last executing test programs:

1.480928539s ago: executing program 4 (id=2935):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000000)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000040)=@in={0x2, 0x0, @remote}, 0x80, 0x0, 0x0, &(0x7f0000000a00)=[{0x88, 0x0, 0x0, "fb396f8d00f46d7f3ffd4ab13348a80761cb55de1d0333fdabfe5ddbd8f086595f4f9ceb7398888c76f0d900acdec1a2eada242ac4ce69f5c0fc7f2779c1176a8a2d357b8c121b6348c77fa920cc15a89ac94af7a7b82db2766333f7b2636314cd36ef6825c544a851a3c2e0b477d50c01"}, {0x68, 0x0, 0x0, "c62af04a7bc2cef463571b6bc3d08763004b4b63c4bab872605dc83c98cade4b0ce2af11b43010feb5741b0fcfdbd6e6ef9c0e0039f791c53a9796cd00230ff782f06dd4a9c07a2aa17a249cd9f8f125af"}, {0x80, 0x0, 0x0, "66b3f98a00b7c3129117568a8679dd6f279f752dee167a1b40803d4a1b97dad53c58e5c7b38b011f0cc76a80dce0abf688b277f907ecaf5ccd013d7729234782ed6cd290b7d0c3a190523cae5e7383076e4de031dbe47374a474cdf9ce209383dc4991411c3c4abd5ceaff6e3f"}, {0xa8, 0x0, 0x0, "03dfeb3da715307aaa4750fe2ac91b690a8005f36f8ff3429a9545d11114444086c0a852e1850f6cf68b0aa6baea6436a8ceb1d4fd5121c03dacdd46b7398e9187f79d5ced044cd1b16715b2ed1503c53f3d6f9867ab37ac8b57f14a86041f4f037884df544de5ca6291af21746ae16e442ebc1799ddcdf501508573d2dc419a92c2f09ee6da0e6afd007f7aa974238906"}], 0x218}, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0xd14}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x250}, {&(0x7f00000007c0)=""/154, 0x48c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

1.480822379s ago: executing program 0 (id=2936):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000300)={0xac, r2, 0x800, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x80, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x7a, 0x4, "5ae5ba01588af98f181f5602e107c2707cf3def9989615e2131d87ab7a6f57b12d8fe18fb0fa16ea90f9bd4baf8b01553f4badc9bf0f0f05f47e7334b271a6c895e181791763f873c9a381c19c117e72dc8c545c2070991d321dc7a8817948e30063953478a714067758e23e060eef8649f4d5063927"}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0xac}}, 0x0)

1.45975982s ago: executing program 4 (id=2939):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000000)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
ioperm(0x0, 0x2, 0x400000000007)
socket(0x18, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_dev$usbmon(&(0x7f0000000180), 0x0, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x8008551d, &(0x7f00000004c0)={0x0, 0x1, [{0xb}]})
r3 = dup3(r2, r1, 0x0)
preadv(r3, &(0x7f0000000300)=[{&(0x7f0000000000)=""/24, 0x18}, {0x0}], 0x1000000000000374, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000040000000c0000000c00000002000000000000ae0c59d900000000000000"], 0x0, 0x26}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000005800)={r4, 0x20, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x0, 0x0}}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000690000000000000100000094"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r6}, 0x10)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="18000000210001"], 0x18}}, 0x0)
r8 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
fsmount(r8, 0x0, 0x0)
getpid()
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f00000001c0), 0x3, 0x5eb, &(0x7f0000000c00)="$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")
socket$nl_route(0x10, 0x3, 0x0)

1.328633681s ago: executing program 0 (id=2941):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
inotify_init1(0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000002a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x4, 0x5f9, &(0x7f0000000300)=""/4096}, 0x70)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x8, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r4}, &(0x7f0000000080), &(0x7f00000000c0)=r3}, 0x20)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x8, 0x3, 0x1250, 0x0, 0xb, 0xd0e0011, 0x0, 0xc6, 0x11b8, 0x1d8, 0x190, 0x11b8, 0x1d8, 0x5, 0x0, {[{{@ip={@rand_addr, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'nr0\x00'}, 0x0, 0x10a0, 0x10e8, 0x2000000, {}, [@common=@unspec=@cgroup1={{0x1030}, {0x0, 0x0, 0xfc, 0x0, './cgroup/syz0\x00'}}]}, @unspec=@CT0={0x48}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x12b0)
listen(r2, 0xb)
socket(0x26, 0xa, 0x7)
r5 = syz_io_uring_setup(0x366a, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000100)=<r6=>0x0)
syz_io_uring_setup(0x7a0, &(0x7f0000000200), &(0x7f0000000040)=<r7=>0x0, &(0x7f0000000180))
r8 = socket$phonet_pipe(0x23, 0x5, 0x2)
syz_io_uring_submit(r7, r6, &(0x7f00000001c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r8, 0x0, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x0, 0xb0f085959838e300})
io_uring_enter(r5, 0xa3d, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x5a, &(0x7f0000000180)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff06f5", 0x24, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0xc2, 0x0, 0x0, 0x0, {[@mptcp=@add_addr={0x1e, 0x4, 0x2, 0x10, 0x21, @dev={0xac, 0x3}, 0x0, "20f0ddf9a66a"}]}}}}}}}}, 0x0)

1.298053673s ago: executing program 4 (id=2943):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[], 0x38}, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f0000000080)=[{&(0x7f0000000180)=@in={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10, &(0x7f0000562000), 0x0, &(0x7f00000c3000)=[@sndinfo={0x20, 0x84, 0x2, {0x0, 0x241}}], 0x20}], 0x4924924924924d0, 0x8000000)

1.286631634s ago: executing program 0 (id=2945):
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x2f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x60b32000000000)

1.286380534s ago: executing program 1 (id=2946):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) (async)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$netlink(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x0) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000500)=ANY=[@ANYRES8=r0, @ANYRES32=r0, @ANYRESHEX=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4d, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r2, 0x802c550a, &(0x7f0000000280)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) (async)
r3 = socket$inet6(0xa, 0x3, 0x4)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f00000006c0)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}}, 0x108)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000180)={0x0, {{0xa, 0x0, 0x3, @mcast1, 0x6}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000002980)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff"], 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[], 0xb0) (async)
perf_event_open(&(0x7f0000000140)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_ERRQUEUE(r4, 0x6b, 0x4, &(0x7f0000000200)=0x80000000, 0x4) (async)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
r5 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x1}}}, 0x24}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000480)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000004c0)=0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000800)=@newqdisc={0xac, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0x0, 0x9}}, [@TCA_STAB={0x74, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}, {{0x1c, 0x1, {0x8, 0x14, 0x1, 0xffff, 0x2, 0x4, 0xffff, 0x4}}, {0xc, 0x2, [0x2, 0x8001, 0xb, 0x7]}}, {{0x1c, 0x1, {0x7, 0x0, 0x4, 0x200, 0x2, 0xfffffffa, 0x100003, 0x3}}, {0xa, 0x2, [0x1f, 0x8, 0x100]}}]}, @qdisc_kind_options=@q_bfifo={{0xa}, {0x8, 0x2, 0x6}}]}, 0xac}}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0) (async)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)

1.206412821s ago: executing program 4 (id=2951):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f0000000040), 0x4)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=@newae={0x48, 0x1e, 0x468bbc8229e18b43, 0x0, 0x0, {{}, @in=@empty}, [@replay_thresh={0x8}]}, 0x48}}, 0x0)
symlink(&(0x7f00000049c0)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./file0\x00')
r3 = inotify_init()
readv(r3, &(0x7f0000000100)=[{&(0x7f0000000180)=""/142, 0x8e}], 0x1)
inotify_add_watch(r3, &(0x7f0000000140)='./file0/file0\x00', 0x981194e3432e424b)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f00000002c0)={[], [{@subj_user={'subj_user', 0x3d, '\x01\x00\x00\x00)#(+^*$'}}]}, 0x1, 0x784, &(0x7f00000007c0)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_aout(r4, &(0x7f00000002c0)=ANY=[], 0xc1)
mmap(&(0x7f0000c64000/0x3000)=nil, 0x3000, 0x2000002, 0x13, r4, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
mbind(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4003, &(0x7f0000000000), 0x5, 0x0)
creat(&(0x7f0000000440)='./file0\x00', 0x0)

1.045142794s ago: executing program 1 (id=2952):
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x17, &(0x7f0000001840), &(0x7f0000002dc0)=0x40)

1.039204025s ago: executing program 0 (id=2954):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f0000000380)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
ioctl$sock_bt_hci(r1, 0x800448d5, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
socket$igmp(0x2, 0x3, 0x2)
sendmmsg$inet6(r0, &(0x7f0000003900)=[{{0x0, 0x0, 0x0}}], 0x1, 0xc005)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="b80000001900674c0000000000000800fe8000000000000000000000000000bbe000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000101020000"], 0xb8}}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001e40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)={0xf4, 0x0, 0x1, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@CTA_LABELS={0x20, 0x16, 0x1, 0x0, [0xf, 0x4, 0xb472, 0xb, 0x6, 0x9, 0x9c]}, @CTA_NAT_SRC={0x2c, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @dev={0xfe, 0x80, '\x00', 0xc}}, @CTA_NAT_V6_MINIP={0x14, 0x4, @remote}]}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xb, 0x1, 'amanda\x00'}}, @CTA_SEQ_ADJ_ORIG={0x2c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x75}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x651}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x4}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x4a}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0xfffff7dd}]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2004}, @CTA_NAT_DST={0x4}, @CTA_SEQ_ADJ_REPLY={0x44, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x10}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x10}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x10000}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x3}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x6}]}, 0xf4}, 0x1, 0x0, 0x0, 0x1}, 0x40)

1.027292246s ago: executing program 1 (id=2955):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000540), 0x4)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x12, r0, 0x0)
r1 = socket(0xa, 0x6, 0x0)
getsockopt$inet6_mreq(r1, 0x10d, 0xa9, 0x0, &(0x7f0000000000)=0x300)

929.054314ms ago: executing program 0 (id=2956):
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0x19, 0x0, &(0x7f0000000440)='syzkaller\x00'}, 0x90)
sendmsg$inet(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000001600)="8a", 0x1}], 0x1}, 0x0)
recvmsg$unix(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440), 0x3}, 0x0)
r2 = syz_io_uring_setup(0x10e, &(0x7f0000000140)={0x0, 0xfffffffc}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000200)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
rt_sigsuspend(&(0x7f0000000100), 0x8)

928.940424ms ago: executing program 1 (id=2957):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r0, 0x84, 0x2, &(0x7f00000002c0)="1a00000002000000", 0x8)

928.839984ms ago: executing program 1 (id=2958):
socket$inet6_sctp(0xa, 0x801, 0x84)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
epoll_create1(0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000180)={[{@noauto_da_alloc}, {@jqfmt_vfsold}, {@noquota}, {@norecovery}, {@delalloc}]}, 0x1, 0x4ce, &(0x7f0000000a00)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f00000001c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
pause()
r0 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x4380000, @loopback={0xf5ff}}, 0x1c)

859.34974ms ago: executing program 3 (id=2960):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000000)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000040)=@in={0x2, 0x0, @remote}, 0x80, 0x0, 0x0, &(0x7f0000000a00)=[{0x88, 0x0, 0x0, "fb396f8d00f46d7f3ffd4ab13348a80761cb55de1d0333fdabfe5ddbd8f086595f4f9ceb7398888c76f0d900acdec1a2eada242ac4ce69f5c0fc7f2779c1176a8a2d357b8c121b6348c77fa920cc15a89ac94af7a7b82db2766333f7b2636314cd36ef6825c544a851a3c2e0b477d50c01"}, {0x68, 0x0, 0x0, "c62af04a7bc2cef463571b6bc3d08763004b4b63c4bab872605dc83c98cade4b0ce2af11b43010feb5741b0fcfdbd6e6ef9c0e0039f791c53a9796cd00230ff782f06dd4a9c07a2aa17a249cd9f8f125af"}, {0x90, 0x0, 0x0, "66b3f98a00b7c3129117568a8679dd6f279f752dee167a1b40803d4a1b97dad53c58e5c7b38b011f0cc76a80dce0abf688b277f907ecaf5ccd013d7729234782ed6cd290b7d0c3a190523cae5e7383076e4de031dbe47374a474cdf9ce209383dc4991411c3c4abd5ceaff6e3f5e2c3ef1338390c86b7da2870b6a13f31362"}, {0xa8, 0x0, 0x0, "03dfeb3da715307aaa4750fe2ac91b690a8005f36f8ff3429a9545d11114444086c0a852e1850f6cf68b0aa6baea6436a8ceb1d4fd5121c03dacdd46b7398e9187f79d5ced044cd1b16715b2ed1503c53f3d6f9867ab37ac8b57f14a86041f4f037884df544de5ca6291af21746ae16e442ebc1799ddcdf501508573d2dc419a92c2f09ee6da0e6afd007f7aa974238906"}], 0x228}, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0xd14}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x250}, {&(0x7f00000007c0)=""/154, 0x48c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

800.347894ms ago: executing program 3 (id=2962):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c001800", @ANYRES16=r1, @ANYBLOB="230900000000000000000100000005000700000000000800090000000000060002000100000008000a000100000008001700", @ANYRES32], 0x3c}}, 0x0)

741.051379ms ago: executing program 3 (id=2963):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0xe00, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000002d00e501000000000000000007000000", @ANYRES32, @ANYBLOB="200001", @ANYRES32, @ANYBLOB="00000080"], 0x38}}, 0x0)

737.482999ms ago: executing program 3 (id=2965):
socket$inet6_sctp(0xa, 0x0, 0x84)
r0 = epoll_create(0x2a)
r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0))
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x40086602, &(0x7f0000000540)={'geneve1\x00', @multicast})
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000100), 0x1001)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7fff, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r5}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)
setrlimit(0x2, &(0x7f00000000c0)={0x0, 0x2400000})
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000073d000/0x3000)=nil)
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x1000403, 0x2000000000032, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="00008b00000095000000000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1c}, 0x90)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r6=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x4bf0a285, 0xf, 0x6, 0x59d, 0x1, 0x3, '\x00', r6, 0xffffffffffffffff, 0x9, 0x5, 0x2, 0x2}, 0x48)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x82, &(0x7f0000000040), 0x7, 0x4d6, &(0x7f0000000740)="$eJzs3EFsVEUfAPD/27a0QPnoh4iCqEU0NhpbKCgcTAxGEw+aGPGgx6YtBFmooTURQmRJDB4NiXfj0asHr+rNcDLxikcTQ0IMF8DTM2/3bXe73V3a7bYr9PdLlp2Znbczs/Pm7bwZtgFsWqPZP0nEcETcjIidEVFozDBaebp35/L0/TuXp6OUpif/TrLD4m4WzyX58/Y8MlaIKHyZ1F6oM3/x0tmpYnH2Qh6fWDj36cT8xUuvnDk3dXr29Oz5yePHjx45fOy1yVdX36gm5WXturvvi7n9e9/5+Pp70/3V9KH8ub4d3TIao82qUvZCtwvrsR114aS/Xc431r8yrFh2/mfdNVAe/zujL9p2HvAISdM0HWz9ciltdHVZCvDQSqLXNQB6o/pFn93/Vh/NJgJb1mf60XO3T1RugLJ238sfEc+WE6vrIAMN97fdNBoRH5X++TZ7xDqtQwAA1Pv5RHUm2DD/G4nYU5fvf/keykhE/D8idkXEYxGxOyIej0reJyLiyYb374uItE35ow3x5fOfwq21tbC9bP73er63VZv/Rf0u2EhfHtsRUZ0wzx7KP5OxGBg8daY4e7hNGb+89fvXrV6rn/9lj6z86lwwr8et/oYFupmphamOG9zg9tWIff2N7U/6I5LFnYAkIvZGxL5VvO9IXfjMS9/vX4wMLM334PaXpU330bqwVZF+F/Fipf9LsaT/ayUm7fcnJ4aiOHtoIjsLDjUt48Zv195vVf4D2//jn42HvH3sp5P5yFq7rP+31Z3/Ud2/rbV/JIlIFvdr51dfxrU/vmp5T9Pp+b8l+bAcrt6Xfj61sHDhcMSW5N3l6ZO1Y6vx7DlKlfaPHWw+/nflx2SfxFMRkZ3ET0fEM1G5QxyN9MqBiHguIg62af+vbz7/SeftX19Z+2eaXv+W9H9tvz4LZKkXlqRMFZNSJXctZTHQd/bAzfstLh4r6/+j5dBYntL8+pcsuUQsr0XzwBo/PgAAAHgoFCJiuG4taTgKhfHxyhrQ7thWKM7NL7x8au6z8zOV3wiMxEChutJVWQ8eSKrrnyN18cmG+JF83fibvq3l+Pj0XHGmpy0HtpfHfFIYX7wWVMZ/5q/uLDED/2V+8gOb14PG/57rG1QRYMP5/ofNq278l1pkKfmfMvBoWsn3v7VAeDQ1G/9XOjgGeLikxjJsaqsZ/0vz3tjZ9coAG6o/PlgMF3paE2Cjmf/DprSiH8l3HEgHm780FMszx1D7N+yLzqqxtUlZPQlkM6uelL61k6Oqf02hZZ4orO4NB5f9yYjO+vTU2j+W03u6fvKn+f5Yt3vwhw0Zp80C7a8bk8Prd00CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADopn8DAAD//7x926o=")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
open(0x0, 0x143142, 0x0)
ioctl$EXT4_IOC_SETFSUUID(r7, 0x4008662c, &(0x7f0000000000)={0x10, 0x0, "31eacb679f3f4fd24dab671ab3445ed5"})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)

712.194992ms ago: executing program 3 (id=2967):
set_mempolicy(0x4003, &(0x7f0000000080)=0x7, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xa00}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

648.985726ms ago: executing program 3 (id=2969):
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = epoll_create1(0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f00000000c0))
r5 = epoll_create1(0x0)
ppoll(&(0x7f0000000080)=[{r5}], 0x1, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r3, &(0x7f0000000000)={0xa0000001})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r7 = socket$unix(0x1, 0x5, 0x0)
r8 = dup2(r7, r6)
close_range(r8, 0xffffffffffffffff, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r10}, {0x7, 0x0, 0xb, 0x7}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xb, 0xa, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x7, 0x2, 0x0, r9}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{}, {0x6, 0x0, 0x5, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

465.845562ms ago: executing program 4 (id=2970):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000000)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
ioperm(0x0, 0x2, 0x400000000007)
socket(0x18, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_dev$usbmon(&(0x7f0000000180), 0x0, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x8008551d, &(0x7f00000004c0)={0x0, 0x1, [{0xb}]})
r3 = dup3(r2, r1, 0x0)
preadv(r3, &(0x7f0000000300)=[{&(0x7f0000000000)=""/24, 0x18}, {0x0}], 0x1000000000000374, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000040000000c0000000c00000002000000000000ae0c59d900000000000000"], 0x0, 0x26}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000005800)={r4, 0x20, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x0, 0x0}}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000690000000000000100000094"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r6}, 0x10)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="18000000210001"], 0x18}}, 0x0)
r8 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
fsmount(r8, 0x0, 0x0)
getpid()
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f00000001c0), 0x3, 0x5eb, &(0x7f0000000c00)="$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")
socket$nl_route(0x10, 0x3, 0x0)

361.054031ms ago: executing program 2 (id=2972):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000300), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r2, 0x1, 0x0, 0x0, {0x4, 0x0, 0x25}, [@NLBL_MGMT_A_PROTOCOL={0x18, 0x2, 0x5}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @empty}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}]}, 0x34}}, 0x0)

360.897691ms ago: executing program 2 (id=2973):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000042, 0x8) (async)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0) (async)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async, rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 32)
close(0xffffffffffffffff) (async)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
setsockopt$sock_int(r1, 0x28, 0x2a, 0x0, 0x0)
open(0x0, 0x0, 0x0) (async)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, 0xf, 0x401, 0x40}) (async)
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0xc22f03)
r5 = fcntl$dupfd(r4, 0x0, r4)
poll(&(0x7f0000000080)=[{r5, 0x462}], 0x1, 0x40000) (async)
openat$cgroup_ro(r3, &(0x7f0000000100)='devices.list\x00', 0x275a, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
socket$nl_route(0x10, 0x3, 0x0) (rerun: 64)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000180), 0xfea7) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x810, r6, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
socket$rxrpc(0x21, 0x2, 0xa) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

317.331404ms ago: executing program 2 (id=2974):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=@newtaction={0x74, 0x30, 0x1, 0xffffa888, 0x0, {}, [{0x60, 0x1, [@m_mpls={0x5c, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_MPLS_PROTO={0x6, 0x4, 0x6558}, @TCA_MPLS_TTL={0x5, 0x7, 0x51}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)

277.138027ms ago: executing program 4 (id=2975):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000000)={0x3, &(0x7f0000000180)=[{0x28}, {0x4}, {0x6}]}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)="2e04", 0x2}], 0x1, 0x0, 0x0, 0x5865}, 0xf00)

213.038252ms ago: executing program 2 (id=2976):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='memory.swap.current\x00', 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x4, 0x0, r2, 0xfafd, '\x00', 0x0, 0xffffffffffffffff, 0x4}, 0x48)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_HASH_DREG={0x8}, @NFTA_HASH_SREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)

212.723143ms ago: executing program 2 (id=2977):
r0 = shmget$private(0x0, 0x4000, 0x54001800, &(0x7f0000000000/0x4000)=nil)
shmat(r0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
r1 = shmat(r0, &(0x7f0000ffc000/0x3000)=nil, 0x0)
r2 = shmat(r0, &(0x7f0000000000/0x1000)=nil, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x3, 0x0, 0x0, 0x1, 0x1000, &(0x7f0000001040)=""/4096}, 0x90)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x178, 0x1403, 0x1, 0x70bd29, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'sit0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_batadv\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'wg0\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'vlan1\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'caif0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'nicvf0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'wg0\x00'}}]}, 0x178}}, 0x4000080)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/pids.max\x00', 0x0, 0x0)
syz_io_uring_setup(0x6908, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f0000000140), &(0x7f0000000100)=<r5=>0x0)
syz_io_uring_setup(0x1868, 0x0, &(0x7f00000005c0)=<r6=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r6, r5, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(0xffffffffffffffff, 0x184c, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000180)={'syztnl1\x00', &(0x7f0000000100)={'ip6gre0\x00', <r7=>0x0, 0x4, 0x9, 0x5, 0x9, 0x6c, @mcast2, @ipv4={'\x00', '\xff\xff', @empty}, 0x80, 0x1, 0x0, 0x5}})
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x2c, &(0x7f0000000380)=@raw=[@exit, @tail_call, @alu={0x7, 0x0, 0xb, 0xa, 0x0, 0x18, 0xfffffffffffffffa}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}}, @ringbuf_output={{}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @kfunc, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x401}}, @jmp={0x5, 0x1, 0x7, 0x4, 0x6, 0xffffffffffffffe0, 0xfffffffffffffff0}], &(0x7f0000000240)='syzkaller\x00', 0xffff8000, 0x91, &(0x7f0000000580)=""/145, 0x40f00, 0x12, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000000680)={0x2, 0x0, 0x1, 0x6}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f00000006c0)=[{0x3, 0x2, 0xb, 0xb}, {0x1, 0x4, 0xd, 0xa}, {0x0, 0x2, 0xf}, {0x1, 0x4, 0x6, 0xc}, {0x2, 0x5, 0x0, 0x1}]}, 0x90)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={@map=0x1, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}, 0x40)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000003c0)={@map, 0xffffffffffffffff, 0x26, 0x0, 0x0, @link_id, r9}, 0x20)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000800)={@ifindex=r7, 0xffffffffffffffff, 0x1d, 0x14, r8, @link_fd, r9}, 0x20)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x488d4)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x31, &(0x7f0000000640), 0x4)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x31, &(0x7f0000000000), 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r3)
shmat(r0, &(0x7f0000000000/0x3000)=nil, 0x5000)
shmdt(r1)
r10 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r10, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
shmdt(r2)

212.503182ms ago: executing program 2 (id=2978):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x1718, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a4b78c660e677df701908b9aaa3f6a00400", "036c47c6780820d1cbf7896de1fdcf335263bdbcef549ba197fce47ddfdd753abd9501ce721b6ae9b49600002a00", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
write$P9_RCLUNK(r0, &(0x7f0000000180)={0x7}, 0x7)
socket$packet(0x11, 0x3, 0x300)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1000401, &(0x7f00000003c0)={[{@nolazytime}, {@acl}, {@resgid}]}, 0x84, 0x49a, &(0x7f0000000440)="$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")
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
open$dir(&(0x7f00000002c0)='./control/file0\x00', 0x0, 0x200000000000000)
open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0)
unlink(&(0x7f00000001c0)='./control/file0\x00')
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001600)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080))
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)={{0x14}, [@NFT_MSG_NEWSET={0x2c, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x54}}, 0x0)

15.198099ms ago: executing program 0 (id=2979):
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000040)='./file0\x00', 0x300001a, &(0x7f0000001080)=ANY=[@ANYBLOB="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", @ANYBLOB="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"], 0xf, 0x2a6, &(0x7f0000000480)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x0, 0x70, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f0000000040)=@tcp, 0x2}, 0x20)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000700)={'syztnl0\x00', &(0x7f0000000600)={'tunl0\x00', 0x0, 0x0, 0xa6, 0x5, 0x0, {{0x1d, 0x4, 0x2, 0x1, 0x74, 0x67, 0x0, 0x0, 0x0, 0x0, @remote, @remote, {[@timestamp_prespec={0x44, 0x14, 0x0, 0x3, 0x3, [{@multicast1, 0x5}, {@multicast2}]}, @rr={0x7, 0x13, 0x0, [@remote, @loopback, @rand_addr, @private=0xa010102]}, @ssrr={0x89, 0x17, 0xd2, [@multicast1, @multicast2, @broadcast, @loopback, @broadcast]}, @rr={0x7, 0x7, 0x96, [@multicast1]}, @end, @ssrr={0x89, 0x17, 0x5a, [@local, @private=0xa010101, @rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote]}]}}}}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000800)={{r1}, 0x0, 0x0}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x6, 0x0, 0x0, &(0x7f0000000500)='GPL\x00', 0x7, 0x9e, &(0x7f0000000540)=""/158, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000008c0)=[{0x0, 0x1}], 0x10, 0x40}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r3, &(0x7f0000000300)=""/48, 0x30)
syz_io_uring_setup(0x7dca, &(0x7f0000000340), &(0x7f0000000140), &(0x7f0000000100))
setxattr$trusted_overlay_nlink(&(0x7f00000003c0)='./cgroup.cpu/cpuset.cpus\x00', &(0x7f0000000400), &(0x7f0000000440)={'U+', 0x1}, 0x16, 0x0)
getdents(r0, &(0x7f0000000300)=""/104, 0x68)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x8, 0x0, 0x0}, 0x90)
r4 = io_uring_setup(0x2551, &(0x7f0000000440))
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0x16, 0x20000028, r5)
r6 = socket(0x11, 0xa, 0x0)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@unlock_all, 0x7)
sendmsg$can_bcm(r6, &(0x7f00000000c0)={&(0x7f0000000000), 0x10, &(0x7f0000000080)={0x0}, 0x8}, 0x0)
ioctl$TIOCGICOUNT(r0, 0x545d, 0x0)

0s ago: executing program 1 (id=2980):
socket$packet(0x11, 0xa, 0x300)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0})
bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14)
syz_emit_ethernet(0x56, &(0x7f0000000340)={@broadcast, @broadcast, @void, {@mpls_mc={0x8848, {[], @ipv6=@tipc_packet={0x0, 0x6, "04c9d2", 0x20, 0x6, 0x0, @dev, @private0, {[], @payload_direct={{{{0x20, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x300}}}}}}}}}}, 0x0)

kernel console output (not intermixed with test programs):

7, size=2048 fake=0
[  160.478758][ T8961] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.500372][T10643] dvmrp1: entered allmulticast mode
[  160.983349][T10647] sit0 speed is unknown, defaulting to 1000
[  161.089510][T10672] loop4: detected capacity change from 0 to 256
[  161.101535][T10672] FAT-fs (loop4): Unrecognized mount option "shortnHme=win95" or missing value
[  161.116716][T10674] netlink: 'syz.0.2358': attribute type 6 has an invalid length.
[  161.169108][T10647] chnl_net:caif_netlink_parms(): no params data found
[  161.247752][T10686] netlink: 'syz.1.2362': attribute type 7 has an invalid length.
[  161.255674][T10686] netlink: 'syz.1.2362': attribute type 39 has an invalid length.
[  161.312347][T10647] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.319511][T10647] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.329264][T10647] bridge_slave_0: entered allmulticast mode
[  161.337776][T10647] bridge_slave_0: entered promiscuous mode
[  161.349141][T10647] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.356658][T10647] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.372372][T10647] bridge_slave_1: entered allmulticast mode
[  161.381284][T10647] bridge_slave_1: entered promiscuous mode
[  161.411216][T10647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  161.433236][T10647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  161.433389][T10702] loop1: detected capacity change from 0 to 512
[  161.464332][T10702] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  161.482224][T10647] team0: Port device team_slave_0 added
[  161.497105][T10647] team0: Port device team_slave_1 added
[  161.504827][T10042] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  161.531373][T10647] batman_adv: batadv0: Adding interface: batadv_slave_0
[  161.538394][T10647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.564390][T10647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  161.591744][T10647] batman_adv: batadv0: Adding interface: batadv_slave_1
[  161.598873][T10647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.624876][T10647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  161.662163][T10711] usb usb1: usbfs: process 10711 (syz.1.2371) did not claim interface 0 before use
[  161.662468][T10647] hsr_slave_0: entered promiscuous mode
[  161.684368][T10713] loop1: detected capacity change from 0 to 128
[  161.691341][T10647] hsr_slave_1: entered promiscuous mode
[  161.697679][T10647] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  161.698652][T10713] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  161.705228][T10647] Cannot create hsr debugfs directory
[  161.723754][T10713] ext4 filesystem being mounted at /40/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  161.761398][   T29] kauditd_printk_skb: 11 callbacks suppressed
[  161.761414][   T29] audit: type=1400 audit(2000000051.850:1594): avc:  denied  { ioctl } for  pid=10716 comm="syz.3.2373" path="socket:[37420]" dev="sockfs" ino=37420 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  161.792616][T10713] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:405: inode #2: comm syz.1.2372: No space for directory leaf checksum. Please run e2fsck -D.
[  161.807976][T10713] EXT4-fs error (device loop1): __ext4_find_entry:1695: inode #2: comm syz.1.2372: checksumming directory block 0
[  161.814665][T10722] loop3: detected capacity change from 0 to 1024
[  161.841658][T10722] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.857121][T10042] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  161.905410][T10647] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  161.915845][T10647] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.916466][ T9905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.935171][   T29] audit: type=1400 audit(2000000052.020:1595): avc:  denied  { setopt } for  pid=10725 comm="syz.1.2375" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  161.954700][   T29] audit: type=1400 audit(2000000052.020:1596): avc:  denied  { write } for  pid=10725 comm="syz.1.2375" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  161.976840][T10726] netlink: 168 bytes leftover after parsing attributes in process `syz.1.2375'.
[  162.028564][T10732] IPv6: NLM_F_REPLACE set, but no existing node found!
[  162.058485][T10647] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  162.071229][T10647] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.130843][T10742] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2384'.
[  162.140534][   T29] audit: type=1400 audit(2000000052.220:1597): avc:  denied  { create } for  pid=10739 comm="syz.3.2383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  162.143187][T10740] loop3: detected capacity change from 0 to 256
[  162.160818][   T29] audit: type=1400 audit(2000000052.230:1598): avc:  denied  { setopt } for  pid=10739 comm="syz.3.2383" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  162.224562][T10647] team0: Port device netdevsim1 removed
[  162.245189][T10740] FAT-fs (loop3): Directory bread(block 64) failed
[  162.254428][T10647] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  162.259026][T10740] FAT-fs (loop3): Directory bread(block 65) failed
[  162.264737][T10647] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.292773][T10740] FAT-fs (loop3): Directory bread(block 66) failed
[  162.299527][T10740] FAT-fs (loop3): Directory bread(block 67) failed
[  162.306306][T10740] FAT-fs (loop3): Directory bread(block 68) failed
[  162.306659][T10754] tipc: Started in network mode
[  162.312909][T10740] FAT-fs (loop3): Directory bread(block 69) failed
[  162.317823][T10754] tipc: Node identity aaaaaaaaaa41, cluster identity 4711
[  162.326551][T10740] FAT-fs (loop3): Directory bread(block 70) failed
[  162.331828][T10754] tipc: Enabled bearer <eth:geneve1>, priority 10
[  162.339851][T10740] FAT-fs (loop3): Directory bread(block 71) failed
[  162.350933][T10766] tipc: Enabling of bearer <eth:geneve1> rejected, already enabled
[  162.361039][T10740] FAT-fs (loop3): Directory bread(block 72) failed
[  162.367754][T10740] FAT-fs (loop3): Directory bread(block 73) failed
[  162.399821][T10740] bio_check_eod: 13 callbacks suppressed
[  162.399837][T10740] syz.3.2383: attempt to access beyond end of device
[  162.399837][T10740] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  162.430236][T10647] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  162.435933][T10740] syz.3.2383: attempt to access beyond end of device
[  162.435933][T10740] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256
[  162.440569][T10647] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.498311][T10781] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2394'.
[  162.505671][   T29] audit: type=1400 audit(2000000052.600:1599): avc:  denied  { read } for  pid=10783 comm="syz.0.2395" name="usbmon0" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  162.515748][T10784] loop1: detected capacity change from 0 to 1024
[  162.533272][   T29] audit: type=1400 audit(2000000052.620:1600): avc:  denied  { open } for  pid=10783 comm="syz.0.2395" path="/dev/usbmon0" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  162.538052][T10784] EXT4-fs: Ignoring removed nobh option
[  162.569589][T10784] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  162.581126][T10784] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.585713][   T29] audit: type=1400 audit(2000000052.670:1601): avc:  denied  { mount } for  pid=10783 comm="syz.0.2395" name="/" dev="rpc_pipefs" ino=36666 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  162.598918][T10781] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2394'.
[  162.646991][T10647] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  162.657387][T10647] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  162.667281][T10647] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  162.676090][T10647] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  162.677789][T10042] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.699672][T10798] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  162.744762][T10647] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.784018][T10647] 8021q: adding VLAN 0 to HW filter on device team0
[  162.796335][T10813] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2405'.
[  162.812279][  T890] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.819374][  T890] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.828980][  T890] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.836084][  T890] bridge0: port 2(bridge_slave_1) entered forwarding state
[  162.880453][T10821] loop4: detected capacity change from 0 to 512
[  162.900139][T10821] EXT4-fs (loop4): too many log groups per flexible block group
[  162.907897][T10821] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  162.917349][T10821] EXT4-fs (loop4): mount failed
[  162.941674][T10647] 8021q: adding VLAN 0 to HW filter on device batadv0
[  162.952419][T10834] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2410'.
[  162.961510][T10819] loop3: detected capacity change from 0 to 1024
[  162.984708][T10821] netlink: 'syz.4.2409': attribute type 10 has an invalid length.
[  163.010862][T10819] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.029468][T10821] lo: entered promiscuous mode
[  163.047965][T10820] lo: left promiscuous mode
[  163.062204][T10848] loop1: detected capacity change from 0 to 2048
[  163.069861][ T9905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.080480][T10848] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  163.097552][T10647] veth0_vlan: entered promiscuous mode
[  163.111327][T10647] veth1_vlan: entered promiscuous mode
[  163.117005][T10853] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=15 sclass=netlink_route_socket pid=10853 comm=syz.4.2417
[  163.134736][T10647] veth0_macvtap: entered promiscuous mode
[  163.145811][T10647] veth1_macvtap: entered promiscuous mode
[  163.157070][T10859] loop3: detected capacity change from 0 to 512
[  163.159060][T10855] xt_TCPMSS: Only works on TCP SYN packets
[  163.165834][T10859] ext4: Bad value for 'debug_want_extra_isize'
[  163.183507][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.194176][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.204013][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.214519][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.224511][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.235029][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.244929][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.258941][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.268791][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.279257][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.289103][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.299561][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.309385][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.320136][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.330005][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.340487][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.351533][   T29] audit: type=1400 audit(2000000053.430:1602): avc:  denied  { create } for  pid=10860 comm="syz.1.2419" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  163.354655][T10647] batman_adv: batadv0: Interface activated: batadv_slave_0
[  163.383244][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.393911][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.403921][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.414506][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.424443][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.435010][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.444852][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.455294][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.465163][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.475634][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.485451][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.496373][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.506234][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.516742][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.526576][T10647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.537561][T10647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.551130][    T8] tipc: Node number set to 15444650
[  163.551384][T10647] batman_adv: batadv0: Interface activated: batadv_slave_1
[  163.557122][   T29] audit: type=1400 audit(2000000053.470:1603): avc:  denied  { write } for  pid=10860 comm="syz.1.2419" name="file0" dev="tmpfs" ino=287 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  163.572199][T10647] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.595960][T10647] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.604793][T10647] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.613527][T10647] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.638122][   T53] bridge_slave_1: left allmulticast mode
[  163.643869][   T53] bridge_slave_1: left promiscuous mode
[  163.649700][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.658133][T10873] loop4: detected capacity change from 0 to 512
[  163.665318][   T53] bridge_slave_0: left allmulticast mode
[  163.671246][   T53] bridge_slave_0: left promiscuous mode
[  163.677289][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.800177][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  163.813699][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  163.824323][   T53] bond0 (unregistering): Released all slaves
[  163.833880][   T53] bond1 (unregistering): Released all slaves
[  163.913937][T10893] loop4: detected capacity change from 0 to 128
[  163.921721][T10881] loop3: detected capacity change from 0 to 1024
[  163.934736][T10881] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.935579][T10893] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  163.962066][T10893] ext4 filesystem being mounted at /142/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  164.007965][T10899] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2428'.
[  164.018900][   T53] hsr_slave_0: left promiscuous mode
[  164.027233][T10899] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2428'.
[  164.041534][   T53] hsr_slave_1: left promiscuous mode
[  164.042554][T10891] loop2: detected capacity change from 0 to 512
[  164.048637][ T9905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.068536][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  164.076748][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[  164.087646][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  164.095248][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[  164.099729][ T8938] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  164.124730][T10891] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.146148][   T53] veth1_macvtap: left promiscuous mode
[  164.151823][   T53] veth0_macvtap: left promiscuous mode
[  164.157385][   T53] veth1_vlan: left promiscuous mode
[  164.179502][T10891] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.188273][T10647] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.337371][T10920] loop3: detected capacity change from 0 to 4096
[  164.357494][   T53] team0 (unregistering): Port device team_slave_1 removed
[  164.365200][T10920] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.378468][   T53] team0 (unregistering): Port device team_slave_0 removed
[  164.450894][T10919] bridge0: port 3(vlan2) entered blocking state
[  164.457390][T10919] bridge0: port 3(vlan2) entered disabled state
[  164.466269][T10919] vlan2: entered allmulticast mode
[  164.471410][T10919] gretap0: entered allmulticast mode
[  164.481670][T10919] vlan2: entered promiscuous mode
[  164.486767][T10919] gretap0: entered promiscuous mode
[  164.493068][T10919] bridge0: port 3(vlan2) entered blocking state
[  164.499379][T10919] bridge0: port 3(vlan2) entered forwarding state
[  164.508719][T10921] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2433'.
[  164.550532][ T9905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.633291][T10938] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  164.647552][T10934] loop4: detected capacity change from 0 to 1024
[  164.664477][T10934] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.692387][ T8938] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.707021][T10945] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  164.713566][T10945] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  164.721049][T10945] vhci_hcd vhci_hcd.0: Device attached
[  164.843529][T10965] loop4: detected capacity change from 0 to 2048
[  164.924024][T10967] loop4: detected capacity change from 0 to 2048
[  164.930542][ T3159] vhci_hcd: vhci_device speed not set
[  164.960038][T10967] FAULT_INJECTION: forcing a failure.
[  164.960038][T10967] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.973235][T10967] CPU: 1 PID: 10967 Comm: syz.4.2449 Not tainted 6.10.0-rc7-syzkaller-00139-g8a18fda0febb #0
[  164.983470][T10967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  164.993521][T10967] Call Trace:
[  164.996793][T10967]  <TASK>
[  164.999740][T10967]  dump_stack_lvl+0xf2/0x150
[  165.004407][T10967]  dump_stack+0x15/0x20
[  165.008578][T10967]  should_fail_ex+0x229/0x230
[  165.013300][T10967]  should_fail+0xb/0x10
[  165.017499][T10967]  should_fail_usercopy+0x1a/0x20
[  165.022557][T10967]  _copy_to_user+0x1e/0xa0
[  165.027091][T10967]  simple_read_from_buffer+0xa0/0x110
[  165.032532][T10967]  proc_fail_nth_read+0xfc/0x140
[  165.037527][T10967]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  165.043077][T10967]  vfs_read+0x1a2/0x6e0
[  165.047263][T10967]  ? __rcu_read_unlock+0x4e/0x70
[  165.052264][T10967]  ? __fget_files+0x1da/0x210
[  165.056969][T10967]  ksys_read+0xeb/0x1b0
[  165.061154][T10967]  __x64_sys_read+0x42/0x50
[  165.065678][T10967]  x64_sys_call+0x27e5/0x2d70
[  165.070364][T10967]  do_syscall_64+0xc9/0x1c0
[  165.074935][T10967]  ? clear_bhb_loop+0x55/0xb0
[  165.079781][T10967]  ? clear_bhb_loop+0x55/0xb0
[  165.084499][T10967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.090407][T10967] RIP: 0033:0x7face548c6bc
[  165.094822][T10967] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  165.114553][T10967] RSP: 002b:00007face470f040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  165.122966][T10967] RAX: ffffffffffffffda RBX: 00007face561bf60 RCX: 00007face548c6bc
[  165.131076][T10967] RDX: 000000000000000f RSI: 00007face470f0b0 RDI: 000000000000000a
[  165.139066][T10967] RBP: 00007face470f0a0 R08: 0000000000000000 R09: 0000000000000000
[  165.147207][T10967] R10: 0000000000000fff R11: 0000000000000246 R12: 0000000000000001
[  165.155323][T10967] R13: 000000000000000b R14: 00007face561bf60 R15: 00007ffce55a4418
[  165.163406][T10967]  </TASK>
[  165.166731][ T3159] usb 7-1: new full-speed USB device number 2 using vhci_hcd
[  165.192206][T10969] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=10969 comm=syz.2.2450
[  165.272784][T10971] __nla_validate_parse: 3 callbacks suppressed
[  165.272803][T10971] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2451'.
[  165.288563][T10971] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2451'.
[  165.301913][T10971] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  165.311777][T10981] loop2: detected capacity change from 0 to 1024
[  165.316053][T10971] netlink: 'syz.4.2451': attribute type 32 has an invalid length.
[  165.323701][T10981] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.408127][T10996] loop4: detected capacity change from 0 to 128
[  165.500246][T11000] loop4: detected capacity change from 0 to 512
[  165.526941][T10946] vhci_hcd: connection closed
[  165.527155][   T53] vhci_hcd: stop threads
[  165.536151][   T53] vhci_hcd: release socket
[  165.538641][T11000] dccp_invalid_packet: P.Data Offset(0) too small
[  165.540576][   T53] vhci_hcd: disconnect device
[  165.556674][T11000] loop4: detected capacity change from 0 to 512
[  165.563661][T11000] EXT4-fs: Ignoring removed orlov option
[  165.570859][T11000] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=6040e09c, mo2=0102]
[  165.579030][T11000] System zones: 1-12
[  165.583536][T11000] EXT4-fs error (device loop4): ext4_orphan_get:1394: inode #15: comm syz.4.2462: casefold flag without casefold feature
[  165.599777][T11000] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz.4.2462: couldn't read orphan inode 15 (err -117)
[  165.615484][T11000] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.631840][T11000] EXT4-fs (loop4): shut down requested (0)
[  165.648150][ T8938] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.804924][T11009] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2465'.
[  165.917248][T11016] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2468'.
[  166.069685][T11026] loop3: detected capacity change from 0 to 512
[  166.078354][T11026] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2234: inode #15: comm syz.3.2471: corrupted in-inode xattr: invalid ea_ino
[  166.094344][T11026] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.2471: couldn't read orphan inode 15 (err -117)
[  166.107313][T11026] EXT4-fs (loop3): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.142152][T11034] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2473'.
[  166.158281][ T9905] EXT4-fs (loop3): unmounting filesystem 00000007-0000-0000-0000-000000000000.
[  166.171387][T11036] loop1: detected capacity change from 0 to 4096
[  166.180417][T11036] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.184684][T11039] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2476'.
[  166.204437][T11036] netlink: 280 bytes leftover after parsing attributes in process `syz.1.2474'.
[  166.227615][T10042] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.266361][T11050] FAULT_INJECTION: forcing a failure.
[  166.266361][T11050] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  166.279488][T11050] CPU: 0 PID: 11050 Comm: syz.4.2480 Not tainted 6.10.0-rc7-syzkaller-00139-g8a18fda0febb #0
[  166.289660][T11050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  166.299727][T11050] Call Trace:
[  166.303032][T11050]  <TASK>
[  166.305964][T11050]  dump_stack_lvl+0xf2/0x150
[  166.310600][T11050]  dump_stack+0x15/0x20
[  166.314882][T11050]  should_fail_ex+0x229/0x230
[  166.319663][T11050]  should_fail+0xb/0x10
[  166.323824][T11050]  should_fail_usercopy+0x1a/0x20
[  166.328897][T11050]  _copy_to_user+0x1e/0xa0
[  166.333323][T11050]  simple_read_from_buffer+0xa0/0x110
[  166.338729][T11050]  proc_fail_nth_read+0xfc/0x140
[  166.343698][T11050]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  166.349264][T11050]  vfs_read+0x1a2/0x6e0
[  166.353433][T11050]  ? __rcu_read_unlock+0x4e/0x70
[  166.358392][T11050]  ? __fget_files+0x1da/0x210
[  166.363104][T11050]  ksys_read+0xeb/0x1b0
[  166.367277][T11050]  __x64_sys_read+0x42/0x50
[  166.371797][T11050]  x64_sys_call+0x27e5/0x2d70
[  166.376536][T11050]  do_syscall_64+0xc9/0x1c0
[  166.381053][T11050]  ? clear_bhb_loop+0x55/0xb0
[  166.385767][T11050]  ? clear_bhb_loop+0x55/0xb0
[  166.390557][T11050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.396464][T11050] RIP: 0033:0x7face548c6bc
[  166.400889][T11050] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  166.420566][T11050] RSP: 002b:00007face470f040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  166.429101][T11050] RAX: ffffffffffffffda RBX: 00007face561bf60 RCX: 00007face548c6bc
[  166.437148][T11050] RDX: 000000000000000f RSI: 00007face470f0b0 RDI: 0000000000000003
[  166.445120][T11050] RBP: 00007face470f0a0 R08: 0000000000000000 R09: 0000000000000000
[  166.453093][T11050] R10: 0000000000000032 R11: 0000000000000246 R12: 0000000000000001
[  166.461152][T11050] R13: 000000000000000b R14: 00007face561bf60 R15: 00007ffce55a4418
[  166.469181][T11050]  </TASK>
[  166.503697][T11057] loop1: detected capacity change from 0 to 128
[  166.513790][T11048] loop3: detected capacity change from 0 to 512
[  166.521838][T11052] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2481'.
[  166.538025][T11048] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz.3.2479: casefold flag without casefold feature
[  166.551362][T11048] EXT4-fs (loop3): Remounting filesystem read-only
[  166.562266][T11048] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.568616][T11060] loop4: detected capacity change from 0 to 136
[  166.579123][T11048] SELinux: (dev loop3, type ext4) getxattr errno 5
[  166.591437][T11048] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.623053][T11064] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2485'.
[  166.719057][T11067] loop4: detected capacity change from 0 to 128
[  166.752123][T11069] loop3: detected capacity change from 0 to 128
[  166.759707][T11069] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  166.960004][T11073] loop4: detected capacity change from 0 to 512
[  167.090089][T11073] EXT4-fs (loop4): bad geometry: block count 4043309312 exceeds size of device (256 blocks)
[  167.167593][   T29] kauditd_printk_skb: 13 callbacks suppressed
[  167.167613][   T29] audit: type=1400 audit(2000000057.143:1617): avc:  denied  { write } for  pid=11068 comm="syz.3.2488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  167.491473][T11082] loop1: detected capacity change from 0 to 512
[  167.500009][T11082] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2234: inode #15: comm syz.1.2491: corrupted in-inode xattr: bad e_name length
[  167.515098][T11082] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz.1.2491: couldn't read orphan inode 15 (err -117)
[  167.528158][T11082] EXT4-fs (loop1): mounted filesystem 00000004-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.547500][T11082] EXT4-fs warning (device loop1): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[  167.558444][T11082] EXT4-fs warning (device loop1): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[  167.569343][T11082] EXT4-fs warning (device loop1): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[  167.611532][T10042] EXT4-fs (loop1): unmounting filesystem 00000004-0000-0000-0000-000000000000.
[  167.681229][T11089] vlan2: entered promiscuous mode
[  167.768239][T11095] syzkaller0: entered promiscuous mode
[  167.773809][T11095] syzkaller0: entered allmulticast mode
[  167.811010][T11095] loop3: detected capacity change from 0 to 1024
[  167.814269][T11097] loop1: detected capacity change from 0 to 2048
[  167.818431][T11095] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  167.824526][T11097] EXT4-fs: Ignoring removed bh option
[  167.833700][T11095] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  167.838953][T11097] EXT4-fs: Ignoring removed nomblk_io_submit option
[  167.850683][T11095] EXT4-fs (loop3): stripe (255) is not aligned with cluster size (16), stripe is disabled
[  167.856254][T11097] EXT4-fs: quotafile must be on filesystem root
[  167.867983][T11095] EXT4-fs error (device loop3): ext4_get_journal_inode:5752: inode #5: comm syz.3.2496: unexpected bad inode w/o EXT4_IGET_BAD
[  167.885052][T11095] EXT4-fs (loop3): no journal found
[  167.918354][T11097] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2498'.
[  168.108348][   T29] audit: type=1400 audit(2000000058.185:1618): avc:  denied  { bind } for  pid=11107 comm="syz.3.2502" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  168.255741][T11119] loop4: detected capacity change from 0 to 512
[  168.263434][T11119] ext4: Unknown parameter 'smackfsdef'
[  168.334492][T11119] loop4: detected capacity change from 0 to 764
[  168.346788][T11119] netlink: 'syz.4.2507': attribute type 1 has an invalid length.
[  168.354540][T11119] netlink: 'syz.4.2507': attribute type 2 has an invalid length.
[  168.365885][T11119] rock: directory entry would overflow storage
[  168.371265][T11128] loop3: detected capacity change from 0 to 4096
[  168.372094][T11119] rock: sig=0x4f50, size=4, remaining=3
[  168.384262][T11119] iso9660: Corrupted directory entry in block 4 of inode 1792
[  168.388146][T11128] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.404629][   T29] audit: type=1326 audit(2000000058.473:1619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11117 comm="syz.4.2507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face548dbd9 code=0x7ffc0000
[  168.406959][T11128] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.431154][T11119] rock: directory entry would overflow storage
[  168.439737][   T29] audit: type=1326 audit(2000000058.512:1620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11117 comm="syz.4.2507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face548dbd9 code=0x7ffc0000
[  168.443434][T11119] rock: sig=0x4f50, size=4, remaining=3
[  168.466993][   T29] audit: type=1326 audit(2000000058.512:1621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11117 comm="syz.4.2507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=255 compat=0 ip=0x7face548dbd9 code=0x7ffc0000
[  168.467024][   T29] audit: type=1326 audit(2000000058.512:1622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11117 comm="syz.4.2507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face548dbd9 code=0x7ffc0000
[  168.467054][   T29] audit: type=1326 audit(2000000058.512:1623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11117 comm="syz.4.2507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face548dbd9 code=0x7ffc0000
[  168.472608][T11119] iso9660: Corrupted directory entry in block 4 of inode 1792
[  168.496031][   T29] audit: type=1326 audit(2000000058.512:1624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11117 comm="syz.4.2507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7face548dbd9 code=0x7ffc0000
[  168.496063][   T29] audit: type=1326 audit(2000000058.512:1625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11117 comm="syz.4.2507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face548dbd9 code=0x7ffc0000
[  168.597740][   T29] audit: type=1326 audit(2000000058.512:1626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11117 comm="syz.4.2507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7face548dbd9 code=0x7ffc0000
[  168.834866][T11138] qrtr: Invalid version 5
[  168.913799][T11142] tmpfs: Unknown parameter 'gsco0t'
[  168.926928][T11153] ip_vti0: entered promiscuous mode
[  168.932337][T11153] vlan2: entered promiscuous mode
[  168.937460][T11153] vlan2: entered allmulticast mode
[  168.942736][T11153] ip_vti0: entered allmulticast mode
[  168.949963][T11153] ip_vti0: left allmulticast mode
[  168.955577][T11153] ip_vti0: left promiscuous mode
[  168.987545][T11157] loop4: detected capacity change from 0 to 512
[  169.003322][T11157] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.016191][T11157] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  169.028356][T11157] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz.4.2524: Failed to acquire dquot type 0
[  169.067895][ T8938] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.143367][T11167] loop4: detected capacity change from 0 to 128
[  169.283227][T11179] loop1: detected capacity change from 0 to 512
[  169.291229][T11179] EXT4-fs error (device loop1): ext4_orphan_get:1394: inode #15: comm syz.1.2532: casefold flag without casefold feature
[  169.306085][T11179] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz.1.2532: couldn't read orphan inode 15 (err -117)
[  169.306649][T11173] usb usb8: usbfs: process 11173 (syz.4.2529) did not claim interface 0 before use
[  169.318646][T11179] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.343339][T11179] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.429385][T11187] loop1: detected capacity change from 0 to 2048
[  169.436159][T11187] EXT4-fs: Ignoring removed bh option
[  169.446520][T11187] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.468794][T10042] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.515974][T11191] loop1: detected capacity change from 0 to 512
[  169.524183][T11191] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.2536: attempt to clear invalid blocks 1 len 1
[  169.537548][T11191] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2536: bg 0: block 343: padding at end of block bitmap is not set
[  169.552487][T11191] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  169.561766][T11191] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2536: invalid indirect mapped block 1819239214 (level 0)
[  169.576172][T11191] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2536: invalid indirect mapped block 1819239214 (level 1)
[  169.590735][T11191] EXT4-fs (loop1): 1 truncate cleaned up
[  169.598314][T11191] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.624279][T10042] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.723889][T11205] loop3: detected capacity change from 0 to 256
[  169.744178][T11207] loop1: detected capacity change from 0 to 512
[  169.752873][T11207] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.2543: attempt to clear invalid blocks 1 len 1
[  169.766402][T11207] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2543: bg 0: block 343: padding at end of block bitmap is not set
[  169.781107][T11207] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  169.790423][T11207] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2543: invalid indirect mapped block 1819239214 (level 0)
[  169.804673][T11207] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2543: invalid indirect mapped block 1819239214 (level 1)
[  169.819219][T11207] EXT4-fs (loop1): 1 truncate cleaned up
[  169.825239][T11207] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.866658][T10042] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.936097][T11212] loop1: detected capacity change from 0 to 128
[  169.943176][T11212] FAT-fs (loop1): invalid media value (0x00)
[  169.949218][T11212] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  169.958522][T11212] FAT-fs (loop1): Can't find a valid FAT filesystem
[  170.228090][T11225] FAULT_INJECTION: forcing a failure.
[  170.228090][T11225] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  170.232725][ T3159] usb 7-1: enqueue for inactive port 0
[  170.241434][T11225] CPU: 1 PID: 11225 Comm: syz.4.2549 Not tainted 6.10.0-rc7-syzkaller-00139-g8a18fda0febb #0
[  170.247010][ T3159] usb 7-1: enqueue for inactive port 0
[  170.257032][T11225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  170.272601][T11225] Call Trace:
[  170.275891][T11225]  <TASK>
[  170.278833][T11225]  dump_stack_lvl+0xf2/0x150
[  170.283460][T11225]  dump_stack+0x15/0x20
[  170.287667][T11225]  should_fail_ex+0x229/0x230
[  170.292426][T11225]  __should_fail_alloc_page+0xfd/0x110
[  170.297894][T11225]  __alloc_pages_noprof+0x109/0x360
[  170.303211][T11225]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  170.308603][T11225]  shmem_get_folio_gfp+0x3e4/0xb70
[  170.313783][T11225]  shmem_write_begin+0xa0/0x1c0
[  170.318633][T11225]  generic_perform_write+0x1d5/0x410
[  170.324004][T11225]  ? __pfx_shmem_write_end+0x10/0x10
[  170.329348][T11225]  shmem_file_write_iter+0xc8/0xf0
[  170.334554][T11225]  vfs_write+0x78f/0x900
[  170.338845][T11225]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  170.341825][ T3159] vhci_hcd: vhci_device speed not set
[  170.344696][T11225]  ksys_write+0xeb/0x1b0
[  170.354303][T11225]  __x64_sys_write+0x42/0x50
[  170.358919][T11225]  x64_sys_call+0x27ef/0x2d70
[  170.363753][T11225]  do_syscall_64+0xc9/0x1c0
[  170.368304][T11225]  ? clear_bhb_loop+0x55/0xb0
[  170.373006][T11225]  ? clear_bhb_loop+0x55/0xb0
[  170.377713][T11225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.383614][T11225] RIP: 0033:0x7face548c75f
[  170.388029][T11225] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  170.407638][T11225] RSP: 002b:00007face470ee00 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  170.416054][T11225] RAX: ffffffffffffffda RBX: 0000000000020000 RCX: 00007face548c75f
[  170.424030][T11225] RDX: 0000000000020000 RSI: 00007facdc2ef000 RDI: 0000000000000005
[  170.432002][T11225] RBP: 0000000000000000 R08: 0000000000000000 R09: 000000000000034c
[  170.439972][T11225] R10: 00000000000003c0 R11: 0000000000000293 R12: 0000000000000005
[  170.448050][T11225] R13: 00007face470ef00 R14: 00007face470eec0 R15: 00007facdc2ef000
[  170.456158][T11225]  </TASK>
[  170.546745][T11235] loop3: detected capacity change from 0 to 256
[  170.554190][T11235] FAT-fs (loop3): Unrecognized mount option "nonumtai" or missing value
[  170.562483][T11237] __nla_validate_parse: 5 callbacks suppressed
[  170.562499][T11237] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2553'.
[  170.663785][T11249] FAULT_INJECTION: forcing a failure.
[  170.663785][T11249] name failslab, interval 1, probability 0, space 0, times 0
[  170.676570][T11249] CPU: 1 PID: 11249 Comm: syz.3.2556 Not tainted 6.10.0-rc7-syzkaller-00139-g8a18fda0febb #0
[  170.686738][T11249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  170.696799][T11249] Call Trace:
[  170.700154][T11249]  <TASK>
[  170.703089][T11249]  dump_stack_lvl+0xf2/0x150
[  170.707723][T11249]  dump_stack+0x15/0x20
[  170.711891][T11249]  should_fail_ex+0x229/0x230
[  170.716672][T11249]  ? __alloc_skb+0x10b/0x300
[  170.721356][T11249]  __should_failslab+0x92/0xa0
[  170.726145][T11249]  should_failslab+0x9/0x20
[  170.730744][T11249]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  170.736650][T11249]  __alloc_skb+0x10b/0x300
[  170.741066][T11249]  netlink_alloc_large_skb+0xad/0xe0
[  170.746477][T11249]  netlink_sendmsg+0x3b4/0x6e0
[  170.751255][T11249]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.756562][T11249]  __sock_sendmsg+0x140/0x180
[  170.761250][T11249]  ____sys_sendmsg+0x312/0x410
[  170.766057][T11249]  __sys_sendmsg+0x1e9/0x280
[  170.770748][T11249]  __x64_sys_sendmsg+0x46/0x50
[  170.775612][T11249]  x64_sys_call+0xb25/0x2d70
[  170.780259][T11249]  do_syscall_64+0xc9/0x1c0
[  170.784794][T11249]  ? clear_bhb_loop+0x55/0xb0
[  170.789539][T11249]  ? clear_bhb_loop+0x55/0xb0
[  170.794223][T11249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.800180][T11249] RIP: 0033:0x7f8fb15f9bd9
[  170.804601][T11249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.824226][T11249] RSP: 002b:00007f8fb087b048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  170.832660][T11249] RAX: ffffffffffffffda RBX: 00007f8fb1787f60 RCX: 00007f8fb15f9bd9
[  170.840630][T11249] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  170.848726][T11249] RBP: 00007f8fb087b0a0 R08: 0000000000000000 R09: 0000000000000000
[  170.856772][T11249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.864753][T11249] R13: 000000000000000b R14: 00007f8fb1787f60 R15: 00007fff624be088
[  170.872829][T11249]  </TASK>
[  171.180560][T11269] loop3: detected capacity change from 0 to 1024
[  171.189555][T11269] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.210601][ T9905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.265861][T11273] loop3: detected capacity change from 0 to 512
[  171.272736][T11273] ext4: Unknown parameter 'hash'
[  171.311533][T11273] 9pnet_fd: Insufficient options for proto=fd
[  171.344598][T10647] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.468877][T11315] FAULT_INJECTION: forcing a failure.
[  171.468877][T11315] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  171.482073][T11315] CPU: 1 PID: 11315 Comm: syz.0.2581 Not tainted 6.10.0-rc7-syzkaller-00139-g8a18fda0febb #0
[  171.492242][T11315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  171.495432][T11312] loop2: detected capacity change from 0 to 2048
[  171.502363][T11315] Call Trace:
[  171.502374][T11315]  <TASK>
[  171.502390][T11315]  dump_stack_lvl+0xf2/0x150
[  171.502433][T11315]  dump_stack+0x15/0x20
[  171.502467][T11315]  should_fail_ex+0x229/0x230
[  171.528412][T11315]  should_fail+0xb/0x10
[  171.532579][T11315]  should_fail_usercopy+0x1a/0x20
[  171.537667][T11315]  _copy_to_user+0x1e/0xa0
[  171.542156][T11315]  simple_read_from_buffer+0xa0/0x110
[  171.547619][T11315]  proc_fail_nth_read+0xfc/0x140
[  171.552647][T11315]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  171.558277][T11315]  vfs_read+0x1a2/0x6e0
[  171.562455][T11315]  ? __rcu_read_unlock+0x4e/0x70
[  171.567462][T11315]  ? __fget_files+0x1da/0x210
[  171.572216][T11315]  ksys_read+0xeb/0x1b0
[  171.576410][T11315]  __x64_sys_read+0x42/0x50
[  171.581090][T11315]  x64_sys_call+0x27e5/0x2d70
[  171.585785][T11315]  do_syscall_64+0xc9/0x1c0
[  171.590350][T11315]  ? clear_bhb_loop+0x55/0xb0
[  171.595116][T11315]  ? clear_bhb_loop+0x55/0xb0
[  171.599821][T11315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.605740][T11315] RIP: 0033:0x7f4e3144e6bc
[  171.610203][T11315] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  171.629890][T11315] RSP: 002b:00007f4e306d1040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  171.638363][T11315] RAX: ffffffffffffffda RBX: 00007f4e315ddf60 RCX: 00007f4e3144e6bc
[  171.646368][T11315] RDX: 000000000000000f RSI: 00007f4e306d10b0 RDI: 0000000000000005
[  171.654365][T11315] RBP: 00007f4e306d10a0 R08: 0000000000000000 R09: 0000000000000000
[  171.662339][T11315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.670340][T11315] R13: 000000000000000b R14: 00007f4e315ddf60 R15: 00007ffd20ca1b78
[  171.678364][T11315]  </TASK>
[  171.686686][T11310] loop4: detected capacity change from 0 to 1024
[  171.698014][T11310] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.722894][T11312]  loop2: p2 < > p4 < >
[  171.728926][T11312] loop2: partition table partially beyond EOD, truncated
[  171.737515][T11323] sit0 speed is unknown, defaulting to 1000
[  171.748873][T11310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.760614][T11312] loop2: p2 start 4294902784 is beyond EOD, truncated
[  171.806346][T11335] netlink: 296 bytes leftover after parsing attributes in process `syz.1.2588'.
[  171.839581][T11337] loop4: detected capacity change from 0 to 1024
[  171.857880][T11340] loop2: detected capacity change from 0 to 512
[  171.882405][T11340] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  171.900703][T11337] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.925957][T11340] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  171.946209][T11340] EXT4-fs (loop2): 1 truncate cleaned up
[  171.977582][T11340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.983216][T11358] loop3: detected capacity change from 0 to 4096
[  171.991632][ T9807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.009320][T11358] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.021764][T11340] netlink: 'syz.2.2589': attribute type 10 has an invalid length.
[  172.029715][T11340] netlink: 148 bytes leftover after parsing attributes in process `syz.2.2589'.
[  172.057163][T10647] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.082420][ T9905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.120068][T11362] loop2: detected capacity change from 0 to 2048
[  172.136524][T11362] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.246466][   T29] kauditd_printk_skb: 30 callbacks suppressed
[  172.246482][   T29] audit: type=1400 audit(2000000062.294:1655): avc:  denied  { write } for  pid=11368 comm="syz.3.2600" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  172.249672][T11369] ieee802154 phy0 wpan0: encryption failed: -90
[  172.439362][T11372] loop3: detected capacity change from 0 to 1024
[  172.472183][   T53] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  172.482536][   T53] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  172.550412][T11372] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.614193][   T53] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  172.624582][   T53] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  172.638182][T11372] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.652806][T11372] EXT4-fs (loop3): Online resizing not supported with bigalloc
[  172.674504][   T29] audit: type=1326 audit(2000000062.721:1656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e3144fbd9 code=0x7ffc0000
[  172.707786][   T29] audit: type=1326 audit(2000000062.721:1657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e3144fbd9 code=0x7ffc0000
[  172.731861][   T29] audit: type=1326 audit(2000000062.751:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e3144fbd9 code=0x7ffc0000
[  172.755454][   T29] audit: type=1326 audit(2000000062.751:1659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e3144fbd9 code=0x7ffc0000
[  172.779085][   T29] audit: type=1326 audit(2000000062.751:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4e3144fbd9 code=0x7ffc0000
[  172.802676][   T29] audit: type=1326 audit(2000000062.751:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e3144fbd9 code=0x7ffc0000
[  172.826260][   T29] audit: type=1326 audit(2000000062.751:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4e31446c27 code=0x7ffc0000
[  172.849737][   T29] audit: type=1326 audit(2000000062.751:1663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4e313eb5d9 code=0x7ffc0000
[  172.873155][   T29] audit: type=1326 audit(2000000062.751:1664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11383 comm="syz.0.2605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4e31446c27 code=0x7ffc0000
[  172.898515][   T53] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  172.908907][   T53] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  172.935345][T11395] loop1: detected capacity change from 0 to 4096
[  172.942212][T11398] netlink: 'syz.0.2609': attribute type 4 has an invalid length.
[  173.006131][T11374] sit0 speed is unknown, defaulting to 1000
[  173.036419][   T53] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  173.046764][   T53] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.085299][T11411] netlink: 'syz.1.2612': attribute type 1 has an invalid length.
[  173.085887][T11415] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2614'.
[  173.093139][T11411] netlink: 'syz.1.2612': attribute type 2 has an invalid length.
[  173.095482][T11411] netlink: 'syz.1.2612': attribute type 1 has an invalid length.
[  173.118034][T11405] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2609'.
[  173.215729][T11433] ieee802154 phy0 wpan0: encryption failed: -22
[  173.228406][   T53] vlan2: left allmulticast mode
[  173.233473][   T53] gretap0: left allmulticast mode
[  173.238676][   T53] vlan2: left promiscuous mode
[  173.243588][   T53] gretap0: left promiscuous mode
[  173.248921][   T53] bridge0: port 3(vlan2) entered disabled state
[  173.266366][   T53] bridge_slave_1: left allmulticast mode
[  173.272078][   T53] bridge_slave_1: left promiscuous mode
[  173.277953][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.285934][   T53] bridge_slave_0: left allmulticast mode
[  173.292160][   T53] bridge_slave_0: left promiscuous mode
[  173.298283][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.407121][   T53] bridge0 (unregistering): left allmulticast mode
[  173.527710][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  173.538422][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  173.548990][   T53] bond0 (unregistering): Released all slaves
[  173.557684][   T53] bond1 (unregistering): Released all slaves
[  173.574347][T11442] netlink: 172 bytes leftover after parsing attributes in process `syz.3.2625'.
[  173.601122][T11374] chnl_net:caif_netlink_parms(): no params data found
[  173.607410][T11461] loop1: detected capacity change from 0 to 128
[  173.618363][T11461] ext4 filesystem being mounted at /100/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  173.695320][T11374] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.702564][T11374] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.706576][T11482] mmap: syz.0.2636 (11482): VmData 167489536 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  173.712681][T11461] loop1: detected capacity change from 128 to 64
[  173.735544][T11374] bridge_slave_0: entered allmulticast mode
[  173.742625][T11374] bridge_slave_0: entered promiscuous mode
[  173.751733][T11374] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.758891][T11374] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.766266][T11374] bridge_slave_1: entered allmulticast mode
[  173.772983][T11374] bridge_slave_1: entered promiscuous mode
[  173.782106][T11461] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5731: Out of memory
[  173.801782][T11461] EXT4-fs error (device loop1): ext4_setattr:5413: inode #12: comm syz.1.2629: mark_inode_dirty error
[  173.813229][T11461] EXT4-fs error (device loop1) in ext4_setattr:5474: Out of memory
[  173.833508][T10042] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5731: Out of memory
[  173.842952][T10042] EXT4-fs error (device loop1): ext4_dirty_inode:5935: inode #2: comm syz-executor: mark_inode_dirty error
[  173.856544][T11374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  173.876059][   T53] hsr_slave_0: left promiscuous mode
[  173.883189][   T53] hsr_slave_1: left promiscuous mode
[  173.889164][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.896656][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.905732][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.913239][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.922482][   T53] veth1_macvtap: left promiscuous mode
[  173.928079][   T53] veth0_macvtap: left promiscuous mode
[  173.933675][   T53] veth1_vlan: left promiscuous mode
[  173.938962][   T53] veth0_vlan: left promiscuous mode
[  174.052931][   T53] team0 (unregistering): Port device team_slave_1 removed
[  174.065577][   T53] team0 (unregistering): Port device team_slave_0 removed
[  174.120118][T11487] sit0 speed is unknown, defaulting to 1000
[  174.120497][T11491] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2634'.
[  174.142160][T11374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  174.183111][T11374] team0: Port device team_slave_0 added
[  174.195785][T11374] team0: Port device team_slave_1 added
[  174.236261][T11510] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2644'.
[  174.245418][T11510] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2644'.
[  174.259369][T11374] batman_adv: batadv0: Adding interface: batadv_slave_0
[  174.266488][T11374] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.292535][T11374] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  174.304199][T11374] batman_adv: batadv0: Adding interface: batadv_slave_1
[  174.311202][T11374] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.337175][T11374] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  174.362372][T11494] sit0 speed is unknown, defaulting to 1000
[  174.395023][T11374] hsr_slave_0: entered promiscuous mode
[  174.395174][T11513] loop3: detected capacity change from 0 to 128
[  174.407673][T11374] hsr_slave_1: entered promiscuous mode
[  174.417547][T11374] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  174.425527][T11374] Cannot create hsr debugfs directory
[  174.446865][T11516] loop2: detected capacity change from 0 to 128
[  174.453628][T11516] EXT4-fs: Ignoring removed nobh option
[  174.459504][T11516] EXT4-fs (loop2): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  174.566753][T11494] chnl_net:caif_netlink_parms(): no params data found
[  174.595487][   T53] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.650775][T11528] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=11528 comm=syz.0.2650
[  174.651187][   T53] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.761308][   T53] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.787217][T11494] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.794459][T11494] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.813007][T11494] bridge_slave_0: entered allmulticast mode
[  174.829240][T11494] bridge_slave_0: entered promiscuous mode
[  174.836015][T11539] TCP segment has incorrect auth options set for [fe80::bb].0->[ff02::1].20002 []
[  174.847619][T11494] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.854743][T11494] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.866740][T11494] bridge_slave_1: entered allmulticast mode
[  174.882957][T11494] bridge_slave_1: entered promiscuous mode
[  174.901771][   T53] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  174.946896][T11494] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  174.959328][T11494] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  174.993636][T11494] team0: Port device team_slave_0 added
[  174.997940][T11544] loop3: detected capacity change from 0 to 2048
[  175.007318][T11494] team0: Port device team_slave_1 added
[  175.038425][T11494] batman_adv: batadv0: Adding interface: batadv_slave_0
[  175.046548][T11494] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.073223][T11494] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  175.090016][T11494] batman_adv: batadv0: Adding interface: batadv_slave_1
[  175.097044][T11494] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.123033][T11494] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  175.165326][T11494] hsr_slave_0: entered promiscuous mode
[  175.175268][T11494] hsr_slave_1: entered promiscuous mode
[  175.189184][T11494] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  175.199148][T11494] Cannot create hsr debugfs directory
[  175.215907][   T53] bridge_slave_1: left allmulticast mode
[  175.221668][   T53] bridge_slave_1: left promiscuous mode
[  175.227449][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.250015][   T53] bridge_slave_0: left allmulticast mode
[  175.255765][   T53] bridge_slave_0: left promiscuous mode
[  175.261583][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.271845][T11556] smc: ib device syz1 ibport 1 erased user defined pnetid SYZ0
[  175.366092][   T53] team0: Port device geneve1 removed
[  175.461345][   T53] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  175.476038][   T53] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  175.487294][   T53] bond0 (unregistering): Released all slaves
[  175.556116][T11374] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  175.575388][T11374] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  175.587025][T11374] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  175.599276][T11374] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  175.646943][   T53] hsr_slave_0: left promiscuous mode
[  175.655431][   T53] hsr_slave_1: left promiscuous mode
[  175.662367][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  175.669799][   T53] batman_adv: batadv0: Removing interface: batadv_slave_0
[  175.677459][   T53] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  175.684967][   T53] batman_adv: batadv0: Removing interface: batadv_slave_1
[  175.695067][   T53] veth1_macvtap: left promiscuous mode
[  175.700684][   T53] veth0_macvtap: left promiscuous mode
[  175.706263][   T53] veth1_vlan: left promiscuous mode
[  175.712226][   T53] veth0_vlan: left promiscuous mode
[  175.834563][   T53] team0 (unregistering): Port device team_slave_1 removed
[  175.848415][   T53] team0 (unregistering): Port device team_slave_0 removed
[  175.927412][T11374] 8021q: adding VLAN 0 to HW filter on device bond0
[  175.945218][T11374] 8021q: adding VLAN 0 to HW filter on device team0
[  175.982155][T11374] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  175.992598][T11374] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  176.011648][ T7803] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.018869][ T7803] bridge0: port 1(bridge_slave_0) entered forwarding state
[  176.031980][ T7803] bridge0: port 2(bridge_slave_1) entered blocking state
[  176.040182][ T7803] bridge0: port 2(bridge_slave_1) entered forwarding state
[  176.092092][T11374] 8021q: adding VLAN 0 to HW filter on device batadv0
[  176.168567][T11584] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2667'.
[  176.223523][T11494] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  176.239707][T11494] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  176.255512][T11494] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  176.272559][T11494] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  176.363071][T11374] veth0_vlan: entered promiscuous mode
[  176.373927][T11494] 8021q: adding VLAN 0 to HW filter on device bond0
[  176.391626][T11494] 8021q: adding VLAN 0 to HW filter on device team0
[  176.412813][T11610] netlink: 'syz.0.2675': attribute type 10 has an invalid length.
[  176.420954][T11610] tipc: Resetting bearer <eth:geneve1>
[  176.428624][T11610] geneve1: left allmulticast mode
[  176.447627][T11610] tipc: Resetting bearer <eth:geneve1>
[  176.453560][T11610] team0: Port device geneve1 removed
[  176.460144][T11610] tipc: Resetting bearer <eth:geneve1>
[  176.467940][T11610] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  176.478027][T11374] veth1_vlan: entered promiscuous mode
[  176.494658][T11374] veth0_macvtap: entered promiscuous mode
[  176.502148][T11374] veth1_macvtap: entered promiscuous mode
[  176.514409][ T3159] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.521614][ T3159] bridge0: port 1(bridge_slave_0) entered forwarding state
[  176.533982][ T3159] bridge0: port 2(bridge_slave_1) entered blocking state
[  176.541149][ T3159] bridge0: port 2(bridge_slave_1) entered forwarding state
[  176.567311][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.577914][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.587812][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.598461][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.608796][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.619330][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.629234][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.639671][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.649688][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.660139][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.670115][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  176.680613][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.694535][T11374] batman_adv: batadv0: Interface activated: batadv_slave_0
[  176.714333][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.724832][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.734790][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.745394][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.755315][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.765773][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.776016][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.786671][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.796656][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.807314][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.817321][T11374] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  176.827802][T11374] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.840030][T11374] batman_adv: batadv0: Interface activated: batadv_slave_1
[  176.856480][T11374] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  176.865756][T11374] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  176.873737][T11624] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2679'.
[  176.874471][T11374] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  176.892519][T11374] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  176.908098][T11494] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  176.918755][T11494] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  177.017076][T11494] 8021q: adding VLAN 0 to HW filter on device batadv0
[  177.029223][T11636] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2681'.
[  177.066411][T11645] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  177.074939][T11645] IPv6: NLM_F_CREATE should be set when creating new route
[  177.137180][T11494] veth0_vlan: entered promiscuous mode
[  177.150782][T11494] veth1_vlan: entered promiscuous mode
[  177.175138][T11654] program syz.4.2683 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  177.175335][T11494] veth0_macvtap: entered promiscuous mode
[  177.177365][T11494] veth1_macvtap: entered promiscuous mode
[  177.203220][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.213693][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.223676][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.223737][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.223749][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.254675][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.264743][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.264760][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.264774][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.264787][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.264806][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.264821][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.280246][T11660] loop2: detected capacity change from 0 to 512
[  177.285245][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.317918][T11660] EXT4-fs error (device loop2): ext4_orphan_get:1420: comm syz.2.2687: bad orphan inode 15
[  177.325719][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.328987][T11494] batman_adv: batadv0: Interface activated: batadv_slave_0
[  177.342992][T11660] ext4_test_bit(bit=14, block=5) = 0
[  177.354539][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.385917][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.385988][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.406270][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.406288][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.406306][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.436841][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.436887][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.436904][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.469283][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.469315][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.490159][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.490181][T11494] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.510435][T11494] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.513121][T11494] batman_adv: batadv0: Interface activated: batadv_slave_1
[  177.531299][   T29] kauditd_printk_skb: 76 callbacks suppressed
[  177.531313][   T29] audit: type=1400 audit(2000000067.537:1741): avc:  denied  { create } for  pid=11659 comm="syz.2.2687" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  177.533091][T11494] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  177.579918][T11665] EXT4-fs error (device loop2): __ext4_new_inode:1070: comm syz.2.2687: reserved inode found cleared - inode=1
[  177.588566][T11494] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  177.609009][T11494] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  177.617826][T11494] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  177.725819][    C1] sd 0:0:1:0: [sda] tag#3159 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  177.736327][    C1] sd 0:0:1:0: [sda] tag#3159 CDB: Read(10) 28 00 00 00 00 00 00 00 09 06
[  177.740325][   T29] audit: type=1400 audit(2000000067.746:1742): avc:  denied  { setopt } for  pid=11683 comm="syz.3.2692" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  177.778445][T11678] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  177.820368][   T29] audit: type=1400 audit(2000000067.825:1743): avc:  denied  { getopt } for  pid=11683 comm="syz.3.2692" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  177.847946][   T29] audit: type=1400 audit(2000000067.855:1744): avc:  denied  { write } for  pid=11683 comm="syz.3.2692" path="socket:[41870]" dev="sockfs" ino=41870 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  177.871434][   T29] audit: type=1400 audit(2000000067.855:1745): avc:  denied  { read } for  pid=11683 comm="syz.3.2692" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  177.895580][T11693] loop4: detected capacity change from 0 to 512
[  177.903634][   T29] audit: type=1400 audit(2000000067.905:1746): avc:  denied  { setopt } for  pid=11690 comm="syz.2.2695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  177.928305][T11693] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  177.937838][T11693] System zones: 0-2, 18-18, 34-34
[  177.943629][T11693] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2696: bg 0: block 248: padding at end of block bitmap is not set
[  177.961686][T11693] Quota error (device loop4): write_blk: dquota write failed
[  177.966058][T11703] netlink: 320 bytes leftover after parsing attributes in process `syz.1.2698'.
[  177.969188][T11693] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  177.988887][T11693] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz.4.2696: Failed to acquire dquot type 1
[  178.000850][T11693] EXT4-fs (loop4): 1 truncate cleaned up
[  178.007385][T11693] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.076631][   T29] audit: type=1400 audit(2000000068.084:1747): avc:  denied  { watch_reads } for  pid=11711 comm="syz.1.2703" path="/6" dev="tmpfs" ino=44 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  178.100717][   T29] audit: type=1326 audit(2000000068.113:1748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11710 comm="syz.4.2700" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe27b28ebd9 code=0x0
[  178.106316][T11713] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2703'.
[  178.143364][T11717] loop2: detected capacity change from 0 to 1024
[  178.182272][T11723] loop1: detected capacity change from 0 to 128
[  178.206856][T11726] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2700'.
[  178.213230][T11726] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=11726 comm=syz.4.2700
[  178.261832][T11732] loop2: detected capacity change from 0 to 256
[  178.268559][T11732] FAT-fs (loop2): Unrecognized mount option "18446744073709551615ÿÿÿÿ" or missing value
[  178.350354][T11732] loop2: detected capacity change from 0 to 8192
[  178.401630][T11741] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2713'.
[  178.411246][ T3159] IPVS: starting estimator thread 0...
[  178.438393][T11744] sit0 speed is unknown, defaulting to 1000
[  178.487252][T11745] loop2: detected capacity change from 0 to 512
[  178.494159][T11745] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  178.499424][T11742] IPVS: using max 2208 ests per chain, 110400 per kthread
[  178.505551][T11745] EXT4-fs (loop2): 1 truncate cleaned up
[  178.631414][T11750] loop3: detected capacity change from 0 to 1024
[  178.689067][T11763] loop3: detected capacity change from 0 to 512
[  178.696329][T11763] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  178.789108][T11776] loop2: detected capacity change from 0 to 164
[  178.798770][T11776] rock: directory entry would overflow storage
[  178.805617][T11776] rock: sig=0x5245, size=8, remaining=3
[  178.842333][T11778] netlink: 'syz.0.2727': attribute type 10 has an invalid length.
[  178.851439][T11778] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2727'.
[  178.860801][T11778] bond0: entered promiscuous mode
[  178.866067][T11778] bond_slave_0: entered promiscuous mode
[  178.869375][T11780] loop3: detected capacity change from 0 to 512
[  178.872240][T11778] bond_slave_1: entered promiscuous mode
[  178.878934][T11780] EXT4-fs: Ignoring removed orlov option
[  178.892409][T11778] bridge0: port 3(bond0) entered blocking state
[  178.898743][T11778] bridge0: port 3(bond0) entered disabled state
[  178.900124][T11780] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2729: inode #13: comm syz.3.2729: iget: illegal inode #
[  178.911761][T11778] bond0: entered allmulticast mode
[  178.923290][T11778] bond_slave_0: entered allmulticast mode
[  178.929022][T11778] bond_slave_1: entered allmulticast mode
[  178.929680][T11780] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.2729: couldn't read orphan inode 13 (err -117)
[  178.934800][T11778] geneve1: entered allmulticast mode
[  178.940145][T11778] bridge0: port 3(bond0) entered blocking state
[  178.958352][T11778] bridge0: port 3(bond0) entered forwarding state
[  178.985607][T11788] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2730'.
[  179.007599][    C1] vxcan0: j1939_session_tx_dat: 0xffff888113378600: queue data error: -100
[  179.028157][T11785] netlink: 'syz.0.2727': attribute type 10 has an invalid length.
[  179.050793][T11785] syz_tun: entered promiscuous mode
[  179.056223][T11785] syz_tun: entered allmulticast mode
[  179.062488][T11785] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  179.064429][T11787] loop2: detected capacity change from 0 to 1024
[  179.102621][T11795] serio: Serial port ptm0
[  179.151764][T11799] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2732'.
[  179.158039][T11801] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=512 sclass=netlink_route_socket pid=11801 comm=syz.1.2735
[  179.287806][T11816] netlink: 'syz.3.2740': attribute type 10 has an invalid length.
[  179.300865][T11816] geneve1: entered promiscuous mode
[  179.322671][T11816] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  179.409707][T11825] loop2: detected capacity change from 0 to 1024
[  179.545839][T11842] loop3: detected capacity change from 0 to 512
[  179.553501][T11842] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  179.563952][T11842] EXT4-fs (loop3): orphan cleanup on readonly fs
[  179.570597][T11842] EXT4-fs warning (device loop3): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  179.588105][T11842] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  179.595142][T11842] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2748: bg 0: block 40: padding at end of block bitmap is not set
[  179.619892][T11842] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  179.631268][T11842] EXT4-fs (loop3): 1 truncate cleaned up
[  179.640046][T11846] loop2: detected capacity change from 0 to 256
[  179.651524][T11842] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.2748: corrupted xattr block 31: invalid header
[  179.670188][T11842] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[  179.679508][T11842] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.2748: corrupted xattr block 31: invalid header
[  179.693144][T11842] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[  179.702921][T11842] EXT4-fs error (device loop3): ext4_get_link:106: inode #16: comm syz.3.2748: bad symlink.
[  179.713778][T11848] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.2748: corrupted xattr block 31: invalid header
[  179.728166][T11848] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[  179.737510][T11848] EXT4-fs error (device loop3): ext4_get_link:106: inode #16: comm syz.3.2748: bad symlink.
[  179.876658][T11855] loop3: detected capacity change from 0 to 2048
[  180.228587][T11866] loop1: detected capacity change from 0 to 1024
[  180.322413][T11871] loop2: detected capacity change from 0 to 512
[  180.374964][T11871] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.546981][T11894] loop2: detected capacity change from 0 to 128
[  180.591732][T11896] loop1: detected capacity change from 0 to 1024
[  180.623062][T11903] loop1: detected capacity change from 0 to 128
[  180.671800][T11908] loop1: detected capacity change from 0 to 512
[  180.679171][T11908] EXT4-fs: Invalid gid value -1
[  180.801930][T11922] netlink: 'syz.3.2776': attribute type 1 has an invalid length.
[  180.821936][T11924] loop3: detected capacity change from 0 to 512
[  180.831265][T11924] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  180.841033][T11924] EXT4-fs (loop3): 1 truncate cleaned up
[  180.881476][T11931] loop1: detected capacity change from 0 to 1024
[  180.902020][T11936] loop3: detected capacity change from 0 to 256
[  180.915796][T11936] FAT-fs (loop3): Directory bread(block 64) failed
[  180.922397][T11936] FAT-fs (loop3): Directory bread(block 65) failed
[  180.929035][T11936] FAT-fs (loop3): Directory bread(block 66) failed
[  180.935858][T11936] FAT-fs (loop3): Directory bread(block 67) failed
[  180.942489][T11936] FAT-fs (loop3): Directory bread(block 68) failed
[  180.951413][T11936] FAT-fs (loop3): Directory bread(block 69) failed
[  180.958076][T11936] FAT-fs (loop3): Directory bread(block 70) failed
[  180.964640][T11936] FAT-fs (loop3): Directory bread(block 71) failed
[  180.971494][T11936] FAT-fs (loop3): Directory bread(block 72) failed
[  180.978154][T11936] FAT-fs (loop3): Directory bread(block 73) failed
[  181.024276][ T8811] kworker/u8:11: attempt to access beyond end of device
[  181.024276][ T8811] loop3: rw=1, sector=1800, nr_sectors = 4 limit=256
[  181.051045][T11943] loop1: detected capacity change from 0 to 512
[  181.058670][T11943] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  181.067456][T11943] EXT4-fs (loop1): orphan cleanup on readonly fs
[  181.074079][T11943] EXT4-fs warning (device loop1): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  181.089085][T11943] EXT4-fs (loop1): Cannot turn on quotas: error -22
[  181.098504][T11943] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2784: bg 0: block 40: padding at end of block bitmap is not set
[  181.113324][T11943] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  181.124286][T11943] EXT4-fs (loop1): 1 truncate cleaned up
[  181.130977][T11943] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #16: comm syz.1.2784: corrupted xattr block 31: invalid header
[  181.144356][T11943] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=16
[  181.153523][T11943] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #16: comm syz.1.2784: corrupted xattr block 31: invalid header
[  181.166969][T11943] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=16
[  181.176035][T11943] EXT4-fs error (device loop1): ext4_get_link:106: inode #16: comm syz.1.2784: bad symlink.
[  181.176869][T11958] loop3: detected capacity change from 0 to 128
[  181.187873][T11959] FAULT_INJECTION: forcing a failure.
[  181.187873][T11959] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  181.205562][T11959] CPU: 0 PID: 11959 Comm: syz.1.2784 Not tainted 6.10.0-rc7-syzkaller-00139-g8a18fda0febb #0
[  181.215734][T11959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  181.225803][T11959] Call Trace:
[  181.229106][T11959]  <TASK>
[  181.232044][T11959]  dump_stack_lvl+0xf2/0x150
[  181.236656][T11959]  dump_stack+0x15/0x20
[  181.240944][T11959]  should_fail_ex+0x229/0x230
[  181.245710][T11959]  should_fail+0xb/0x10
[  181.249886][T11959]  should_fail_usercopy+0x1a/0x20
[  181.254927][T11959]  _copy_from_user+0x1e/0xd0
[  181.259528][T11959]  __se_sys_mount+0x119/0x2d0
[  181.264236][T11959]  ? ksys_write+0x178/0x1b0
[  181.268759][T11959]  __x64_sys_mount+0x67/0x80
[  181.273624][T11959]  x64_sys_call+0x25c9/0x2d70
[  181.279136][T11959]  do_syscall_64+0xc9/0x1c0
[  181.284191][T11959]  ? clear_bhb_loop+0x55/0xb0
[  181.290144][T11959]  ? clear_bhb_loop+0x55/0xb0
[  181.295235][T11959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.301680][T11959] RIP: 0033:0x7f5e10762bd9
[  181.306417][T11959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.326867][T11959] RSP: 002b:00007f5e0f9c3048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  181.335289][T11959] RAX: ffffffffffffffda RBX: 00007f5e108f1038 RCX: 00007f5e10762bd9
[  181.343261][T11959] RDX: 0000000020000140 RSI: 0000000020000100 RDI: 0000000000000000
[  181.351444][T11959] RBP: 00007f5e0f9c30a0 R08: 0000000020000180 R09: 0000000000000000
[  181.359678][T11959] R10: 0000000000001000 R11: 0000000000000246 R12: 0000000000000001
[  181.367660][T11959] R13: 000000000000006e R14: 00007f5e108f1038 R15: 00007ffcb916e8e8
[  181.375701][T11959]  </TASK>
[  181.382512][T11959] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #16: comm syz.1.2784: corrupted xattr block 31: invalid header
[  181.397342][T11959] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=16
[  181.408088][T11959] EXT4-fs error (device loop1): ext4_get_link:106: inode #16: comm syz.1.2784: bad symlink.
[  181.474609][T11975] loop3: detected capacity change from 0 to 512
[  181.482281][T11975] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  181.493569][T11975] EXT4-fs (loop3): orphan cleanup on readonly fs
[  181.500852][T11975] EXT4-fs warning (device loop3): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  181.517784][T11975] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  181.526240][T11975] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2796: bg 0: block 40: padding at end of block bitmap is not set
[  181.548972][T11975] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  181.552677][T11983] __nla_validate_parse: 4 callbacks suppressed
[  181.552693][T11983] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2798'.
[  181.564330][T11975] EXT4-fs (loop3): 1 truncate cleaned up
[  181.572919][T11983] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2798'.
[  181.591883][T11986] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2799'.
[  181.608033][T11984] loop1: detected capacity change from 0 to 1024
[  181.630547][T11975] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.2796: corrupted xattr block 31: invalid header
[  181.633703][T11995] loop2: detected capacity change from 0 to 128
[  181.660040][T11975] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[  181.672329][T11975] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #16: comm syz.3.2796: corrupted xattr block 31: invalid header
[  181.687981][T11975] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=16
[  181.699080][T11975] EXT4-fs error (device loop3): ext4_get_link:106: inode #16: comm syz.3.2796: bad symlink.
[  181.791813][T12008] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2807'.
[  181.804552][T12001] loop1: detected capacity change from 0 to 1024
[  181.838326][T12016] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2810'.
[  181.869814][T12022] loop2: detected capacity change from 0 to 128
[  181.884232][T12022] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (16076!=39978)
[  181.900883][T12022] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.2812: Block bitmap for bg 0 marked uninitialized
[  181.922416][T12024] syz.1.2809: attempt to access beyond end of device
[  181.922416][T12024] loop3: rw=4096, sector=2, nr_sectors = 2 limit=0
[  181.959105][T12024] EXT4-fs (loop3): unable to read superblock
[  182.036756][T12031] EXT4-fs error (device loop2): __ext4_find_entry:1695: inode #2: comm syz.2.2812: checksumming directory block 0
[  182.117127][T12036] EXT4-fs error (device loop2): __ext4_find_entry:1695: inode #2: comm syz.2.2812: checksumming directory block 0
[  182.145343][T12040] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2817'.
[  182.240203][T12042] tap0: tun_chr_ioctl cmd 1074025677
[  182.253012][T12042] tap0: linktype set to 821
[  182.257277][T12044] loop1: detected capacity change from 0 to 1024
[  182.293820][T12042] random: crng reseeded on system resumption
[  182.424308][T12057] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2825'.
[  182.444992][T12054] loop2: detected capacity change from 0 to 512
[  182.452670][T12054] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  182.461837][T12054] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  182.484579][T12059] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2826'.
[  182.495278][T12062] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12062 comm=syz.0.2828
[  182.496911][T12054] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  182.523153][T12069] loop4: detected capacity change from 0 to 512
[  182.534707][T12054] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  182.554995][T12054] System zones: 0-2, 18-18, 34-34
[  182.572950][T12054] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  182.597402][T12071] loop1: detected capacity change from 0 to 1024
[  182.597882][T12054] EXT4-fs (loop2): 1 truncate cleaned up
[  182.666898][T12095] loop4: detected capacity change from 0 to 512
[  182.673717][T12095] EXT4-fs: Ignoring removed orlov option
[  182.679865][   T29] kauditd_printk_skb: 83 callbacks suppressed
[  182.679877][   T29] audit: type=1326 audit(2000000072.654:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12096 comm="syz.2.2837" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb725936bd9 code=0x0
[  182.685463][T12095] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=6040e09c, mo2=0102]
[  182.716393][T12102] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=123 sclass=netlink_route_socket pid=12102 comm=syz.1.2841
[  182.722000][T12095] System zones: 1-12
[  182.734130][T12095] EXT4-fs error (device loop4): ext4_orphan_get:1394: inode #15: comm syz.4.2840: casefold flag without casefold feature
[  182.747211][T12098] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2837'.
[  182.750325][T12095] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz.4.2840: couldn't read orphan inode 15 (err -117)
[  182.794170][T12095] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2840'.
[  182.890307][T12115] loop2: detected capacity change from 0 to 1024
[  182.904895][T12130] loop1: detected capacity change from 0 to 256
[  182.912208][T12130] FAT-fs (loop1): Unrecognized mount option "nodot"" or missing value
[  182.936406][   T29] audit: type=1400 audit(2000000072.903:1833): avc:  denied  { create } for  pid=12133 comm="syz.0.2851" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=bluetooth_socket permissive=1
[  182.963211][   T29] audit: type=1400 audit(2000000072.942:1834): avc:  denied  { getopt } for  pid=12133 comm="syz.0.2851" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=bluetooth_socket permissive=1
[  182.984242][   T29] audit: type=1400 audit(2000000072.942:1835): avc:  denied  { create } for  pid=12133 comm="syz.0.2851" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=ax25_socket permissive=1
[  183.027681][T12143] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2566 sclass=netlink_route_socket pid=12143 comm=syz.4.2852
[  183.034811][T12144] 9pnet_fd: Insufficient options for proto=fd
[  183.075327][T12154] loop2: detected capacity change from 0 to 2048
[  183.111580][T12156] loop1: detected capacity change from 0 to 512
[  183.123739][T12156] EXT4-fs (loop1): 1 truncate cleaned up
[  183.655920][   T29] audit: type=1326 audit(2000000073.597:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12184 comm="syz.4.2868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27b28ebd9 code=0x7ffc0000
[  183.679610][   T29] audit: type=1326 audit(2000000073.597:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12184 comm="syz.4.2868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27b28ebd9 code=0x7ffc0000
[  183.703782][   T29] audit: type=1326 audit(2000000073.597:1838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12184 comm="syz.4.2868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe27b28ebd9 code=0x7ffc0000
[  183.727553][   T29] audit: type=1326 audit(2000000073.597:1839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12184 comm="syz.4.2868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27b28ebd9 code=0x7ffc0000
[  183.751321][   T29] audit: type=1326 audit(2000000073.597:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12184 comm="syz.4.2868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe27b28ebd9 code=0x7ffc0000
[  183.775096][   T29] audit: type=1326 audit(2000000073.597:1841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12184 comm="syz.4.2868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27b28ebd9 code=0x7ffc0000
[  183.825280][T12201] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x3
[  183.921762][T12215] netlink: 'syz.1.2879': attribute type 1 has an invalid length.
[  183.938439][T12215] bond1: entered promiscuous mode
[  183.971987][T12215] loop1: detected capacity change from 0 to 512
[  183.980313][T12215] journal_path: Lookup failure for './file1'
[  183.986685][T12215] EXT4-fs: error: could not find journal device path
[  184.036503][T12215] loop1: detected capacity change from 0 to 1024
[  184.048896][T12215] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2786: inode #2: comm syz.1.2879: corrupted in-inode xattr: bad e_name length
[  184.062834][    C0] Adjusting tsc more than 11% (6309459 vs 8464875)
[  184.070493][T12215] EXT4-fs (loop1): Remounting filesystem read-only
[  184.085309][T12220] sit0 speed is unknown, defaulting to 1000
[  184.122985][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=11
[  184.150218][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=11
[  184.177176][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=11
[  184.183758][T12233] veth0_to_hsr: entered promiscuous mode
[  184.186876][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=11
[  184.201737][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=11
[  184.210902][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=11
[  184.213515][T12233] vlan2: entered promiscuous mode
[  184.226291][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=11
[  184.235903][T12233] veth0_to_hsr: left promiscuous mode
[  184.241729][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=13
[  184.250971][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=13
[  184.260066][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=14
[  184.268994][T11494] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop1 ino=14
[  184.296898][T12220] chnl_net:caif_netlink_parms(): no params data found
[  184.388314][T12220] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.395427][T12220] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.402675][T12220] bridge_slave_0: entered allmulticast mode
[  184.409602][T12220] bridge_slave_0: entered promiscuous mode
[  184.417040][T12220] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.424184][T12220] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.431332][T12220] bridge_slave_1: entered allmulticast mode
[  184.438171][T12220] bridge_slave_1: entered promiscuous mode
[  184.468039][T12220] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  184.481890][T12220] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  184.514715][T12220] team0: Port device team_slave_0 added
[  184.524739][T12220] team0: Port device team_slave_1 added
[  184.554608][T12220] batman_adv: batadv0: Adding interface: batadv_slave_0
[  184.561578][T12220] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  184.587572][T12220] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  184.639551][T12220] batman_adv: batadv0: Adding interface: batadv_slave_1
[  184.646679][T12220] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  184.672752][T12220] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  184.724556][T12220] hsr_slave_0: entered promiscuous mode
[  184.740927][T12220] hsr_slave_1: entered promiscuous mode
[  184.748446][T12220] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  184.756067][T12220] Cannot create hsr debugfs directory
[  184.832591][T12220] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.902863][T12261] loop4: detected capacity change from 0 to 2048
[  184.911429][T12220] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.926280][T12250] sit0 speed is unknown, defaulting to 1000
[  184.977210][T12220] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.040462][T12250] chnl_net:caif_netlink_parms(): no params data found
[  185.066304][T12220] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.101601][T12250] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.108770][T12250] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.116273][T12250] bridge_slave_0: entered allmulticast mode
[  185.122734][T12250] bridge_slave_0: entered promiscuous mode
[  185.129899][T12250] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.137160][T12250] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.144476][T12250] bridge_slave_1: entered allmulticast mode
[  185.150868][T12250] bridge_slave_1: entered promiscuous mode
[  185.170314][T12250] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  185.181289][T12250] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  185.204209][T12250] team0: Port device team_slave_0 added
[  185.219917][T12250] team0: Port device team_slave_1 added
[  185.242470][T12250] batman_adv: batadv0: Adding interface: batadv_slave_0
[  185.249611][T12250] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  185.276076][T12250] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  185.287644][T12250] batman_adv: batadv0: Adding interface: batadv_slave_1
[  185.294696][T12250] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  185.320677][T12250] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  185.348975][T12250] hsr_slave_0: entered promiscuous mode
[  185.355195][T12250] hsr_slave_1: entered promiscuous mode
[  185.361134][T12250] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  185.368780][T12250] Cannot create hsr debugfs directory
[  185.430457][T12250] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.496635][T12250] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.542622][T12250] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.612488][T12250] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.632741][T12220] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  185.641827][T12220] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  185.650803][T12220] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  185.659457][T12220] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  185.706820][T12250] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  185.722253][T12250] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  185.732754][T12250] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  185.742202][T12250] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  185.761694][T12220] 8021q: adding VLAN 0 to HW filter on device bond0
[  185.778258][T12280] loop4: detected capacity change from 0 to 128
[  185.779860][T12220] 8021q: adding VLAN 0 to HW filter on device team0
[  185.787646][T12280] ext4 filesystem being mounted at /18/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  185.808486][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.830148][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  185.862564][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.869693][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  185.893268][T12250] 8021q: adding VLAN 0 to HW filter on device bond0
[  185.919786][T12250] 8021q: adding VLAN 0 to HW filter on device team0
[  185.931502][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.938679][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  185.957651][ T7803] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.965273][ T7803] bridge0: port 2(bridge_slave_1) entered forwarding state
[  186.000010][T12250] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  186.010453][T12250] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  186.046036][T12220] 8021q: adding VLAN 0 to HW filter on device batadv0
[  186.121362][T12308] SELinux:  Context system_u:object_r is not valid (left unmapped).
[  186.154337][T12220] veth0_vlan: entered promiscuous mode
[  186.168991][T12220] veth1_vlan: entered promiscuous mode
[  186.180179][T12250] 8021q: adding VLAN 0 to HW filter on device batadv0
[  186.199222][T12220] veth0_macvtap: entered promiscuous mode
[  186.211766][T12220] veth1_macvtap: entered promiscuous mode
[  186.232339][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.242939][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.252967][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.263455][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.273394][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.283871][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.293718][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.304250][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.314200][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.324696][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.335693][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.346428][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.356336][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.366980][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.376810][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.387334][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.398806][T12220] batman_adv: batadv0: Interface activated: batadv_slave_0
[  186.414065][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.424875][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.435279][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.445878][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.456533][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.467630][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.479160][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.490947][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.501575][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.512274][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.522298][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.532812][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.542836][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.553271][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.563183][T12220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.573779][T12220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.586669][T12220] batman_adv: batadv0: Interface activated: batadv_slave_1
[  186.596964][T12220] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  186.606100][T12220] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  186.615019][T12220] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  186.623801][T12220] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  186.657320][T12250] veth0_vlan: entered promiscuous mode
[  186.677747][T12333] loop4: detected capacity change from 0 to 1024
[  186.679485][T12250] veth1_vlan: entered promiscuous mode
[  186.720167][T12250] veth0_macvtap: entered promiscuous mode
[  186.728309][T12250] veth1_macvtap: entered promiscuous mode
[  186.740956][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.751508][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.761359][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.771842][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.781819][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.792399][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.802322][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.812754][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.822677][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.833820][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.844220][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.856061][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.865943][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.876440][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.886357][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.896945][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.906799][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  186.917382][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.931287][T12347] loop3: detected capacity change from 0 to 512
[  186.932027][T12250] batman_adv: batadv0: Interface activated: batadv_slave_0
[  186.942214][T12347] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  186.951239][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.964710][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  186.964885][T12347] EXT4-fs (loop3): 1 truncate cleaned up
[  186.974738][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  186.990856][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.001562][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.012346][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.023353][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.034180][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.044106][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.054700][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.064695][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.075209][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.085042][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.095600][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.105556][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.116039][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.125943][T12250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.136359][T12250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.155254][T12250] batman_adv: batadv0: Interface activated: batadv_slave_1
[  187.177568][T12250] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  187.186454][T12250] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  187.195315][T12250] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  187.204195][T12250] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  187.311861][T12374] loop2: detected capacity change from 0 to 256
[  187.336577][T12374] FAT-fs (loop2): Directory bread(block 64) failed
[  187.347138][T12378] ip6t_srh: unknown srh match flags  4001
[  187.353011][T12374] FAT-fs (loop2): Directory bread(block 65) failed
[  187.360999][T12377] loop1: detected capacity change from 0 to 1024
[  187.362517][T12374] FAT-fs (loop2): Directory bread(block 66) failed
[  187.381646][T12377] EXT4-fs: Ignoring removed i_version option
[  187.394338][T12374] FAT-fs (loop2): Directory bread(block 67) failed
[  187.401835][T12374] FAT-fs (loop2): Directory bread(block 68) failed
[  187.402526][T12377] EXT4-fs (loop1): stripe (255) is not aligned with cluster size (16), stripe is disabled
[  187.437530][T12374] FAT-fs (loop2): Directory bread(block 69) failed
[  187.445777][T12374] FAT-fs (loop2): Directory bread(block 70) failed
[  187.454577][T12387] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  187.465271][T12374] FAT-fs (loop2): Directory bread(block 71) failed
[  187.481243][T12374] FAT-fs (loop2): Directory bread(block 72) failed
[  187.500047][T12374] FAT-fs (loop2): Directory bread(block 73) failed
[  187.515881][T12374] __nla_validate_parse: 5 callbacks suppressed
[  187.515900][T12374] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2914'.
[  187.531159][T12374] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2914'.
[  187.649291][T12397] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2918'.
[  187.692284][T12395] netlink: 280 bytes leftover after parsing attributes in process `syz.1.2917'.
[  187.829476][T12413] loop1: detected capacity change from 0 to 1024
[  187.896596][T12429] loop1: detected capacity change from 0 to 512
[  187.908901][T12429] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.164121][T12451] loop1: detected capacity change from 0 to 1024
[  188.175798][T12451] EXT4-fs: Ignoring removed oldalloc option
[  188.193538][T12451] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  188.262671][T12453] loop4: detected capacity change from 0 to 1024
[  188.422587][T12484] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  188.430895][T12484] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  188.588927][   T29] kauditd_printk_skb: 36 callbacks suppressed
[  188.588944][   T29] audit: type=1400 audit(2000000077.928:1878): avc:  denied  { bind } for  pid=12492 comm="syz.0.2954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  188.590588][T12493] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=256 sclass=netlink_xfrm_socket pid=12493 comm=syz.0.2954
[  188.697128][T12496] loop3: detected capacity change from 0 to 1024
[  188.708960][T12506] loop1: detected capacity change from 0 to 512
[  188.717643][T12506] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  188.743055][T12506] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.835974][T12521] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2963'.
[  188.860940][T12524] netlink: 380 bytes leftover after parsing attributes in process `syz.2.2964'.
[  188.964538][   T29] audit: type=1326 audit(2000000078.260:1879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12532 comm="syz.2.2968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb725936bd9 code=0x7ffc0000
[  188.988328][   T29] audit: type=1326 audit(2000000078.260:1880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12532 comm="syz.2.2968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb725936bd9 code=0x7ffc0000
[  189.011875][   T29] audit: type=1326 audit(2000000078.260:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12532 comm="syz.2.2968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb725936bd9 code=0x7ffc0000
[  189.035426][   T29] audit: type=1326 audit(2000000078.260:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12532 comm="syz.2.2968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb725936bd9 code=0x7ffc0000
[  189.058971][   T29] audit: type=1326 audit(2000000078.260:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12532 comm="syz.2.2968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb725936bd9 code=0x7ffc0000
[  189.082613][   T29] audit: type=1326 audit(2000000078.260:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12532 comm="syz.2.2968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb725936bd9 code=0x7ffc0000
[  189.106185][   T29] audit: type=1326 audit(2000000078.260:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12532 comm="syz.2.2968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb72592dc27 code=0x7ffc0000
[  189.129643][   T29] audit: type=1326 audit(2000000078.260:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12532 comm="syz.2.2968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb7258d25d9 code=0x7ffc0000
[  189.153116][   T29] audit: type=1326 audit(2000000078.260:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12532 comm="syz.2.2968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb725936bd9 code=0x7ffc0000
[  189.218687][T12542] netlink: 'syz.2.2972': attribute type 2 has an invalid length.
[  189.277769][T12546] loop4: detected capacity change from 0 to 1024
[  189.300264][T12546] EXT4-fs mount: 81 callbacks suppressed
[  189.300280][T12546] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.340714][T11374] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.379016][T12560] siw: device registration error -23
[  189.412026][T12562] loop2: detected capacity change from 0 to 512
[  189.426302][T12562] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  189.439063][T12562] EXT4-fs error (device loop2): ext4_map_blocks:580: inode #2: block 3: comm syz.2.2978: lblock 0 mapped to illegal pblock 3 (length 1)
[  189.455661][T12562] EXT4-fs warning (device loop2): dx_probe:822: inode #2: lblock 0: comm syz.2.2978: error -117 reading directory block
[  189.470993][T12562] EXT4-fs error (device loop2): ext4_map_blocks:580: inode #2: block 3: comm syz.2.2978: lblock 0 mapped to illegal pblock 3 (length 1)
[  189.485446][T12562] EXT4-fs warning (device loop2): dx_probe:822: inode #2: lblock 0: comm syz.2.2978: error -117 reading directory block
[  189.501180][T12562] EXT4-fs error (device loop2): ext4_map_blocks:580: inode #2: block 3: comm syz.2.2978: lblock 0 mapped to illegal pblock 3 (length 1)
[  189.517090][T12562] EXT4-fs warning (device loop2): dx_probe:822: inode #2: lblock 0: comm syz.2.2978: error -117 reading directory block
[  189.535675][T12562] EXT4-fs error (device loop2): ext4_map_blocks:580: inode #2: block 3: comm syz.2.2978: lblock 0 mapped to illegal pblock 3 (length 1)
[  189.550060][T12562] EXT4-fs warning (device loop2): dx_probe:822: inode #2: lblock 0: comm syz.2.2978: error -117 reading directory block
[  189.564778][T12562] EXT4-fs error (device loop2): ext4_map_blocks:580: inode #2: block 3: comm syz.2.2978: lblock 0 mapped to illegal pblock 3 (length 1)
[  189.582244][T12562] EXT4-fs warning (device loop2): dx_probe:822: inode #2: lblock 0: comm syz.2.2978: error -117 reading directory block
[  189.598677][T12562] EXT4-fs error (device loop2): ext4_map_blocks:580: inode #2: block 3: comm syz.2.2978: lblock 0 mapped to illegal pblock 3 (length 1)
[  189.613481][T12562] EXT4-fs warning (device loop2): dx_probe:822: inode #2: lblock 0: comm syz.2.2978: error -117 reading directory block
[  189.627544][T12562] EXT4-fs error (device loop2): ext4_map_blocks:580: inode #2: block 3: comm syz.2.2978: lblock 0 mapped to illegal pblock 3 (length 1)
[  189.627711][T12250] ==================================================================
[  189.649641][T12250] BUG: KCSAN: data-race in data_alloc / prb_reserve
[  189.656343][T12250] 
[  189.658673][T12250] write to 0xffffffff860654a0 of 8 bytes by task 12562 on cpu 0:
[  189.666392][T12250]  data_alloc+0x291/0x2c0
[  189.670738][T12250]  prb_reserve+0x85e/0xb60
[  189.675181][T12250]  vprintk_store+0x53f/0x810
[  189.679772][T12250]  vprintk_emit+0x10c/0x5e0
[  189.684279][T12250]  vprintk_default+0x26/0x30
[  189.688966][T12250]  vprintk+0x75/0x80
[  189.692869][T12250]  _printk+0x7a/0xa0
[  189.696763][T12250]  __ext4_error_inode+0x30b/0x400
[  189.701796][T12250]  ext4_map_blocks+0xc76/0xf50
[  189.706570][T12250]  ext4_getblk+0x112/0x500
[  189.711009][T12250]  ext4_bread+0x2c/0x110
[  189.715275][T12250]  __ext4_read_dirblock+0x77/0x5b0
[  189.720401][T12250]  dx_probe+0x69/0xc20
[  189.724484][T12250]  __ext4_find_entry+0x35e/0x10a0
[  189.729526][T12250]  ext4_lookup+0xba/0x390
[  189.733873][T12250]  __lookup_slow+0x184/0x250
[  189.738470][T12250]  lookup_slow+0x3c/0x60
[  189.742717][T12250]  link_path_walk+0x621/0x810
[  189.747395][T12250]  path_lookupat+0x72/0x2b0
[  189.751903][T12250]  do_o_path+0x44/0x120
[  189.756061][T12250]  path_openat+0x1c85/0x1fa0
[  189.760662][T12250]  do_filp_open+0xf7/0x200
[  189.765089][T12250]  do_sys_openat2+0xab/0x120
[  189.769690][T12250]  __x64_sys_openat+0xf3/0x120
[  189.774464][T12250]  x64_sys_call+0x1057/0x2d70
[  189.779151][T12250]  do_syscall_64+0xc9/0x1c0
[  189.783686][T12250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.789590][T12250] 
[  189.791909][T12250] read to 0xffffffff860654a0 of 8 bytes by task 12250 on cpu 1:
[  189.799580][T12250]  prb_reserve+0x235/0xb60
[  189.804007][T12250]  vprintk_store+0x53f/0x810
[  189.808600][T12250]  vprintk_emit+0x10c/0x5e0
[  189.813100][T12250]  vprintk_default+0x26/0x30
[  189.817689][T12250]  vprintk+0x75/0x80
[  189.821585][T12250]  _printk+0x7a/0xa0
[  189.825481][T12250]  __ext4_msg+0x18e/0x1a0
[  189.829811][T12250]  ext4_put_super+0x91/0x7e0
[  189.834421][T12250]  generic_shutdown_super+0xde/0x210
[  189.839727][T12250]  kill_block_super+0x2a/0x70
[  189.844428][T12250]  ext4_kill_sb+0x44/0x80
[  189.848794][T12250]  deactivate_locked_super+0x7d/0x1c0
[  189.854204][T12250]  deactivate_super+0x9f/0xb0
[  189.858918][T12250]  cleanup_mnt+0x268/0x2e0
[  189.863355][T12250]  __cleanup_mnt+0x19/0x20
[  189.867875][T12250]  task_work_run+0x13a/0x1a0
[  189.872485][T12250]  syscall_exit_to_user_mode+0xbe/0x130
[  189.878048][T12250]  do_syscall_64+0xd6/0x1c0
[  189.882565][T12250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.888463][T12250] 
[  189.890781][T12250] value changed: 0xfffffffffffc7088 -> 0x0000000000072c30
[  189.897885][T12250] 
[  189.900202][T12250] Reported by Kernel Concurrency Sanitizer on:
[  189.906345][T12250] CPU: 1 PID: 12250 Comm: syz-executor Not tainted 6.10.0-rc7-syzkaller-00139-g8a18fda0febb #0
[  189.916691][T12250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  189.926843][T12250] ==================================================================
[  189.627516][T12250] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.946865][T12562] EXT4-fs warning (device loop2): dx_probe:822: inode #2: lblock 0: comm syz.2.2978: error -117 reading directory block
[  189.973987][T10647] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.