last executing test programs:

5.096091566s ago: executing program 4 (id=632):
io_pgetevents(0x0, 0x8, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/15], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
clock_gettime(0x0, &(0x7f00000001c0))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f00000006c0)={0x12})

5.095658756s ago: executing program 4 (id=633):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000001c40)=""/198, 0x32, 0xc6, 0x1, 0x40000}, 0x20)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000000)={0x0, &(0x7f00000000c0)}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x1000410, &(0x7f0000000200)={[{@auto_da_alloc}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
syz_emit_ethernet(0xfffffffffffffd4d, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x50c0}, 0x20000000)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x8002, 0x4, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x100000}, 0x48)
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f0000000300)=ANY=[@ANYRES64=r0, @ANYRES64=r2], 0x700, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')
syz_emit_ethernet(0x10ab, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], 0x0)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = gettid()
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5451, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f00000000c0))
inotify_rm_watch(0xffffffffffffffff, 0x0)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x5421, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
r5 = syz_open_procfs(r4, &(0x7f00000001c0)='stack\x00')
ioctl$NS_GET_OWNER_UID(r5, 0xb704, 0x0)

4.156817742s ago: executing program 1 (id=642):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000440)=0x82, 0x49)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000d00), 0x4)
sendto$inet(r0, &(0x7f0000003400)="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", 0xfffffeef, 0xc000, 0x0, 0xfffffcef)
r1 = accept4$unix(0xffffffffffffffff, &(0x7f0000000180), &(0x7f00000000c0)=0x6e, 0x40000)
recvmsg(r1, &(0x7f00000033c0)={&(0x7f00000003c0)=@ethernet={0x0, @dev}, 0x80, &(0x7f0000002040), 0x0, &(0x7f0000001f80)=""/178, 0xb2}, 0x120)

4.112370256s ago: executing program 4 (id=643):
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
getgroups(0x8, &(0x7f0000000800)=[0xee00, 0xee01, 0xee01, <r2=>0x0, 0xee00, 0x0, 0x0, 0x0])
r3 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r4=>0x0}, &(0x7f0000cab000)=0xa)
r5 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, <r6=>0x0}, &(0x7f0000000080)=0xc)
setregid(r6, r4)
statx(r0, &(0x7f0000000840)='./file0\x00', 0x0, 0x80, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='system.posix_acl_default\x00', &(0x7f0000000a40)={{}, {0x1, 0x4}, [{0x2, 0x4}, {0x2, 0x1}, {}], {0x4, 0x6}, [{0x8, 0x5}, {0x8, 0x1}, {0x8, 0x3}, {0x8, 0x2, r2}, {0x8, 0x1, r6}, {0x8, 0x1, r7}], {0x10, 0x1}, {0x20, 0x4}}, 0x6c, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r10)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xffff, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
r12 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r13, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x6c, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x40, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_bridge\x00'}, {0x14, 0x1, 'geneve0\x00'}]}]}]}, @NFT_MSG_DELFLOWTABLE={0x48, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'geneve0\x00'}]}]}]}], {0x14, 0x10}}, 0xfc}}, 0x0)

3.930450051s ago: executing program 4 (id=644):
r0 = socket(0x80000000000000a, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD(r2, 0x40045402, &(0x7f0000000040)=0x1)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f00000083c0)={{0x1}})
readv(r2, &(0x7f0000000200)=[{&(0x7f0000000140)=""/144, 0x90}], 0x1)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f00000000c0)={0x0, 0x8, 0x0, 0x0, 0xf})
read(r2, &(0x7f00000002c0)=""/200, 0x39)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000640)={0x0, {{0xa, 0x0, 0xe636, @mcast1={0xff, 0x7}}}, {{0xa, 0x4e24, 0x0, @empty}}}, 0x108)
socket(0x27, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, 0x0, 0x0)
socket(0x0, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f0000000480), 0x4)
dup2(r3, r1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48)
close(r4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0xfca804a0, 0x0, 0x0, 0x0, 0x0, 0xc00d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000181100008b2ebe4dd2182a93067202692e3e072cb772a462feb03b396f188de232bdf5936c8ad459686d40b94fc18518696f7142efccec3ebe7dbcec51cd08955e4a226595fa03d8b675204dfa478dc5115d02c320d9451dce80d3a9a38c", @ANYRES8=r1, @ANYRESHEX], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='ext4_journal_start\x00', r7}, 0x10)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
sendmsg$netlink(r3, &(0x7f0000006440)={0x0, 0x0, &(0x7f00000063c0)=[{&(0x7f0000000600)=ANY=[@ANYBLOB="34000000100001000000000000000000080000000000000008000000", @ANYRES32=0x0, @ANYBLOB="14001b0000000000000000210000000000000001"], 0x34}], 0x1}, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
close(r0)

3.376612666s ago: executing program 4 (id=645):
unshare(0x26020280)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
socket$key(0xf, 0x3, 0x2)
openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000000)={0x4}, 0x10)
write(r2, &(0x7f0000000080)="240000001a007f0214f9f4070009040803000000000000050002000008000f40fe00000e", 0x24)
r3 = socket$key(0xf, 0x3, 0x2)
fcntl$addseals(r0, 0x409, 0x2)
sendmsg$key(r3, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[@ANYBLOB="0203f3021600000000000000000a00000200090008000000e90000000000000003000600000000000200000000000000000000000000000002000100000000fffffffd0200000000030005000000000002000000ac1414aa00000000000000000a0008"], 0xb0}, 0x1, 0x7}, 0x0)
bind$bt_hci(r1, &(0x7f00000000c0)={0x1f, 0x4, 0x4}, 0x6)
write(r1, &(0x7f0000000000)="3b000300010010", 0x7)
openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x224400, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES16, @ANYRES32, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x90)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000280))
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1809d70000000000000000000000000000001811", @ANYRES32=r4, @ANYBLOB="0000000000000000b70200000000000085000000860000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r5}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000240)={[{@bsdgroups}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@noauto_da_alloc}, {@nolazytime}, {@errors_continue}, {@grpjquota}, {@errors_remount}, {@nobarrier}]}, 0x1, 0x46a, &(0x7f0000000980)="$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")
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$eJzs3cFPG9kZAPBvBgiEkEDaHNqqbdI0bVpFscFJUJRTemlVRZGqRj31kFBwEMLGCJs00BzI/1CpkXpq/4QeKvVQKae97233tpfsYaXsbrSrsNIevJqxIYRgYDcES/j3k55m3jzj7z2sec98gF8APetcRKxFxLGIuBcRo+3rSbvEzVbJHvfyxaPp9RePppNoNu98luTt2bXY8jWZE+3nHIqIP/4u4i/Jm3HrK6vzU5VKealdLzaqi8X6yurluerUbHm2vFAqTU5Mjl+/cq10YGM9W/3P89/O3frT///3k2fvr/36b1m3RtptW8dxkFpDH9iMk+mPiFvvIlgX9LXHc6zbHeE7SSPiexFxPr//R6MvfzUBgKOs2RyN5ujWOgBw1KV5DixJC+1cwEikaaHQyuGdieG0Uqs3Lt2vLS/MtHJlYzGQ3p+rlMfbucKxGEiy+kR+/qpe2la/EhGnI+Lvg8fzemG6Vpnp5hsfAOhhJ7at/18OttZ/AOCIG+p2BwCAQ2f9B4DeY/0HgN5j/QeA3mP9B4DeY/0HgN5j/QeAnvKH27ez0lxvf/71zIOV5fnag8sz5fp8obo8XZiuLS0WZmu12fwze6p7PV+lVlucuBrLD4uNcr1RrK+s3q3Wlhcad/PP9b5bHjiUUQEAuzl99umHSUSs3Tiel9iyl4O1Go62tNsdALqmr9sdALrGbl/Qu/yMD+ywRe9rOv6J0JOD7wtwOC7+UP4fepX8P/Qu+X/oXfL/0LuazcSe/wDQY+T4Ab//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgG9vJC9JWmjvBT4SaVooRJyMiLEYSO7PVcrjEXEqIj4YHBjM6hPd7jQA8JbST5L2/l8XRy+MbG89lnw1mB8j4q//vPOPh1ONxtJEdv3zzeuNJ+3rpW70HwDYy8Y6vbGOb3j54tH0RjnM/jz/TWtz0Szueru0WvqjPz8OxUBEDH+RtOst2fuVvgOIv/Y4In6w0/iTPDcy1t75dHv8LPbJQ42fvhY/zdtax+x78f0D6Av0mqfZ/HNzp/svjXP5cef7fyifod7exvy3/sb8l27Of30d5r9z+41x9b3fd2x7HPGj/p3iJ5vxkw7xL+wz/kc//un5Tm3Nf0VcjJ3jb41VbFQXi/WV1ctz1anZ8mx5oVSanJgcv37lWqmY56iLG5nqN31649Kp3cY/3CH+0B7j/8U+x//vr+/9+We7xP/Vz3d+/c/sEj9bE3+5z/hTw//tuH13Fn+mw/j3ev0v7TP+s49XZ/b5UADgENRXVuenKpXykhMnTpxsnnR7ZgLetVc3fbd7AgAAAAAAAAAAAAAAdHIY/07U7TECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwdH0TAAD//yyP2UE=")
chroot(&(0x7f0000000000)='./file0\x00')
open_tree(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x89901)
socket$packet(0x11, 0x3, 0x300)

3.236523877s ago: executing program 1 (id=646):
socket$inet6(0xa, 0x6, 0x0)
io_uring_setup(0x3cb, &(0x7f0000000340)={0x0, 0x0, 0x400, 0x2})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x4040040}, 0x8154)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0xf, 0x3, 0x2)
sendmsg$inet(r0, 0x0, 0x0)
r1 = socket(0x2b, 0x1, 0x1)
sendmsg(0xffffffffffffffff, &(0x7f0000001d40)={&(0x7f00000001c0)=@sco={0x1f, @none}, 0x80, &(0x7f0000001bc0)=[{&(0x7f0000000400)="de46b1e7d7e42a669a195c42223347674faa19b2f96fbc3c95749b5c3ddecfd17c03636e595de88dca61bef3966d95da25a2c80383c0a217422c8238c2f05f45d7fed14bd0fa80621d90a9085e9c967394d76343d61899e3f78cbb5264010ddc9d852b65cb9356375fe208998c7f78d89aff93837778eb52411937a96e8a625ef9386c0fc457ec39ddfd2499e3417f246337650107c07457396ad8c881067ed09f6fad1149d646a44c9c549cb4da6a70da8c1e85664fb2ccd4987d983d249ba02ccb858fa8ff301c6c165b8bef37ba0f076b66f16f23a6ca35ce0b567b55d6bd8799", 0xe2}, {&(0x7f0000000100)="3cb4fa67b72f9bbe87", 0x9}, {&(0x7f0000000280)="2d67bdb90181a0cf0203a9b790a95f795633b8cb0846d31b41b92cb6a804d52f57df0a7d8c244d2f52448a686ad0e44c1dec013c5f8790c013e27eb9c379e965848d220396ae4788f9f0a5a12610000c58c44b3bd131a8fd4080082682cee30209126b813b57b01d4779475d291a435334c838ae56a0c2ee300ed71f8749e2b1e43658429320828c38c2", 0x8a}, {&(0x7f0000000bc0)="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", 0x1000}, {&(0x7f0000000500)="92ae2e265acf145af96258d66f0a2f5e4123b4a40aa77166694f1dc388eedae6ea4e5e49204f3ea29983cba5b3c57e72672c2e14", 0x34}, {&(0x7f0000000540)="d71e197fc27822b170e46c1aabf8dbc8df3d45ab05ab2f9eba1351560bd52451cdf796b82d8eeef9b303976cf54ecb09600626ce8f721142f8d9178ed7f51f861eb596c5ab3f6d36fc940fd25154dce98a2fc675aecee65c0b305300f90ddd08de578d", 0x63}, {&(0x7f00000005c0)="63ff18f6ea1b8bbd18af07948397fb7654706548d7a3d5e500e2c3d31ea14670f639a69839374c0c23bbfa32dade4623073ee125281ed9ee4f7361cbd525363358bbe033635aa511", 0x48}], 0x7, &(0x7f0000001c40)=ANY=[@ANYBLOB="98000000000000000e010000000000000000010000000000343bf220f0ccaa0b258276e7fce47c32072f818960ef7cb736aa939e5dc4888599e7795083fad7bde88dac1b25321468cfe6324edeaa6a9dc7936f0b3b3522a3864d40d4e6f45cd5e62ca5f44dd07b298549141113549e8fd14c52c80569e48f6f0720c2699f1dfffbaa6c4a82d4f31c8327b4fdcbe52b03f9a7d8caa228d450"], 0x98}, 0x20000880)
connect$inet6(r1, 0x0, 0x0)
prlimit64(0x0, 0x7, &(0x7f00000000c0), 0x0)
ioperm(0x0, 0x444, 0x1)
socketpair$unix(0x1, 0x5, 0x0, 0x0)

3.20567781s ago: executing program 1 (id=648):
r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
ftruncate(0xffffffffffffffff, 0x7)
io_setup(0x4, &(0x7f0000000500)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000380)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0xfffc, r0, &(0x7f00000001c0)="7f", 0x1, 0x100000000001, 0x400000000000000}])

2.685709552s ago: executing program 4 (id=649):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffa}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x5d)

2.664709723s ago: executing program 1 (id=650):
io_pgetevents(0x0, 0x8, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/15], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
clock_gettime(0x0, &(0x7f00000001c0))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f00000006c0)={0x12})

2.608551158s ago: executing program 3 (id=653):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/pm_async', 0x802, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r1, &(0x7f0000001280)=[{{&(0x7f0000000200)={0xa, 0x4e21, 0x7, @ipv4={'\x00', '\xff\xff', @remote}, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="140000000000000029000000320000002300000000000000140000000000000029000000080000007f000000000000001400000000000000290000000b0000000000000b00000000140000000000000029000000340000000100000000000000140000000000000029000000340000000a00000000000000200000000000000029000000370000003b00000000000000c2040000035400001400000000000000290008000b00000000000004000000002000"], 0xd0}}], 0x1, 0x24004890)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x3ff, 0x5}, 0x0, &(0x7f00000001c0)={0x1, 0x0, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0xe061, 0x3}, 0x0, 0x0)
r2 = accept4$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, &(0x7f0000000080)=0x6e, 0x0)
clock_gettime(0x0, &(0x7f0000004080)={<r3=>0x0, <r4=>0x0})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SAVE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="74000000080601040000000000080000000000050900020073797a31000000000900020073797a30000000000900020073797a30000000000900020073797a300000000005000100070000000900020073797a320000000005000100070000000500010007000000"], 0x74}}, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r7 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r9)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r6}, 0x10)
r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
write$cgroup_int(r10, &(0x7f0000000040)=0x900, 0x12)
rt_sigprocmask(0x2, &(0x7f0000003940)={[0x100000001]}, &(0x7f0000004100), 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x6, 0x0, 0x7fff7ffc}]})
lchown(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x0)
io_setup(0x5, &(0x7f0000003340))
recvmmsg$unix(r2, &(0x7f0000003e80)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)=""/207, 0xcf}, {&(0x7f0000000400)=""/72, 0x48}], 0x2, &(0x7f00000004c0)=[@cred={{0x1c}}, @rights={{0x10}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}, {{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f00000005c0)=""/58, 0x3a}, {&(0x7f0000000600)=""/131, 0x83}, {&(0x7f00000006c0)=""/214, 0xd6}, {&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/56, 0x38}], 0x5, &(0x7f0000001880)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f00000018c0)=@abs, 0x6e, &(0x7f0000002b00)=[{&(0x7f0000001940)=""/74, 0x4a}, {&(0x7f00000019c0)=""/97, 0x61}, {&(0x7f0000001a40)=""/4096, 0x1000}, {&(0x7f0000002a40)=""/181, 0xb5}], 0x4, &(0x7f0000002b40)=[@cred={{0x1c}}], 0x20}}, {{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f0000002b80)=""/72, 0x48}, {&(0x7f0000002c00)=""/59, 0x3b}], 0x2, &(0x7f0000002c80)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000002cc0)=@abs, 0x6e, &(0x7f0000002e80)=[{&(0x7f0000002d40)=""/55, 0x37}, {&(0x7f0000002d80)=""/37, 0x25}, {&(0x7f0000002dc0)=""/141, 0x8d}], 0x3, &(0x7f0000002ec0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{&(0x7f0000002fc0), 0x6e, &(0x7f00000036c0)=[{&(0x7f0000003040)=""/193, 0xc1}, {&(0x7f0000003140)=""/221, 0xdd}, {&(0x7f0000003240)=""/208, 0xd0}, {&(0x7f0000003340)}, {&(0x7f0000003380)=""/133, 0x85}, {&(0x7f0000003440)=""/166, 0xa6}, {&(0x7f0000003500)=""/210, 0xd2}, {&(0x7f0000003600)=""/186, 0xba}], 0x8}}, {{0x0, 0x0, &(0x7f0000003a40)=[{&(0x7f0000003740)=""/217, 0xd9}, {&(0x7f0000003840)=""/100, 0x64}, {&(0x7f00000038c0)=""/17, 0x11}, {&(0x7f0000003900)=""/15, 0xf}, {&(0x7f0000003940)}, {&(0x7f0000003980)=""/42, 0x2a}, {&(0x7f00000039c0)=""/109, 0x6d}, {0x0}], 0x8, &(0x7f0000004140)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}}, {{&(0x7f0000003b00)=@abs, 0x6e, &(0x7f0000003e00)=[{&(0x7f0000003b80)=""/11, 0xb}, {&(0x7f0000003bc0)=""/113, 0x71}, {&(0x7f0000003c40)=""/166, 0xa6}, {&(0x7f0000003d00)=""/69, 0x45}, {&(0x7f0000003d80)=""/128, 0x80}], 0x5}}], 0x8, 0x12140, &(0x7f00000040c0)={r3, r4+60000000})

2.416400504s ago: executing program 1 (id=655):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
r1 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r3)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f00000002c0)={0x40, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0}) (fail_nth: 2)

2.044518204s ago: executing program 1 (id=656):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffffffff, 0xfffffffffffffffa}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x3, 0x4, &(0x7f00000024c0)=ANY=[@ANYBLOB], 0x0}, 0x90)
r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @none}, 0x0, 0x0)
sendmsg$inet(r0, &(0x7f0000002840)={0x0, 0x0, &(0x7f0000002380)=[{&(0x7f0000000240)="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", 0x1000}, {&(0x7f0000001240)="2cf80028140154a6662cd671045c8060664cf254f8fc109e724875d2f09d54d923c199aed119cdd712d760d7bde88269e1171982b5d434673d3ae80161678026758040c43f2f71ed971e6f973afc08b8e5e2c6b683cde7c30524852bfa6754d5a83d8f0b580cc9b3cde58b377c05aec9ddda57fb87033b70f566ab424e5eb7a12632a5fb5b2c13b2b34a272c3817a3c57b35d3d8e28525825ba08bc442d8ab4ad10d87cc61eddc2a0457afebc02484ac94c30ab56523f07c47e5ab42dc06f10e51a485b432ed458847f3b832d38e7631741434a6d61a25e8093c18a9ad8619d729763475997c6ef525eed68a8f3e0a78", 0xf0}, {&(0x7f0000001340)="daa662ed19952e260f2da2fa", 0xc}, {&(0x7f0000001380)}], 0x4, &(0x7f0000002880)=ANY=[@ANYBLOB="5c0000000100000000000000070000ff831b67ac1e000164010101ac1e000164010101ac1414aae0000001890b9264010100ac14141c86260000000207103d9a69e7c05932852d2b66681ee1000cf05303010091dad792d8070436453700000011000000000000000000000001000000070000000000000011000000000000000000000001000000a3000000000000006c000000000000000000000007000000865cffffffff0609be4c545a37ec9c05128cd1a5007d319bd75f51d9369b198b2b0503b60712c9cbf87a3234e43d86178ec57eceeb7c7b06f1c318520211228dfd5d05199cdd74d9f4ab30db8302d2fcfaed1c0b7bea1e2668328207002b61556a00000000"], 0x100}, 0x4048080)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
fchdir(r1)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
r2 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x10)
lchown(0x0, 0x0, 0xee01)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)={'#! ', './file1'}, 0xb)
syz_open_dev$usbfs(&(0x7f0000000000), 0x204, 0x2)
mkdir(&(0x7f0000000240)='./file0\x00', 0x0)
mkdirat(r2, &(0x7f0000000100)='./control\x00', 0x0)
unlinkat(r2, &(0x7f0000000140)='./control\x00', 0x200)

1.96715872s ago: executing program 2 (id=658):
perf_event_open(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0x10, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x16}]}, 0x10)
sendto$inet6(r1, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0)

1.940070362s ago: executing program 2 (id=660):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x4}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={r1, 0x9}, &(0x7f0000000500)=0x8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
io_setup(0x8, &(0x7f0000000040)=<r2=>0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
io_submit(r2, 0x1, &(0x7f00000005c0)=[&(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0xfff, 0x0, 0x1, r4}])
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
socketpair(0x1e, 0x80000, 0x6984, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r5, 0x5411, 0x1000000000000)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x3}, {0x0, [0x30]}}, &(0x7f0000000b80)=""/184, 0x1b, 0xb8, 0xfffffffe, 0x8}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7ffb, 0xcc}, 0x48)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x18, 0x38, 0x9, 0x0, 0x0, {0x3}, [@typed={0x4}]}, 0x18}}, 0xc0)

1.828226001s ago: executing program 2 (id=663):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x13, r1, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r2, &(0x7f0000000f00)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x0, 0x1c, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @remote}, @ib={0x1b, 0x0, 0x0, {"b9322b534f61cd1848a76d94f0ba2078"}}}}, 0x118)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'macvlan0\x00', <r4=>0x0})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={<r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130eb2cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755afadbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f4596511d6010448ff88ca6e5e2cfe40176880b30616600600000000000000d4ec4ad216abea8c30bd43976153db214f7ac2b9d43159", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x16}, {&(0x7f00000025c0)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63823dde02330503255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de043990086059ce22166199406e37d0441d6efef40742bd3c64f3ee4f9253d4db70ad487a048b201d39feebb67777b939576e94f897e6cc001e7e8c4b639ce848ec71ddaed4bc7864d27ca4b553f56609146", 0xde}, {&(0x7f0000000300)="87fb74cf4d67adbbd062637f514c1f5eb18d7b442e6457a356c6cb1f71a43dfae773c8489cce5145f92615d4bdb13ef54d6ae90ec7733180fcf5adf3e13fdb05b57b748bd14eda042a97fdd84498304a504a0a159b972e8200c2d0f536a3465ec498ed12b924bd134057df36129d3ebe3dd3ce9f0671e5278143e4afa3d43f444681de1b5f9725fca34fa357fe2154981666fb9dc202fc17a0199eb1c25bdd1005e590e84783ee9894c888998dc25a83c14aeee31d114acfa0bcd235d571cd765f4b9259ba43e6fc30291d8a642146c4771898030b736aeee6b247abb0784b154e104e7dcda401f9b1736fea30a41a4153fe6a9a525bd0a3487571f914f05b590e242341ade289d8f5b842c6be4a93c2755dfd47174def782a2f8f61c068b5a012f02c0801601e860def788121e8808c01fed4c920a3698d0d684920918c95b17f76bbcb4f265c931d8f79560ff8114b70f4dd6791e2ed70cfeb89905791b88be26efe1c5c66b7b50b3d2be0dbc066dfc31618f9507f6f340b85a2f76a6dcac9d6ccc289ace5e5fecd25afe22ffa451f5e365ab33cc985f2e9d7f7fb1be4794740a94215d7db14b0ffcec19e5e3c5ae0d8578ef3b65d2a7a77a11e390a6c3a6b391061c886b961e3c2f42d62047bfe1356a44b840d3d956105f4c0fa95db08c4933f00de77cdc057c28b41fecfc8398c442be1ad065954f6c9dfeb2fd7207e8548a00a1d50bdf522d2abfdafd71723616a34830fbfa8fc81e0c2639cc12f363a4919b7a00ac8189dad3e7e54122a2ef430f623658d5e281c9a19442995bb9b0e3f7d13e3016b6f9523be196bf23bbcc5ec802f43ef8b651d688d9d5a44f35c9847e4c32bce3e9ebed2326adadc76f06a195db32c80b3090d7cd65c9d8518ba4e528c5eb5c7a1c5695b21595fa8a8621734bfda8afddd65e1f37a1990220a00fa9bd2c22b0117ceb08ae6af3c944c2eca924abfddad065d1472d0c3f742a49b1e78c669471873706ad157d831d7482b773f07b0673a6ce1e227a7a4d13744bf459434c0ab1c323a38b1a84cbf1ce9741f2b8fdcc2e073e56171603d035aacd83e71d5132831f4f1e8bf517979f132a33fd03783272e9b8c96dfa4e1d320a58d82acfc8d3d53a5a52daafe4dc8be08f4ad53e11cc21374b6ff4ff5ea2ecc5d3f7c057f74f0098e57d990090475cdaffdef0da917653ed10fb70b94b72e5b4d95cbea0fc1dd2579635ad6ab545ba4d7b6d2f5442bdb78beb6c8ed62942a439117025b4566b48d9f3a17fdf4577e8606a4bc4c26557e58312fd2d1a541ebec3e5ae28eef8b2ab0597083716dd12889335570ee7839530eee879d9b137606cd4dd7103991671b4464bb68529eb19fb7a8845e3491bfbac688a87cf0744f429ea112014402915c4c1f6bae08d689d3cb7d641d7befe8fc74a2242310a9a367a39531b4c86da5b39df524e52f33ff9c40b48cb196ffc9ca855b6e698ade8a83e52b9ddc5031ff09e1907e4f8b0d07e64e1fb8e427f8819a7be907aa216bf8e2a4c7cc87ed53bf9490d4cc788b91f3b9f705e984a7e62c7a495e8421b97c39dc954b35468f17c6682334f4e16308448f457faeffff6d1f818522fa441d3a48168bdb12ffebace436a3915b63076cb6a655718647f87eaaf313b5bbd430421eed3a2215e439600a56eac8c65291eb103326a8034662bd337ab51577d9110ec7151be5cc9c54b2a30891acac5ad006ed537dbeb8f16eecbde7cf4e71373faf3c36b772f6d7ea9346875c8cf1049d49d4f8eb01b946c11e8c8e3ab2015f282167acddcc77fff03e1be9134252af0abfe538b4d25fc4ff874b52b9fb0996b5f32b4141dbd30578ff46e13ef6c63fc1620f62cb11a3dce401993976c272a5f62fde3f2a0e654d19e7a39dcdb622b9526d2a15cc18e6f817c916a00775353dd9c8954e66d0445b59bb0f5e6e3b46447232f52a0e398b057d123ef503afcbd48544db6434d2025bfc8dab72262a4fa5426a03061e7f8966e0086ff8ab5a91ab59f19b830394ee8bc76d6fb4816b8f4cde35b7eb9d3811228d51c54828f97fd1e648196c81bc73ed56249a59f318704e84656a6cedd2b8c1e1808d1cc648749abc643131e494c01336d4a14b8609656f2c972dc23c5c2e43fe40119fb88b5ec2aade35c03646e347354c493de8ab3672ccf94af0df333c6678299129d79be0eec281c5b3858ce3995566a390b674635b356692e3e9c53a089638ba0d69e772b7b410a5ae03de12e7de755ee559e1707b7b8003aabc8e2ce03c01e3183ff2d93262f6d5ceaafecdae66bc7cb3952c5a6571d864d502f281db5a228695badca5d022fdb6da56ab15dc377d1c1f8581ff56e28c2b2a84edb629547d28275c2ed571103b4ca7cdeb0776ba9f9dffcd78d21c3d4caa9289ed199672f4e7b912068c49c817114c37d37ea03954bae87d1ddae3da2ad85feb2fbb735b75a51f7bee5c8d88cc7bf64700d1a46ec6b631ae22ac7b06730a86a26bdcb992e1c7b50142de96b14a8468e4514068a30896fc677fddefaebb125c693a8d460469c7fe535f844781940f66d6abd091191c3122d584f5b0f5b0d443713d7d5186124d73de28aca30b719d4a55e09d259bddbf16995aeb1000880890afbd24d4066b0398985a40999de22ce176348e1c1f57eaf75b92a1e4f1482e89a00ac2cc36b20e36af9ec310599c19a5b1d6f8fadba104c58c801c6633315f82ebfa88faddd0b693e2f827f586c1cc5538e93bcf10f81af6dd7ee727df3b5018c0b4e31e40d040a47503b6ace4d29a1162ce487351825255f5584aff7cbd421f85c3d9fbb3784abd9848f16028b68f0d32ed8bb80106e8cc4acb939ff88bd39976d166b2addebf628b3fcd056da2f60e1b90f7a32702954921908ebccb683622a1f574ceba6951bef5e751c338c8279318dc28e36b9fc2bb17c3ad08aceb00fc388e6db112a738f86a4a1eb11526e1b9d73250b326285ed47c4398d93a3933d9a784249b65ad7d78a1f81d96ef36493ed693045a2150a8eb43cecc0c93e7d20b15b39a0646b081c2923b816365b7fbb41683a41732d942c5aa12faf876ec7f036becde8f3295af6dacff38d076d8e06260fee167703bb610745374a2758a6b88e465ca77d1f3105ae8b6b04a1eb509fb178d6249dbbc84d5d1d069278449a89d03e4a9a395d8170c329a296cfc329798cb9b9f1078d098cf3f989fd4ec53e013fbe917df35292d44fb1f3da4da4432a1847d4721514ade8cda5e5c0b51183580fc35266a970ebba74faeda56d4dcb56df51f96ad237452cedbd0cb2bee112713c3d450835811bf3da9745136d428e148fd0932dc77c8d8e61a16c625241fad8425b4ece394eedd5f165bd94923bfa1172be8edc8a4fcaae5f77ee8cc510192b27964da09c3e84efb4bc7154da1a24da8b7e544b42278d2574687ec76143afa6cf193d52a2a7f4c20ee57b6056a1337d5e408117a6cf1ab49c8980f39597f69902085d3e8d374d44e6ab4ed1185a26be2bc7281e9cfbbeb6bed899aa1924d3faa06d95999fbeaf2337494e0c2c39eef5a73fcde84459a9ea48d4e015d9e5bb5839354967ce02f637bc8678d2595b9a918fc36b927d7501f0ac2e3471ce02b5df355689c87f191ef5390900a41deec29984e45a878ece964b0009aad561316fc3b30ce1b49266d32eb17cd30f3e17e1f59014e8c518940dd0a093d1349c1a7c2581963bbe0ba372b6426e81c33c71b2ec8141c5713e52a37fff0a417a5b259e1420d9fb6a731f5baa0cc494221947895aa8fa14745a986a366bff9d0c239a19f85372497565b5b703da16439019df5f3d29f4247fb528854c9648630f03e9dedde5a08a47728ea6a4d42e62eff6fa3bd402325e0f4387b60171c37c180f958ad80955779c899517e7ea76eed00598e01552eaaf08b723daf9d466e8c57af43a15a46528b1119f5074aa3c51f77357ebe158275bc06b89640d7ce3c0a03af01418d7dc6ae8a1be8ab08c1722d66d1e9277480b8b178447667c024f9b78f8a878a2d7cf8e83e5104f6964b2907a989abafc7d7d0df941abf3d7283b6a11d46c2911a42182ec27ab785d92946e1ee8ef44846d561850d2a98c305c382f36d4cfc9b2bfd3b86ef21a0d187adcafbec8268c7d662a34dda1c83c4967097743133bc8c587edf249f5668c34ddb112fa4eb1bea9c8f6a000f1f34428b54688a5e214a7919868b25dbe930e86a243ecf54afe0b518c647d04873d2cf62cb2ab27f00015537a4fd2ea3dc8777abdf3284622347016566da0b9c406ca8c40694e4013a53fbf2e803d51b0bbe5e9df5fc74f66be618856357ccf803c53ed0e3b3fe79f69f0ede9b565d8f7a8ce5aa8cbb4e8fa61be3fd00ffb07e45065498925c14c0b311942d4ed951ad6237aadb5405bc7b2d79e1fd295b7c2ed8efa883e44c86a5053e2f421c6d4dc0c47d3a05d911db37d6efdb8e50fb3f06139ac147bc7162c21aece79eaf72e9779f19eb5395cec3d15a7594ea70a6b373d98651d2215b210f037ea3f8a57ded74474f6fdb64a08b56af52168da70b30aee03472cd8bee5af04cad7303004a4aba464b99", 0xcb3}], 0x38, &(0x7f00000002c0)=[@ip_tos_u8={{0x0, 0x0, 0x1, 0x6}}, @ip_pktinfo={{0x5b, 0x0, 0x8, {r4, @multicast1, @multicast1}}}], 0x40}, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
r6 = open(&(0x7f0000000240)='./file0\x00', 0x145142, 0x0)
creat(0x0, 0x0)
ftruncate(r6, 0x2007ffc)
r7 = perf_event_open(&(0x7f00000015c0)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_config_ext, 0x1000, 0x0, 0x0, 0x3, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x1000}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r9)
sendfile(r6, r6, 0x0, 0x800000009)
sched_setscheduler(0x0, 0x0, 0x0)
ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000001500)={0x52, 0x7, 0x6, {0xa, 0x6}, {0x474, 0x9}, @rumble={0x8000, 0x3}})
getpid()
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001)
ioctl$TCSETS(r0, 0x89f2, &(0x7f0000000080)={0xdf, 0x0, 0xdffffff9, 0x40, 0x0, "bb40af00008000000000000800"})
syz_open_procfs(0x0, &(0x7f0000000240)='net/arp\x00')

1.663620165s ago: executing program 3 (id=665):
ioprio_set$pid(0x2, 0x0, 0x2004)
syz_clone3(&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

1.59330313s ago: executing program 3 (id=666):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000001c40)=""/198, 0x32, 0xc6, 0x1, 0x40000}, 0x20)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000000)={0x0, &(0x7f00000000c0)}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x1000410, &(0x7f0000000200)={[{@auto_da_alloc}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
syz_emit_ethernet(0xfffffffffffffd4d, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x50c0}, 0x20000000)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x8002, 0x4, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x100000}, 0x48)
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f0000000300)=ANY=[@ANYRES64=r0, @ANYRES64=r2], 0x700, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')

1.499782908s ago: executing program 2 (id=667):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x200002, &(0x7f0000000300)={[{@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@noinit_itable}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}, {@nouid32}, {@oldalloc}, {@discard}], [], 0x2c}, 0x84, 0x462, &(0x7f0000000e40)="$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") (async)
r0 = syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x200002, &(0x7f0000000300)={[{@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@noinit_itable}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}, {@nouid32}, {@oldalloc}, {@discard}], [], 0x2c}, 0x84, 0x462, &(0x7f0000000e40)="$eJzs28tvG8UfAPDvbh59/5JfKY8+gEBBRDySJi3QAxcQSL0gIcGhHEOaVqVug5og0aqiAaFyRP0LgCMSfwEnuCDgBOIKd4RUoV4oHNCitdeu69jBjp26qT8faZOZ3fXOfHd3ktmZdQADayL/kUTsjIhfImIsIoYad5io/Lpx/dL8X9cvzSeRZa//keQfiz+vX5qv7poUv3cUmck0Iv0oif1Nyl26cPHMXKm0cL7ITy+ffWd66cLFZ06fnTu1cGrh3OzRo0cOzzz/3OyzPYlzV17Xfe8vHth77M2rr84fv/rW91/m9d1ZbK+Po2K86zInYqJ2Tho93vXR7yy7bibTftaDzuRtfTgiRsrtfyyGyrmKsXjlw75WDthQWZZlW1atrfUAVjLgLpZEv2sA9Ef1H33+/FtdbmP3o++uvVh5AMrjvlEslS3DtQfZkVufb3tqIiKOr/z9ab5E03EIAIDe+jrv/zzdrP+Xxn11+/2vmBsaj4j/R8TuiLgnIvZExL0R5X3vj4gHOix/oiG/uv/z07Z1BdamvP/3QjG3dWv/rzaNMT5U5HaV4x9JTp4uLRwqzslkjGzJ8zNrlPHNyz9/0mpbff8vX/Lyq33Boh6/DzcM0J2YW57rJuZ61z4ojwFeXh1/UpsJSCJib0TsW8fxt0bE6Se/ONBq+3/Hv4bhdVSoQfZ5xBOV678SDfFXJWvPT05vjdLCoenqXbHaDz9eea1V+V3F3wP59d/e9P6vxT+e1M/XLnVexpVfP275TLPe+380eaOcHi3WvTe3vHx+JmI0WVm9fvbmZ6v56v55/JMHm7f/3RH/fFZ8bn9E5DfxgxHxUEQ8XNT9kYh4NCIOrhH/dy899vb6499YefwnOrr+nSeGznz7Vavy27v+R8qpyWJNO3//2q1gN+cOAAAANou0/A58kk7V0mk6NVV5h39PbE9Li0vLT51cfPfcicq78uMxklZHusbqxkNnirHhan62IX+4PG6cZVm2rZyfml8sbdScOtCeHS3af+63oX7XDthwHc2jtfpGG7Ap3dr+NXAYJD14jwbYpLR/GFzaPwyuZu3/csSNPlQFuM38/4fBpf3D4NL+YXBp/zCQuvle/1qJ3cc26sh3W2LozqhGx4lIq2tGI6L/9ekokfbqgMXLcivdHGdLRLS78+W4XSeq33+ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeuPfAAAA//9n0eeq")
r1 = socket(0x2000000000000021, 0x2, 0x10000000000002)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f0000003400)=ANY=[@ANYBLOB="03"], 0xa)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
setsockopt$packet_int(r3, 0x107, 0xe, &(0x7f0000000000)=0x2, 0x4)
socket$can_raw(0x1d, 0x3, 0x1) (async)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
getpeername(r4, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
write(r5, &(0x7f0000000040)="2700000014000707030e0000120f0a0011000100f5fe009d2fb112ff000000008a151f75080039", 0x27)
socket$inet(0x2, 0x800, 0x4) (async)
r6 = socket$inet(0x2, 0x800, 0x4)
setsockopt$inet_opts(r6, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
sendmmsg$inet(r6, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x1, 0x0) (async)
sendmmsg$inet(r6, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x1, 0x0)
connect$rxrpc(r1, &(0x7f0000000240)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x24)
socket$kcm(0xa, 0x2, 0x0) (async)
r7 = socket$kcm(0xa, 0x2, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000040)) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f0000000040))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="180000003f00ffff00000000000000009500000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, 0x18}, 0xfffffffffffffe19)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x5, 0x2000000000000066, &(0x7f0000002540)=ANY=[@ANYRESDEC=r0], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x40f00}, 0x90)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r9, 0xc0c0583b, &(0x7f0000000d40)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{0x0, 0x0, 0x3f000000}, {0x801, 0x0, 0x18000000}]})
sendmsg$sock(r7, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev={0xfe, 0x80, '\x00', 0x41}}, 0x80, 0x0, 0x0, &(0x7f0000000380)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @txtime={{0x18, 0x1, 0x3d, 0x8}}], 0x30}, 0x2000a081)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000001a000000070021006161000004402280"], 0x20}}, 0x0)
sendmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001000000e400000000008000"], 0x18, 0xe000}, 0x5}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1c905e6659833e000000000000001001"], 0x24, 0x500}}], 0x2, 0x0) (async)
sendmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001000000e400000000008000"], 0x18, 0xe000}, 0x5}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1c905e6659833e000000000000001001"], 0x24, 0x500}}], 0x2, 0x0)

1.131059478s ago: executing program 2 (id=669):
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
shmget$private(0x0, 0x2000, 0x4, &(0x7f0000ffe000/0x2000)=nil)

688.696014ms ago: executing program 3 (id=670):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001a0001000000ff7f0000000080000000", @ANYRES32=0x0, @ANYRES32=r0], 0x1c}}, 0x0)

612.06733ms ago: executing program 0 (id=672):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='timerslack_ns\x00')
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
setsockopt$sock_int(r2, 0x1, 0x2e, &(0x7f0000000000)=0x1, 0x4)
r3 = dup(r2)
r4 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000640)="f3", 0xf000}], 0x1)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r1}})

607.53886ms ago: executing program 3 (id=673):
r0 = socket(0x10, 0x80002, 0x0)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'hsr0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x0, 0x5, &(0x7f0000000000)=ANY=[], 0x0}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = fsopen(0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f00000000c0)='cpu<-0&!!')
fsmount(r1, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)
sendto(0xffffffffffffffff, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x0)

533.926167ms ago: executing program 0 (id=674):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0x3, 0x2)
syz_read_part_table(0x1048, &(0x7f0000001080)="$eJzsz8EJAjEUBNDJrhFtQu3EKuzBMnLQZmxyZUPUCkSE9wiBP5kcfvitOVM2WU9qziOcklyPuzHV5ZWWJGW9cqj9S3Kqt7n301+HbbL/TKVX25LWMt3ftZLL48vbAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBfeAYAAP//Mg4G3Q==")
execveat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$inet_smc(0x2b, 0x1, 0x0)
epoll_create1(0x0)
socket$qrtr(0x2a, 0x2, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r2 = socket(0x2, 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1, 0x10012, r3, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"/2448]}, 0xa08)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x14, 0x4, 0x8, 0x8}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0xfffffffffffffea5)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000140), 0x5}, 0x12020, 0x40000000000, 0x0, 0x2, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r5, 0x541c, &(0x7f0000000000))

488.57999ms ago: executing program 3 (id=675):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000060a0b0400000000000000000200000028000480240001808b000100657874686472000014000280080003400000000008000640000000010900010073797a30000000000900020073797a320000000014000000110000000a"], 0x7c}}, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x204000, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioprio_set$pid(0x1, 0x0, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d0000002e0000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r5}, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002700)=@newtaction={0xea8, 0x30, 0x25, 0x0, 0x0, {}, [{0xe94, 0x1, [@m_pedit={0xe90, 0x1, 0x0, 0x0, {{0xa}, {0xe64, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x3}, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xf1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x6}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}]}}, @TCA_PEDIT_KEYS_EX={0x40, 0x5, 0x0, 0x1, [{0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xea8}}, 0x0)
sendfile(r3, r4, 0x0, 0x20000023892)
ptrace(0x4208, r2)
getdents(r1, 0xfffffffffffffffd, 0x58)

170.081466ms ago: executing program 0 (id=676):
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
getgroups(0x8, &(0x7f0000000800)=[0xee00, 0xee01, 0xee01, <r2=>0x0, 0xee00, 0x0, 0x0, 0x0])
r3 = socket(0xa, 0x2, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r4=>0x0}, &(0x7f0000cab000)=0xa)
r5 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, <r6=>0x0}, &(0x7f0000000080)=0xc)
setregid(r6, r4)
statx(r0, &(0x7f0000000840)='./file0\x00', 0x0, 0x80, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
lsetxattr$system_posix_acl(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='system.posix_acl_default\x00', &(0x7f0000000a40)={{}, {0x1, 0x4}, [{0x2, 0x4}, {0x2, 0x1}, {}], {0x4, 0x6}, [{0x8, 0x5}, {0x8, 0x1}, {0x8, 0x3}, {0x8, 0x2, r2}, {0x8, 0x1, r6}, {0x8, 0x1, r7}], {0x10, 0x1}, {0x20, 0x4}}, 0x6c, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r10)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r11, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xffff, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
r12 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r13, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x6c, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x40, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_bridge\x00'}, {0x14, 0x1, 'geneve0\x00'}]}]}]}, @NFT_MSG_DELFLOWTABLE={0x48, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'geneve0\x00'}]}]}]}], {0x14, 0x10}}, 0xfc}}, 0x0)

139.868029ms ago: executing program 2 (id=677):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000580)='/sys/power/pm_async', 0x802, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r1, &(0x7f0000001280)=[{{&(0x7f0000000200)={0xa, 0x4e21, 0x7, @ipv4={'\x00', '\xff\xff', @remote}, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="140000000000000029000000320000002300000000000000140000000000000029000000080000007f000000000000001400000000000000290000000b0000000000000b00000000140000000000000029000000340000000100000000000000140000000000000029000000340000000a00000000000000200000000000000029000000370000003b00000000000000c2040000035400001400000000000000290008000b00000000000004000000002000"], 0xd0}}], 0x1, 0x24004890)
pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x3ff, 0x5}, 0x0, &(0x7f00000001c0)={0x1, 0x0, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0xe061, 0x3}, 0x0, 0x0)
r2 = accept4$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, &(0x7f0000000080)=0x6e, 0x0)
clock_gettime(0x0, &(0x7f0000004080)={<r3=>0x0, <r4=>0x0})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SAVE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="74000000080601040000000000080000000000050900020073797a31000000000900020073797a30000000000900020073797a30000000000900020073797a300000000005000100070000000900020073797a320000000005000100070000000500010007000000"], 0x74}}, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r7 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r7, 0x40042408, r9)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r6}, 0x10)
r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
write$cgroup_int(r10, &(0x7f0000000040)=0x900, 0x12)
rt_sigprocmask(0x2, &(0x7f0000003940)={[0x100000001]}, &(0x7f0000004100), 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x6, 0x0, 0x7fff7ffc}]})
lchown(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x0)
io_setup(0x5, &(0x7f0000003340))
recvmmsg$unix(r2, &(0x7f0000003e80)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)=""/207, 0xcf}, {&(0x7f0000000400)=""/72, 0x48}], 0x2, &(0x7f00000004c0)=[@cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f00000005c0)=""/58, 0x3a}, {&(0x7f0000000600)=""/131, 0x83}, {&(0x7f00000006c0)=""/214, 0xd6}, {&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/56, 0x38}], 0x5, &(0x7f0000001880)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f00000018c0)=@abs, 0x6e, &(0x7f0000002b00)=[{&(0x7f0000001940)=""/74, 0x4a}, {&(0x7f00000019c0)=""/97, 0x61}, {&(0x7f0000001a40)=""/4096, 0x1000}, {&(0x7f0000002a40)=""/181, 0xb5}], 0x4, &(0x7f0000002b40)=[@cred={{0x1c}}], 0x20}}, {{0x0, 0x0, &(0x7f0000002c40)=[{&(0x7f0000002b80)=""/72, 0x48}, {&(0x7f0000002c00)=""/59, 0x3b}], 0x2, &(0x7f0000002c80)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000002cc0)=@abs, 0x6e, &(0x7f0000002e80)=[{&(0x7f0000002d40)=""/55, 0x37}, {&(0x7f0000002d80)=""/37, 0x25}, {&(0x7f0000002dc0)=""/141, 0x8d}], 0x3, &(0x7f0000002ec0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{&(0x7f0000002fc0), 0x6e, &(0x7f00000036c0)=[{&(0x7f0000003040)=""/193, 0xc1}, {&(0x7f0000003140)=""/221, 0xdd}, {&(0x7f0000003240)=""/208, 0xd0}, {&(0x7f0000003340)}, {&(0x7f0000003380)=""/133, 0x85}, {&(0x7f0000003440)=""/166, 0xa6}, {&(0x7f0000003500)=""/210, 0xd2}, {&(0x7f0000003600)=""/186, 0xba}], 0x8}}, {{0x0, 0x0, &(0x7f0000003a40)=[{&(0x7f0000003740)=""/217, 0xd9}, {&(0x7f0000003840)=""/100, 0x64}, {&(0x7f00000038c0)=""/17, 0x11}, {&(0x7f0000003900)=""/15, 0xf}, {&(0x7f0000003940)}, {&(0x7f0000003980)=""/42, 0x2a}, {&(0x7f00000039c0)=""/109, 0x6d}, {0x0}], 0x8, &(0x7f0000004140)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}}, {{&(0x7f0000003b00)=@abs, 0x6e, &(0x7f0000003e00)=[{&(0x7f0000003b80)=""/11, 0xb}, {&(0x7f0000003bc0)=""/113, 0x71}, {&(0x7f0000003c40)=""/166, 0xa6}, {&(0x7f0000003d00)=""/69, 0x45}, {&(0x7f0000003d80)=""/128, 0x80}], 0x5}}], 0x8, 0x12140, &(0x7f00000040c0)={r3, r4+60000000})

86.002043ms ago: executing program 0 (id=678):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[], 0x0, 0x26}, 0x20)
syz_io_uring_setup(0x2f68, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000100), &(0x7f0000000540))

441.6µs ago: executing program 0 (id=679):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x4}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x1, 0x5, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x10)
r1 = perf_event_open(&(0x7f00000002c0)={0x3, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x200, 0x4028, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3}, 0x0, 0xffffffffffffffff, r0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x5, 0x401, 0x5, 0x2000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x10000}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00'}, 0x10)
socket$kcm(0x11, 0x200000000000002, 0x300)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.throttle.io_service_bytes\x00', 0x26e1, 0x0)
r3 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0x3e, &(0x7f0000000240)=r2, 0x4)
sendmsg$inet(r3, &(0x7f0000000280)={&(0x7f0000000300)={0x2, 0x4e1f, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000500)=[@ip_retopts={{0x1f, 0x0, 0x7, {[@generic={0x89, 0xf, "04630b4d7d113b3f186e0a2ed2"}]}}}, @ip_tos_int={{0x14}}], 0x38, 0x5}, 0x0)
socketpair(0xa, 0x1, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000380))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000510700140000000000000001b7080000000000007b8af8ff00000000b7080000fcffffff7b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000001823", @ANYBLOB="0000000000000000b705000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000001400)='sched_kthread_work_queue_work\x00', r4}, 0x10)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='ext4_ext_remove_space_done\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='ext4_ext_remove_space_done\x00'}, 0x10)
close(r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1e, 0xe, &(0x7f0000000a40)=ANY=[@ANYRES8=r1], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r6, 0x1f2f, 0xf, 0x3253, &(0x7f00000007c0)="9f44948721919580684010a40800", 0x0, 0x177, 0x0, 0xfffffffffffffc19, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23)

0s ago: executing program 0 (id=680):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000000)={[{@grpquota}, {@lazytime}, {@data_err_abort}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000000a40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x9, 0x0, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0x9}, 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map=r1, r2, 0x4}, 0x10)
futex(&(0x7f000000cffc), 0xa, 0x0, 0x0, 0x0, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x90)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000000)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x2, 0xb, 0x0, 0x0, 0x0, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0xfb}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private0}}, @sadb_key={0x1, 0x8}, @sadb_x_nat_t_type={0x1}]}, 0x58}, 0x1, 0x7}, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000001080)='smaps_rollup\x00')
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
preadv(r4, &(0x7f0000000140)=[{&(0x7f0000000400)=""/192, 0xc0}], 0x1, 0x0, 0x0)
syz_io_uring_setup(0x1e4e, &(0x7f0000000180)={0x0, 0x9012, 0x10, 0x0, 0x9b, 0x0, r0}, &(0x7f0000000240), 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x20002)
write$sndseq(r5, 0x0, 0x0)
dup(r5)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='tlb_flush\x00', r6}, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000600)={'#! ', './file0', [], 0xa, "3171f8f7a3760a3149656b6028a22aa0591fb9379430e343ba1b550b14c381f98777766b32d46024e3babfa65855ea6f90feb0409b57149dc92bdaaceb04"}, 0x49)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000009, 0x10, r7, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)

kernel console output (not intermixed with test programs):

4172] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.417749][ T4172] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   53.448072][ T4302] FAULT_INJECTION: forcing a failure.
[   53.448072][ T4302] name failslab, interval 1, probability 0, space 0, times 0
[   53.460864][ T4302] CPU: 1 UID: 0 PID: 4302 Comm: syz.4.281 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   53.471472][ T4302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   53.481540][ T4302] Call Trace:
[   53.484932][ T4302]  <TASK>
[   53.487874][ T4302]  dump_stack_lvl+0xf2/0x150
[   53.492512][ T4302]  dump_stack+0x15/0x20
[   53.496734][ T4302]  should_fail_ex+0x229/0x230
[   53.501432][ T4302]  ? sidtab_sid2str_get+0xb8/0x140
[   53.506589][ T4302]  should_failslab+0x8f/0xb0
[   53.511232][ T4302]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[   53.517632][ T4302]  kmemdup_noprof+0x2a/0x60
[   53.522173][ T4302]  sidtab_sid2str_get+0xb8/0x140
[   53.527216][ T4302]  security_sid_to_context_core+0x1eb/0x2f0
[   53.533190][ T4302]  security_sid_to_context+0x27/0x30
[   53.538509][ T4302]  avc_audit_post_callback+0x10d/0x530
[   53.543997][ T4302]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   53.550022][ T4302]  common_lsm_audit+0x7d3/0xfc0
[   53.554904][ T4302]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   53.560934][ T4302]  ? avc_denied+0xf1/0x110
[   53.565361][ T4302]  slow_avc_audit+0xf9/0x140
[   53.570014][ T4302]  avc_has_perm+0x129/0x160
[   53.574524][ T4302]  selinux_socket_sendmsg+0x182/0x1b0
[   53.579908][ T4302]  security_socket_sendmsg+0x4a/0x80
[   53.585253][ T4302]  __sock_sendmsg+0x2d/0x180
[   53.589894][ T4302]  ____sys_sendmsg+0x312/0x410
[   53.594715][ T4302]  __sys_sendmsg+0x1e9/0x280
[   53.599387][ T4302]  __x64_sys_sendmsg+0x46/0x50
[   53.604164][ T4302]  x64_sys_call+0x2689/0x2d60
[   53.608880][ T4302]  do_syscall_64+0xc9/0x1c0
[   53.613446][ T4302]  ? clear_bhb_loop+0x55/0xb0
[   53.618191][ T4302]  ? clear_bhb_loop+0x55/0xb0
[   53.622923][ T4302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.628862][ T4302] RIP: 0033:0x7fcd240e99f9
[   53.633304][ T4302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.653007][ T4302] RSP: 002b:00007fcd22d67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   53.661490][ T4302] RAX: ffffffffffffffda RBX: 00007fcd24285f80 RCX: 00007fcd240e99f9
[   53.669469][ T4302] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[   53.677455][ T4302] RBP: 00007fcd22d67090 R08: 0000000000000000 R09: 0000000000000000
[   53.685566][ T4302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.693630][ T4302] R13: 0000000000000000 R14: 00007fcd24285f80 R15: 00007ffc05bd02a8
[   53.701610][ T4302]  </TASK>
[   53.707496][   T29] kauditd_printk_skb: 146 callbacks suppressed
[   53.707511][   T29] audit: type=1400 audit(1723620208.134:667): avc:  denied  { write } for  pid=4301 comm="syz.4.281" scontext=root:sysadm_r:sysadm_t tsid=135 tclass=netlink_rdma_socket permissive=1
[   53.753513][ T4305] netlink: 12 bytes leftover after parsing attributes in process `syz.4.282'.
[   53.781159][ T4308] netlink: 388 bytes leftover after parsing attributes in process `syz.1.251'.
[   53.786998][   T29] audit: type=1400 audit(1723620208.464:668): avc:  denied  { write } for  pid=4307 comm="syz.1.251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   53.810426][   T29] audit: type=1400 audit(1723620208.464:669): avc:  denied  { nlmsg_write } for  pid=4307 comm="syz.1.251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   53.821380][ T4310] netlink: 40 bytes leftover after parsing attributes in process `syz.1.283'.
[   53.852483][ T4311] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4311 comm=syz.4.282
[   53.875382][   T29] audit: type=1400 audit(1723620208.494:670): avc:  denied  { create } for  pid=4309 comm="syz.1.283" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   53.895033][   T29] audit: type=1400 audit(1723620208.504:671): avc:  denied  { bind } for  pid=4309 comm="syz.1.283" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   53.914430][   T29] audit: type=1400 audit(1723620208.504:672): avc:  denied  { execute } for  pid=4309 comm="syz.1.283" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=6796 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   53.931734][ T4311] block device autoloading is deprecated and will be removed.
[   53.942702][ T4305] netlink: 36 bytes leftover after parsing attributes in process `syz.4.282'.
[   53.954932][   T29] audit: type=1400 audit(1723620208.624:673): avc:  denied  { setopt } for  pid=4303 comm="syz.4.282" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   53.967466][ T4311] bio_check_eod: 449 callbacks suppressed
[   53.967524][ T4311] syz.4.282: attempt to access beyond end of device
[   53.967524][ T4311] md102: rw=2048, sector=0, nr_sectors = 8 limit=0
[   53.976871][   T29] audit: type=1400 audit(1723620208.624:674): avc:  denied  { listen } for  pid=4303 comm="syz.4.282" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   54.037250][   T29] audit: type=1326 audit(1723620208.714:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4314 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb985bd99f9 code=0x7ffc0000
[   54.060674][   T29] audit: type=1326 audit(1723620208.714:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4314 comm="syz.1.284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb985bd99f9 code=0x7ffc0000
[   54.116714][ T4315] xt_CT: You must specify a L4 protocol and not use inversions on it
[   54.159498][ T4321] netlink: 12 bytes leftover after parsing attributes in process `syz.1.286'.
[   54.208422][ T4326] blktrace: Concurrent blktraces are not allowed on loop9
[   54.963440][ T4336] capability: warning: `syz.4.291' uses deprecated v2 capabilities in a way that may be insecure
[   54.991190][ T4338] FAULT_INJECTION: forcing a failure.
[   54.991190][ T4338] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.004381][ T4338] CPU: 1 UID: 0 PID: 4338 Comm: syz.4.292 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   55.015015][ T4338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   55.025072][ T4338] Call Trace:
[   55.028347][ T4338]  <TASK>
[   55.031314][ T4338]  dump_stack_lvl+0xf2/0x150
[   55.035921][ T4338]  dump_stack+0x15/0x20
[   55.040106][ T4338]  should_fail_ex+0x229/0x230
[   55.044947][ T4338]  should_fail+0xb/0x10
[   55.049427][ T4338]  should_fail_usercopy+0x1a/0x20
[   55.054494][ T4338]  _copy_from_iter+0xd3/0xb00
[   55.059276][ T4338]  ? kmalloc_reserve+0x16e/0x190
[   55.064220][ T4338]  ? __build_skb_around+0x196/0x1f0
[   55.069547][ T4338]  ? __alloc_skb+0x21f/0x310
[   55.074160][ T4338]  ? __virt_addr_valid+0x1ed/0x250
[   55.079286][ T4338]  ? __check_object_size+0x35b/0x510
[   55.084734][ T4338]  netlink_sendmsg+0x460/0x6e0
[   55.089568][ T4338]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.094903][ T4338]  __sock_sendmsg+0x140/0x180
[   55.099670][ T4338]  sock_write_iter+0x164/0x1b0
[   55.104531][ T4338]  vfs_write+0x78f/0x900
[   55.108795][ T4338]  ? __pfx_sock_write_iter+0x10/0x10
[   55.114249][ T4338]  ksys_write+0xeb/0x1b0
[   55.118580][ T4338]  __x64_sys_write+0x42/0x50
[   55.123263][ T4338]  x64_sys_call+0x27dd/0x2d60
[   55.127990][ T4338]  do_syscall_64+0xc9/0x1c0
[   55.132576][ T4338]  ? clear_bhb_loop+0x55/0xb0
[   55.137267][ T4338]  ? clear_bhb_loop+0x55/0xb0
[   55.141997][ T4338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.147965][ T4338] RIP: 0033:0x7fcd240e99f9
[   55.152427][ T4338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.172042][ T4338] RSP: 002b:00007fcd22d67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   55.180476][ T4338] RAX: ffffffffffffffda RBX: 00007fcd24285f80 RCX: 00007fcd240e99f9
[   55.188554][ T4338] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[   55.196550][ T4338] RBP: 00007fcd22d67090 R08: 0000000000000000 R09: 0000000000000000
[   55.204582][ T4338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.212556][ T4338] R13: 0000000000000000 R14: 00007fcd24285f80 R15: 00007ffc05bd02a8
[   55.220607][ T4338]  </TASK>
[   55.251946][ T4341] netlink: 4 bytes leftover after parsing attributes in process `syz.1.293'.
[   55.303681][ T4346] netlink: 56 bytes leftover after parsing attributes in process `syz.1.294'.
[   55.321600][ T4346] loop1: detected capacity change from 0 to 1764
[   55.328649][ T4346] iso9660: Unknown parameter '0x0000000000000005'
[   55.341638][ T4346] netlink: 'syz.1.294': attribute type 13 has an invalid length.
[   55.349540][ T4346] netlink: 'syz.1.294': attribute type 58 has an invalid length.
[   55.357329][ T4346] netlink: 152 bytes leftover after parsing attributes in process `syz.1.294'.
[   55.382147][ T4346] loop1: detected capacity change from 0 to 1024
[   55.391352][ T4346] EXT4-fs: dax option not supported
[   55.502591][ T4351] usb usb8: usbfs: process 4351 (syz.1.296) did not claim interface 0 before use
[   55.531836][ T4353] FAULT_INJECTION: forcing a failure.
[   55.531836][ T4353] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   55.545406][ T4353] CPU: 0 UID: 0 PID: 4353 Comm: syz.1.297 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   55.556011][ T4353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   55.566077][ T4353] Call Trace:
[   55.569368][ T4353]  <TASK>
[   55.572303][ T4353]  dump_stack_lvl+0xf2/0x150
[   55.576999][ T4353]  dump_stack+0x15/0x20
[   55.581180][ T4353]  should_fail_ex+0x229/0x230
[   55.585873][ T4353]  should_fail_alloc_page+0xfd/0x110
[   55.591272][ T4353]  __alloc_pages_noprof+0x109/0x360
[   55.596622][ T4353]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   55.602066][ T4353]  vma_alloc_folio_noprof+0x1a0/0x2f0
[   55.607663][ T4353]  handle_mm_fault+0xd6d/0x2940
[   55.612533][ T4353]  ? mas_walk+0x204/0x320
[   55.616927][ T4353]  exc_page_fault+0x3b9/0x650
[   55.621662][ T4353]  asm_exc_page_fault+0x26/0x30
[   55.626650][ T4353] RIP: 0033:0x7fb985a9db63
[   55.631064][ T4353] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   55.650826][ T4353] RSP: 002b:00007fb9848564a0 EFLAGS: 00010206
[   55.656950][ T4353] RAX: 0000000000009000 RBX: 00007fb984856540 RCX: 00007fb97c437000
[   55.664958][ T4353] RDX: 00007fb9848566e0 RSI: 0000000000000007 RDI: 00007fb9848565e0
[   55.673028][ T4353] RBP: 000000000000006b R08: 000000000000000a R09: 00000000000003b9
[   55.681002][ T4353] R10: 00000000000003cc R11: 00007fb984856540 R12: 0000000000000001
[   55.688977][ T4353] R13: 00007fb985c5b7e0 R14: 0000000000000011 R15: 00007fb9848565e0
[   55.697043][ T4353]  </TASK>
[   55.700166][ T4353] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   55.722511][ T4353] loop1: detected capacity change from 0 to 512
[   55.735466][ T4353] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   55.769544][ T4353] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[   55.788606][ T4353] EXT4-fs (loop1): orphan cleanup on readonly fs
[   55.788883][ T4360] loop0: detected capacity change from 0 to 128
[   55.797570][ T4353] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   55.896584][ T4353] EXT4-fs (loop1): Cannot turn on quotas: error -22
[   55.904273][ T4353] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #13: comm syz.1.297: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   55.924617][ T4353] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.297: couldn't read orphan inode 13 (err -117)
[   55.937088][ T4353] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   55.952950][ T4353] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.390154][ T4366] loop1: detected capacity change from 0 to 1024
[   56.397499][ T4366] EXT4-fs: dax option not supported
[   56.652743][ T4369] loop2: detected capacity change from 0 to 2048
[   56.689157][ T4369] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.721634][ T4374] loop3: detected capacity change from 0 to 2048
[   56.778784][ T4374] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.834998][ T3267] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.993127][ T4087] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.022966][ T4385] netlink: 'syz.3.307': attribute type 5 has an invalid length.
[   57.104937][ T4396] loop0: detected capacity change from 0 to 512
[   57.114739][ T4396] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   57.134403][ T4396] EXT4-fs (loop0): 1 truncate cleaned up
[   57.140698][ T4396] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.252251][ T4414] loop1: detected capacity change from 0 to 256
[   57.257636][ T4414] FAT-fs (loop1): bogus number of FAT sectors
[   57.264813][ T4414] FAT-fs (loop1): Can't find a valid FAT filesystem
[   57.330565][ T4417] loop3: detected capacity change from 0 to 2048
[   57.349689][ T4417] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.425861][ T4422] FAULT_INJECTION: forcing a failure.
[   57.425861][ T4422] name failslab, interval 1, probability 0, space 0, times 0
[   57.438616][ T4422] CPU: 1 UID: 0 PID: 4422 Comm: syz.1.318 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   57.449899][ T4422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   57.460127][ T4422] Call Trace:
[   57.463417][ T4422]  <TASK>
[   57.466418][ T4422]  dump_stack_lvl+0xf2/0x150
[   57.471039][ T4422]  dump_stack+0x15/0x20
[   57.475266][ T4422]  should_fail_ex+0x229/0x230
[   57.479954][ T4422]  ? tty_open+0x80/0xb00
[   57.484361][ T4422]  should_failslab+0x8f/0xb0
[   57.489165][ T4422]  __kmalloc_cache_noprof+0x4b/0x2a0
[   57.494514][ T4422]  tty_open+0x80/0xb00
[   57.498868][ T4422]  ? __pfx_exact_match+0x10/0x10
[   57.503818][ T4422]  chrdev_open+0x323/0x3a0
[   57.508254][ T4422]  ? __pfx_chrdev_open+0x10/0x10
[   57.513210][ T4422]  do_dentry_open+0x647/0xa50
[   57.517926][ T4422]  vfs_open+0x3b/0x1f0
[   57.522027][ T4422]  path_openat+0x1a26/0x1f10
[   57.526684][ T4422]  do_filp_open+0xf7/0x200
[   57.531113][ T4422]  do_sys_openat2+0xab/0x120
[   57.535711][ T4422]  __x64_sys_openat+0xf3/0x120
[   57.540529][ T4422]  x64_sys_call+0x1025/0x2d60
[   57.545226][ T4422]  do_syscall_64+0xc9/0x1c0
[   57.549742][ T4422]  ? clear_bhb_loop+0x55/0xb0
[   57.554577][ T4422]  ? clear_bhb_loop+0x55/0xb0
[   57.559343][ T4422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.565243][ T4422] RIP: 0033:0x7fb985bd8390
[   57.569653][ T4422] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8e 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8e 02 00 8b 44
[   57.589321][ T4422] RSP: 002b:00007fb984835f00 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   57.597787][ T4422] RAX: ffffffffffffffda RBX: 00000000001e7602 RCX: 00007fb985bd8390
[   57.605844][ T4422] RDX: 00000000001e7602 RSI: 00007fb984835fa0 RDI: 00000000ffffff9c
[   57.613858][ T4422] RBP: 00007fb984835fa0 R08: 0000000000000000 R09: 00007fb984835d17
[   57.621908][ T4422] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   57.629980][ T4422] R13: 0000000000000000 R14: 00007fb985d76058 R15: 00007ffd98565e38
[   57.638044][ T4422]  </TASK>
[   57.655025][ T4087] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.707008][ T4426] loop3: detected capacity change from 0 to 1024
[   57.714239][ T4426] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   57.725085][ T4426] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   57.733173][ T4426] EXT4-fs (loop3): orphan cleanup on readonly fs
[   57.740272][ T4426] EXT4-fs error (device loop3): __ext4_get_inode_loc:4436: comm syz.3.320: Invalid inode table block 0 in block_group 0
[   57.754229][ T4426] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5810: Corrupt filesystem
[   57.764957][ T4426] EXT4-fs error (device loop3): ext4_quota_write:7220: inode #3: comm syz.3.320: mark_inode_dirty error
[   57.777761][ T4426] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.320: Failed to acquire dquot type 0
[   57.789849][ T4429] loop2: detected capacity change from 0 to 512
[   57.796307][ T4426] EXT4-fs error (device loop3): __ext4_get_inode_loc:4436: comm syz.3.320: Invalid inode table block 0 in block_group 0
[   57.810322][ T4426] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5810: Corrupt filesystem
[   57.810809][ T4429] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   57.824864][ T4426] EXT4-fs error (device loop3): ext4_ext_truncate:4432: inode #15: comm syz.3.320: mark_inode_dirty error
[   57.833148][ T4429] EXT4-fs (loop2): orphan cleanup on readonly fs
[   57.841153][ T4426] EXT4-fs error (device loop3): __ext4_get_inode_loc:4436: comm syz.3.320: Invalid inode table block 0 in block_group 0
[   57.848929][ T4429] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   57.862157][ T4426] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5810: Corrupt filesystem
[   57.874698][ T4429] EXT4-fs (loop2): Cannot turn on quotas: error -117
[   57.885363][ T4426] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   57.892946][ T4429] EXT4-fs (loop2): 1 truncate cleaned up
[   57.901316][ T4426] EXT4-fs error (device loop3): __ext4_get_inode_loc:4436: comm syz.3.320: Invalid inode table block 0 in block_group 0
[   57.905506][ T4429] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   57.920441][ T4426] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5810: Corrupt filesystem
[   57.942155][ T4396] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.945737][ T4426] EXT4-fs error (device loop3): ext4_truncate:4241: inode #15: comm syz.3.320: mark_inode_dirty error
[   57.967200][ T4426] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   57.980422][ T4426] EXT4-fs (loop3): 1 truncate cleaned up
[   57.988976][ T4426] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   57.989718][ T3267] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.056921][ T4436] __nla_validate_parse: 1 callbacks suppressed
[   58.056934][ T4436] netlink: 4 bytes leftover after parsing attributes in process `syz.0.324'.
[   58.084233][ T4087] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.092648][ T4438] loop2: detected capacity change from 0 to 1024
[   58.101010][ T4436] netlink: 28 bytes leftover after parsing attributes in process `syz.0.324'.
[   58.109898][ T4438] EXT4-fs: dax option not supported
[   58.123224][ T4444] macvtap0: entered promiscuous mode
[   58.134401][ T4444] macvtap0: left promiscuous mode
[   58.171872][ T4448] FAULT_INJECTION: forcing a failure.
[   58.171872][ T4448] name failslab, interval 1, probability 0, space 0, times 0
[   58.184639][ T4448] CPU: 0 UID: 0 PID: 4448 Comm: syz.0.329 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   58.195355][ T4448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   58.205475][ T4448] Call Trace:
[   58.208844][ T4448]  <TASK>
[   58.211884][ T4448]  dump_stack_lvl+0xf2/0x150
[   58.216710][ T4448]  dump_stack+0x15/0x20
[   58.220901][ T4448]  should_fail_ex+0x229/0x230
[   58.225638][ T4448]  ? __d_alloc+0x3d/0x340
[   58.230065][ T4448]  should_failslab+0x8f/0xb0
[   58.234674][ T4448]  kmem_cache_alloc_lru_noprof+0x51/0x2a0
[   58.240405][ T4448]  ? __d_lookup+0x342/0x370
[   58.245029][ T4448]  __d_alloc+0x3d/0x340
[   58.249316][ T4448]  d_alloc+0x2e/0x100
[   58.253604][ T4448]  lookup_one_qstr_excl+0x97/0x1a0
[   58.258738][ T4448]  filename_create+0x14d/0x2b0
[   58.263609][ T4448]  do_mknodat+0x12e/0x420
[   58.267987][ T4448]  __x64_sys_mknodat+0x60/0x70
[   58.272783][ T4448]  x64_sys_call+0x22e6/0x2d60
[   58.277568][ T4448]  do_syscall_64+0xc9/0x1c0
[   58.282154][ T4448]  ? clear_bhb_loop+0x55/0xb0
[   58.286871][ T4448]  ? clear_bhb_loop+0x55/0xb0
[   58.291600][ T4448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.297656][ T4448] RIP: 0033:0x7fd1f47a99f9
[   58.302171][ T4448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.321869][ T4448] RSP: 002b:00007fd1f3421038 EFLAGS: 00000246 ORIG_RAX: 0000000000000103
[   58.330425][ T4448] RAX: ffffffffffffffda RBX: 00007fd1f4945f80 RCX: 00007fd1f47a99f9
[   58.338461][ T4448] RDX: 0000000000006000 RSI: 0000000020000000 RDI: ffffffffffffff9c
[   58.346523][ T4448] RBP: 00007fd1f3421090 R08: 0000000000000000 R09: 0000000000000000
[   58.354507][ T4448] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000001
[   58.362494][ T4448] R13: 0000000000000000 R14: 00007fd1f4945f80 R15: 00007fff443d23c8
[   58.370526][ T4448]  </TASK>
[   58.545505][ T4467] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4467 comm=syz.0.332
[   58.561966][ T4467] netlink: 4 bytes leftover after parsing attributes in process `syz.0.332'.
[   58.574319][ T4467] vxlan0: entered allmulticast mode
[   58.663242][ T4471] netlink: 4 bytes leftover after parsing attributes in process `syz.3.333'.
[   58.742256][ T4472] netlink: 4 bytes leftover after parsing attributes in process `syz.4.335'.
[   59.417597][ T4479] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.425384][   T29] kauditd_printk_skb: 65 callbacks suppressed
[   59.425396][   T29] audit: type=1107 audit(1723620214.104:739): pid=4488 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   59.429940][ T4479] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.448148][ T4491] loop4: detected capacity change from 0 to 512
[   59.466925][ T4491] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   59.475390][ T4491] EXT4-fs (loop4): orphan cleanup on readonly fs
[   59.484347][ T4491] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   59.511247][ T4491] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   59.520372][ T4491] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #16: comm syz.4.341: casefold flag without casefold feature
[   59.533956][ T4491] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.341: couldn't read orphan inode 16 (err -117)
[   59.534491][ T4494] FAULT_INJECTION: forcing a failure.
[   59.534491][ T4494] name failslab, interval 1, probability 0, space 0, times 0
[   59.546650][ T4491] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   59.558405][ T4494] CPU: 1 UID: 0 PID: 4494 Comm: syz.3.342 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   59.581387][ T4494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   59.581430][ T4494] Call Trace:
[   59.581439][ T4494]  <TASK>
[   59.581527][ T4494]  dump_stack_lvl+0xf2/0x150
[   59.581634][ T4494]  dump_stack+0x15/0x20
[   59.581680][ T4494]  should_fail_ex+0x229/0x230
[   59.581713][ T4494]  ? __alloc_skb+0x10b/0x310
[   59.581740][ T4494]  should_failslab+0x8f/0xb0
[   59.581779][ T4494]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   59.581819][ T4494]  __alloc_skb+0x10b/0x310
[   59.581846][ T4494]  netlink_alloc_large_skb+0xad/0xe0
[   59.581888][ T4494]  netlink_sendmsg+0x3b4/0x6e0
[   59.581917][ T4494]  ? __pfx_netlink_sendmsg+0x10/0x10
[   59.581946][ T4494]  __sock_sendmsg+0x140/0x180
[   59.581993][ T4494]  ____sys_sendmsg+0x312/0x410
[   59.582019][ T4494]  __sys_sendmmsg+0x269/0x500
[   59.582065][ T4494]  ? trace_sys_enter+0x65/0xa0
[   59.582107][ T4494]  __x64_sys_sendmmsg+0x57/0x70
[   59.582140][ T4494]  x64_sys_call+0xa49/0x2d60
[   59.582244][ T4494]  do_syscall_64+0xc9/0x1c0
[   59.582275][ T4494]  ? clear_bhb_loop+0x55/0xb0
[   59.582315][ T4494]  ? clear_bhb_loop+0x55/0xb0
[   59.582350][ T4494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.582414][ T4494] RIP: 0033:0x7f51561799f9
[   59.582429][ T4494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.582503][ T4494] RSP: 002b:00007f5154df7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   59.582525][ T4494] RAX: ffffffffffffffda RBX: 00007f5156315f80 RCX: 00007f51561799f9
[   59.582615][ T4494] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000005
[   59.582628][ T4494] RBP: 00007f5154df7090 R08: 0000000000000000 R09: 0000000000000000
[   59.582692][ T4494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.582760][ T4494] R13: 0000000000000000 R14: 00007f5156315f80 R15: 00007ffe91eec4d8
[   59.582776][ T4494]  </TASK>
[   59.627087][   T29] audit: type=1400 audit(1723620214.304:740): avc:  denied  { unmount } for  pid=3258 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   59.717136][ T4506] loop3: detected capacity change from 0 to 1024
[   59.723054][ T4506] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   59.776417][ T4509] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.341: corrupted xattr block 19: invalid header
[   59.822490][ T4506] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.841767][ T4509] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   59.899087][ T3259] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.899334][   T29] audit: type=1400 audit(1723620214.584:741): avc:  denied  { ioctl } for  pid=4504 comm="syz.3.347" path="/17/file1/file1" dev="loop3" ino=15 ioctlcmd=0x6628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   60.004882][ T4087] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.032299][ T4521] netlink: 12 bytes leftover after parsing attributes in process `syz.3.350'.
[   60.067129][ T4521] syz.3.350: attempt to access beyond end of device
[   60.067129][ T4521] md102: rw=2048, sector=0, nr_sectors = 8 limit=0
[   60.117274][   T29] audit: type=1107 audit(1723620214.794:742): pid=4526 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   60.147498][ T4525] netlink: 4 bytes leftover after parsing attributes in process `syz.4.349'.
[   60.205004][ T4531] netlink: 52 bytes leftover after parsing attributes in process `syz.3.353'.
[   60.224264][   T29] audit: type=1326 audit(1723620214.904:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4530 comm="syz.3.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51561799f9 code=0x7ffc0000
[   60.248275][   T29] audit: type=1326 audit(1723620214.904:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4530 comm="syz.3.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f51561799f9 code=0x7ffc0000
[   60.271456][   T29] audit: type=1326 audit(1723620214.904:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4530 comm="syz.3.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51561799f9 code=0x7ffc0000
[   60.294759][   T29] audit: type=1326 audit(1723620214.904:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4530 comm="syz.3.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f51561799f9 code=0x7ffc0000
[   60.318061][   T29] audit: type=1326 audit(1723620214.904:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4530 comm="syz.3.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51561799f9 code=0x7ffc0000
[   60.341527][   T29] audit: type=1326 audit(1723620214.904:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4530 comm="syz.3.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f51561799f9 code=0x7ffc0000
[   60.383921][ T4533] netlink: 44 bytes leftover after parsing attributes in process `syz.2.354'.
[   60.613699][ T4556] FAULT_INJECTION: forcing a failure.
[   60.613699][ T4556] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   60.627002][ T4556] CPU: 0 UID: 0 PID: 4556 Comm: syz.3.360 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   60.637657][ T4556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   60.647739][ T4556] Call Trace:
[   60.651047][ T4556]  <TASK>
[   60.654033][ T4556]  dump_stack_lvl+0xf2/0x150
[   60.658680][ T4556]  dump_stack+0x15/0x20
[   60.662932][ T4556]  should_fail_ex+0x229/0x230
[   60.667660][ T4556]  should_fail_alloc_page+0xfd/0x110
[   60.673081][ T4556]  __alloc_pages_noprof+0x109/0x360
[   60.678351][ T4556]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   60.683866][ T4556]  vma_alloc_folio_noprof+0x1a0/0x2f0
[   60.689354][ T4556]  do_wp_page+0x62b/0x22c0
[   60.693895][ T4556]  ? __rcu_read_lock+0x36/0x50
[   60.698688][ T4556]  handle_mm_fault+0xbf0/0x2940
[   60.703613][ T4556]  exc_page_fault+0x296/0x650
[   60.708326][ T4556]  asm_exc_page_fault+0x26/0x30
[   60.713306][ T4556] RIP: 0010:rep_movs_alternative+0x4a/0x70
[   60.719141][ T4556] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[   60.738778][ T4556] RSP: 0018:ffffc900014278d0 EFLAGS: 00050202
[   60.744887][ T4556] RAX: ffff8881434a6d80 RBX: 0000000020000740 RCX: 0000000000001d74
[   60.752942][ T4556] RDX: 0000000000000000 RSI: ffff8881434818c0 RDI: 0000000020002000
[   60.761037][ T4556] RBP: ffffc90001427dd0 R08: 0000000080000000 R09: 0000000000000000
[   60.769212][ T4556] R10: 0001888143480000 R11: 0001888143483633 R12: 0000000000003634
[   60.777246][ T4556] R13: 0000000020003d74 R14: ffffc90001427de0 R15: ffff888143480000
[   60.785373][ T4556]  _copy_to_iter+0x137/0xb00
[   60.790033][ T4556]  ? __rcu_read_unlock+0x4e/0x70
[   60.795063][ T4556]  ? xa_load+0xb9/0xe0
[   60.799164][ T4556]  ? __virt_addr_valid+0x1ed/0x250
[   60.804321][ T4556]  ? __check_object_size+0x35b/0x510
[   60.809729][ T4556]  __skb_datagram_iter+0x2aa/0x5c0
[   60.814878][ T4556]  ? __pfx_simple_copy_to_iter+0x10/0x10
[   60.820609][ T4556]  skb_copy_datagram_iter+0x41/0x130
[   60.826061][ T4556]  tcp_recvmsg_locked+0x642/0x1610
[   60.831302][ T4556]  tcp_recvmsg+0x13c/0x490
[   60.835829][ T4556]  ? selinux_socket_recvmsg+0x182/0x1b0
[   60.841410][ T4556]  ? __pfx_tcp_recvmsg+0x10/0x10
[   60.846368][ T4556]  inet_recvmsg+0xbd/0x290
[   60.851035][ T4556]  sock_recvmsg+0xfe/0x170
[   60.855475][ T4556]  ____sys_recvmsg+0xf9/0x280
[   60.860194][ T4556]  __sys_recvmsg+0x1ea/0x280
[   60.864812][ T4556]  __x64_sys_recvmsg+0x46/0x50
[   60.869622][ T4556]  x64_sys_call+0xb84/0x2d60
[   60.874222][ T4556]  do_syscall_64+0xc9/0x1c0
[   60.878748][ T4556]  ? clear_bhb_loop+0x55/0xb0
[   60.883482][ T4556]  ? clear_bhb_loop+0x55/0xb0
[   60.888194][ T4556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.894101][ T4556] RIP: 0033:0x7f51561799f9
[   60.898588][ T4556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.918287][ T4556] RSP: 002b:00007f5154dd6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   60.926777][ T4556] RAX: ffffffffffffffda RBX: 00007f5156316058 RCX: 00007f51561799f9
[   60.934818][ T4556] RDX: 0000000000000700 RSI: 0000000020000580 RDI: 0000000000000003
[   60.943050][ T4556] RBP: 00007f5154dd6090 R08: 0000000000000000 R09: 0000000000000000
[   60.951142][ T4556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.959132][ T4556] R13: 0000000000000001 R14: 00007f5156316058 R15: 00007ffe91eec4d8
[   60.967197][ T4556]  </TASK>
[   61.040384][ T4572] autofs4:pid:4572:validate_dev_ioctl: path string terminator missing for cmd(0xc018937c)
[   61.059301][ T4574] loop4: detected capacity change from 0 to 128
[   61.099139][ T4574] team0: entered promiscuous mode
[   61.104289][ T4574] team_slave_0: entered promiscuous mode
[   61.111075][ T4574] team_slave_1: entered promiscuous mode
[   61.128656][ T4573] team0: left promiscuous mode
[   61.133732][ T4573] team_slave_0: left promiscuous mode
[   61.139266][ T4573] team_slave_1: left promiscuous mode
[   61.229963][ T4583] loop4: detected capacity change from 0 to 512
[   61.240598][ T4583] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   61.254202][ T4583] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[   61.265659][ T4583] EXT4-fs (loop4): orphan cleanup on readonly fs
[   61.273465][ T4583] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   61.288583][ T4583] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   61.295410][ T4583] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #13: comm syz.4.370: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   61.313643][ T4583] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.370: couldn't read orphan inode 13 (err -117)
[   61.326430][ T4583] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   61.339493][ T4583] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.371329][ T4583] loop4: detected capacity change from 0 to 512
[   61.380006][ T4583] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   61.390701][ T4583] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[   61.399621][ T4590] loop2: detected capacity change from 0 to 128
[   61.425438][ T4583] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec02c, mo2=0002]
[   61.448405][ T4583] System zones: 0-2, 18-18, 34-34
[   61.456593][ T4583] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   61.473274][ T4583] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.370: bg 0: block 408: padding at end of block bitmap is not set
[   61.489465][ T4583] EXT4-fs (loop4): Remounting filesystem read-only
[   61.496056][ T4583] EXT4-fs (loop4): 1 truncate cleaned up
[   61.506468][ T4583] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.519367][ T4583] SELinux: (dev loop4, type ext4) getxattr errno 5
[   61.529063][ T4583] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.609163][ T4609] loop1: detected capacity change from 0 to 256
[   61.615781][ T4609] vfat: Bad value for 'fmask'
[   61.636641][ T4609] loop1: detected capacity change from 0 to 512
[   61.649653][ T4609] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   61.670059][ T4609] EXT4-fs (loop1): 1 orphan inode deleted
[   61.675937][ T4609] EXT4-fs (loop1): 1 truncate cleaned up
[   61.683041][ T4609] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.700014][ T4609] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   61.722779][ T4609] EXT4-fs (loop1): Remounting filesystem read-only
[   62.292940][ T4172] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.326139][ T4639] FAULT_INJECTION: forcing a failure.
[   62.326139][ T4639] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.339397][ T4639] CPU: 1 UID: 0 PID: 4639 Comm: syz.1.389 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   62.350018][ T4639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   62.360179][ T4639] Call Trace:
[   62.363512][ T4639]  <TASK>
[   62.366564][ T4639]  dump_stack_lvl+0xf2/0x150
[   62.371243][ T4639]  dump_stack+0x15/0x20
[   62.375411][ T4639]  should_fail_ex+0x229/0x230
[   62.380099][ T4639]  should_fail+0xb/0x10
[   62.384288][ T4639]  should_fail_usercopy+0x1a/0x20
[   62.389375][ T4639]  _copy_to_user+0x1e/0xa0
[   62.393830][ T4639]  simple_read_from_buffer+0xa0/0x110
[   62.399218][ T4639]  proc_fail_nth_read+0xfc/0x140
[   62.404241][ T4639]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   62.409809][ T4639]  vfs_read+0x1a2/0x6e0
[   62.414010][ T4639]  ? do_sock_getsockopt+0x9e/0x1a0
[   62.419229][ T4639]  ? perf_trace_sys_enter+0x6c/0x2d0
[   62.424611][ T4639]  ksys_read+0xeb/0x1b0
[   62.428836][ T4639]  __x64_sys_read+0x42/0x50
[   62.433425][ T4639]  x64_sys_call+0x27d3/0x2d60
[   62.438151][ T4639]  do_syscall_64+0xc9/0x1c0
[   62.442725][ T4639]  ? clear_bhb_loop+0x55/0xb0
[   62.447453][ T4639]  ? clear_bhb_loop+0x55/0xb0
[   62.452156][ T4639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.458162][ T4639] RIP: 0033:0x7fb985bd843c
[   62.462593][ T4639] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[   62.482294][ T4639] RSP: 002b:00007fb984857030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   62.490735][ T4639] RAX: ffffffffffffffda RBX: 00007fb985d75f80 RCX: 00007fb985bd843c
[   62.498716][ T4639] RDX: 000000000000000f RSI: 00007fb9848570a0 RDI: 0000000000000005
[   62.506785][ T4639] RBP: 00007fb984857090 R08: 0000000000000000 R09: 0000000000000000
[   62.514873][ T4639] R10: 00000000200014c0 R11: 0000000000000246 R12: 0000000000000001
[   62.522850][ T4639] R13: 0000000000000000 R14: 00007fb985d75f80 R15: 00007ffd98565e38
[   62.530829][ T4639]  </TASK>
[   62.582852][ T4647] loop1: detected capacity change from 0 to 512
[   62.591302][ T4647] EXT4-fs error (device loop1): __ext4_iget:4985: inode #11: block 2071: comm syz.1.393: invalid block
[   62.604677][ T4647] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.393: couldn't read orphan inode 11 (err -117)
[   62.616811][ T4647] EXT4-fs (loop1): 1 truncate cleaned up
[   62.641868][ T4266] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   62.651184][ T4266] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   62.667873][ T4650] batman_adv: batadv0: Adding interface: dummy0
[   62.674364][ T4650] batman_adv: batadv0: Interface activated: dummy0
[   62.689703][ T4650] batadv0: mtu less than device minimum
[   62.695727][ T4650] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   62.706532][ T4650] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   62.717373][ T4650] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   62.728058][ T4650] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   62.738900][ T4650] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   62.749705][ T4650] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   62.760430][ T4650] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   62.771349][ T4650] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   62.782155][ T4650] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[   62.782548][ T4654] loop2: detected capacity change from 0 to 1024
[   62.801568][ T4654] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   62.992628][ T4683] loop2: detected capacity change from 0 to 512
[   63.016883][ T4683] EXT4-fs error (device loop2): __ext4_iget:4985: inode #11: block 2071: comm syz.2.406: invalid block
[   63.039012][ T4683] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.406: couldn't read orphan inode 11 (err -117)
[   63.052553][ T4683] EXT4-fs (loop2): 1 truncate cleaned up
[   63.061731][ T3336] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.069974][ T3336] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   63.160689][ T4699] loop0: detected capacity change from 0 to 512
[   63.167504][ T4699] EXT4-fs: quotafile must be on filesystem root
[   63.201513][ T4699] loop0: detected capacity change from 0 to 2048
[   63.299247][ T4708] netlink: 4 bytes leftover after parsing attributes in process `syz.3.409'.
[   63.414681][ T4699] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.411: bg 0: block 234: padding at end of block bitmap is not set
[   63.429118][ T4699] EXT4-fs (loop0): Remounting filesystem read-only
[   63.542585][ T4712] netlink: 532 bytes leftover after parsing attributes in process `syz.0.414'.
[   63.714134][ T4724] loop1: detected capacity change from 0 to 512
[   63.720688][ T4724] EXT4-fs: Ignoring removed orlov option
[   63.738665][ T4724] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-5, ino=4). Please run e2fsck to fix.
[   63.754333][ T4724] EXT4-fs (loop1): mount failed
[   63.851021][ T4731] loop0: detected capacity change from 0 to 512
[   63.877109][ T4731] EXT4-fs error (device loop0): __ext4_iget:4985: inode #11: block 2071: comm syz.0.420: invalid block
[   63.889224][ T4733] batman_adv: batadv0: Adding interface: dummy0
[   63.895573][ T4733] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.922038][ T4733] batman_adv: batadv0: Interface activated: dummy0
[   63.926416][ T4731] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.420: couldn't read orphan inode 11 (err -117)
[   63.959112][ T4731] EXT4-fs (loop0): 1 truncate cleaned up
[   63.995989][ T3338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.018197][ T3338] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   64.118016][ T4748] FAULT_INJECTION: forcing a failure.
[   64.118016][ T4748] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.131145][ T4748] CPU: 1 UID: 0 PID: 4748 Comm: syz.1.427 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   64.141775][ T4748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   64.151849][ T4748] Call Trace:
[   64.155130][ T4748]  <TASK>
[   64.158120][ T4748]  dump_stack_lvl+0xf2/0x150
[   64.162740][ T4748]  dump_stack+0x15/0x20
[   64.166913][ T4748]  should_fail_ex+0x229/0x230
[   64.171731][ T4748]  should_fail+0xb/0x10
[   64.175903][ T4748]  should_fail_usercopy+0x1a/0x20
[   64.180945][ T4748]  _copy_to_user+0x1e/0xa0
[   64.185470][ T4748]  ucma_create_id+0x1de/0x250
[   64.190154][ T4748]  ucma_write+0x1aa/0x240
[   64.194566][ T4748]  ? __pfx_ucma_write+0x10/0x10
[   64.199509][ T4748]  vfs_write+0x28b/0x900
[   64.203856][ T4748]  ? __fget_files+0x1da/0x210
[   64.208554][ T4748]  ksys_write+0xeb/0x1b0
[   64.212908][ T4748]  __x64_sys_write+0x42/0x50
[   64.217616][ T4748]  x64_sys_call+0x27dd/0x2d60
[   64.222441][ T4748]  do_syscall_64+0xc9/0x1c0
[   64.227167][ T4748]  ? clear_bhb_loop+0x55/0xb0
[   64.231910][ T4748]  ? clear_bhb_loop+0x55/0xb0
[   64.236604][ T4748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.242637][ T4748] RIP: 0033:0x7fb985bd99f9
[   64.247053][ T4748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.266931][ T4748] RSP: 002b:00007fb984857038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   64.275348][ T4748] RAX: ffffffffffffffda RBX: 00007fb985d75f80 RCX: 00007fb985bd99f9
[   64.283428][ T4748] RDX: 0000000000000020 RSI: 0000000020000040 RDI: 0000000000000004
[   64.291566][ T4748] RBP: 00007fb984857090 R08: 0000000000000000 R09: 0000000000000000
[   64.299541][ T4748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.307581][ T4748] R13: 0000000000000000 R14: 00007fb985d75f80 R15: 00007ffd98565e38
[   64.315586][ T4748]  </TASK>
[   64.344675][ T4751] loop2: detected capacity change from 0 to 8192
[   64.351984][ T4751] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   64.416572][ T4751] FAT-fs (loop2): error, clusters badly computed (1 != 30720)
[   64.424243][ T4751] FAT-fs (loop2): Filesystem has been set read-only
[   64.433937][ T4751] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 1042)
[   64.444682][ T4745] Cannot find set identified by id 0 to match
[   64.590373][ T4768] netlink: 12 bytes leftover after parsing attributes in process `syz.1.432'.
[   64.601496][ T4768] netlink: 12 bytes leftover after parsing attributes in process `syz.1.432'.
[   64.620107][ T4768] syz.1.432: attempt to access beyond end of device
[   64.620107][ T4768] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   64.633361][   T29] kauditd_printk_skb: 143 callbacks suppressed
[   64.633376][   T29] audit: type=1326 audit(1723620219.314:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4766 comm="syz.2.433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0a0699f9 code=0x7ffc0000
[   64.663156][   T29] audit: type=1326 audit(1723620219.324:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4766 comm="syz.2.433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0a0699f9 code=0x7ffc0000
[   64.686633][   T29] audit: type=1326 audit(1723620219.324:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4766 comm="syz.2.433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f3d0a0699f9 code=0x7ffc0000
[   64.709929][   T29] audit: type=1326 audit(1723620219.324:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4766 comm="syz.2.433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0a0699f9 code=0x7ffc0000
[   64.733273][   T29] audit: type=1326 audit(1723620219.324:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4766 comm="syz.2.433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0a0699f9 code=0x7ffc0000
[   64.871547][ T4774] batman_adv: batadv0: Adding interface: dummy0
[   64.877939][ T4774] batman_adv: batadv0: Interface activated: dummy0
[   64.998967][ T4785] loop0: detected capacity change from 0 to 512
[   65.011773][ T4785] EXT4-fs error (device loop0): __ext4_iget:4985: inode #11: block 2071: comm syz.0.438: invalid block
[   65.034679][ T4785] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.438: couldn't read orphan inode 11 (err -117)
[   65.047087][ T4785] EXT4-fs (loop0): 1 truncate cleaned up
[   65.055602][ T4266] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.067275][ T4266] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   65.202285][ T4795] loop2: detected capacity change from 0 to 4096
[   65.552982][   T29] audit: type=1326 audit(1723620220.234:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.0.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f47a99f9 code=0x7ffc0000
[   65.577018][   T29] audit: type=1326 audit(1723620220.234:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.0.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f47a99f9 code=0x7ffc0000
[   65.606820][   T29] audit: type=1326 audit(1723620220.234:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.0.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7fd1f47a99f9 code=0x7ffc0000
[   65.622710][ T4804] loop3: detected capacity change from 0 to 2048
[   65.630519][   T29] audit: type=1326 audit(1723620220.234:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.0.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f47a99f9 code=0x7ffc0000
[   65.670833][   T29] audit: type=1326 audit(1723620220.314:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.0.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f47a99f9 code=0x7ffc0000
[   65.932551][ T4820] netlink: 8 bytes leftover after parsing attributes in process `syz.3.448'.
[   65.942675][ T4820] netlink: 8 bytes leftover after parsing attributes in process `syz.3.448'.
[   65.955699][ T4822] loop2: detected capacity change from 0 to 512
[   65.979601][ T4822] EXT4-fs error (device loop2): __ext4_iget:4985: inode #11: block 2071: comm syz.2.452: invalid block
[   65.993595][ T4822] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.452: couldn't read orphan inode 11 (err -117)
[   66.006220][ T4822] EXT4-fs (loop2): 1 truncate cleaned up
[   66.015397][ T4828] FAULT_INJECTION: forcing a failure.
[   66.015397][ T4828] name failslab, interval 1, probability 0, space 0, times 0
[   66.021033][ T3362] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   66.028115][ T4828] CPU: 0 UID: 0 PID: 4828 Comm: syz.1.454 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   66.038007][ T3362] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   66.045994][ T4828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   66.046011][ T4828] Call Trace:
[   66.046021][ T4828]  <TASK>
[   66.046029][ T4828]  dump_stack_lvl+0xf2/0x150
[   66.076591][ T4828]  dump_stack+0x15/0x20
[   66.080768][ T4828]  should_fail_ex+0x229/0x230
[   66.085462][ T4828]  ? skb_clone+0x154/0x1f0
[   66.089889][ T4828]  should_failslab+0x8f/0xb0
[   66.094531][ T4828]  kmem_cache_alloc_noprof+0x4c/0x290
[   66.100025][ T4828]  skb_clone+0x154/0x1f0
[   66.104375][ T4828]  __netlink_deliver_tap+0x2bd/0x4c0
[   66.109746][ T4828]  netlink_unicast+0x641/0x670
[   66.114516][ T4828]  netlink_sendmsg+0x5cc/0x6e0
[   66.119382][ T4828]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.124824][ T4828]  __sock_sendmsg+0x140/0x180
[   66.129521][ T4828]  ____sys_sendmsg+0x312/0x410
[   66.134310][ T4828]  __sys_sendmsg+0x1e9/0x280
[   66.138929][ T4828]  __x64_sys_sendmsg+0x46/0x50
[   66.143722][ T4828]  x64_sys_call+0x2689/0x2d60
[   66.148416][ T4828]  do_syscall_64+0xc9/0x1c0
[   66.153007][ T4828]  ? clear_bhb_loop+0x55/0xb0
[   66.157729][ T4828]  ? clear_bhb_loop+0x55/0xb0
[   66.162593][ T4828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.168497][ T4828] RIP: 0033:0x7fb985bd99f9
[   66.173039][ T4828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.192754][ T4828] RSP: 002b:00007fb984857038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   66.201207][ T4828] RAX: ffffffffffffffda RBX: 00007fb985d75f80 RCX: 00007fb985bd99f9
[   66.209180][ T4828] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003
[   66.217181][ T4828] RBP: 00007fb984857090 R08: 0000000000000000 R09: 0000000000000000
[   66.225169][ T4828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.233170][ T4828] R13: 0000000000000000 R14: 00007fb985d75f80 R15: 00007ffd98565e38
[   66.241174][ T4828]  </TASK>
[   66.338071][ T4837] netlink: 12 bytes leftover after parsing attributes in process `syz.2.456'.
[   66.347094][ T4837] netlink: 12 bytes leftover after parsing attributes in process `syz.2.456'.
[   66.365423][ T4837] syz.2.456: attempt to access beyond end of device
[   66.365423][ T4837] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   66.719652][ T4857] loop3: detected capacity change from 0 to 512
[   66.733965][ T4857] EXT4-fs error (device loop3): __ext4_iget:4985: inode #11: block 2071: comm syz.3.466: invalid block
[   66.737785][ T4859] loop4: detected capacity change from 0 to 2048
[   66.746832][ T4857] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.466: couldn't read orphan inode 11 (err -117)
[   66.763676][ T4857] EXT4-fs (loop3): 1 truncate cleaned up
[   66.770183][ T4859]  loop4: p2 < >
[   66.781575][ T4266] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   66.788873][ T2960]  loop4: p2 < >
[   66.793267][ T4266] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   66.836804][ T3249] udevd[3249]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   66.838536][ T4865] netlink: 44 bytes leftover after parsing attributes in process `syz.4.469'.
[   66.858422][ T4865] bridge1: the hash_elasticity option has been deprecated and is always 16
[   66.925955][ T4878] pimreg: entered allmulticast mode
[   66.934399][ T4877] loop0: detected capacity change from 0 to 164
[   66.995472][ T4884] netlink: 'syz.4.477': attribute type 1 has an invalid length.
[   67.118256][ T4892] usb usb8: usbfs: process 4892 (syz.0.482) did not claim interface 0 before use
[   67.274458][   T36] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.297793][ T4904] usb usb8: usbfs: process 4904 (syz.1.487) did not claim interface 0 before use
[   67.306980][ T4904] FAULT_INJECTION: forcing a failure.
[   67.306980][ T4904] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.320114][ T4904] CPU: 0 UID: 0 PID: 4904 Comm: syz.1.487 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   67.330730][ T4904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   67.340851][ T4904] Call Trace:
[   67.344150][ T4904]  <TASK>
[   67.347096][ T4904]  dump_stack_lvl+0xf2/0x150
[   67.351778][ T4904]  dump_stack+0x15/0x20
[   67.355968][ T4904]  should_fail_ex+0x229/0x230
[   67.360702][ T4904]  should_fail+0xb/0x10
[   67.364941][ T4904]  should_fail_usercopy+0x1a/0x20
[   67.370005][ T4904]  _copy_to_user+0x1e/0xa0
[   67.374524][ T4904]  simple_read_from_buffer+0xa0/0x110
[   67.380010][ T4904]  proc_fail_nth_read+0xfc/0x140
[   67.385048][ T4904]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   67.390707][ T4904]  vfs_read+0x1a2/0x6e0
[   67.394901][ T4904]  ? __rcu_read_unlock+0x4e/0x70
[   67.399904][ T4904]  ? __fget_files+0x1da/0x210
[   67.404675][ T4904]  ksys_read+0xeb/0x1b0
[   67.408875][ T4904]  __x64_sys_read+0x42/0x50
[   67.413423][ T4904]  x64_sys_call+0x27d3/0x2d60
[   67.418141][ T4904]  do_syscall_64+0xc9/0x1c0
[   67.422719][ T4904]  ? clear_bhb_loop+0x55/0xb0
[   67.427445][ T4904]  ? clear_bhb_loop+0x55/0xb0
[   67.432160][ T4904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.438091][ T4904] RIP: 0033:0x7fb985bd843c
[   67.442632][ T4904] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[   67.462338][ T4904] RSP: 002b:00007fb984857030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   67.470791][ T4904] RAX: ffffffffffffffda RBX: 00007fb985d75f80 RCX: 00007fb985bd843c
[   67.478874][ T4904] RDX: 000000000000000f RSI: 00007fb9848570a0 RDI: 000000000000000a
[   67.486871][ T4904] RBP: 00007fb984857090 R08: 0000000000000000 R09: 0000000000000000
[   67.494920][ T4904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.502915][ T4904] R13: 0000000000000000 R14: 00007fb985d75f80 R15: 00007ffd98565e38
[   67.511005][ T4904]  </TASK>
[   67.571222][   T36] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.583395][ T4908] workqueue: Failed to create a rescuer kthread for wq "nfc7_nci_rx_wq": -EINTR
[   67.691339][   T36] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.734976][ T4944] netlink: 12 bytes leftover after parsing attributes in process `syz.0.494'.
[   67.764894][   T36] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.843999][ T4955] FAULT_INJECTION: forcing a failure.
[   67.843999][ T4955] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.858338][ T4955] CPU: 0 UID: 0 PID: 4955 Comm: syz.1.495 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   67.869139][ T4955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   67.880500][ T4955] Call Trace:
[   67.883804][ T4955]  <TASK>
[   67.887023][ T4955]  dump_stack_lvl+0xf2/0x150
[   67.892099][ T4955]  dump_stack+0x15/0x20
[   67.897267][ T4955]  should_fail_ex+0x229/0x230
[   67.902548][ T4955]  should_fail+0xb/0x10
[   67.906877][ T4955]  should_fail_usercopy+0x1a/0x20
[   67.912470][ T4955]  _copy_from_user+0x1e/0xd0
[   67.917333][ T4955]  memdup_user+0x64/0xc0
[   67.921790][ T4955]  strndup_user+0x68/0xa0
[   67.926655][ T4955]  __se_sys_mount+0x4e/0x2d0
[   67.931618][ T4955]  ? fput+0x13b/0x180
[   67.936086][ T4955]  ? ksys_write+0x178/0x1b0
[   67.941360][ T4955]  __x64_sys_mount+0x67/0x80
[   67.947053][ T4955]  x64_sys_call+0x203e/0x2d60
[   67.952028][ T4955]  do_syscall_64+0xc9/0x1c0
[   67.956793][ T4955]  ? clear_bhb_loop+0x55/0xb0
[   67.961791][ T4955]  ? clear_bhb_loop+0x55/0xb0
[   67.963171][ T4911] chnl_net:caif_netlink_parms(): no params data found
[   67.966679][ T4955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.981087][ T4955] RIP: 0033:0x7fb985bd99f9
[   67.985815][ T4955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.007371][ T4955] RSP: 002b:00007fb984836038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   68.015821][ T4955] RAX: ffffffffffffffda RBX: 00007fb985d76058 RCX: 00007fb985bd99f9
[   68.023853][ T4955] RDX: 0000000020000180 RSI: 0000000020000000 RDI: 0000000000000000
[   68.031965][ T4955] RBP: 00007fb984836090 R08: 0000000020000680 R09: 0000000000000000
[   68.040210][ T4955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.048501][ T4955] R13: 0000000000000000 R14: 00007fb985d76058 R15: 00007ffd98565e38
[   68.056603][ T4955]  </TASK>
[   68.126838][ T4964] syz.2.497: attempt to access beyond end of device
[   68.126838][ T4964] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   68.133814][ T4980] loop4: detected capacity change from 0 to 1024
[   68.148689][   T36] bridge_slave_1: left allmulticast mode
[   68.154647][   T36] bridge_slave_1: left promiscuous mode
[   68.161177][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.171117][   T36] bridge_slave_0: left allmulticast mode
[   68.176921][   T36] bridge_slave_0: left promiscuous mode
[   68.182754][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.193547][ T4980] EXT4-fs mount: 18 callbacks suppressed
[   68.193565][ T4980] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.212613][ T4980] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.252513][ T4986] loop4: detected capacity change from 0 to 128
[   68.261242][ T4986] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   68.279273][ T4986] ext4 filesystem being mounted at /107/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   68.384461][ T3259] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   68.406429][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   68.421747][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   68.432956][   T36] bond0 (unregistering): Released all slaves
[   68.445533][ T4976] __nla_validate_parse: 2 callbacks suppressed
[   68.445561][ T4976] netlink: 576 bytes leftover after parsing attributes in process `syz.0.498'.
[   68.475265][ T4993] loop4: detected capacity change from 0 to 512
[   68.483431][ T4993] EXT4-fs (loop4): orphan cleanup on readonly fs
[   68.492659][ T4993] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.501: corrupted in-inode xattr: bad e_name length
[   68.506727][ T4993] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.501: couldn't read orphan inode 15 (err -117)
[   68.509793][ T4911] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.528415][ T4911] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.537175][ T4911] bridge_slave_0: entered allmulticast mode
[   68.544657][ T4993] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   68.561882][ T4911] bridge_slave_0: entered promiscuous mode
[   68.576020][ T4911] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.583962][ T4911] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.595757][ T4911] bridge_slave_1: entered allmulticast mode
[   68.603291][ T4911] bridge_slave_1: entered promiscuous mode
[   68.622628][   T36] hsr_slave_0: left promiscuous mode
[   68.629396][   T36] hsr_slave_1: left promiscuous mode
[   68.636781][   T36] batman_adv: batadv0: Interface deactivated: dummy0
[   68.643647][   T36] batman_adv: batadv0: Removing interface: dummy0
[   68.660803][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   68.668553][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[   68.686379][ T5005] loop1: detected capacity change from 0 to 1024
[   68.695223][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   68.702916][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[   68.715463][ T5005] EXT4-fs (loop1): inodes count not valid: 1 vs 32
[   68.736596][   T36] veth1_vlan: left promiscuous mode
[   68.742017][   T36] veth0_vlan: left promiscuous mode
[   68.749460][ T5009] EXT4-fs warning (device loop4): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[   68.857535][   T36] pimreg (unregistering): left allmulticast mode
[   68.903748][   T36] team0 (unregistering): Port device team_slave_1 removed
[   68.916341][   T36] team0 (unregistering): Port device team_slave_0 removed
[   69.004316][ T4911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.035131][ T4911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.071596][ T4911] team0: Port device team_slave_0 added
[   69.078740][ T4911] team0: Port device team_slave_1 added
[   69.114894][ T4911] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.123301][ T4911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.151067][ T4911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.178644][ T5044] loop0: detected capacity change from 0 to 128
[   69.191536][ T5036] loop2: detected capacity change from 0 to 4096
[   69.199404][ T4911] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.206383][ T4911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.233084][ T4911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.250461][ T5044] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   69.250893][ T5036] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.292602][ T5044] ext4 filesystem being mounted at /118/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   69.340109][ T3259] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.381409][ T4911] hsr_slave_0: entered promiscuous mode
[   69.391544][ T3258] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   69.391992][ T4911] hsr_slave_1: entered promiscuous mode
[   69.412757][ T4911] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   69.426788][ T4911] Cannot create hsr debugfs directory
[   69.441382][ T5058] netlink: 'syz.0.512': attribute type 1 has an invalid length.
[   69.449145][ T5058] netlink: 4 bytes leftover after parsing attributes in process `syz.0.512'.
[   69.458322][ T5054] netlink: 'syz.2.510': attribute type 9 has an invalid length.
[   69.469736][ T5058] loop0: detected capacity change from 0 to 512
[   69.489472][ T5058] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.512: bg 0: block 35: padding at end of block bitmap is not set
[   69.505610][ T5058] EXT4-fs (loop0): Remounting filesystem read-only
[   69.512304][ T5058] EXT4-fs (loop0): 1 truncate cleaned up
[   69.519830][ T5058] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.541406][ T5058] SELinux: (dev loop0, type ext4) getxattr errno 5
[   69.557717][ T5058] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.604297][ T5066] loop4: detected capacity change from 0 to 1024
[   69.629795][ T5058] loop0: detected capacity change from 0 to 1024
[   69.653205][ T5066] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.679416][   T29] kauditd_printk_skb: 195 callbacks suppressed
[   69.679434][   T29] audit: type=1400 audit(1723620224.364:1096): avc:  denied  { read } for  pid=5065 comm="syz.4.514" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   69.709848][   T29] audit: type=1400 audit(1723620224.364:1097): avc:  denied  { open } for  pid=5065 comm="syz.4.514" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   69.734568][ T5058] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[   69.750135][ T3267] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.770869][   T29] audit: type=1400 audit(1723620224.454:1098): avc:  denied  { map } for  pid=5057 comm="syz.0.512" path="socket:[10033]" dev="sockfs" ino=10033 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   69.794080][   T29] audit: type=1400 audit(1723620224.454:1099): avc:  denied  { read } for  pid=5057 comm="syz.0.512" path="socket:[10033]" dev="sockfs" ino=10033 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   69.860698][ T5073] loop2: detected capacity change from 0 to 1024
[   69.880112][   T29] audit: type=1400 audit(1723620224.564:1100): avc:  denied  { write } for  pid=5057 comm="syz.0.512" path="socket:[10045]" dev="sockfs" ino=10045 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   69.881826][ T3259] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.927860][ T5073] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.936294][   T29] audit: type=1400 audit(1723620224.594:1101): avc:  denied  { write } for  pid=5057 comm="syz.0.512" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[   69.968365][ T5084] FAULT_INJECTION: forcing a failure.
[   69.968365][ T5084] name failslab, interval 1, probability 0, space 0, times 0
[   69.981081][ T5084] CPU: 1 UID: 0 PID: 5084 Comm: syz.1.518 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   69.981172][ T5084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   69.981187][ T5084] Call Trace:
[   69.981197][ T5084]  <TASK>
[   69.981206][ T5084]  dump_stack_lvl+0xf2/0x150
[   69.981252][ T5084]  dump_stack+0x15/0x20
[   69.981321][ T5084]  should_fail_ex+0x229/0x230
[   70.021693][ T5084]  ? vm_area_dup+0x98/0x130
[   70.026291][ T5084]  should_failslab+0x8f/0xb0
[   70.030905][ T5084]  kmem_cache_alloc_noprof+0x4c/0x290
[   70.036316][ T5084]  vm_area_dup+0x98/0x130
[   70.040670][ T5084]  copy_mm+0x60b/0x10e0
[   70.044845][ T5084]  copy_process+0xee1/0x1f90
[   70.049452][ T5084]  kernel_clone+0x167/0x5e0
[   70.054008][ T5084]  __se_sys_clone3+0x1b5/0x1f0
[   70.058865][ T5084]  __x64_sys_clone3+0x31/0x40
[   70.063624][ T5084]  x64_sys_call+0x287d/0x2d60
[   70.068333][ T5084]  do_syscall_64+0xc9/0x1c0
[   70.072953][ T5084]  ? clear_bhb_loop+0x55/0xb0
[   70.077650][ T5084]  ? clear_bhb_loop+0x55/0xb0
[   70.082409][ T5084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.088442][ T5084] RIP: 0033:0x7fb985bd99f9
[   70.094064][ T5084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.113693][ T5084] RSP: 002b:00007fb984856f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[   70.122263][ T5084] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fb985bd99f9
[   70.130260][ T5084] RDX: 00007fb984856f20 RSI: 0000000000000058 RDI: 00007fb984856f20
[   70.138314][ T5084] RBP: 00007fb984857090 R08: 0000000000000000 R09: 0000000000000058
[   70.146389][ T5084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   70.154388][ T5084] R13: 0000000000000000 R14: 00007fb985d75f80 R15: 00007ffd98565e38
[   70.162388][ T5084]  </TASK>
[   70.210676][   T29] audit: type=1400 audit(1723620224.894:1102): avc:  denied  { ioctl } for  pid=5089 comm="syz.4.516" path="socket:[10250]" dev="sockfs" ino=10250 ioctlcmd=0x671e scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   70.310145][ T3267] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.372941][ T5106] loop2: detected capacity change from 0 to 256
[   70.411146][ T5106] FAULT_INJECTION: forcing a failure.
[   70.411146][ T5106] name failslab, interval 1, probability 0, space 0, times 0
[   70.424063][ T5106] CPU: 1 UID: 0 PID: 5106 Comm: syz.2.521 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   70.425601][ T4911] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   70.434660][ T5106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   70.434677][ T5106] Call Trace:
[   70.434685][ T5106]  <TASK>
[   70.434693][ T5106]  dump_stack_lvl+0xf2/0x150
[   70.462283][ T5106]  dump_stack+0x15/0x20
[   70.466486][ T5106]  should_fail_ex+0x229/0x230
[   70.471273][ T5106]  ? copy_splice_read+0xc7/0x5d0
[   70.476255][ T5106]  should_failslab+0x8f/0xb0
[   70.480868][ T5106]  __kmalloc_noprof+0xa5/0x370
[   70.485664][ T5106]  copy_splice_read+0xc7/0x5d0
[   70.490453][ T5106]  ? alloc_pipe_info+0x1cb/0x360
[   70.495392][ T5106]  ? __kmalloc_noprof+0x203/0x370
[   70.500452][ T5106]  ? __pfx_copy_splice_read+0x10/0x10
[   70.505828][ T5106]  splice_direct_to_actor+0x26c/0x670
[   70.511223][ T5106]  ? __pfx_direct_splice_actor+0x10/0x10
[   70.516933][ T5106]  do_splice_direct+0xd7/0x150
[   70.521786][ T5106]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   70.527783][ T5106]  do_sendfile+0x3ab/0x950
[   70.532250][ T5106]  __x64_sys_sendfile64+0x110/0x150
[   70.537495][ T5106]  x64_sys_call+0xed5/0x2d60
[   70.542150][ T5106]  do_syscall_64+0xc9/0x1c0
[   70.546687][ T5106]  ? clear_bhb_loop+0x55/0xb0
[   70.551412][ T5106]  ? clear_bhb_loop+0x55/0xb0
[   70.556156][ T5106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.562623][ T5106] RIP: 0033:0x7f3d0a0699f9
[   70.567169][ T5106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.588253][ T5106] RSP: 002b:00007f3d08ce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   70.599167][ T5106] RAX: ffffffffffffffda RBX: 00007f3d0a205f80 RCX: 00007f3d0a0699f9
[   70.609960][ T5106] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000005
[   70.621425][ T5106] RBP: 00007f3d08ce7090 R08: 0000000000000000 R09: 0000000000000000
[   70.629706][ T5106] R10: 000000000000d344 R11: 0000000000000246 R12: 0000000000000001
[   70.640222][ T5106] R13: 0000000000000000 R14: 00007f3d0a205f80 R15: 00007ffd042579e8
[   70.649177][ T5106]  </TASK>
[   70.664433][ T4911] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   70.676418][ T4911] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   70.686159][ T4911] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   70.717098][ T5110] netlink: 4 bytes leftover after parsing attributes in process `syz.0.523'.
[   70.969014][   T29] audit: type=1326 audit(1723620225.654:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.1.527" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb985bd99f9 code=0x0
[   71.005782][ T5141] netlink: 12 bytes leftover after parsing attributes in process `syz.4.528'.
[   71.026904][ T4911] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.034239][ T5141] netlink: 36 bytes leftover after parsing attributes in process `syz.4.528'.
[   71.052104][   T29] audit: type=1400 audit(1723620225.734:1104): avc:  denied  { setopt } for  pid=5136 comm="syz.4.528" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   71.081966][ T4911] 8021q: adding VLAN 0 to HW filter on device team0
[   71.093595][ T3800] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.100831][ T3800] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.132741][ T3800] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.140008][ T3800] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.304705][ T4911] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.526055][ T4911] veth0_vlan: entered promiscuous mode
[   71.542391][ T4911] veth1_vlan: entered promiscuous mode
[   71.563390][   T29] audit: type=1326 audit(1723620226.244:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5197 comm="syz.2.536" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3d0a0699f9 code=0x0
[   71.604257][ T4911] veth0_macvtap: entered promiscuous mode
[   71.618881][ T4911] veth1_macvtap: entered promiscuous mode
[   71.628912][ T5207] loop4: detected capacity change from 0 to 512
[   71.644024][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.654744][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.664681][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.665545][ T5211] blktrace: Concurrent blktraces are not allowed on loop5
[   71.677747][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.677767][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.721921][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.732226][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.751586][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.762642][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.774792][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.797213][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.800943][ T5207] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   71.816424][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.822416][ T4911] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.852917][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.864201][ T5207] EXT4-fs (loop4): can't mount with data=, fs mounted w/o journal
[   71.875646][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.905487][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.917476][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.928042][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.939095][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.953051][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.965332][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.975189][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.986000][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.998556][ T4911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.009805][ T4911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.024832][ T4911] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.028830][ T5207] nfs: Unknown parameter '�I�x�ߟ�X���j���yqqyf��P^����2}u���Di~�R��������~�?�!��
�?�e��������v�ϟm�7?��x>~.���T�n'
[   72.062934][ T4911] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.071924][ T4911] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.081549][ T4911] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.090842][ T4911] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.103440][ T5207] 9pnet_fd: Insufficient options for proto=fd
[   72.206876][ T5225] netlink: 20 bytes leftover after parsing attributes in process `syz.0.540'.
[   72.235419][ T5234] bridge_slave_1: left allmulticast mode
[   72.252003][ T5234] bridge_slave_1: left promiscuous mode
[   72.260935][ T5234] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.288903][ T5237] netlink: 176 bytes leftover after parsing attributes in process `syz.3.490'.
[   72.298351][ T5225] loop0: detected capacity change from 0 to 1024
[   72.333902][ T5225] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.346020][ T5242] loop2: detected capacity change from 0 to 1024
[   72.346384][ T5242] EXT4-fs: Ignoring removed nomblk_io_submit option
[   72.360214][ T5242] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   72.369958][ T5225] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   72.389187][ T5225] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   72.401870][ T5225] EXT4-fs (loop0): This should not happen!! Data will be lost
[   72.401870][ T5225] 
[   72.411566][ T5225] EXT4-fs (loop0): Total free blocks count 0
[   72.415608][ T5244] loop3: detected capacity change from 0 to 8192
[   72.417649][ T5225] EXT4-fs (loop0): Free/Dirty block details
[   72.429927][ T5225] EXT4-fs (loop0): free_blocks=68451041280
[   72.430143][ T5242] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.435773][ T5225] EXT4-fs (loop0): dirty_blocks=16
[   72.435793][ T5225] EXT4-fs (loop0): Block reservation details
[   72.435806][ T5225] EXT4-fs (loop0): i_reserved_data_blocks=1
[   72.523732][ T3267] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.542257][ T5225] bridge2: port 1(veth1_to_bond) entered blocking state
[   72.549422][ T5225] bridge2: port 1(veth1_to_bond) entered disabled state
[   72.556726][ T5225] veth1_to_bond: entered allmulticast mode
[   72.564395][ T5225] veth1_to_bond: entered promiscuous mode
[   72.634880][ T3258] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.248002][ T5274] loop4: detected capacity change from 0 to 2048
[   73.255754][ T5274] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[   73.311122][ T5270] netlink: 44 bytes leftover after parsing attributes in process `syz.4.554'.
[   73.621773][ T5318] netlink: 8 bytes leftover after parsing attributes in process `syz.1.565'.
[   73.658344][ T5331] loop1: detected capacity change from 0 to 128
[   73.665255][ T5331] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   73.753241][ T5342] netlink: 4 bytes leftover after parsing attributes in process `syz.0.561'.
[   74.224703][ T5351] FAULT_INJECTION: forcing a failure.
[   74.224703][ T5351] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   74.238214][ T5351] CPU: 0 UID: 0 PID: 5351 Comm: syz.4.572 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   74.248885][ T5351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   74.258965][ T5351] Call Trace:
[   74.262817][ T5351]  <TASK>
[   74.265747][ T5351]  dump_stack_lvl+0xf2/0x150
[   74.270447][ T5351]  dump_stack+0x15/0x20
[   74.274705][ T5351]  should_fail_ex+0x229/0x230
[   74.279484][ T5351]  should_fail_alloc_page+0xfd/0x110
[   74.284823][ T5351]  __alloc_pages_noprof+0x109/0x360
[   74.290338][ T5351]  ___kmalloc_large_node+0x7a/0x120
[   74.295690][ T5351]  __kmalloc_large_noprof+0x1f/0xb0
[   74.301155][ T5351]  bpf_check+0x78/0xa200
[   74.305436][ T5351]  ? pcpu_block_update_hint_alloc+0x685/0x6a0
[   74.311519][ T5351]  ? cgroup_rstat_updated+0x99/0x550
[   74.316821][ T5351]  ? pcpu_chunk_relocate+0x183/0x280
[   74.322132][ T5351]  ? __mod_memcg_state+0x10d/0x200
[   74.327361][ T5351]  ? __rcu_read_unlock+0x4e/0x70
[   74.332313][ T5351]  ? bpf_prog_alloc+0x59/0x150
[   74.337085][ T5351]  ? pcpu_alloc_noprof+0xb92/0x10c0
[   74.342411][ T5351]  ? should_fail_ex+0xd7/0x230
[   74.347287][ T5351]  ? selinux_bpf_prog_load+0x35/0xe0
[   74.352824][ T5351]  ? should_failslab+0x8f/0xb0
[   74.357757][ T5351]  ? __kmalloc_cache_noprof+0x10b/0x2a0
[   74.363420][ T5351]  ? selinux_bpf_prog_load+0xbb/0xe0
[   74.368815][ T5351]  bpf_prog_load+0xed4/0x1060
[   74.373817][ T5351]  __sys_bpf+0x463/0x7a0
[   74.378220][ T5351]  __x64_sys_bpf+0x43/0x50
[   74.382839][ T5351]  x64_sys_call+0x2625/0x2d60
[   74.387927][ T5351]  do_syscall_64+0xc9/0x1c0
[   74.392890][ T5351]  ? clear_bhb_loop+0x55/0xb0
[   74.398637][ T5351]  ? clear_bhb_loop+0x55/0xb0
[   74.403641][ T5351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.409639][ T5351] RIP: 0033:0x7fcd240e99f9
[   74.414235][ T5351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.435404][ T5351] RSP: 002b:00007fcd22d67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   74.446040][ T5351] RAX: ffffffffffffffda RBX: 00007fcd24285f80 RCX: 00007fcd240e99f9
[   74.455068][ T5351] RDX: 0000000000000090 RSI: 0000000020000400 RDI: 0000000000000005
[   74.463992][ T5351] RBP: 00007fcd22d67090 R08: 0000000000000000 R09: 0000000000000000
[   74.472014][ T5351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.480186][ T5351] R13: 0000000000000000 R14: 00007fcd24285f80 R15: 00007ffc05bd02a8
[   74.488272][ T5351]  </TASK>
[   74.591260][ T5363] netlink: 36 bytes leftover after parsing attributes in process `syz.2.578'.
[   74.618744][ T5366] __find_get_block_slow() failed. block=144115188075855872, b_blocknr=0, b_state=0x00106019, b_size=4096, device sda1 blocksize: 4096
[   74.649029][ T5366] grow_buffers: requested out-of-range block 144115188075855872 for device sda1
[   74.658915][ T5366] EXT4-fs warning (device sda1): ext4_resize_fs:2018: can't read last block, resize aborted
[   74.768341][ T5374] loop2: detected capacity change from 0 to 2048
[   74.791789][ T5374] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.964432][ T5384] netlink: 4 bytes leftover after parsing attributes in process `syz.4.584'.
[   75.203692][   T29] kauditd_printk_skb: 62 callbacks suppressed
[   75.203710][   T29] audit: type=1326 audit(1723620229.884:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5393 comm="syz.0.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f47a99f9 code=0x7ffc0000
[   75.235292][   T29] audit: type=1326 audit(1723620229.884:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5393 comm="syz.0.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7fd1f47a99f9 code=0x7ffc0000
[   75.259246][   T29] audit: type=1326 audit(1723620229.884:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5393 comm="syz.0.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f47a99f9 code=0x7ffc0000
[   75.284041][   T29] audit: type=1326 audit(1723620229.894:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5393 comm="syz.0.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1f47a99f9 code=0x7ffc0000
[   75.391321][   T29] audit: type=1107 audit(1723620230.074:1172): pid=5397 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   75.473972][ T5402] pim6reg: entered allmulticast mode
[   75.502918][ T5404] loop0: detected capacity change from 0 to 256
[   75.707231][   T29] audit: type=1400 audit(1723620230.384:1173): avc:  denied  { connect } for  pid=5418 comm="syz.0.598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   75.736679][ T3267] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.790356][   T29] audit: type=1326 audit(1723620230.474:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.2.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0a0699f9 code=0x7ffc0000
[   75.813864][   T29] audit: type=1326 audit(1723620230.474:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.2.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0a0699f9 code=0x7ffc0000
[   75.837235][   T29] audit: type=1326 audit(1723620230.474:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.2.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f3d0a0699f9 code=0x7ffc0000
[   75.860870][   T29] audit: type=1326 audit(1723620230.474:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.2.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d0a0699f9 code=0x7ffc0000
[   75.934005][ T5430] loop0: detected capacity change from 0 to 512
[   75.959499][ T5430] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.972361][ T5430] ext4 filesystem being mounted at /144/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   76.051587][ T3370] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.063085][ T5430] loop0: detected capacity change from 512 to 11
[   76.078719][ T5440] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5810: Out of memory
[   76.109876][ T5440] EXT4-fs error (device loop0): ext4_alloc_file_blocks:4520: inode #18: comm syz.0.602: mark_inode_dirty error
[   76.155456][ T3258] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.166526][ T5433] kmmpd-loop0: attempt to access beyond end of device
[   76.166526][ T5433] loop0: rw=14337, sector=48, nr_sectors = 4 limit=11
[   76.180145][ T5433] Buffer I/O error on dev loop0, logical block 12, lost sync page write
[   76.192278][ T5442] netlink: 4 bytes leftover after parsing attributes in process `syz.4.605'.
[   76.345174][ T5441] chnl_net:caif_netlink_parms(): no params data found
[   76.405301][ T5441] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.412491][ T5441] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.422423][ T5441] bridge_slave_0: entered allmulticast mode
[   76.429225][ T5441] bridge_slave_0: entered promiscuous mode
[   76.436726][ T5441] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.443883][ T5441] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.453055][ T5441] bridge_slave_1: entered allmulticast mode
[   76.459870][ T5441] bridge_slave_1: entered promiscuous mode
[   76.484891][ T5441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.498759][ T5441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.532626][ T5441] team0: Port device team_slave_0 added
[   76.540188][ T5441] team0: Port device team_slave_1 added
[   76.570033][ T5441] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.577033][ T5441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.603057][ T5441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.620381][ T5441] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.627455][ T5441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.653646][ T5441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.695185][ T5441] hsr_slave_0: entered promiscuous mode
[   76.697407][ T5470] netlink: 12 bytes leftover after parsing attributes in process `syz.2.614'.
[   76.710060][ T5441] hsr_slave_1: entered promiscuous mode
[   76.716229][ T5441] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   76.724032][ T5441] Cannot create hsr debugfs directory
[   76.814265][ T5481] loop1: detected capacity change from 0 to 512
[   76.821154][ T5481] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.834806][ T5481] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   76.842835][ T5481] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842c01c, mo2=0002]
[   76.851394][ T5481] EXT4-fs (loop1): couldn't mount RDWR because of unsupported optional features (80)
[   76.860961][ T5481] EXT4-fs (loop1): Skipping orphan cleanup due to unknown ROCOMPAT features
[   76.872583][ T5481] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   76.873235][ T5485] loop2: detected capacity change from 0 to 128
[   76.896638][ T5481] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[   76.942841][ T5481] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.617: dx entry: limit 65535 != root limit 120
[   76.955098][ T5481] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.617: Corrupt directory, running e2fsck is recommended
[   76.971045][ T5460] chnl_net:caif_netlink_parms(): no params data found
[   76.992579][ T4172] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.023881][ T5493] FAULT_INJECTION: forcing a failure.
[   77.023881][ T5493] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.037033][ T5493] CPU: 0 UID: 0 PID: 5493 Comm: syz.1.619 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   77.047725][ T5493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   77.057805][ T5493] Call Trace:
[   77.061088][ T5493]  <TASK>
[   77.064014][ T5493]  dump_stack_lvl+0xf2/0x150
[   77.068635][ T5493]  dump_stack+0x15/0x20
[   77.072859][ T5493]  should_fail_ex+0x229/0x230
[   77.077629][ T5493]  should_fail+0xb/0x10
[   77.081823][ T5493]  should_fail_usercopy+0x1a/0x20
[   77.086865][ T5493]  strncpy_from_user+0x25/0x270
[   77.091726][ T5493]  ? kmem_cache_alloc_noprof+0x10c/0x290
[   77.097373][ T5493]  getname_flags+0xb0/0x3b0
[   77.101918][ T5493]  getname+0x17/0x20
[   77.105884][ T5493]  __se_sys_acct+0x3e/0x420
[   77.110428][ T5493]  __x64_sys_acct+0x1f/0x30
[   77.115195][ T5493]  x64_sys_call+0xbbe/0x2d60
[   77.119844][ T5493]  do_syscall_64+0xc9/0x1c0
[   77.124368][ T5493]  ? clear_bhb_loop+0x55/0xb0
[   77.129131][ T5493]  ? clear_bhb_loop+0x55/0xb0
[   77.133819][ T5493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.139763][ T5493] RIP: 0033:0x7fb985bd99f9
[   77.144231][ T5493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.164192][ T5493] RSP: 002b:00007fb984857038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[   77.172774][ T5493] RAX: ffffffffffffffda RBX: 00007fb985d75f80 RCX: 00007fb985bd99f9
[   77.180751][ T5493] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020003040
[   77.188789][ T5493] RBP: 00007fb984857090 R08: 0000000000000000 R09: 0000000000000000
[   77.196942][ T5493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.204945][ T5493] R13: 0000000000000000 R14: 00007fb985d75f80 R15: 00007ffd98565e38
[   77.212991][ T5493]  </TASK>
[   77.240482][ T5460] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.247672][ T5460] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.255068][ T5460] bridge_slave_0: entered allmulticast mode
[   77.263753][ T5460] bridge_slave_0: entered promiscuous mode
[   77.279518][ T5460] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.286688][ T5460] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.294171][ T5460] bridge_slave_1: entered allmulticast mode
[   77.302717][ T5460] bridge_slave_1: entered promiscuous mode
[   77.326224][ T5460] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.337904][ T5460] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.353349][ T5502] netlink: 'syz.1.622': attribute type 10 has an invalid length.
[   77.378839][ T5502] team0: Failed to send port change of device netdevsim1 via netlink (err -105)
[   77.388183][ T5502] team0: Failed to send options change via netlink (err -105)
[   77.395760][ T5502] team0: Port device netdevsim1 added
[   77.404351][ T5503] netlink: 48 bytes leftover after parsing attributes in process `syz.1.622'.
[   77.415156][ T5460] team0: Port device team_slave_0 added
[   77.422271][ T5460] team0: Port device team_slave_1 added
[   77.440325][ T5460] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.447414][ T5460] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.473658][ T5460] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.485128][ T5460] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.492280][ T5460] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.518459][ T5460] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.566024][ T5460] hsr_slave_0: entered promiscuous mode
[   77.572370][ T5460] hsr_slave_1: entered promiscuous mode
[   77.578782][ T5460] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.586396][ T5460] Cannot create hsr debugfs directory
[   77.906294][ T5516] netlink: 4 bytes leftover after parsing attributes in process `syz.4.626'.
[   78.170386][ T3370] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.230829][ T3370] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.270366][ T3370] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.337105][ T3370] bridge_slave_1: left allmulticast mode
[   78.342891][ T3370] bridge_slave_1: left promiscuous mode
[   78.348715][ T3370] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.356818][ T3370] bridge_slave_0: left allmulticast mode
[   78.362608][ T3370] bridge_slave_0: left promiscuous mode
[   78.368380][ T3370] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.510127][ T3370] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   78.520819][ T3370] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.531217][ T3370] bond0 (unregistering): Released all slaves
[   78.541729][ T5530] netlink: 40 bytes leftover after parsing attributes in process `syz.1.627'.
[   78.584398][ T5538] loop1: detected capacity change from 0 to 164
[   78.609605][ T5541] netlink: 8 bytes leftover after parsing attributes in process `syz.4.629'.
[   78.650780][ T3370] hsr_slave_0: left promiscuous mode
[   78.678474][ T3370] hsr_slave_1: left promiscuous mode
[   78.693473][ T3370] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.701247][ T3370] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.717771][ T3370] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.725205][ T3370] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.743753][ T3370] veth1_macvtap: left promiscuous mode
[   78.749324][ T3370] veth0_macvtap: left promiscuous mode
[   78.754933][ T3370] veth1_vlan: left promiscuous mode
[   78.760425][ T3370] veth0_vlan: left promiscuous mode
[   78.861794][ T5564] loop4: detected capacity change from 0 to 512
[   78.883024][ T3370] team0 (unregistering): Port device team_slave_1 removed
[   78.891063][ T5564] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.903885][ T5564] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.906052][ T3370] team0 (unregistering): Port device team_slave_0 removed
[   78.973028][ T5559] netlink: 4 bytes leftover after parsing attributes in process `syz.1.631'.
[   79.127508][ T5460] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.155725][ T5441] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   79.169863][ T5441] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   79.194452][ T5441] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   79.218705][ T5460] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.254787][ T5441] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   79.352274][ T5441] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.378159][ T5460] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.430269][ T5441] 8021q: adding VLAN 0 to HW filter on device team0
[   79.457534][ T5460] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.488372][ T3800] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.495649][ T3800] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.510315][ T3800] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.517541][ T3800] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.599407][ T5460] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   79.610660][ T5460] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   79.627868][ T5613] netlink: 388 bytes leftover after parsing attributes in process `syz.1.640'.
[   79.645590][ T5460] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   79.671964][ T5460] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   79.772138][ T5460] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.796193][ T5441] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.811724][ T5460] 8021q: adding VLAN 0 to HW filter on device team0
[   79.829298][ T3259] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.839797][ T3370] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.846961][ T3370] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.883953][ T3370] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.891303][ T3370] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.918691][ T5642] netlink: 4 bytes leftover after parsing attributes in process `syz.4.643'.
[   79.930005][ T5642] netlink: 12 bytes leftover after parsing attributes in process `syz.4.643'.
[   79.948450][ T5460] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   79.979094][ T5441] veth0_vlan: entered promiscuous mode
[   79.998768][ T5441] veth1_vlan: entered promiscuous mode
[   80.025108][ T5441] veth0_macvtap: entered promiscuous mode
[   80.033223][ T5441] veth1_macvtap: entered promiscuous mode
[   80.048276][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.058928][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.068915][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.079533][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.089515][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.099964][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.109788][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.120301][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.130411][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.140943][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.150906][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.161444][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.172585][ T5441] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.182024][ T5651] netlink: 'syz.4.644': attribute type 27 has an invalid length.
[   80.244906][ T5651] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.252234][ T5651] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.274725][ T5651] batman_adv: batadv0: Interface deactivated: dummy0
[   80.295710][ T5651] wg1: left promiscuous mode
[   80.332487][ T5651] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.353781][ T5651] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   80.394795][ T5651] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   80.403973][ T5651] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   80.412997][ T5651] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   80.421888][ T5651] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   80.441344][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.452073][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.462125][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.472666][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.482900][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.493502][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.503955][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.514538][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.524586][ T5441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.535136][ T5441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.547027][ T5441] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.558415][ T5441] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.567218][ T5441] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.575936][ T5441] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.585305][ T5441] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.603916][ T5460] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.642200][ T5672] loop4: detected capacity change from 0 to 512
[   80.666357][ T5672] EXT4-fs (loop4): blocks per group (255) and clusters per group (8192) inconsistent
[   80.747238][ T5680] FAULT_INJECTION: forcing a failure.
[   80.747238][ T5680] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   80.760695][ T5680] CPU: 1 UID: 0 PID: 5680 Comm: syz.2.647 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   80.771615][ T5680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   80.780432][ T5672] loop4: detected capacity change from 0 to 512
[   80.782014][ T5680] Call Trace:
[   80.782026][ T5680]  <TASK>
[   80.794849][ T5680]  dump_stack_lvl+0xf2/0x150
[   80.799635][ T5680]  dump_stack+0x15/0x20
[   80.803841][ T5680]  should_fail_ex+0x229/0x230
[   80.808658][ T5680]  should_fail_alloc_page+0xfd/0x110
[   80.814127][ T5680]  __alloc_pages_noprof+0x109/0x360
[   80.819506][ T5680]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   80.824960][ T5680]  folio_alloc_noprof+0xee/0x130
[   80.830106][ T5680]  filemap_alloc_folio_noprof+0x69/0x220
[   80.835858][ T5680]  __filemap_get_folio+0x298/0x5b0
[   80.841139][ T5680]  ? should_failslab+0x8f/0xb0
[   80.845947][ T5680]  ? __kmalloc_noprof+0x165/0x370
[   80.851256][ T5680]  aio_setup_ring+0x266/0x6b0
[   80.854660][ T5460] veth0_vlan: entered promiscuous mode
[   80.855962][ T5680]  ioctx_alloc+0x2b2/0x4c0
[   80.865871][ T5680]  __se_sys_io_setup+0x6b/0x1b0
[   80.866539][ T5460] veth1_vlan: entered promiscuous mode
[   80.870737][ T5680]  __x64_sys_io_setup+0x31/0x40
[   80.870837][ T5680]  x64_sys_call+0x2639/0x2d60
[   80.885839][ T5680]  do_syscall_64+0xc9/0x1c0
[   80.890443][ T5680]  ? clear_bhb_loop+0x55/0xb0
[   80.895238][ T5680]  ? clear_bhb_loop+0x55/0xb0
[   80.899947][ T5680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.905940][ T5680] RIP: 0033:0x7f3d0a0699f9
[   80.910407][ T5680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.929787][ T5460] veth0_macvtap: entered promiscuous mode
[   80.930037][ T5680] RSP: 002b:00007f3d08ce7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[   80.942180][ T5460] veth1_macvtap: entered promiscuous mode
[   80.944281][ T5680] RAX: ffffffffffffffda RBX: 00007f3d0a205f80 RCX: 00007f3d0a0699f9
[   80.958074][ T5680] RDX: 0000000000000000 RSI: 0000000020000500 RDI: 000000000000ffe4
[   80.961081][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.966113][ T5680] RBP: 00007f3d08ce7090 R08: 0000000000000000 R09: 0000000000000000
[   80.976513][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.976525][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.984830][ T5680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   80.984849][ T5680] R13: 0000000000000000 R14: 00007f3d0a205f80 R15: 00007ffd042579e8
[   80.994759][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.005045][ T5680]  </TASK>
[   81.034099][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.044677][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.054557][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.062264][ T5672] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.065089][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.079535][ T5672] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.087339][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.101047][ T5672] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.108706][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.127668][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.138201][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.149894][ T5460] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.157720][ T5690] team0: Cannot enslave team device to itself
[   81.185412][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.195973][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.205904][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.216374][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.226225][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.236852][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.246781][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.257371][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.267279][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.278906][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.288793][ T5460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.299523][ T5460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.315304][ T5460] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.330386][   T29] kauditd_printk_skb: 50 callbacks suppressed
[   81.330401][   T29] audit: type=1326 audit(1723620236.014:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5693 comm="syz.1.650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb985bd99f9 code=0x7ffc0000
[   81.361455][ T5460] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.367770][   T29] audit: type=1326 audit(1723620236.024:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5693 comm="syz.1.650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7fb985bd99f9 code=0x7ffc0000
[   81.370227][ T5460] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.393529][   T29] audit: type=1326 audit(1723620236.024:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5693 comm="syz.1.650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb985bd99f9 code=0x7ffc0000
[   81.402195][ T5460] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.402255][ T5460] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.426544][   T29] audit: type=1326 audit(1723620236.024:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5693 comm="syz.1.650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb985bd99f9 code=0x7ffc0000
[   81.444655][ T5701] netlink: 12 bytes leftover after parsing attributes in process `syz.3.653'.
[   81.477296][ T5701] netlink: 12 bytes leftover after parsing attributes in process `syz.3.653'.
[   81.516094][ T5703] loop2: detected capacity change from 0 to 1024
[   81.526532][ T5703] EXT4-fs: Ignoring removed orlov option
[   81.532337][ T5703] EXT4-fs: Ignoring removed nomblk_io_submit option
[   81.540174][ T5705] FAULT_INJECTION: forcing a failure.
[   81.540174][ T5705] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   81.553602][ T5705] CPU: 0 UID: 0 PID: 5705 Comm: syz.1.655 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   81.560699][ T5701] syz.3.653: attempt to access beyond end of device
[   81.560699][ T5701] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   81.564295][ T5705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   81.564311][ T5705] Call Trace:
[   81.564330][ T5705]  <TASK>
[   81.593389][ T5705]  dump_stack_lvl+0xf2/0x150
[   81.598027][ T5705]  dump_stack+0x15/0x20
[   81.602203][ T5705]  should_fail_ex+0x229/0x230
[   81.606941][ T5705]  should_fail_alloc_page+0xfd/0x110
[   81.612255][ T5705]  __alloc_pages_noprof+0x109/0x360
[   81.617524][ T5705]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   81.622906][ T5705]  alloc_pages_noprof+0xe1/0x100
[   81.627887][ T5705]  get_free_pages_noprof+0xc/0x30
[   81.633008][ T5705]  do_proc_control+0x174/0x850
[   81.637782][ T5705]  ? should_fail_ex+0xd7/0x230
[   81.642568][ T5705]  usbdev_ioctl+0x1bbf/0x3e10
[   81.647266][ T5705]  ? do_vfs_ioctl+0x99e/0x1560
[   81.652045][ T5705]  ? sysvec_call_function_single+0xe/0x80
[   81.657815][ T5705]  ? __pfx_usbdev_ioctl+0x10/0x10
[   81.662849][ T5705]  ? __pfx_usbdev_ioctl+0x10/0x10
[   81.667963][ T5705]  ? __se_sys_ioctl+0xc4/0x150
[   81.672828][ T5705]  ? __pfx_usbdev_ioctl+0x10/0x10
[   81.677864][ T5705]  __se_sys_ioctl+0xd3/0x150
[   81.682471][ T5705]  __x64_sys_ioctl+0x43/0x50
[   81.687147][ T5705]  x64_sys_call+0x15cc/0x2d60
[   81.691864][ T5705]  do_syscall_64+0xc9/0x1c0
[   81.696393][ T5705]  ? clear_bhb_loop+0x55/0xb0
[   81.701088][ T5705]  ? clear_bhb_loop+0x55/0xb0
[   81.705852][ T5705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.711888][ T5705] RIP: 0033:0x7fb985bd99f9
[   81.716377][ T5705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.735994][ T5705] RSP: 002b:00007fb984857038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   81.744415][ T5705] RAX: ffffffffffffffda RBX: 00007fb985d75f80 RCX: 00007fb985bd99f9
[   81.752435][ T5705] RDX: 00000000200002c0 RSI: 00000000c0185500 RDI: 0000000000000003
[   81.760414][ T5705] RBP: 00007fb984857090 R08: 0000000000000000 R09: 0000000000000000
[   81.768489][ T5705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.776874][ T5705] R13: 0000000000000000 R14: 00007fb985d75f80 R15: 00007ffd98565e38
[   81.784877][ T5705]  </TASK>
[   81.799967][ T5703] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities
[   81.861124][   T29] audit: type=1400 audit(1723620236.544:1232): avc:  denied  { setopt } for  pid=5709 comm="syz.0.610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   81.880206][ T5710] loop0: detected capacity change from 0 to 1024
[   81.891250][ T5710] ext2: Unknown parameter 'hash'
[   81.934196][ T5715] netlink: 4 bytes leftover after parsing attributes in process `syz.0.657'.
[   81.943122][ T5715] netlink: 4 bytes leftover after parsing attributes in process `syz.0.657'.
[   81.991561][   T29] audit: type=1400 audit(1723620236.674:1233): avc:  denied  { write } for  pid=5720 comm="syz.2.660" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   82.099714][ T5731] loop2: detected capacity change from 0 to 512
[   82.108876][ T5731] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.663: casefold flag without casefold feature
[   82.124562][ T5731] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.663: couldn't read orphan inode 15 (err -117)
[   82.139924][ T5731] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.195181][ T5735] loop0: detected capacity change from 0 to 2048
[   82.269942][ T5735] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.299025][   T29] audit: type=1400 audit(1723620236.974:1234): avc:  denied  { mounton } for  pid=5734 comm="syz.0.664" path="/5/file0/file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   82.312209][ T5758] loop3: detected capacity change from 0 to 512
[   82.322556][   T29] audit: type=1400 audit(1723620236.974:1235): avc:  denied  { mount } for  pid=5734 comm="syz.0.664" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   82.371995][ T5758] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.393014][ T5758] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.413518][ T3267] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.474677][ T5771] loop2: detected capacity change from 0 to 512
[   82.497042][ T5771] EXT4-fs: Ignoring removed oldalloc option
[   82.515879][ T5771] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[   82.525568][ T5771] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.667: invalid indirect mapped block 2683928664 (level 1)
[   82.552493][ T5771] EXT4-fs (loop2): 1 truncate cleaned up
[   82.570968][ T5771] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.670148][ T5770] EXT4-fs error (device loop2): ext4_find_dest_de:2067: inode #2: block 13: comm syz.2.667: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[   82.712763][ T5460] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   82.731466][ T5460] EXT4-fs (loop0): Remounting filesystem read-only
[   82.739399][   T29] audit: type=1400 audit(1723620237.424:1236): avc:  denied  { unmount } for  pid=5460 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   82.762415][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=13
[   82.780867][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=13
[   82.792450][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=14
[   82.792821][ T3267] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.801707][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=14
[   82.820013][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   82.832940][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[   82.843493][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=16
[   82.852602][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=16
[   82.862082][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=16
[   82.888994][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=16
[   82.907932][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=17
[   82.923395][ T5460] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=17
[   82.943342][ T5460] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.005938][ T5815] FAULT_INJECTION: forcing a failure.
[   83.005938][ T5815] name failslab, interval 1, probability 0, space 0, times 0
[   83.018641][ T5815] CPU: 0 UID: 0 PID: 5815 Comm: syz.0.668 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   83.029276][ T5815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   83.039390][ T5815] Call Trace:
[   83.042688][ T5815]  <TASK>
[   83.045635][ T5815]  dump_stack_lvl+0xf2/0x150
[   83.050412][ T5815]  dump_stack+0x15/0x20
[   83.054608][ T5815]  should_fail_ex+0x229/0x230
[   83.059411][ T5815]  ? alloc_empty_file+0xd0/0x310
[   83.064405][ T5815]  should_failslab+0x8f/0xb0
[   83.069108][ T5815]  kmem_cache_alloc_noprof+0x4c/0x290
[   83.074525][ T5815]  ? mntput+0x49/0x70
[   83.078642][ T5815]  alloc_empty_file+0xd0/0x310
[   83.083482][ T5815]  path_openat+0x6a/0x1f10
[   83.087949][ T5815]  ? _parse_integer_limit+0x167/0x180
[   83.093481][ T5815]  ? _parse_integer+0x27/0x30
[   83.098228][ T5815]  ? kstrtoull+0x110/0x140
[   83.102716][ T5815]  ? kstrtouint+0x77/0xc0
[   83.107150][ T5815]  do_filp_open+0xf7/0x200
[   83.111683][ T5815]  do_sys_openat2+0xab/0x120
[   83.116363][ T5815]  __x64_sys_openat+0xf3/0x120
[   83.121232][ T5815]  x64_sys_call+0x1025/0x2d60
[   83.125939][ T5815]  do_syscall_64+0xc9/0x1c0
[   83.130486][ T5815]  ? clear_bhb_loop+0x55/0xb0
[   83.135203][ T5815]  ? clear_bhb_loop+0x55/0xb0
[   83.139973][ T5815]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.145984][ T5815] RIP: 0033:0x7f5fc96a8390
[   83.150498][ T5815] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8e 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8e 02 00 8b 44
[   83.170140][ T5815] RSP: 002b:00007f5fc8326b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   83.178641][ T5815] RAX: ffffffffffffffda RBX: 00000000001a1381 RCX: 00007f5fc96a8390
[   83.186637][ T5815] RDX: 00000000001a1381 RSI: 00007f5fc8326c10 RDI: 00000000ffffff9c
[   83.194631][ T5815] RBP: 00007f5fc8326c10 R08: 0000000000000000 R09: 0000000000000000
[   83.202641][ T5815] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   83.210909][ T5815] R13: 0000000000000000 R14: 00007f5fc9845f80 R15: 00007ffeaf6f3628
[   83.218941][ T5815]  </TASK>
[   83.234661][ T5441] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.321109][   T29] audit: type=1400 audit(1723620238.004:1237): avc:  denied  { setopt } for  pid=5832 comm="syz.0.672" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   83.325063][ T5657] kernel write not supported for file /23/timerslack_ns (pid: 5657 comm: kworker/0:9)
[   83.396929][ T5840] netlink: 32 bytes leftover after parsing attributes in process `syz.3.675'.
[   83.418194][ T5840] netlink: 32 bytes leftover after parsing attributes in process `syz.3.675'.
[   83.513420][ T5841] loop0: detected capacity change from 0 to 8192
[   83.578143][ T5841]  loop0: p1 < > p2 p3 p4 < p5 >
[   83.608050][ T5841] loop0: p3 size 16744448 extends beyond EOD, truncated
[   83.633460][ T5841] ebt_among: dst integrity fail: 10c
[   83.961703][ T5850] loop0: detected capacity change from 0 to 2048
[   83.983407][ T5850] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.002953][ T5850] EXT4-fs error (device loop0): ext4_find_extent:936: inode #2: comm syz.0.680: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   84.021939][ T5850] EXT4-fs (loop0): Remounting filesystem read-only
[   84.042095][ T5840] ==================================================================
[   84.050229][ T5840] BUG: KCSAN: data-race in hrtimer_interrupt / print_cpu
[   84.051954][ T5856] __nla_validate_parse: 2 callbacks suppressed
[   84.051970][ T5856] netlink: 12 bytes leftover after parsing attributes in process `syz.2.677'.
[   84.057267][ T5840] 
[   84.057273][ T5840] write to 0xffff888237c1ff60 of 8 bytes by interrupt on cpu 0:
[   84.057294][ T5840]  hrtimer_interrupt+0x224/0x7b0
[   84.057330][ T5840]  __sysvec_apic_timer_interrupt+0x5c/0x1a0
[   84.065733][ T5856] netlink: 12 bytes leftover after parsing attributes in process `syz.2.677'.
[   84.072316][ T5840]  sysvec_apic_timer_interrupt+0x6e/0x80
[   84.072352][ T5840]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   84.113910][ T5840]  kcsan_setup_watchpoint+0x404/0x410
[   84.119394][ T5840]  __mod_memcg_lruvec_state+0xd8/0x210
[   84.124865][ T5840]  __lruvec_stat_mod_folio+0xd2/0x120
[   84.130249][ T5840]  folio_add_file_rmap_ptes+0x147/0x1d0
[   84.135812][ T5840]  set_pte_range+0x206/0x430
[   84.140420][ T5840]  finish_fault+0x692/0xa10
[   84.144935][ T5840]  handle_mm_fault+0xe52/0x2940
[   84.149801][ T5840]  __get_user_pages+0x499/0x10d0
[   84.154754][ T5840]  __mm_populate+0x25b/0x3b0
[   84.159363][ T5840]  vm_mmap_pgoff+0x1d6/0x290
[   84.163968][ T5840]  ksys_mmap_pgoff+0xd0/0x340
[   84.168659][ T5840]  x64_sys_call+0x1884/0x2d60
[   84.173353][ T5840]  do_syscall_64+0xc9/0x1c0
[   84.177877][ T5840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.183794][ T5840] 
[   84.186127][ T5840] read to 0xffff888237c1ff60 of 8 bytes by task 5840 on cpu 1:
[   84.193668][ T5840]  print_cpu+0x2fb/0x670
[   84.197932][ T5840]  timer_list_show+0x115/0x180
[   84.202711][ T5840]  seq_read_iter+0x65b/0x940
[   84.207309][ T5840]  proc_reg_read_iter+0x11e/0x190
[   84.212349][ T5840]  copy_splice_read+0x3a4/0x5d0
[   84.217210][ T5840]  splice_direct_to_actor+0x26c/0x670
[   84.222593][ T5840]  do_splice_direct+0xd7/0x150
[   84.227368][ T5840]  do_sendfile+0x3ab/0x950
[   84.231795][ T5840]  __x64_sys_sendfile64+0x110/0x150
[   84.237000][ T5840]  x64_sys_call+0xed5/0x2d60
[   84.241613][ T5840]  do_syscall_64+0xc9/0x1c0
[   84.246145][ T5840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.252047][ T5840] 
[   84.254367][ T5840] value changed: 0x7fffffffffffffff -> 0x0000001390eeaac8
[   84.261468][ T5840] 
[   84.263787][ T5840] Reported by Kernel Concurrency Sanitizer on:
[   84.269932][ T5840] CPU: 1 UID: 0 PID: 5840 Comm: syz.3.675 Not tainted 6.11.0-rc3-syzkaller-00013-g6b0f8db921ab #0
[   84.280520][ T5840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   84.290574][ T5840] ==================================================================
[   84.345123][ T5856] syz.2.677: attempt to access beyond end of device
[   84.345123][ T5856] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   84.476650][ T5460] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.