f3bea788ea2bcdc340ffb567b40407d000000000000000000000600005f37d83f84e98a523d80bd0d0d703f3767ce603c9d48cac052ca363f601ae899a53f67b63d20a268bb9f15a0a6e66ce4660fbee91629ab028acfc1d9260e9659a0f6a5480a55c22fe3ae5f562d0ae520c38d2bab6528000000596fb7d7037f02e84867de3a96b33c81cdbbd421a27f7f1db054cc7a0a4d372849c99a98822103b9851d924b85b1ca4b21b187db00000000000000066dead3b9670a7604a5ddd0fd2e4fb8a5749a8a8ad78454ba1eebeff1b528da294247d294d2487babb176fdfafeb3d492a325671e6b91afb41f87feda4ce2f468a3758750c0b8f151d4d8574bbbe027687a0e12311cdf3384a26ee3f6f2424b92e5be98ef1f8f2db9a4991e234f9f447e1730ceaf54cf25c0e3ad7cbb0de06d55db89d154c9d3fcd01c551b0ef5d5305845b9a8763b264e8f0bcd0f606fe92e511f122325ebc5fef1b67845d0eb8b8a4f97d68ceec2e5f83424221e94a5c4623feb8496ccdbc55b27773bf1b3e6a91a20e0c27fc80262647f88d8d1123d199b2c7729bb7700e887ea963f00004a1d0851dbfb9308d16cadcc7b477c9a84e3d6bd82526898735552a203c4caefda5f4a62d86344aa115136353964648abcc4adbe765556643842290a92eafea0ec2c000000000000000000000000000000e1f3518dc3fc2bbefe043804ac1b6b1c8b7e3afed045a3a808700bca61a39d5bfa83877803013e2d145e642253632f3a283c6eee0e22cb69fe7f94786220c31e9b2a82a9856e947bace74923e4740bf1c17cb41ef19161c3d406000000c28bd08dee32d77a40b834ba7a12223354e9321b8300f7d5d63fa0e8f074adc176285a8f41609ce040cec99943792f5443ca5292447b0f0f240743c4b2b8142ce0b43d4d1731ce11533f61ef241c83557f5aae58a848b5ccce86b8b0fb21fe369c90f06e2d9680003df72f3f0060e6c3415cc1026d342003bece09fbfd062efdd9b48377335903f3b4e87386915e3ac429a4db646da1cc6e29ad8650f4da326cbfdce12c8d5deba32549d6aefe422e0d665d62325c737fe76ec1f3c3670ed96f86738a2cf1c59b5f9b84ffd068f7b4509f53617910a41b811a3f7cd6251f8100008133af11a4db2d00c0ad86ce9f8787a8c8d3d80653292bd9a6f39c"], &(0x7f0000000100)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x6}, 0x10}, 0x90)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f0000000040)={0x1d, r4}, 0x18)
r5 = dup(r3)
sendmsg$nl_generic(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[], 0x33fe0}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$EVIOCGLED(0xffffffffffffffff, 0x80044501, &(0x7f0000000000)=""/85)
write$cgroup_subtree(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200092f00fe80000000000000875a650b9ff57b00000000000000000000000000ac1414aa0bf022eb"], 0xcfa4)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x90)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r7, 0x40047438, &(0x7f0000000180)=""/246)

169.730296ms ago: executing program 4 (id=2535):
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=@dellinkprop={0x20, 0x6d, 0x21}, 0x20}}, 0x0)
sendmsg$IPSET_CMD_GET_BYNAME(0xffffffffffffffff, 0x0, 0x0) (async)
sendmsg$IPSET_CMD_GET_BYNAME(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SHOW_STATS(0xffffffffffffffff, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300) (async)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x0, 0x300) (async)
socket$packet(0x11, 0x0, 0x300)
socket$packet(0x11, 0x2, 0x300) (async)
socket$packet(0x11, 0x2, 0x300)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = open(&(0x7f0000000040)='./bus\x00', 0x1c567c, 0x0)
r3 = creat(&(0x7f0000000180)='./file0\x00', 0x22)
close(r3)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="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", @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',\x00'])
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, &(0x7f0000001f40)=""/4094, 0x0, 0xffe, 0xa}, 0x20) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, &(0x7f0000001f40)=""/4094, 0x0, 0xffe, 0xa}, 0x20)
syz_genetlink_get_family_id$fou(&(0x7f00000000c0), r2)
socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000040))
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000200)) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000200))
timer_delete(0x0)
socket(0x1, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000100))
socketpair(0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="900000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="adffa88800000000600012800b0001006772657461700000500002800800140006000000050016000200000006000e0000000000060018000400000004001200060002000800000008001400c7040000080007007f00000108000600e000000208000600e000000108000500", @ANYRES32=0x0, @ANYBLOB="10010035", @ANYRES32=0x0, @ANYBLOB], 0x90}, 0x1, 0x0, 0x0, 0x4001050}, 0x40408c4)

153.035338ms ago: executing program 3 (id=2536):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
pread64(r0, &(0x7f00000010c0)=""/4096, 0x1000, 0x0)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000980)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000940)={&(0x7f0000000880)={0xa0, 0xa, 0x6, 0x3, 0x0, 0x0, {0x2, 0x0, 0x9}, [@IPSET_ATTR_DATA={0x48, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP2_TO={0xc, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0x1e}}}, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0xb}, @IPSET_ATTR_CIDR2={0x5, 0x15, 0xd}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x9}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x43268cdd}]}, @IPSET_ATTR_ADT={0x44, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x1}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x6}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x5, 0x1a, '\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x64}}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40}, 0x1)

132.592739ms ago: executing program 3 (id=2537):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x11, &(0x7f0000000040)={&(0x7f0000001b80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc0}}, 0x0)

43.711687ms ago: executing program 3 (id=2538):
socket(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f0000000800)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="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"], 0x2c}}, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x4)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xf, 0x10}, [@ldst={0x3, 0x0, 0x6, 0xa}], {0x95, 0x0, 0x5}}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x22)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'nr0\x00', 0xe43986f95b0e4309})
ioctl$TUNGETSNDBUF(r3, 0x400454dc, &(0x7f0000001700))
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
r4 = socket$inet6(0xa, 0x2, 0x3a)
sendmmsg$inet6(r4, &(0x7f0000000340)=[{{&(0x7f0000000380)={0xa, 0x0, 0x0, @mcast2={0xff, 0x5, '\x00', 0x0}}, 0x1c, &(0x7f0000000000)=[{&(0x7f0000000100)="a0002883781ecc0e", 0x8}], 0x6}}], 0x1, 0x0)
sendmsg$BATADV_CMD_SET_HARDIF(r2, &(0x7f0000000100)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x89fdf1ceff4e6037}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008800}, 0x20000000)
perf_event_open(&(0x7f0000000a00)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xe3589, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x405, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000c80)=@security={'security\x00', 0xe, 0x4, 0x448, 0xffffffff, 0x2a0, 0x0, 0x2a0, 0xffffffff, 0xffffffff, 0x378, 0x378, 0x378, 0xffffffff, 0x4, &(0x7f0000000200), {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0xe28a}}}, {{@uncond, 0x0, 0xa8, 0x1d0}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'system_u:object_r:scsi_generic_device_t:s0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x0, 0x5, 0xf}, {0xffffffffffffffff, 0x2, 0x4}, 0x0, 0xfffffc00}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4a8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000a80)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb010018000000000000001400000014000000020000000000000001f9a96fc00000060400"], 0x0, 0x2e}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.throttle.io_serviced\x00', 0x26e1, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340)}, 0x4002, 0x0, 0x0, 0x7, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={0xffffffffffffffff, 0xe0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x8, &(0x7f0000000400)=[{}], 0x8, 0x10, &(0x7f0000000500), &(0x7f0000000680), 0x8, 0xae, 0x8, 0x8, &(0x7f0000000580)}}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x200})
socketpair(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x8914, &(0x7f0000000080))
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x89a1, &(0x7f0000000080))

12.577359ms ago: executing program 4 (id=2539):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_KEY={0x8}, @NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0xc}]}}}, {0x10, 0x1, 0x0, 0x1, @quota={{0xa}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x8c}}, 0x0)

0s ago: executing program 4 (id=2540):
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4000000, 0x0, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000009c0)={'vcan0\x00', <r2=>0x0})
setsockopt$SO_J1939_FILTER(r1, 0x6b, 0x1, &(0x7f0000000540)=[{0x0, 0x0, {0x0, 0x0, 0x3}, {0x0, 0x0, 0x2}, 0xfd}, {0x0, 0x0, {0x0, 0x1}, {0x0, 0xff}}], 0x40)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r3, &(0x7f0000000080)={0x1d, r2}, 0x18)
sendmsg$can_j1939(r3, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
r4 = socket$nl_route(0x10, 0x3, 0x0)
bind$can_j1939(r1, &(0x7f0000000200)={0x1d, r2}, 0x18)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f00)=@newtfilter={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r6}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
r7 = socket$nl_audit(0x10, 0x3, 0x9)
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', <r9=>0x0})
bind$can_j1939(r8, &(0x7f0000000040)={0x1d, r9}, 0x18)
connect$can_j1939(r8, &(0x7f0000000080)={0x1d, r9}, 0x18)
r10 = dup(r8)
sendmsg$nl_generic(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[], 0x33fe0}}, 0x0)
sendmsg$AUDIT_USER_AVC(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000005304", @ANYRES16=0x0], 0x14}, 0x1, 0x0, 0x0, 0x40081}, 0x0)

kernel console output (not intermixed with test programs):

ace
[  236.275378][ T1588] bond0 (unregistering): Released all slaves
[  236.297782][T11190] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  236.309747][T11190] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  236.311119][   T29] audit: type=1400 audit(1720496107.003:960): avc:  denied  { write } for  pid=11212 comm="syz.0.2083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  236.338619][T11190] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  236.347694][T11190] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  236.365262][T11140] 8021q: adding VLAN 0 to HW filter on device batadv0
[  236.374990][ T1588] hsr_slave_0: left promiscuous mode
[  236.380752][ T1588] hsr_slave_1: left promiscuous mode
[  236.386487][ T1588] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  236.394016][ T1588] batman_adv: batadv0: Removing interface: batadv_slave_0
[  236.402049][ T1588] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  236.409681][ T1588] batman_adv: batadv0: Removing interface: batadv_slave_1
[  236.420297][ T1588] veth1_macvtap: left promiscuous mode
[  236.425820][ T1588] veth0_macvtap: left promiscuous mode
[  236.431487][ T1588] veth1_vlan: left promiscuous mode
[  236.436752][ T1588] veth0_vlan: left promiscuous mode
[  236.524171][ T1588] team0 (unregistering): Port device team_slave_1 removed
[  236.534490][ T1588] team0 (unregistering): Port device team_slave_0 removed
[  236.591202][T11100] 8021q: adding VLAN 0 to HW filter on device batadv0
[  236.644366][T11190] 8021q: adding VLAN 0 to HW filter on device bond0
[  236.659595][T11190] 8021q: adding VLAN 0 to HW filter on device team0
[  236.670511][ T3160] bridge0: port 1(bridge_slave_0) entered blocking state
[  236.677676][ T3160] bridge0: port 1(bridge_slave_0) entered forwarding state
[  236.697617][ T4978] bridge0: port 2(bridge_slave_1) entered blocking state
[  236.704751][ T4978] bridge0: port 2(bridge_slave_1) entered forwarding state
[  236.717260][T11140] veth0_vlan: entered promiscuous mode
[  236.731208][T11100] veth0_vlan: entered promiscuous mode
[  236.739870][T11100] veth1_vlan: entered promiscuous mode
[  236.759303][T11140] veth1_vlan: entered promiscuous mode
[  236.769453][T11190] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  236.779903][T11190] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  236.810132][T11140] veth0_macvtap: entered promiscuous mode
[  236.825376][T11140] veth1_macvtap: entered promiscuous mode
[  236.836909][T11100] veth0_macvtap: entered promiscuous mode
[  236.844520][T11100] veth1_macvtap: entered promiscuous mode
[  236.854924][T11140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.865504][T11140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.875420][T11140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.885940][T11140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.897209][T11140] batman_adv: batadv0: Interface activated: batadv_slave_0
[  236.907239][T11100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.917762][T11100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.927629][T11100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.938060][T11100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.947944][T11100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  236.958384][T11100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  236.969194][T11100] batman_adv: batadv0: Interface activated: batadv_slave_0
[  236.984646][T11100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  236.995305][T11100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.005180][T11100] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.015661][T11100] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.027306][T11100] batman_adv: batadv0: Interface activated: batadv_slave_1
[  237.035735][T11140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.046378][T11140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.056370][T11140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.066898][T11140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.076756][T11140] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.087485][T11140] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.099502][T11140] batman_adv: batadv0: Interface activated: batadv_slave_1
[  237.118065][T11140] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  237.126886][T11140] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  237.135659][T11140] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  237.144484][T11140] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  237.177326][T11190] 8021q: adding VLAN 0 to HW filter on device batadv0
[  237.188407][T11100] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  237.197191][T11100] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  237.205942][T11100] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  237.214720][T11100] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  237.257137][T11248] 9pnet_fd: Insufficient options for proto=fd
[  237.353946][T11257] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2054'.
[  237.459338][T11257] loop2: detected capacity change from 0 to 512
[  237.470748][T11260] loop1: detected capacity change from 0 to 1024
[  237.496384][T11260] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  237.556144][T11257] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.569955][T11260] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  237.589216][T11257] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  237.606197][T11260] System zones: 0-1, 3-12
[  237.614736][T11260] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.2087: Invalid block bitmap block 0 in block_group 0
[  237.635481][T11260] Quota error (device loop1): write_blk: dquota write failed
[  237.642941][T11260] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  237.650370][T11190] veth0_vlan: entered promiscuous mode
[  237.653620][T11260] EXT4-fs error (device loop1): ext4_acquire_dquot:6860: comm syz.1.2087: Failed to acquire dquot type 0
[  237.671181][T11260] EXT4-fs error (device loop1): ext4_free_blocks:6590: comm syz.1.2087: Freeing blocks not in datazone - block = 0, count = 4096
[  237.671249][T11190] veth1_vlan: entered promiscuous mode
[  237.691008][T11260] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.2087: Invalid inode bitmap blk 0 in block_group 0
[  237.708797][ T1588] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8
[  237.709967][T11190] veth0_macvtap: entered promiscuous mode
[  237.717815][ T1588] EXT4-fs error (device loop1): ext4_release_dquot:6883: comm kworker/u8:5: Failed to release dquot type 0
[  237.725992][T11190] veth1_macvtap: entered promiscuous mode
[  237.740528][T11260] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem
[  237.748297][T11190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  237.759790][T11190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.760302][T11260] EXT4-fs (loop1): 1 orphan inode deleted
[  237.769635][T11190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  237.769655][T11190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.789457][T11260] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.795903][T11190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  237.795923][T11190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.795937][T11190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  237.795950][T11190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.798460][T11190] batman_adv: batadv0: Interface activated: batadv_slave_0
[  237.810661][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.823169][T11190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.876360][T11190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.886238][T11190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.892170][T11272] netlink: 'syz.1.2087': attribute type 1 has an invalid length.
[  237.896754][T11190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.896775][T11190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.896790][T11190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.934917][T11190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  237.945343][T11190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.962828][T11190] batman_adv: batadv0: Interface activated: batadv_slave_1
[  237.985842][T11190] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  237.994667][T11190] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.003394][T11190] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.012106][T11190] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.047529][T11140] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.072016][T11281] netlink: 104 bytes leftover after parsing attributes in process `syz.0.2093'.
[  238.073995][   T29] audit: type=1400 audit(1720496108.743:961): avc:  denied  { nlmsg_write } for  pid=11280 comm="syz.0.2093" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  238.104656][T11283] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2088'.
[  238.125288][T11285] xt_hashlimit: max too large, truncated to 1048576
[  238.133121][T11285] x_tables: ip_tables: icmp match: only valid for protocol 1
[  238.150693][T11283] loop2: detected capacity change from 0 to 128
[  238.152056][   T29] audit: type=1400 audit(1720496108.822:962): avc:  denied  { read } for  pid=11286 comm="syz.4.2080" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  238.167545][T11283] FAT-fs (loop2): Unrecognized mount option "��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������" or missing value
[  238.183027][T11287] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2080'.
[  238.227324][T11288] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  238.233869][T11288] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  238.262192][T11285] hsr_slave_0: left promiscuous mode
[  238.268121][T11285] hsr_slave_1: left promiscuous mode
[  238.404694][T11295] tipc: Started in network mode
[  238.409623][T11295] tipc: Node identity fe800000000000000000000000000012, cluster identity 4711
[  238.424900][T11295] tipc: Enabled bearer <udp:syz0>, priority 10
[  238.700377][T11299] chnl_net:caif_netlink_parms(): no params data found
[  238.924810][T11299] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.931946][T11299] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.965245][T11299] bridge_slave_0: entered allmulticast mode
[  239.001641][T11299] bridge_slave_0: entered promiscuous mode
[  239.040153][T11299] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.047256][T11299] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.059165][T11299] bridge_slave_1: entered allmulticast mode
[  239.065765][T11299] bridge_slave_1: entered promiscuous mode
[  239.084726][T11299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  239.095425][T11299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  239.118629][T11299] team0: Port device team_slave_0 added
[  239.125587][T11299] team0: Port device team_slave_1 added
[  239.145019][T11299] batman_adv: batadv0: Adding interface: batadv_slave_0
[  239.152287][T11299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  239.178351][T11299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  239.195117][T11299] batman_adv: batadv0: Adding interface: batadv_slave_1
[  239.202142][T11299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  239.228200][T11299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  239.252142][T11008] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.262763][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  239.262778][   T29] audit: type=1400 audit(1720496109.921:972): avc:  denied  { map } for  pid=11280 comm="syz.0.2093" path="socket:[62274]" dev="sockfs" ino=62274 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  239.297031][T11299] hsr_slave_0: entered promiscuous mode
[  239.303639][T11299] hsr_slave_1: entered promiscuous mode
[  239.310538][T11299] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  239.318171][T11299] Cannot create hsr debugfs directory
[  239.468639][ T4647] tipc: Node number set to 4269801490
[  239.483264][T11299] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.485943][T11333] loop2: detected capacity change from 0 to 1024
[  239.501103][T11333] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  239.513590][T11333] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  239.521829][T11333] System zones: 0-1, 3-12
[  239.523052][T11335] netlink: 'syz.0.2102': attribute type 13 has an invalid length.
[  239.528221][T11333] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2101: Invalid block bitmap block 0 in block_group 0
[  239.534082][T11335] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2102'.
[  239.549366][T11333] Quota error (device loop2): write_blk: dquota write failed
[  239.564106][T11333] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  239.568654][T11335] erspan0: refused to change device tx_queue_len
[  239.574574][T11333] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.2101: Failed to acquire dquot type 0
[  239.580477][T11335] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  239.611470][T11333] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.2101: Freeing blocks not in datazone - block = 0, count = 4096
[  239.627575][T11333] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.2101: Invalid inode bitmap blk 0 in block_group 0
[  239.640701][T11333] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[  239.651765][   T28] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8
[  239.659183][T11333] EXT4-fs (loop2): 1 orphan inode deleted
[  239.660884][   T28] EXT4-fs error (device loop2): ext4_release_dquot:6883: comm kworker/u8:1: Failed to release dquot type 0
[  239.668388][T11333] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  239.706188][T11333] netlink: 'syz.2.2101': attribute type 1 has an invalid length.
[  239.744142][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.764986][T11349] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  240.047299][T11357] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2109'.
[  240.251440][T11363] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2110'.
[  240.357235][T11366] program syz.3.2111 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  240.450950][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  240.482921][   T29] audit: type=1400 audit(1720496111.089:973): avc:  denied  { bind } for  pid=11369 comm="syz.3.2113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  240.503261][   T29] audit: type=1400 audit(1720496111.089:974): avc:  denied  { setopt } for  pid=11369 comm="syz.3.2113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  240.535319][   T29] audit: type=1400 audit(1720496111.178:975): avc:  denied  { listen } for  pid=11371 comm="syz.3.2114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  240.554943][   T29] audit: type=1400 audit(1720496111.178:976): avc:  denied  { accept } for  pid=11371 comm="syz.3.2114" lport=60836 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  240.575885][   T29] audit: type=1400 audit(1720496111.208:977): avc:  denied  { getopt } for  pid=11371 comm="syz.3.2114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  240.689086][   T29] audit: type=1400 audit(1720496111.337:978): avc:  denied  { getopt } for  pid=11374 comm="syz.3.2115" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  240.717497][T11378] loop2: detected capacity change from 0 to 1024
[  240.729267][T11378] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  240.740834][T11378] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  240.750993][T11378] System zones: 0-1, 3-12
[  240.756387][T11378] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2116: Invalid block bitmap block 0 in block_group 0
[  240.771273][T11378] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.2116: Failed to acquire dquot type 0
[  240.783073][T11378] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.2116: Freeing blocks not in datazone - block = 0, count = 4096
[  240.798506][T11378] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.2116: Invalid inode bitmap blk 0 in block_group 0
[  240.811338][T11378] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[  240.821472][ T3716] EXT4-fs error (device loop2): ext4_release_dquot:6883: comm kworker/u8:7: Failed to release dquot type 0
[  240.834139][T11378] EXT4-fs (loop2): 1 orphan inode deleted
[  240.840602][T11378] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.858711][T11378] netlink: 'syz.2.2116': attribute type 1 has an invalid length.
[  240.859811][T11388] loop3: detected capacity change from 0 to 2048
[  240.876703][T11388] EXT4-fs error (device loop3): ext4_orphan_get:1420: comm syz.3.2119: bad orphan inode 8192
[  240.887564][T11388] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  240.922089][T11388] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2119'.
[  240.938702][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.973328][T11394] netlink: 'syz.0.2121': attribute type 13 has an invalid length.
[  240.981270][T11394] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2121'.
[  240.991040][T11394] erspan0: refused to change device tx_queue_len
[  240.997472][T11394] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  241.045883][T11400] program syz.0.2123 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  241.237720][T11419] netlink: 'syz.0.2129': attribute type 1 has an invalid length.
[  241.494618][T11423] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2130'.
[  241.557493][T11426] netlink: 'syz.2.2131': attribute type 13 has an invalid length.
[  241.576492][T11426] erspan0: refused to change device tx_queue_len
[  241.583050][T11426] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  241.701268][T11008] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.854631][T11435] program syz.3.2134 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  241.933527][T11443] loop3: detected capacity change from 0 to 1024
[  241.940649][T11443] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  241.951635][T11443] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  241.959888][T11443] System zones: 0-1, 3-12
[  241.965525][T11443] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2139: Invalid block bitmap block 0 in block_group 0
[  241.979311][T11443] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz.3.2139: Failed to acquire dquot type 0
[  241.992208][T11443] EXT4-fs error (device loop3): ext4_free_blocks:6590: comm syz.3.2139: Freeing blocks not in datazone - block = 0, count = 4096
[  242.005941][T11443] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.2139: Invalid inode bitmap blk 0 in block_group 0
[  242.018859][T11443] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem
[  242.025464][   T28] EXT4-fs error (device loop3): ext4_release_dquot:6883: comm kworker/u8:1: Failed to release dquot type 0
[  242.029131][T11443] EXT4-fs (loop3): 1 orphan inode deleted
[  242.045005][T11443] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.062397][T11443] netlink: 'syz.3.2139': attribute type 1 has an invalid length.
[  242.098571][T11447] loop1: detected capacity change from 0 to 1024
[  242.107793][T11447] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.134293][T11008] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.197042][T11450] netlink: 'syz.0.2142': attribute type 13 has an invalid length.
[  242.205387][T11450] erspan0: refused to change device tx_queue_len
[  242.211802][T11450] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  242.228119][T11140] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.285250][T11458] program syz.3.2145 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  242.304636][T11460] loop1: detected capacity change from 0 to 2048
[  242.319872][T11460] EXT4-fs error (device loop1): ext4_orphan_get:1420: comm syz.1.2143: bad orphan inode 8192
[  242.331585][T11460] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.349659][T11460] bridge_slave_1: left allmulticast mode
[  242.355342][T11460] bridge_slave_1: left promiscuous mode
[  242.361075][T11460] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.369300][T11460] bridge_slave_0: left allmulticast mode
[  242.375018][T11460] bridge_slave_0: left promiscuous mode
[  242.380716][T11460] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.434246][T11473] loop3: detected capacity change from 0 to 512
[  242.460956][T11475] netlink: 'syz.0.2151': attribute type 1 has an invalid length.
[  242.462366][T11473] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.482927][T11473] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  242.515234][T11008] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.627542][T11482] __nla_validate_parse: 3 callbacks suppressed
[  242.627556][T11482] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2153'.
[  242.650419][T11482] erspan0: refused to change device tx_queue_len
[  242.656912][T11482] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  242.699714][T11486] loop2: detected capacity change from 0 to 256
[  242.794636][T11490] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2152'.
[  243.548503][T11497] program syz.2.2156 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  243.573907][T11501] FAULT_INJECTION: forcing a failure.
[  243.573907][T11501] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  243.587108][T11501] CPU: 1 PID: 11501 Comm: syz.3.2159 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  243.597275][T11501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  243.607400][T11501] Call Trace:
[  243.610682][T11501]  <TASK>
[  243.613638][T11501]  dump_stack_lvl+0xf2/0x150
[  243.618311][T11501]  dump_stack+0x15/0x20
[  243.622512][T11501]  should_fail_ex+0x229/0x230
[  243.627216][T11501]  should_fail+0xb/0x10
[  243.631447][T11501]  should_fail_usercopy+0x1a/0x20
[  243.636473][T11501]  _copy_from_user+0x1e/0xd0
[  243.641145][T11501]  copy_from_bpfptr+0x5e/0x90
[  243.645889][T11501]  bpf_prog_load+0x712/0x1060
[  243.650582][T11501]  __sys_bpf+0x463/0x7a0
[  243.654893][T11501]  __x64_sys_bpf+0x43/0x50
[  243.659366][T11501]  x64_sys_call+0x2655/0x2d70
[  243.664098][T11501]  do_syscall_64+0xc9/0x1c0
[  243.668704][T11501]  ? clear_bhb_loop+0x55/0xb0
[  243.673503][T11501]  ? clear_bhb_loop+0x55/0xb0
[  243.678186][T11501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.684135][T11501] RIP: 0033:0x7faca73e3bd9
[  243.688593][T11501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.708206][T11501] RSP: 002b:00007faca6665048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  243.716696][T11501] RAX: ffffffffffffffda RBX: 00007faca7571f60 RCX: 00007faca73e3bd9
[  243.724667][T11501] RDX: 0000000000000090 RSI: 00000000200000c0 RDI: 0000000000000005
[  243.732740][T11501] RBP: 00007faca66650a0 R08: 0000000000000000 R09: 0000000000000000
[  243.740804][T11501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  243.748774][T11501] R13: 000000000000000b R14: 00007faca7571f60 R15: 00007ffc3f639d08
[  243.756767][T11501]  </TASK>
[  243.778633][T11507] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2162'.
[  243.793417][T11507] loop2: detected capacity change from 0 to 1024
[  243.801625][T11507] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  243.812562][T11507] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  243.822789][T11507] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  243.833907][T11507] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #3: comm syz.2.2162: pblk 82 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  243.834070][T11512] validate_nla: 1 callbacks suppressed
[  243.834083][T11512] netlink: 'syz.3.2164': attribute type 13 has an invalid length.
[  243.853454][T11507] EXT4-fs (loop2): no journal found
[  243.857348][T11512] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2164'.
[  243.881174][T11140] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.898666][T11512] erspan0: refused to change device tx_queue_len
[  243.905108][T11512] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  243.945318][T11507] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2162'.
[  244.013702][T11521] loop2: detected capacity change from 0 to 1024
[  244.020746][T11521] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  244.042087][T11521] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  244.050286][T11521] System zones: 0-1, 3-12
[  244.056764][T11521] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2168: Invalid block bitmap block 0 in block_group 0
[  244.072326][T11299] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.073372][T11521] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.2168: Failed to acquire dquot type 0
[  244.095778][T11521] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.2168: Freeing blocks not in datazone - block = 0, count = 4096
[  244.110351][T11521] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.2168: Invalid inode bitmap blk 0 in block_group 0
[  244.124853][T11521] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[  244.133628][T11521] EXT4-fs (loop2): 1 orphan inode deleted
[  244.140257][T11521] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.157016][T11528] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2166'.
[  244.246774][T11530] netlink: 'syz.2.2168': attribute type 1 has an invalid length.
[  244.431688][   T56] __quota_error: 35 callbacks suppressed
[  244.431707][   T56] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8
[  244.446347][   T56] EXT4-fs error (device loop2): ext4_release_dquot:6883: comm kworker/u8:4: Failed to release dquot type 0
[  244.473052][   T29] audit: type=1400 audit(1720496115.086:1006): avc:  denied  { connect } for  pid=11532 comm="syz.1.2170" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  244.493233][   T29] audit: type=1400 audit(1720496115.086:1007): avc:  denied  { write } for  pid=11532 comm="syz.1.2170" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  244.545938][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.588649][   T29] audit: type=1326 audit(1720496115.205:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11548 comm="syz.0.2174" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6152700bd9 code=0x0
[  244.593051][T11551] gre0: entered promiscuous mode
[  244.616957][T11551] vlan2: entered promiscuous mode
[  244.623691][T11551] gre0: left promiscuous mode
[  244.633069][T11553] netlink: 'syz.1.2175': attribute type 13 has an invalid length.
[  244.641064][T11553] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2175'.
[  244.654403][T11553] erspan0: refused to change device tx_queue_len
[  244.660808][T11553] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  244.693870][   T29] audit: type=1400 audit(1720496115.304:1009): avc:  denied  { getopt } for  pid=11554 comm="syz.2.2176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  244.725571][   T29] audit: type=1326 audit(1720496115.334:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11557 comm="syz.2.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd411287bd9 code=0x7ffc0000
[  244.754226][   T29] audit: type=1326 audit(1720496115.334:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11557 comm="syz.2.2177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd411287bd9 code=0x7ffc0000
[  244.758648][T11565] FAULT_INJECTION: forcing a failure.
[  244.758648][T11565] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  244.791340][T11565] CPU: 1 PID: 11565 Comm: syz.2.2179 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  244.801506][T11565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  244.809625][T11567] loop1: detected capacity change from 0 to 512
[  244.811602][T11565] Call Trace:
[  244.811611][T11565]  <TASK>
[  244.811619][T11565]  dump_stack_lvl+0xf2/0x150
[  244.828784][T11565]  dump_stack+0x15/0x20
[  244.833022][T11565]  should_fail_ex+0x229/0x230
[  244.837724][T11565]  should_fail+0xb/0x10
[  244.841907][T11565]  should_fail_usercopy+0x1a/0x20
[  244.846938][T11565]  _copy_from_user+0x1e/0xd0
[  244.851542][T11565]  do_tcp_getsockopt+0xd0/0x1a50
[  244.856504][T11565]  ? path_openat+0x1a6f/0x1fa0
[  244.861345][T11565]  ? _parse_integer_limit+0x167/0x180
[  244.866728][T11565]  ? __rcu_read_unlock+0x4e/0x70
[  244.871791][T11565]  ? avc_has_perm_noaudit+0x1cc/0x210
[  244.877170][T11565]  tcp_getsockopt+0x6e/0xe0
[  244.881713][T11565]  ? selinux_socket_getsockopt+0x160/0x1b0
[  244.887550][T11565]  ? selinux_socket_getsockopt+0x160/0x1b0
[  244.893370][T11565]  sock_common_getsockopt+0x5b/0x70
[  244.898584][T11565]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  244.904492][T11565]  smc_getsockopt+0x10c/0x250
[  244.909260][T11565]  do_sock_getsockopt+0x121/0x1a0
[  244.914322][T11565]  ? __pfx_smc_getsockopt+0x10/0x10
[  244.919611][T11565]  __sys_getsockopt+0x19a/0x210
[  244.924556][T11565]  __x64_sys_getsockopt+0x66/0x80
[  244.929627][T11565]  x64_sys_call+0x2d21/0x2d70
[  244.934325][T11565]  do_syscall_64+0xc9/0x1c0
[  244.938861][T11565]  ? clear_bhb_loop+0x55/0xb0
[  244.943545][T11565]  ? clear_bhb_loop+0x55/0xb0
[  244.948230][T11565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.954205][T11565] RIP: 0033:0x7fd411287bd9
[  244.958636][T11565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  244.978276][T11565] RSP: 002b:00007fd410509048 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  244.986694][T11565] RAX: ffffffffffffffda RBX: 00007fd411415f60 RCX: 00007fd411287bd9
[  244.994809][T11565] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000003
[  245.002941][T11565] RBP: 00007fd4105090a0 R08: 0000000000000000 R09: 0000000000000000
[  245.011022][T11565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  245.019040][T11565] R13: 000000000000000b R14: 00007fd411415f60 R15: 00007ffd98108c78
[  245.027031][T11565]  </TASK>
[  245.076555][T11571] loop2: detected capacity change from 0 to 1024
[  245.084085][T11571] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  245.097216][T11571] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  245.099954][T11567] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.105431][T11571] System zones: 0-1, 3-12
[  245.122570][T11567] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.133965][T11571] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2182: Invalid block bitmap block 0 in block_group 0
[  245.148148][   T29] audit: type=1326 audit(1720496115.761:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11566 comm="syz.1.2180" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f00c28cfbd9 code=0x0
[  245.148850][T11571] Quota error (device loop2): write_blk: dquota write failed
[  245.178527][T11571] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  245.189034][T11571] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.2182: Failed to acquire dquot type 0
[  245.201969][T11571] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.2182: Freeing blocks not in datazone - block = 0, count = 4096
[  245.216187][T11571] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.2182: Invalid inode bitmap blk 0 in block_group 0
[  245.216992][T11299] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.230609][ T3112] EXT4-fs error (device loop2): ext4_release_dquot:6883: comm kworker/u8:6: Failed to release dquot type 0
[  245.252301][T11571] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[  245.253471][T11580] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=11580 comm=syz.1.2180
[  245.262501][T11571] EXT4-fs (loop2): 1 orphan inode deleted
[  245.279673][T11571] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.298132][T11571] netlink: 'syz.2.2182': attribute type 1 has an invalid length.
[  245.309744][T11299] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  245.338847][T11591] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2188'.
[  245.374122][   T28] bridge_slave_1: left allmulticast mode
[  245.379884][   T28] bridge_slave_1: left promiscuous mode
[  245.385592][   T28] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.393258][   T28] bridge_slave_0: left allmulticast mode
[  245.398941][   T28] bridge_slave_0: left promiscuous mode
[  245.404677][   T28] bridge0: port 1(bridge_slave_0) entered disabled state
[  245.514693][   T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  245.526024][   T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  245.536212][   T28] bond0 (unregistering): Released all slaves
[  245.560245][T11299] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  245.569762][T11299] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  245.586934][T11299] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  245.596704][T11299] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  245.678270][T11299] 8021q: adding VLAN 0 to HW filter on device bond0
[  245.693364][T11299] 8021q: adding VLAN 0 to HW filter on device team0
[  245.703132][ T3159] bridge0: port 1(bridge_slave_0) entered blocking state
[  245.710230][ T3159] bridge0: port 1(bridge_slave_0) entered forwarding state
[  245.725526][ T3161] bridge0: port 2(bridge_slave_1) entered blocking state
[  245.732610][ T3161] bridge0: port 2(bridge_slave_1) entered forwarding state
[  245.756995][T11299] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  245.767401][T11299] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  245.780627][T11617] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2193'.
[  245.878415][   T28] hsr_slave_0: left promiscuous mode
[  245.886261][   T28] hsr_slave_1: left promiscuous mode
[  245.894073][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  245.901785][   T28] batman_adv: batadv0: Removing interface: batadv_slave_0
[  245.968632][   T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  245.976221][   T28] batman_adv: batadv0: Removing interface: batadv_slave_1
[  246.031178][   T28] veth1_macvtap: left promiscuous mode
[  246.036948][   T28] veth0_macvtap: left promiscuous mode
[  246.042480][   T28] veth1_vlan: left promiscuous mode
[  246.047752][   T28] veth0_vlan: left promiscuous mode
[  246.154409][   T28] team0 (unregistering): Port device team_slave_1 removed
[  246.165057][   T28] team0 (unregistering): Port device team_slave_0 removed
[  246.208131][T11636] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2201'.
[  246.237827][T11299] 8021q: adding VLAN 0 to HW filter on device batadv0
[  246.381487][T11299] veth0_vlan: entered promiscuous mode
[  246.396238][T11299] veth1_vlan: entered promiscuous mode
[  246.465953][T11668] vlan2: entered promiscuous mode
[  246.484328][T11299] veth0_macvtap: entered promiscuous mode
[  246.493897][T11299] veth1_macvtap: entered promiscuous mode
[  246.497636][T11674] loop2: detected capacity change from 0 to 1024
[  246.508226][T11299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.508412][T11674] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  246.518708][T11299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.538788][T11299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.549291][T11299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.559206][T11299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.569869][T11299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.579764][T11299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.590372][T11299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.602751][T11299] batman_adv: batadv0: Interface activated: batadv_slave_0
[  246.606671][T11674] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  246.611244][T11299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.628645][T11299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.636042][T11674] System zones: 0-1
[  246.638530][T11299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.638550][T11299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.642374][T11674] , 3-12
[  246.652782][T11299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.652802][T11299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.662622][T11674] 
[  246.688166][T11299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.698669][T11299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.711287][T11299] batman_adv: batadv0: Interface activated: batadv_slave_1
[  246.723349][T11299] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  246.732152][T11299] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  246.740945][T11299] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  246.749725][T11299] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  246.751680][T11674] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2210: Invalid block bitmap block 0 in block_group 0
[  246.795300][T11674] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.2210: Failed to acquire dquot type 0
[  246.808995][T11674] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.2210: Freeing blocks not in datazone - block = 0, count = 4096
[  246.838648][T11685] veth1_vlan: entered allmulticast mode
[  246.846402][T11674] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.2210: Invalid inode bitmap blk 0 in block_group 0
[  246.859767][T11674] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[  246.863818][   T36] EXT4-fs error (device loop2): ext4_release_dquot:6883: comm kworker/u8:2: Failed to release dquot type 0
[  246.869843][T11674] EXT4-fs (loop2): 1 orphan inode deleted
[  246.915151][T11688] loop4: detected capacity change from 0 to 2048
[  246.924758][T11674] netlink: 'syz.2.2210': attribute type 1 has an invalid length.
[  246.949023][T11688] EXT4-fs error (device loop4): ext4_orphan_get:1420: comm syz.4.2213: bad orphan inode 8192
[  246.967172][T11688] bridge_slave_1: left allmulticast mode
[  246.972920][T11688] bridge_slave_1: left promiscuous mode
[  246.978688][T11688] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.986731][T11688] bridge_slave_0: left allmulticast mode
[  246.992458][T11688] bridge_slave_0: left promiscuous mode
[  246.998271][T11688] bridge0: port 1(bridge_slave_0) entered disabled state
[  247.090529][T11702] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pid=11702 comm=syz.1.2218
[  247.335752][T11724] loop3: detected capacity change from 0 to 1024
[  247.342792][T11724] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  247.355920][T11724] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  247.364440][T11724] System zones: 0-1, 3-12
[  247.369763][T11724] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2227: Invalid block bitmap block 0 in block_group 0
[  247.383506][T11724] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz.3.2227: Failed to acquire dquot type 0
[  247.395655][T11724] EXT4-fs error (device loop3): ext4_free_blocks:6590: comm syz.3.2227: Freeing blocks not in datazone - block = 0, count = 4096
[  247.409360][T11724] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.2227: Invalid inode bitmap blk 0 in block_group 0
[  247.422458][T11724] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem
[  247.422456][ T3112] EXT4-fs error (device loop3): ext4_release_dquot:6883: comm kworker/u8:6: Failed to release dquot type 0
[  247.443764][T11724] EXT4-fs (loop3): 1 orphan inode deleted
[  247.476182][T11724] netlink: 'syz.3.2227': attribute type 1 has an invalid length.
[  247.951621][T11746] dccp_v6_rcv: dropped packet with invalid checksum
[  248.071227][T11752] program syz.1.2239 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  248.124207][T11758] loop1: detected capacity change from 0 to 512
[  248.130844][T11758] EXT4-fs: Ignoring removed orlov option
[  248.138137][T11758] EXT4-fs warning (device loop1): dx_probe:877: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  248.149731][T11758] EXT4-fs warning (device loop1): dx_probe:880: Enable large directory feature to access it
[  248.159858][T11758] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz.1.2242: Corrupt directory, running e2fsck is recommended
[  248.173119][T11760] __nla_validate_parse: 4 callbacks suppressed
[  248.173133][T11760] netlink: 2028 bytes leftover after parsing attributes in process `syz.2.2241'.
[  248.188493][T11760] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2241'.
[  248.188508][T11758] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[  248.188844][T11758] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2234: inode #15: comm syz.1.2242: corrupted in-inode xattr: overlapping e_value 
[  248.220031][T11758] EXT4-fs (loop1): Remounting filesystem read-only
[  248.226851][T11758] SELinux: (dev loop1, type ext4) getxattr errno 5
[  248.478386][T11785] program syz.3.2251 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  248.518527][T11789] FAULT_INJECTION: forcing a failure.
[  248.518527][T11789] name failslab, interval 1, probability 0, space 0, times 0
[  248.531234][T11789] CPU: 1 PID: 11789 Comm: syz.0.2250 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  248.541416][T11789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  248.549469][T11787] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2252'.
[  248.551461][T11789] Call Trace:
[  248.551472][T11789]  <TASK>
[  248.551481][T11789]  dump_stack_lvl+0xf2/0x150
[  248.551519][T11789]  dump_stack+0x15/0x20
[  248.551570][T11789]  should_fail_ex+0x229/0x230
[  248.551610][T11789]  ? __build_skb+0x30/0x70
[  248.584553][T11789]  __should_failslab+0x92/0xa0
[  248.589388][T11789]  should_failslab+0x9/0x20
[  248.593974][T11789]  kmem_cache_alloc_noprof+0x4c/0x290
[  248.599409][T11789]  __build_skb+0x30/0x70
[  248.603673][T11789]  netlink_alloc_large_skb+0x65/0xe0
[  248.609014][T11789]  netlink_sendmsg+0x3b4/0x6e0
[  248.613800][T11789]  ? __pfx_netlink_sendmsg+0x10/0x10
[  248.619154][T11789]  __sock_sendmsg+0x140/0x180
[  248.623845][T11789]  sock_sendmsg+0x96/0xe0
[  248.628190][T11789]  splice_to_socket+0x657/0x9d0
[  248.633071][T11789]  ? __pfx_splice_to_socket+0x10/0x10
[  248.638462][T11789]  do_splice+0x99b/0x1150
[  248.642828][T11789]  ? get_pid_task+0x8e/0xc0
[  248.647351][T11789]  ? proc_fail_nth_write+0x12d/0x160
[  248.652727][T11789]  ? __fget_files+0x1da/0x210
[  248.657419][T11789]  __se_sys_splice+0x24c/0x390
[  248.662270][T11789]  __x64_sys_splice+0x78/0x90
[  248.667025][T11789]  x64_sys_call+0x297f/0x2d70
[  248.671769][T11789]  do_syscall_64+0xc9/0x1c0
[  248.676324][T11789]  ? clear_bhb_loop+0x55/0xb0
[  248.681009][T11789]  ? clear_bhb_loop+0x55/0xb0
[  248.685789][T11789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.691697][T11789] RIP: 0033:0x7f6152700bd9
[  248.696130][T11789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.715746][T11789] RSP: 002b:00007f6151961048 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  248.724216][T11789] RAX: ffffffffffffffda RBX: 00007f615288f038 RCX: 00007f6152700bd9
[  248.732192][T11789] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000003
[  248.740230][T11789] RBP: 00007f61519610a0 R08: 000000000004ffe2 R09: 0000000000000000
[  248.748289][T11789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  248.756262][T11789] R13: 000000000000006e R14: 00007f615288f038 R15: 00007ffd53e099a8
[  248.764243][T11789]  </TASK>
[  248.899064][T11804] loop3: detected capacity change from 0 to 1024
[  248.906138][T11804] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  248.917042][T11804] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  248.927269][T11804] jbd2_journal_init_inode: Cannot locate journal superblock
[  248.934701][T11804] EXT4-fs (loop3): Could not load journal inode
[  248.977083][T11806] bridge0: port 3(team0) entered blocking state
[  248.983419][T11806] bridge0: port 3(team0) entered disabled state
[  248.988673][T11808] program syz.1.2257 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  248.992215][T11806] team0: entered allmulticast mode
[  249.004093][T11806] team_slave_0: entered allmulticast mode
[  249.009915][T11806] team_slave_1: entered allmulticast mode
[  249.019113][T11806] team0: entered promiscuous mode
[  249.024248][T11806] team_slave_0: entered promiscuous mode
[  249.029959][T11806] team_slave_1: entered promiscuous mode
[  249.037041][T11806] bridge0: port 3(team0) entered blocking state
[  249.043383][T11806] bridge0: port 3(team0) entered forwarding state
[  249.134348][T11822] program syz.3.2262 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  249.207365][T11825] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2263'.
[  249.278136][T11831] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2264'.
[  249.328567][T11840] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2266'.
[  249.356802][T11846] loop3: detected capacity change from 0 to 1024
[  249.363876][T11846] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  249.374856][T11846] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  249.385872][T11846] jbd2_journal_init_inode: Cannot locate journal superblock
[  249.393269][T11846] EXT4-fs (loop3): Could not load journal inode
[  249.477056][T11856] program syz.3.2273 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  249.560780][T11861] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2275'.
[  249.572627][   T29] kauditd_printk_skb: 71 callbacks suppressed
[  249.572644][   T29] audit: type=1107 audit(1720496120.153:1077): pid=11860 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  249.681816][T11871] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2278'.
[  249.693372][   T29] audit: type=1107 audit(1720496120.273:1078): pid=11870 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  249.786857][   T29] audit: type=1400 audit(1720496120.362:1079): avc:  denied  { mount } for  pid=11876 comm="syz.3.2279" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  249.879320][T11885] loop1: detected capacity change from 0 to 1024
[  249.886439][T11885] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  249.897486][T11885] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  249.908362][T11885] jbd2_journal_init_inode: Cannot locate journal superblock
[  249.915690][T11885] EXT4-fs (loop1): Could not load journal inode
[  249.955368][T11889] program syz.2.2284 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  250.018843][T11899] loop1: detected capacity change from 0 to 2048
[  250.031600][T11894] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2286'.
[  250.048740][T11299] EXT4-fs unmount: 9 callbacks suppressed
[  250.048755][T11299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.131000][   T29] audit: type=1400 audit(1720496120.701:1080): avc:  denied  { write } for  pid=11904 comm="syz.4.2289" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  250.166468][T11907] netlink: 'syz.1.2290': attribute type 1 has an invalid length.
[  250.174834][   T29] audit: type=1326 audit(1720496120.730:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11903 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c28cfbd9 code=0x7ffc0000
[  250.198466][   T29] audit: type=1326 audit(1720496120.730:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11903 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c28cfbd9 code=0x7ffc0000
[  250.222191][   T29] audit: type=1326 audit(1720496120.740:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11903 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f00c28cfbd9 code=0x7ffc0000
[  250.245909][   T29] audit: type=1326 audit(1720496120.740:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11903 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c28cfbd9 code=0x7ffc0000
[  250.269465][   T29] audit: type=1326 audit(1720496120.740:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11903 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f00c28cfbd9 code=0x7ffc0000
[  250.293170][   T29] audit: type=1326 audit(1720496120.740:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11903 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00c28cfbd9 code=0x7ffc0000
[  250.366038][T11907] loop1: detected capacity change from 0 to 8192
[  250.450602][ T3112] nci: nci_rx_work: unknown MT 0x1
[  250.721406][T11925] loop3: detected capacity change from 0 to 1024
[  250.730346][T11925] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  250.741376][T11925] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  250.761040][T11925] jbd2_journal_init_inode: Cannot locate journal superblock
[  250.768409][T11925] EXT4-fs (loop3): Could not load journal inode
[  250.853676][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.860231][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.866768][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.873300][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.879835][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.886386][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.892893][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.899434][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.905981][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.912502][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.919034][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.925581][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.932082][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.938624][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.945167][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.951801][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.958316][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.964836][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.971360][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.977907][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.984456][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.990972][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  250.997484][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.003986][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.010554][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.017074][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.023577][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.030104][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.036657][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.043203][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.049742][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.056268][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.063804][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.070338][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.076864][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.083370][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.089907][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.096455][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.103021][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.109535][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.116721][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.123351][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.129866][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.136408][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.142929][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.149459][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.156547][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.163062][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.169580][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.176130][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.182664][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.189267][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.195799][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.202392][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.208927][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.215480][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.222044][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.228613][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.235232][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.241774][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.248310][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.254856][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.261393][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.267914][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.274901][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.281440][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.288138][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.294648][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.301221][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.307742][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.314277][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.320806][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.327343][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.333875][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.340407][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.346958][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.353524][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.360143][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.366673][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.373185][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.379714][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.386267][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.392893][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.399450][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.405962][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.412483][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.419025][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.425542][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.432125][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.438646][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.445167][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.451689][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.458204][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.464728][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.471257][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.477788][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  251.522152][T11938] loop2: detected capacity change from 0 to 1024
[  251.529346][T11938] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  251.534897][T11936] loop4: detected capacity change from 0 to 2048
[  251.541535][T11938] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  251.554613][T11938] System zones: 0-1, 3-12
[  251.566246][T11936] EXT4-fs error (device loop4): ext4_orphan_get:1420: comm syz.4.2300: bad orphan inode 8192
[  251.579337][T11936] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  251.592360][T11938] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2301: Invalid block bitmap block 0 in block_group 0
[  251.608053][T11938] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.2301: Failed to acquire dquot type 0
[  251.622909][T11938] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.2301: Freeing blocks not in datazone - block = 0, count = 4096
[  251.637713][T11938] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.2301: Invalid inode bitmap blk 0 in block_group 0
[  251.651377][T11938] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[  251.661164][ T3716] EXT4-fs error (device loop2): ext4_release_dquot:6883: comm kworker/u8:7: Failed to release dquot type 0
[  251.666135][T11938] EXT4-fs (loop2): 1 orphan inode deleted
[  251.674257][T11957] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2300'.
[  251.692334][T11938] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.732173][T11938] netlink: 'syz.2.2301': attribute type 1 has an invalid length.
[  251.801227][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.237916][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888111d46c00: rx timeout, send abort
[  252.368921][T11299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.450056][T11986] loop4: detected capacity change from 0 to 512
[  252.724984][T12005] loop4: detected capacity change from 0 to 1024
[  252.732420][T12005] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  252.744775][T12005] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  252.752979][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888111d46c00: abort rx timeout. Force session deactivation
[  252.765239][T12005] System zones: 0-1, 3-12
[  252.770560][T12005] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2322: Invalid block bitmap block 0 in block_group 0
[  252.785645][T12005] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz.4.2322: Failed to acquire dquot type 0
[  252.797281][T12005] EXT4-fs error (device loop4): ext4_free_blocks:6590: comm syz.4.2322: Freeing blocks not in datazone - block = 0, count = 4096
[  252.813223][T12005] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.2322: Invalid inode bitmap blk 0 in block_group 0
[  252.827202][T12005] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem
[  252.836412][T12005] EXT4-fs (loop4): 1 orphan inode deleted
[  252.842715][T12005] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.858900][   T56] EXT4-fs error (device loop4): ext4_release_dquot:6883: comm kworker/u8:4: Failed to release dquot type 0
[  252.907751][T12005] netlink: 'syz.4.2322': attribute type 1 has an invalid length.
[  252.973098][T11299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.106458][T12035] loop4: detected capacity change from 0 to 2048
[  253.110170][T12040] loop3: detected capacity change from 0 to 1024
[  253.120084][T12040] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  253.132432][T12035] EXT4-fs error (device loop4): ext4_orphan_get:1420: comm syz.4.2325: bad orphan inode 8192
[  253.143935][T12040] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  253.155324][T12040] System zones: 0-1, 3-12
[  253.160409][T12035] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.174072][T12040] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2335: Invalid block bitmap block 0 in block_group 0
[  253.189568][T12040] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz.3.2335: Failed to acquire dquot type 0
[  253.201205][T12040] EXT4-fs error (device loop3): ext4_free_blocks:6590: comm syz.3.2335: Freeing blocks not in datazone - block = 0, count = 4096
[  253.216528][T12040] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.2335: Invalid inode bitmap blk 0 in block_group 0
[  253.223578][T12035] __nla_validate_parse: 1 callbacks suppressed
[  253.223597][T12035] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2325'.
[  253.229748][T12040] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem
[  253.252962][ T3112] EXT4-fs error (device loop3): ext4_release_dquot:6883: comm kworker/u8:6: Failed to release dquot type 0
[  253.253054][T12040] EXT4-fs (loop3): 1 orphan inode deleted
[  253.270483][T12040] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  253.288033][T12040] netlink: 'syz.3.2335': attribute type 1 has an invalid length.
[  253.331887][T11008] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.441412][T12053] bond0: entered promiscuous mode
[  253.446555][T12053] bond_slave_0: entered promiscuous mode
[  253.452381][T12053] bond_slave_1: entered promiscuous mode
[  253.471299][T12053] bond0: (slave bond_slave_0): Releasing backup interface
[  253.481066][T12053] bond_slave_0: left promiscuous mode
[  253.553046][T12051] bond0: left promiscuous mode
[  253.558120][T12051] bond_slave_1: left promiscuous mode
[  253.595870][T12056] loop3: detected capacity change from 0 to 1024
[  253.608238][T12056] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.635688][T11008] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.766841][T12067] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2341'.
[  253.943104][T11299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.992304][T12080] tmpfs: Bad value for 'mpol'
[  254.075308][T12087] loop4: detected capacity change from 0 to 256
[  254.456526][T12104] loop4: detected capacity change from 0 to 1024
[  254.466182][T12104] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  254.477210][T12104] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  254.489509][T12104] jbd2_journal_init_inode: Cannot locate journal superblock
[  254.496909][T12104] EXT4-fs (loop4): Could not load journal inode
[  254.592128][    C1] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  255.062722][T12130] loop2: detected capacity change from 0 to 1024
[  255.070219][T12130] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  255.082465][T12130] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  255.091100][T12130] System zones: 0-1, 3-12
[  255.097467][T12130] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2365: Invalid block bitmap block 0 in block_group 0
[  255.111464][T12130] __quota_error: 161 callbacks suppressed
[  255.111479][T12130] Quota error (device loop2): write_blk: dquota write failed
[  255.124680][T12130] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  255.134988][T12130] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.2365: Failed to acquire dquot type 0
[  255.147047][T12130] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.2365: Freeing blocks not in datazone - block = 0, count = 4096
[  255.161489][T12130] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.2365: Invalid inode bitmap blk 0 in block_group 0
[  255.174432][T12130] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[  255.183678][T12130] EXT4-fs (loop2): 1 orphan inode deleted
[  255.183679][   T36] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8
[  255.183710][   T36] EXT4-fs error (device loop2): ext4_release_dquot:6883: comm kworker/u8:2: Failed to release dquot type 0
[  255.189744][T12130] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.279083][T12134] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2364'.
[  255.300204][T12130] netlink: 'syz.2.2365': attribute type 1 has an invalid length.
[  255.351738][    C1] vxcan0: j1939_tp_rxtimer: 0xffff8881126ff000: rx timeout, send abort
[  255.380416][   T29] audit: type=1326 audit(1720496125.937:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12136 comm="syz.4.2366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c7d880bd9 code=0x7ffc0000
[  255.509960][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.566884][T12147] loop3: detected capacity change from 0 to 512
[  255.576759][   T29] audit: type=1326 audit(1720496125.967:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12136 comm="syz.4.2366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8c7d880bd9 code=0x7ffc0000
[  255.600295][   T29] audit: type=1326 audit(1720496125.967:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12136 comm="syz.4.2366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c7d880bd9 code=0x7ffc0000
[  255.623811][   T29] audit: type=1326 audit(1720496125.967:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12136 comm="syz.4.2366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c7d880bd9 code=0x7ffc0000
[  255.669544][T12147] EXT4-fs: Invalid want_extra_isize 256
[  255.707289][T12143] loop4: detected capacity change from 0 to 8192
[  255.751748][   T29] audit: type=1400 audit(1720496126.275:1243): avc:  denied  { remount } for  pid=12142 comm="syz.4.2367" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  255.861957][    C1] vxcan0: j1939_tp_rxtimer: 0xffff8881126ff000: abort rx timeout. Force session deactivation
[  255.889244][T12159] TCP: MD5 Hash not found for 172.20.20.187.0->172.20.20.170.20002 [F] L3 index 0
[  255.912659][T12162] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip6_vti0, syncid = 0, id = 0
[  255.963863][T12165] loop2: detected capacity change from 0 to 1024
[  255.970466][T12170] loop3: detected capacity change from 0 to 764
[  255.977672][T12170] rock: directory entry would overflow storage
[  255.978472][T12165] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  255.983828][T12170] rock: sig=0x4654, size=5, remaining=4
[  256.000168][   T29] audit: type=1400 audit(1720496126.554:1244): avc:  denied  { write } for  pid=12169 comm="syz.3.2378" name="packet" dev="proc" ino=4026532907 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  256.000456][T12165] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  256.035103][T12165] jbd2_journal_init_inode: Cannot locate journal superblock
[  256.042496][T12165] EXT4-fs (loop2): Could not load journal inode
[  256.120881][T12179] loop3: detected capacity change from 0 to 1024
[  256.129252][T12179] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  256.140442][T12179] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  256.149086][T12179] System zones: 0-1, 3-12
[  256.154956][T12179] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2381: Invalid block bitmap block 0 in block_group 0
[  256.169124][T12179] Quota error (device loop3): write_blk: dquota write failed
[  256.176587][T12179] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz.3.2381: Failed to acquire dquot type 0
[  256.188503][T12179] EXT4-fs error (device loop3): ext4_free_blocks:6590: comm syz.3.2381: Freeing blocks not in datazone - block = 0, count = 4096
[  256.203816][T12179] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.2381: Invalid inode bitmap blk 0 in block_group 0
[  256.207616][   T56] EXT4-fs error (device loop3): ext4_release_dquot:6883: comm kworker/u8:4: Failed to release dquot type 0
[  256.229807][T12179] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem
[  256.238801][T12179] EXT4-fs (loop3): 1 orphan inode deleted
[  256.245191][T12179] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.246667][T12172] chnl_net:caif_netlink_parms(): no params data found
[  256.267986][T12179] netlink: 'syz.3.2381': attribute type 1 has an invalid length.
[  256.299536][T12172] bridge0: port 1(bridge_slave_0) entered blocking state
[  256.306654][T12172] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.313967][T12172] bridge_slave_0: entered allmulticast mode
[  256.320987][T12172] bridge_slave_0: entered promiscuous mode
[  256.328173][T12172] bridge0: port 2(bridge_slave_1) entered blocking state
[  256.335239][T12172] bridge0: port 2(bridge_slave_1) entered disabled state
[  256.342942][T12172] bridge_slave_1: entered allmulticast mode
[  256.350652][T12172] bridge_slave_1: entered promiscuous mode
[  256.351256][T11008] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.374559][ T3112] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.387108][T12172] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  256.400679][T12172] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  256.422009][T12172] team0: Port device team_slave_0 added
[  256.428865][T12172] team0: Port device team_slave_1 added
[  256.437146][ T3112] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.459362][T12172] batman_adv: batadv0: Adding interface: batadv_slave_0
[  256.466325][T12172] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  256.492315][T12172] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  256.503741][T12172] batman_adv: batadv0: Adding interface: batadv_slave_1
[  256.510757][T12172] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  256.536699][T12172] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  256.551723][ T3112] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.579910][T12172] hsr_slave_0: entered promiscuous mode
[  256.585918][T12172] hsr_slave_1: entered promiscuous mode
[  256.592184][T12172] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  256.599769][T12172] Cannot create hsr debugfs directory
[  256.617789][ T3112] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.667902][T12200] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2383'.
[  256.740723][ T3112] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  256.753095][ T3112] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  256.763837][ T3112] bond0 (unregistering): Released all slaves
[  256.858418][T12208] gre0: entered promiscuous mode
[  256.864879][T12208] vlan2: entered promiscuous mode
[  256.874749][T12206] netlink: 'syz.0.2385': attribute type 1 has an invalid length.
[  256.896769][T12208] gre0: left promiscuous mode
[  256.932821][T12210] netlink: 'syz.0.2387': attribute type 10 has an invalid length.
[  256.951236][T12210] bond0: (slave team0): Releasing backup interface
[  256.961330][T12210] batman_adv: batadv0: Adding interface: team0
[  256.967519][T12210] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  256.992895][T12210] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  257.010825][ T3112] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  257.018255][ T3112] batman_adv: batadv0: Removing interface: batadv_slave_0
[  257.027642][ T3112] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  257.035226][ T3112] batman_adv: batadv0: Removing interface: batadv_slave_1
[  257.062216][ T3112] veth1_macvtap: left promiscuous mode
[  257.067823][ T3112] veth0_macvtap: left promiscuous mode
[  257.073448][ T3112] veth1_vlan: left promiscuous mode
[  257.078744][ T3112] veth0_vlan: left promiscuous mode
[  257.285400][ T3112] team0 (unregistering): Port device team_slave_1 removed
[  257.298383][ T3112] team0 (unregistering): Port device team_slave_0 removed
[  257.312557][T12215] loop3: detected capacity change from 0 to 2048
[  257.337366][T12215] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.371948][T12210] netlink: 'syz.0.2387': attribute type 10 has an invalid length.
[  257.373503][T12218] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2388'.
[  257.379803][T12210] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2387'.
[  257.399166][T12210] team0: entered promiscuous mode
[  257.404270][T12210] team_slave_0: entered promiscuous mode
[  257.409995][T12210] team_slave_1: entered promiscuous mode
[  257.422262][T12210] 8021q: adding VLAN 0 to HW filter on device team0
[  257.433999][T12210] batman_adv: batadv0: Interface activated: team0
[  257.440556][T12210] batman_adv: batadv0: Interface deactivated: team0
[  257.447300][T12210] batman_adv: batadv0: Removing interface: team0
[  257.491457][T12215] loop3: detected capacity change from 2048 to 2046
[  257.499322][T12215] EXT4-fs error (device loop3): ext4_find_extent:936: inode #18: comm syz.3.2389: pblk 128 bad header/extent: invalid magic - magic 0, entries 0, max 0(0), depth 0(0)
[  257.533990][T12215] EXT4-fs error (device loop3): ext4_find_extent:936: inode #18: comm syz.3.2389: pblk 128 bad header/extent: invalid magic - magic 0, entries 0, max 0(0), depth 0(0)
[  257.548120][T12172] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  257.585325][T12226] netlink: 'syz.4.2391': attribute type 13 has an invalid length.
[  257.593234][T12226] netlink: 152 bytes leftover after parsing attributes in process `syz.4.2391'.
[  257.621700][T12226] erspan0: refused to change device tx_queue_len
[  257.628115][T12226] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  257.645491][T12172] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  257.645968][T12214] EXT4-fs error (device loop3): ext4_find_extent:936: inode #18: comm syz.3.2389: pblk 128 bad header/extent: invalid magic - magic 0, entries 0, max 0(0), depth 0(0)
[  257.670567][T12172] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  257.688385][T12172] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  257.695335][T12214] EXT4-fs error (device loop3): ext4_find_extent:936: inode #18: comm syz.3.2389: pblk 128 bad header/extent: invalid magic - magic 0, entries 0, max 0(0), depth 0(0)
[  257.745979][T12233] program syz.4.2394 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  257.772162][T12233] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2394'.
[  257.779389][T12172] 8021q: adding VLAN 0 to HW filter on device bond0
[  257.816420][T12172] 8021q: adding VLAN 0 to HW filter on device team0
[  257.833962][  T939] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.841119][  T939] bridge0: port 1(bridge_slave_0) entered forwarding state
[  257.870906][T12172] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  257.881312][T12172] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  257.922460][  T939] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.929811][  T939] bridge0: port 2(bridge_slave_1) entered forwarding state
[  257.953907][T12239] FAULT_INJECTION: forcing a failure.
[  257.953907][T12239] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  257.967256][T12239] CPU: 0 PID: 12239 Comm: syz.4.2397 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  257.977442][T12239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  257.987499][T12239] Call Trace:
[  257.990791][T12239]  <TASK>
[  257.993740][T12239]  dump_stack_lvl+0xf2/0x150
[  257.998338][T12239]  dump_stack+0x15/0x20
[  258.002533][T12239]  should_fail_ex+0x229/0x230
[  258.007268][T12239]  __should_fail_alloc_page+0xfd/0x110
[  258.012734][T12239]  __alloc_pages_noprof+0x109/0x360
[  258.017939][T12239]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  258.023374][T12239]  alloc_pages_noprof+0xe1/0x100
[  258.028404][T12239]  pte_alloc_one+0x32/0xf0
[  258.032915][T12239]  __pte_alloc+0x33/0x270
[  258.037248][T12239]  handle_mm_fault+0x1ade/0x2a80
[  258.042201][T12239]  ? mas_walk+0x204/0x320
[  258.046586][T12239]  exc_page_fault+0x3b9/0x650
[  258.051268][T12239]  asm_exc_page_fault+0x26/0x30
[  258.056122][T12239] RIP: 0033:0x7f8c7d7464f6
[  258.060606][T12239] Code: f0 72 6e 48 63 cd 48 01 c1 49 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 <47> 0f b6 0c 08 45 84 c9 74 08 45 88 0c 00 49 8b 47 10 48 83 c0 01
[  258.080229][T12239] RSP: 002b:00007f8c7cb01400 EFLAGS: 00010246
[  258.086398][T12239] RAX: 0000000000000001 RBX: 00007f8c7cb014a0 RCX: 0000000000000101
[  258.094369][T12239] RDX: 000000000000000f RSI: 0000000000000001 RDI: 00007f8c7cb01540
[  258.102435][T12239] RBP: 0000000000000102 R08: 00007f8c746e2000 R09: 0000000000000000
[  258.110507][T12239] R10: 0000000000000000 R11: 00007f8c7cb014b0 R12: 0000000000000001
[  258.118483][T12239] R13: 00007f8c7d900f80 R14: 0000000000000000 R15: 00007f8c7cb01540
[  258.126480][T12239]  </TASK>
[  258.129792][T12239] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  258.150848][T11008] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /98/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  258.209806][T12172] 8021q: adding VLAN 0 to HW filter on device batadv0
[  258.227536][   T28] EXT4-fs error (device loop3): ext4_find_extent:936: inode #18: comm kworker/u8:1: pblk 128 bad header/extent: invalid magic - magic 0, entries 0, max 0(0), depth 0(0)
[  258.257770][   T28] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 117
[  258.270242][   T28] EXT4-fs (loop3): This should not happen!! Data will be lost
[  258.270242][   T28] 
[  258.295281][T12239] loop4: detected capacity change from 0 to 2048
[  258.314752][   T28] EXT4-fs error (device loop3): ext4_find_extent:936: inode #18: comm kworker/u8:1: pblk 128 bad header/extent: invalid magic - magic 0, entries 0, max 0(0), depth 0(0)
[  258.362810][   T28] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 4 with max blocks 2 with error 117
[  258.375162][   T28] EXT4-fs (loop3): This should not happen!! Data will be lost
[  258.375162][   T28] 
[  258.392945][T12172] veth0_vlan: entered promiscuous mode
[  258.402895][T12172] veth1_vlan: entered promiscuous mode
[  258.415450][T11008] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.432244][T12172] veth0_macvtap: entered promiscuous mode
[  258.440331][T12172] veth1_macvtap: entered promiscuous mode
[  258.487175][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  258.497724][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.507630][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  258.518228][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.528072][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  258.538585][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.548464][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  258.550439][T12265] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2401'.
[  258.558902][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.561984][T12172] batman_adv: batadv0: Interface activated: batadv_slave_0
[  258.588414][T12264] netlink: 'syz.2.2404': attribute type 13 has an invalid length.
[  258.596357][T12264] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2404'.
[  258.607231][T12264] erspan0: refused to change device tx_queue_len
[  258.613578][T12264] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  258.632051][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  258.642607][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.652430][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  258.662924][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.672774][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  258.683554][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.683668][T12266] loop4: detected capacity change from 0 to 256
[  258.693475][T12172] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  258.693493][T12172] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.721010][T12266] FAT-fs (loop4): Unrecognized mount option "��������0x000000000000ee00�����tb��Mԍ" or missing value
[  258.722477][T12172] batman_adv: batadv0: Interface activated: batadv_slave_1
[  258.741851][T12172] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  258.750755][T12172] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  258.759772][T12172] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  258.768726][T12172] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  258.849707][T12275] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2408'.
[  258.888316][   T36] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  258.918165][T12279] FAULT_INJECTION: forcing a failure.
[  258.918165][T12279] name failslab, interval 1, probability 0, space 0, times 0
[  258.930918][T12279] CPU: 1 PID: 12279 Comm: syz.2.2409 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  258.941204][T12279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  258.951442][T12279] Call Trace:
[  258.954837][T12279]  <TASK>
[  258.957782][T12279]  dump_stack_lvl+0xf2/0x150
[  258.962402][T12279]  dump_stack+0x15/0x20
[  258.966585][T12279]  should_fail_ex+0x229/0x230
[  258.971300][T12279]  ? sidtab_sid2str_get+0xb8/0x140
[  258.976436][T12279]  __should_failslab+0x92/0xa0
[  258.981222][T12279]  should_failslab+0x9/0x20
[  258.985862][T12279]  kmalloc_node_track_caller_noprof+0xa6/0x380
[  258.992197][T12279]  kmemdup_noprof+0x2a/0x60
[  258.996721][T12279]  sidtab_sid2str_get+0xb8/0x140
[  259.001665][T12279]  security_sid_to_context_core+0x1eb/0x2f0
[  259.007780][T12279]  security_sid_to_context+0x27/0x30
[  259.013123][T12279]  avc_audit_post_callback+0x9d/0x530
[  259.018558][T12279]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  259.024611][T12279]  common_lsm_audit+0x7d0/0xfc0
[  259.029594][T12279]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  259.035628][T12279]  ? avc_denied+0xf1/0x110
[  259.040051][T12279]  slow_avc_audit+0xf9/0x140
[  259.044733][T12279]  avc_has_perm+0x129/0x160
[  259.049251][T12279]  selinux_socket_sendmsg+0x182/0x1b0
[  259.054668][T12279]  security_socket_sendmsg+0x4a/0x80
[  259.060009][T12279]  __sock_sendmsg+0x2d/0x180
[  259.064673][T12279]  ____sys_sendmsg+0x312/0x410
[  259.069447][T12279]  __sys_sendmsg+0x1e9/0x280
[  259.074055][T12279]  __x64_sys_sendmsg+0x46/0x50
[  259.078893][T12279]  x64_sys_call+0xb25/0x2d70
[  259.083493][T12279]  do_syscall_64+0xc9/0x1c0
[  259.088075][T12279]  ? clear_bhb_loop+0x55/0xb0
[  259.092880][T12279]  ? clear_bhb_loop+0x55/0xb0
[  259.097581][T12279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.103493][T12279] RIP: 0033:0x7fd411287bd9
[  259.107919][T12279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.127540][T12279] RSP: 002b:00007fd410509048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  259.135959][T12279] RAX: ffffffffffffffda RBX: 00007fd411415f60 RCX: 00007fd411287bd9
[  259.144006][T12279] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000005
[  259.152018][T12279] RBP: 00007fd4105090a0 R08: 0000000000000000 R09: 0000000000000000
[  259.160002][T12279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  259.167988][T12279] R13: 000000000000000b R14: 00007fd411415f60 R15: 00007ffd98108c78
[  259.175986][T12279]  </TASK>
[  259.230346][T12283] loop2: detected capacity change from 0 to 512
[  259.304329][T12292] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2410'.
[  259.313338][T12292] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2410'.
[  259.329044][   T36] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.341280][T12283] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.376863][T12283] ext4 filesystem being mounted at /61/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  259.404456][T12294] program syz.1.2379 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  259.420841][T12283] FAULT_INJECTION: forcing a failure.
[  259.420841][T12283] name failslab, interval 1, probability 0, space 0, times 0
[  259.433531][T12283] CPU: 1 PID: 12283 Comm: syz.2.2411 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  259.443870][T12283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  259.453978][T12283] Call Trace:
[  259.457280][T12283]  <TASK>
[  259.460225][T12283]  dump_stack_lvl+0xf2/0x150
[  259.464882][T12283]  dump_stack+0x15/0x20
[  259.469065][T12283]  should_fail_ex+0x229/0x230
[  259.473820][T12283]  ? qtree_write_dquot+0x6f/0x320
[  259.478880][T12283]  __should_failslab+0x92/0xa0
[  259.483729][T12283]  should_failslab+0x9/0x20
[  259.488324][T12283]  __kmalloc_noprof+0xa5/0x370
[  259.493123][T12283]  qtree_write_dquot+0x6f/0x320
[  259.498000][T12283]  v2_write_dquot+0xd3/0x130
[  259.502601][T12283]  dquot_commit+0x219/0x260
[  259.507213][T12283]  ext4_write_dquot+0x129/0x1d0
[  259.512068][T12283]  ext4_mark_dquot_dirty+0x94/0xd0
[  259.517300][T12283]  dquot_alloc_inode+0x38f/0x5b0
[  259.522296][T12283]  ? _raw_spin_unlock+0x26/0x50
[  259.527203][T12283]  ? insert_inode_locked+0x2c6/0x300
[  259.532524][T12283]  __ext4_new_inode+0x1dd4/0x2270
[  259.537559][T12283]  ext4_create+0x172/0x2f0
[  259.542030][T12283]  ? __pfx_ext4_create+0x10/0x10
[  259.546992][T12283]  path_openat+0xdbc/0x1fa0
[  259.551602][T12283]  do_filp_open+0xf7/0x200
[  259.556032][T12283]  do_sys_openat2+0xab/0x120
[  259.560667][T12283]  __x64_sys_open+0xe6/0x110
[  259.565261][T12283]  x64_sys_call+0x12d6/0x2d70
[  259.570071][T12283]  do_syscall_64+0xc9/0x1c0
[  259.574637][T12283]  ? clear_bhb_loop+0x55/0xb0
[  259.579466][T12283]  ? clear_bhb_loop+0x55/0xb0
[  259.584151][T12283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.590072][T12283] RIP: 0033:0x7fd411287bd9
[  259.594488][T12283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.614110][T12283] RSP: 002b:00007fd410509048 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  259.622528][T12283] RAX: ffffffffffffffda RBX: 00007fd411415f60 RCX: 00007fd411287bd9
[  259.630503][T12283] RDX: 0000000000000000 RSI: 0000000000064142 RDI: 0000000020000040
[  259.638488][T12283] RBP: 00007fd4105090a0 R08: 0000000000000000 R09: 0000000000000000
[  259.646469][T12283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  259.654489][T12283] R13: 000000000000000b R14: 00007fd411415f60 R15: 00007ffd98108c78
[  259.662525][T12283]  </TASK>
[  259.665591][T12283] EXT4-fs error (device loop2): ext4_write_dquot:6840: comm syz.2.2411: Failed to commit dquot type 0
[  259.714850][   T36] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.739345][T12300] netlink: 'syz.1.2415': attribute type 13 has an invalid length.
[  259.747337][T12300] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2415'.
[  259.773483][T12300] erspan0: refused to change device tx_queue_len
[  259.779980][T12300] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  259.829640][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.842856][   T36] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.863760][T12307] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2417'.
[  259.882176][T12271] chnl_net:caif_netlink_parms(): no params data found
[  259.933053][T12314] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2413'.
[  260.085557][T12271] bridge0: port 1(bridge_slave_0) entered blocking state
[  260.092731][T12271] bridge0: port 1(bridge_slave_0) entered disabled state
[  260.133332][T12271] bridge_slave_0: entered allmulticast mode
[  260.155821][T12271] bridge_slave_0: entered promiscuous mode
[  260.323937][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  260.342285][   T36] bond0 (unregistering): Released all slaves
[  260.353694][T12271] bridge0: port 2(bridge_slave_1) entered blocking state
[  260.360919][T12271] bridge0: port 2(bridge_slave_1) entered disabled state
[  260.368927][T12271] bridge_slave_1: entered allmulticast mode
[  260.377529][T12271] bridge_slave_1: entered promiscuous mode
[  260.390107][T12325] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2421'.
[  260.501136][T12271] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  260.513236][T12271] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  260.524996][   T36] hsr_slave_0: left promiscuous mode
[  260.530606][   T36] hsr_slave_1: left promiscuous mode
[  260.536392][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  260.543809][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  260.551468][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  260.558961][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  260.588251][   T36] veth1_macvtap: left promiscuous mode
[  260.593897][   T36] veth0_macvtap: left promiscuous mode
[  260.599431][   T36] veth1_vlan: left promiscuous mode
[  260.604698][   T36] veth0_vlan: left promiscuous mode
[  260.915212][T12350] loop2: detected capacity change from 0 to 8192
[  260.941232][T12350] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  260.966582][   T36] team0 (unregistering): Port device team_slave_1 removed
[  260.977094][   T36] team0 (unregistering): Port device team_slave_0 removed
[  261.038443][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  261.038457][   T29] audit: type=1400 audit(1720496131.578:1250): avc:  denied  { remount } for  pid=12348 comm="syz.2.2428" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  261.072098][T12357] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2430'.
[  261.081885][T12271] team0: Port device team_slave_0 added
[  261.090135][T12271] team0: Port device team_slave_1 added
[  261.107626][T12271] batman_adv: batadv0: Adding interface: batadv_slave_0
[  261.114709][T12271] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  261.140884][T12271] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  261.153245][T12271] batman_adv: batadv0: Adding interface: batadv_slave_1
[  261.160208][T12271] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  261.186370][T12271] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  261.231716][T12271] hsr_slave_0: entered promiscuous mode
[  261.240192][T12271] hsr_slave_1: entered promiscuous mode
[  261.260986][T12365] program syz.4.2434 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  261.469914][   T29] audit: type=1400 audit(1720496132.007:1251): avc:  denied  { setopt } for  pid=12376 comm="syz.4.2439" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  261.572939][T12383] netlink: 'syz.1.2440': attribute type 13 has an invalid length.
[  261.605297][T12383] erspan0: refused to change device tx_queue_len
[  261.611777][T12383] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  261.686684][T12271] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  261.701352][T12271] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  261.710930][T12271] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  261.719867][T12271] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  261.761781][T12389] loop1: detected capacity change from 0 to 512
[  261.765660][T12271] 8021q: adding VLAN 0 to HW filter on device bond0
[  261.775520][   T29] audit: type=1400 audit(1720496132.316:1252): avc:  denied  { mounton } for  pid=12385 comm="syz.1.2441" path="/11/file0" dev="tmpfs" ino=73 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  261.801420][T12389] EXT4-fs: Mount option(s) incompatible with ext2
[  261.811679][T12381] FAULT_INJECTION: forcing a failure.
[  261.811679][T12381] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  261.813100][T12271] 8021q: adding VLAN 0 to HW filter on device team0
[  261.824864][T12381] CPU: 0 PID: 12381 Comm: syz.4.2439 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  261.824892][T12381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  261.824907][T12381] Call Trace:
[  261.824915][T12381]  <TASK>
[  261.857896][T12381]  dump_stack_lvl+0xf2/0x150
[  261.862538][T12381]  dump_stack+0x15/0x20
[  261.866714][T12381]  should_fail_ex+0x229/0x230
[  261.871443][T12381]  should_fail+0xb/0x10
[  261.875665][T12381]  should_fail_usercopy+0x1a/0x20
[  261.880752][T12381]  _copy_from_user+0x1e/0xd0
[  261.885378][T12381]  do_tcp_getsockopt+0xd0/0x1a50
[  261.890347][T12381]  ? __perf_event_task_sched_in+0x7c4/0x7f0
[  261.896341][T12381]  ? __perf_event_task_sched_out+0x111/0xfe0
[  261.902369][T12381]  ? _raw_spin_unlock+0x26/0x50
[  261.907323][T12381]  ? finish_task_switch+0xb5/0x2b0
[  261.912499][T12381]  ? __schedule+0x5e8/0x940
[  261.917091][T12381]  tcp_getsockopt+0x6e/0xe0
[  261.921718][T12381]  sock_common_getsockopt+0x5b/0x70
[  261.927012][T12381]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  261.932915][T12381]  smc_getsockopt+0x10c/0x250
[  261.937674][T12381]  do_sock_getsockopt+0x121/0x1a0
[  261.942734][T12381]  ? __pfx_smc_getsockopt+0x10/0x10
[  261.947937][T12381]  __sys_getsockopt+0x19a/0x210
[  261.952836][T12381]  __x64_sys_getsockopt+0x66/0x80
[  261.957957][T12381]  x64_sys_call+0x2d21/0x2d70
[  261.962861][T12381]  do_syscall_64+0xc9/0x1c0
[  261.967375][T12381]  ? clear_bhb_loop+0x55/0xb0
[  261.972078][T12381]  ? clear_bhb_loop+0x55/0xb0
[  261.976757][T12381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.982714][T12381] RIP: 0033:0x7f8c7d880bd9
[  261.987128][T12381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.006949][T12381] RSP: 002b:00007f8c7cae1048 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  262.015525][T12381] RAX: ffffffffffffffda RBX: 00007f8c7da0f038 RCX: 00007f8c7d880bd9
[  262.023499][T12381] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000003
[  262.031532][T12381] RBP: 00007f8c7cae10a0 R08: 0000000020000000 R09: 0000000000000000
[  262.039506][T12381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.047482][T12381] R13: 000000000000006e R14: 00007f8c7da0f038 R15: 00007ffe0beb8e68
[  262.055463][T12381]  </TASK>
[  262.063769][ T3159] bridge0: port 1(bridge_slave_0) entered blocking state
[  262.070923][ T3159] bridge0: port 1(bridge_slave_0) entered forwarding state
[  262.083979][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  262.091127][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  262.111967][T12271] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  262.122531][T12271] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  262.147825][T12389] loop1: detected capacity change from 0 to 1024
[  262.162407][T12389] EXT4-fs: Ignoring removed bh option
[  262.188006][T12389] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  262.201911][T12391] loop2: detected capacity change from 0 to 2048
[  262.204422][T12271] 8021q: adding VLAN 0 to HW filter on device batadv0
[  262.234697][T12391] EXT4-fs error (device loop2): ext4_orphan_get:1420: comm syz.2.2442: bad orphan inode 8192
[  262.254407][T12391] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.273068][T12412] program syz.4.2446 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  262.291757][T12391] team0: left allmulticast mode
[  262.296771][T12391] team_slave_0: left allmulticast mode
[  262.302271][T12391] team_slave_1: left allmulticast mode
[  262.308031][T12391] team0: left promiscuous mode
[  262.313012][T12391] team_slave_0: left promiscuous mode
[  262.318517][T12391] team_slave_1: left promiscuous mode
[  262.324127][T12391] bridge0: port 3(team0) entered disabled state
[  262.336368][T12391] bridge_slave_1: left allmulticast mode
[  262.342038][T12391] bridge_slave_1: left promiscuous mode
[  262.347856][T12391] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.356827][T12391] bridge_slave_0: left allmulticast mode
[  262.362488][T12391] bridge_slave_0: left promiscuous mode
[  262.368309][T12391] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.473103][T12271] veth0_vlan: entered promiscuous mode
[  262.481793][T12271] veth1_vlan: entered promiscuous mode
[  262.495953][T12271] veth0_macvtap: entered promiscuous mode
[  262.504089][T12271] veth1_macvtap: entered promiscuous mode
[  262.514826][T12271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.525379][T12271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.535209][T12271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.545697][T12271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.555581][T12271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.566075][T12271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.576019][T12271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  262.586488][T12271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.599797][T12271] batman_adv: batadv0: Interface activated: batadv_slave_0
[  262.614544][T12420] netlink: 'syz.4.2447': attribute type 5 has an invalid length.
[  262.639850][T12271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.650488][T12271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.660482][T12271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.670962][T12271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.680779][T12271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.691372][T12271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.701387][T12271] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  262.711864][T12271] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  262.723601][T12271] batman_adv: batadv0: Interface activated: batadv_slave_1
[  262.736298][T12271] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  262.745063][T12271] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  262.753786][T12271] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  262.762593][T12271] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  262.776983][T12425] netlink: 'syz.1.2448': attribute type 1 has an invalid length.
[  262.877421][T12429] netlink: 'syz.4.2450': attribute type 13 has an invalid length.
[  262.886186][T12429] erspan0: refused to change device tx_queue_len
[  262.892554][T12429] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  262.944052][T12434] loop3: detected capacity change from 0 to 512
[  262.960325][T12434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  262.976667][T12434] ext4 filesystem being mounted at /0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  263.010988][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.090606][   T29] audit: type=1400 audit(1720496133.622:1253): avc:  denied  { write } for  pid=12442 comm="syz.2.2452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  263.708354][T12451] __nla_validate_parse: 6 callbacks suppressed
[  263.708369][T12451] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2456'.
[  263.729554][T12451] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2456'.
[  263.753925][   T29] audit: type=1400 audit(1720496134.281:1254): avc:  denied  { checkpoint_restore } for  pid=12452 comm="syz.0.2457" capability=40  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  263.802055][T12271] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.838785][T12460] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2461'.
[  263.851824][T12461] loop2: detected capacity change from 0 to 2048
[  263.888258][T12461] EXT4-fs error (device loop2): ext4_orphan_get:1420: comm syz.2.2462: bad orphan inode 8192
[  263.920567][T12465] netlink: 'syz.1.2464': attribute type 13 has an invalid length.
[  263.920653][T12461] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  263.928503][T12465] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2464'.
[  263.931494][T12471] loop3: detected capacity change from 0 to 1024
[  263.951442][T12465] erspan0: refused to change device tx_queue_len
[  263.962410][T12465] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  263.981766][T12471] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  263.989298][T12476] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2467'.
[  264.001518][T12476] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2467'.
[  264.016915][T12471] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  264.026959][T12471] System zones: 0-1, 3-12
[  264.032075][T12461] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2462'.
[  264.032730][T12473] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2466'.
[  264.076391][T12471] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2465: Invalid block bitmap block 0 in block_group 0
[  264.100179][T12471] Quota error (device loop3): write_blk: dquota write failed
[  264.107723][T12471] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  264.120378][T12471] EXT4-fs error (device loop3): ext4_acquire_dquot:6860: comm syz.3.2465: Failed to acquire dquot type 0
[  264.136933][T12471] EXT4-fs error (device loop3): ext4_free_blocks:6590: comm syz.3.2465: Freeing blocks not in datazone - block = 0, count = 4096
[  264.154789][T12471] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.2465: Invalid inode bitmap blk 0 in block_group 0
[  264.159782][T12484] xt_l2tp: v2 sid > 0xffff: 262144
[  264.174942][   T28] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8
[  264.180678][T12471] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem
[  264.183908][   T28] EXT4-fs error (device loop3): ext4_release_dquot:6883: comm kworker/u8:1: Failed to release dquot type 0
[  264.214564][T12471] EXT4-fs (loop3): 1 orphan inode deleted
[  264.234089][T12471] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  264.257653][T12489] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2469'.
[  264.354522][T12471] netlink: 'syz.3.2465': attribute type 1 has an invalid length.
[  264.581710][T12271] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.674162][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.725048][T12508] netlink: 'syz.2.2478': attribute type 13 has an invalid length.
[  264.732996][T12508] netlink: 152 bytes leftover after parsing attributes in process `syz.2.2478'.
[  264.743261][T12508] erspan0: refused to change device tx_queue_len
[  264.749783][T12508] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  264.779647][T12513] loop3: detected capacity change from 0 to 128
[  264.842167][T12522] loop3: detected capacity change from 0 to 512
[  264.851340][T12522] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2234: inode #12: comm syz.3.2482: corrupted in-inode xattr: invalid ea_ino
[  264.866756][T12522] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.2482: couldn't read orphan inode 12 (err -117)
[  264.880627][T12522] EXT4-fs (loop3): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  264.915559][T12271] EXT4-fs (loop3): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  264.950223][T12530] loop4: detected capacity change from 0 to 1024
[  264.961468][T12531] loop2: detected capacity change from 0 to 512
[  264.962747][T12530] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  264.980050][T12531] EXT4-fs: Mount option(s) incompatible with ext2
[  264.997040][T12533] loop1: detected capacity change from 0 to 2048
[  265.003785][T12530] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e842e118, mo2=0000]
[  265.012214][T12530] System zones: 0-1, 3-12
[  265.018164][T12530] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2487: Invalid block bitmap block 0 in block_group 0
[  265.033736][T12530] Quota error (device loop4): write_blk: dquota write failed
[  265.041188][T12530] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  265.052704][T12530] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz.4.2487: Failed to acquire dquot type 0
[  265.064551][T12530] EXT4-fs error (device loop4): ext4_free_blocks:6590: comm syz.4.2487: Freeing blocks not in datazone - block = 0, count = 4096
[  265.079155][T12530] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.2487: Invalid inode bitmap blk 0 in block_group 0
[  265.086016][T12531] loop2: detected capacity change from 0 to 1024
[  265.098415][   T28] EXT4-fs error (device loop4): ext4_release_dquot:6883: comm kworker/u8:1: Failed to release dquot type 0
[  265.099354][T12533] EXT4-fs error (device loop1): ext4_orphan_get:1420: comm syz.1.2488: bad orphan inode 8192
[  265.120516][T12531] EXT4-fs: Ignoring removed bh option
[  265.121373][T12530] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem
[  265.128191][T12533] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  265.141410][T12530] EXT4-fs (loop4): 1 orphan inode deleted
[  265.152824][T12530] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.166974][T12531] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  265.184267][T12530] netlink: 'syz.4.2487': attribute type 1 has an invalid length.
[  265.203606][T12533] bridge_slave_1: left allmulticast mode
[  265.209344][T12533] bridge_slave_1: left promiscuous mode
[  265.215263][T12533] bridge0: port 2(bridge_slave_1) entered disabled state
[  265.235064][T12533] bridge_slave_0: left allmulticast mode
[  265.240856][T12533] bridge_slave_0: left promiscuous mode
[  265.246661][T12533] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.256475][T11299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.314862][T12549] netlink: 'syz.3.2491': attribute type 13 has an invalid length.
[  265.329005][T12549] erspan0: refused to change device tx_queue_len
[  265.335413][T12549] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  265.475170][T12568] loop4: detected capacity change from 0 to 512
[  265.483754][T12568] EXT4-fs (loop4): orphan cleanup on readonly fs
[  265.491438][T12568] EXT4-fs warning (device loop4): ext4_enable_quotas:7078: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  265.506021][T12568] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  265.513148][T12568] EXT4-fs (loop4): 1 truncate cleaned up
[  265.519331][T12568] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  265.578519][T12582] FAULT_INJECTION: forcing a failure.
[  265.578519][T12582] name failslab, interval 1, probability 0, space 0, times 0
[  265.591307][T12582] CPU: 0 PID: 12582 Comm: syz.3.2503 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  265.601564][T12582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  265.611630][T12582] Call Trace:
[  265.614924][T12582]  <TASK>
[  265.617865][T12582]  dump_stack_lvl+0xf2/0x150
[  265.622472][T12582]  dump_stack+0x15/0x20
[  265.626659][T12582]  should_fail_ex+0x229/0x230
[  265.631360][T12582]  ? vm_area_dup+0x98/0x130
[  265.636075][T12582]  __should_failslab+0x92/0xa0
[  265.640957][T12582]  should_failslab+0x9/0x20
[  265.645477][T12582]  kmem_cache_alloc_noprof+0x4c/0x290
[  265.650896][T12582]  vm_area_dup+0x98/0x130
[  265.655256][T12582]  copy_mm+0x6a5/0x11d0
[  265.659536][T12582]  copy_process+0xee1/0x1f90
[  265.664149][T12582]  kernel_clone+0x16a/0x570
[  265.668660][T12582]  __x64_sys_clone+0xe8/0x120
[  265.673349][T12582]  x64_sys_call+0x23e7/0x2d70
[  265.678081][T12582]  do_syscall_64+0xc9/0x1c0
[  265.682596][T12582]  ? clear_bhb_loop+0x55/0xb0
[  265.687299][T12582]  ? clear_bhb_loop+0x55/0xb0
[  265.692041][T12582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.697943][T12582] RIP: 0033:0x7f55cef01bd9
[  265.702382][T12582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  265.722038][T12582] RSP: 002b:00007f55ce182ff8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  265.730465][T12582] RAX: ffffffffffffffda RBX: 00007f55cf08ff60 RCX: 00007f55cef01bd9
[  265.738456][T12582] RDX: 0000000020000540 RSI: 0000000020000510 RDI: 0000000004100000
[  265.746434][T12582] RBP: 00007f55ce1830a0 R08: 00000000200005c0 R09: 00000000200005c0
[  265.754489][T12582] R10: 0000000020000580 R11: 0000000000000206 R12: 0000000000000002
[  265.762462][T12582] R13: 000000000000000b R14: 00007f55cf08ff60 R15: 00007ffe12c13a58
[  265.770438][T12582]  </TASK>
[  265.902131][T12599] SELinux: syz.2.2511 (12599) set checkreqprot to 1. This is no longer supported.
[  265.933688][T12601] ip6gretap0: entered promiscuous mode
[  265.953799][T12601] batadv_slave_0: entered promiscuous mode
[  265.973304][T12601] ip6gretap0: left promiscuous mode
[  265.983438][T12601] batadv_slave_0: left promiscuous mode
[  266.082455][T12604] syzkaller0: entered promiscuous mode
[  266.088066][T12604] syzkaller0: entered allmulticast mode
[  266.100234][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  266.100246][   T29] audit: type=1400 audit(1720496136.625:1260): avc:  denied  { write } for  pid=12607 comm="syz.0.2515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  266.178268][   T29] audit: type=1400 audit(1720496136.705:1261): avc:  denied  { bind } for  pid=12613 comm="syz.0.2517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  266.206457][T12610] loop3: detected capacity change from 0 to 512
[  266.232290][T12610] EXT4-fs: Mount option(s) incompatible with ext2
[  266.261290][T12619] netlink: 'syz.0.2518': attribute type 1 has an invalid length.
[  266.291752][T12610] loop3: detected capacity change from 0 to 1024
[  266.306872][T12622] loop2: detected capacity change from 0 to 512
[  266.313740][T12610] EXT4-fs: Ignoring removed bh option
[  266.326167][T12622] EXT4-fs (loop2): orphan cleanup on readonly fs
[  266.332749][T12610] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  266.346008][T12622] Quota error (device loop2): v2_read_file_info: Free block number 1 out of range (1, 6).
[  266.365919][T12622] EXT4-fs warning (device loop2): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  266.421396][T12622] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  266.430956][T12622] EXT4-fs (loop2): 1 truncate cleaned up
[  266.439160][T12622] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  266.481717][T11100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.495683][   T29] audit: type=1400 audit(1720496137.014:1262): avc:  denied  { ioctl } for  pid=12634 comm="syz.0.2525" path="socket:[68778]" dev="sockfs" ino=68778 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  266.574254][   T29] audit: type=1400 audit(1720496137.094:1263): avc:  denied  { getopt } for  pid=12640 comm="syz.2.2526" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  266.613608][T12172] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.617258][   T29] audit: type=1326 audit(1720496137.114:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12640 comm="syz.2.2526" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd411287bd9 code=0x0
[  266.749989][T12644] loop1: detected capacity change from 0 to 2048
[  266.771157][T12644] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  266.805270][T12644] netlink: 'syz.1.2529': attribute type 1 has an invalid length.
[  266.833709][T12649] devpts: called with bogus options
[  266.847375][T12172] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.942298][T12658] SELinux: syz.1.2533 (12658) set checkreqprot to 1. This is no longer supported.
[  266.972751][T11299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.086833][T12660] syzkaller0: entered promiscuous mode
[  267.092367][T12660] syzkaller0: entered allmulticast mode
[  267.140982][T12666] gretap1: entered promiscuous mode
[  267.146229][T12666] gretap1: entered allmulticast mode
[  267.156185][T12670] bridge0: port 2(bridge_slave_1) entered disabled state
[  267.163904][T12670] bridge0: port 1(bridge_slave_0) entered disabled state
[  267.173136][T12670] bridge0: entered allmulticast mode
[  267.316869][    C0] ==================================================================
[  267.324983][    C0] BUG: KCSAN: data-race in can_send / can_send
[  267.331153][    C0] 
[  267.333482][    C0] read-write to 0xffff888116cb8070 of 8 bytes by interrupt on cpu 1:
[  267.341554][    C0]  can_send+0x570/0x5d0
[  267.345729][    C0]  j1939_send_one+0x1a9/0x1e0
[  267.350437][    C0]  j1939_tp_txtimer+0xca9/0x1a70
[  267.355410][    C0]  __hrtimer_run_queues+0x20d/0x5e0
[  267.360636][    C0]  hrtimer_run_softirq+0xe4/0x2c0
[  267.365702][    C0]  handle_softirqs+0xc3/0x280
[  267.370401][    C0]  do_softirq+0x5e/0x90
[  267.374580][    C0]  __local_bh_enable_ip+0x6e/0x70
[  267.379627][    C0]  _raw_spin_unlock_bh+0x36/0x40
[  267.384586][    C0]  batadv_nc_purge_paths+0x21d/0x270
[  267.389891][    C0]  batadv_nc_worker+0x3db/0xac0
[  267.394761][    C0]  process_scheduled_works+0x483/0x9a0
[  267.400345][    C0]  worker_thread+0x526/0x720
[  267.404966][    C0]  kthread+0x1d1/0x210
[  267.409077][    C0]  ret_from_fork+0x4b/0x60
[  267.413938][    C0]  ret_from_fork_asm+0x1a/0x30
[  267.418729][    C0] 
[  267.421056][    C0] read-write to 0xffff888116cb8070 of 8 bytes by interrupt on cpu 0:
[  267.429137][    C0]  can_send+0x570/0x5d0
[  267.433335][    C0]  j1939_send_one+0x1a9/0x1e0
[  267.438034][    C0]  j1939_tp_txtimer+0xca9/0x1a70
[  267.442995][    C0]  __hrtimer_run_queues+0x20d/0x5e0
[  267.448214][    C0]  hrtimer_run_softirq+0xe4/0x2c0
[  267.453300][    C0]  handle_softirqs+0xc3/0x280
[  267.458003][    C0]  do_softirq+0x5e/0x90
[  267.462182][    C0]  __local_bh_enable_ip+0x6e/0x70
[  267.467320][    C0]  _raw_spin_unlock_bh+0x36/0x40
[  267.472282][    C0]  lock_sock_nested+0x10f/0x140
[  267.477158][    C0]  netlink_insert+0x64/0x9b0
[  267.481776][    C0]  netlink_autobind+0xa8/0x150
[  267.486568][    C0]  netlink_sendmsg+0x4c5/0x6e0
[  267.491394][    C0]  __sock_sendmsg+0x140/0x180
[  267.496101][    C0]  ____sys_sendmsg+0x312/0x410
[  267.500882][    C0]  __sys_sendmsg+0x1e9/0x280
[  267.505490][    C0]  __x64_sys_sendmsg+0x46/0x50
[  267.510288][    C0]  x64_sys_call+0xb25/0x2d70
[  267.514949][    C0]  do_syscall_64+0xc9/0x1c0
[  267.519477][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.525392][    C0] 
[  267.527723][    C0] value changed: 0x00000000000016f5 -> 0x00000000000016f6
[  267.534858][    C0] 
[  267.537220][    C0] Reported by Kernel Concurrency Sanitizer on:
[  267.543380][    C0] CPU: 0 PID: 12679 Comm: syz.4.2540 Not tainted 6.10.0-rc7-syzkaller-00003-g4376e966ecb7 #0
[  267.553584][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  267.563655][    C0] ==================================================================
[  267.575559][   T29] audit: type=1107 audit(1720496138.092:1265): pid=12675 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  267.637707][T12677] bridge_slave_1: left allmulticast mode
[  267.643468][T12677] bridge_slave_1: left promiscuous mode
[  267.649191][T12677] bridge0: port 2(bridge_slave_1) entered disabled state
[  267.678399][T12677] bridge_slave_0: left allmulticast mode
[  267.684234][T12677] bridge_slave_0: left promiscuous mode
[  267.689969][T12677] bridge0: port 1(bridge_slave_0) entered disabled state
[  268.071289][    C0] vxcan0: j1939_xtp_rx_dat: no tx connection found
[  268.829316][    C0] vxcan0: j1939_tp_rxtimer: 0xffff888112ed6400: rx timeout, send abort
[  269.338602][    C0] vxcan0: j1939_tp_rxtimer: 0xffff888112ed6400: abort rx timeout. Force session deactivation