last executing test programs:

6.405940082s ago: executing program 1 (id=5374):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000580), 0x0}, 0x20)
sysinfo(&(0x7f0000000300)=""/146)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7f, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)={0x2c, 0x2, 0x1, 0x201, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}]}]}, 0x2c}}, 0x0)
r4 = socket$inet(0x2, 0x6, 0x0)
setsockopt$inet_opts(r4, 0x0, 0xd, &(0x7f00000003c0)="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", 0x152)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='xfrm0\x00', 0x10)
connect$inet(r4, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, r2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x5608, 0x2)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

5.413220507s ago: executing program 1 (id=5384):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xa, 0x2, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newnexthop={0x24, 0x68, 0x309, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}, @NHA_ID={0x8, 0x1, 0x1}]}, 0x24}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001440)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r4}, 0x10)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000140)={0x19, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="0300"/16], 0x10}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r3}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x442, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000003b40), r6)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, 0x0)
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000001500)={0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, 0xc)
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

5.360774691s ago: executing program 1 (id=5386):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @remote}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @local}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = timerfd_create(0x0, 0x0)
timerfd_settime(r1, 0x3, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timerfd_gettime(r1, &(0x7f0000000040))
sendmmsg$inet(r0, &(0x7f0000000d00)=[{{&(0x7f0000000000)={0x2, 0x4e24, @empty}, 0x10, 0x0}}], 0x1, 0x20000080)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSETMODE(r2, 0x4b3a, 0x1)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="7bbf010000000000140012800b00010062726964674500000400028008000400c6040000"], 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000740), 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
ioctl$BLKIOOPT(0xffffffffffffffff, 0x1279, &(0x7f0000000280))
faccessat2(0xffffffffffffffff, 0x0, 0x2, 0x1100)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x1dd1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r4, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
setsockopt$inet_int(r4, 0x0, 0x6, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000040)={'ip6erspan0\x00', &(0x7f0000000080)=@ethtool_coalesce={0xe, 0x2, 0x4, 0xeee, 0x80000000, 0x5, 0x3, 0xc, 0xd, 0x9, 0x7, 0x4, 0x8, 0x40, 0x7, 0x2, 0x7, 0xb, 0x7, 0x6, 0x1, 0x4, 0x4}})
bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x32, &(0x7f0000000200)=ANY=[@ANYBLOB="ffffecffffffb23df5d5206e3021a935020000fb43baf187bda82e7eb100000000060000000000000000001411907800000000000018e124154e200010"], 0x0)
ioctl$TCXONC(r2, 0x4b3a, 0x0)
r5 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r5, 0x0)
ppoll(0x0, 0x0, &(0x7f0000000500), 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000540), 0xffffffffffffffff)

4.668670541s ago: executing program 0 (id=5390):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000ffffffff000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000000380)={0xa, 0x14e24}, 0x1c)
connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000680)="ac9e0e52", 0x4}], 0x1}}], 0x1, 0x40c0000)
splice(r3, 0x0, r2, 0x0, 0x45, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file1\x00', 0x3014490, &(0x7f0000000100), 0x45, 0x7ce, &(0x7f0000000500)="$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")
socket$tipc(0x1e, 0x5, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000940)=ANY=[], 0x118)

4.519874434s ago: executing program 1 (id=5392):
mkdirat(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r1 = accept$packet(0xffffffffffffffff, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000500)=0x14)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000580)={'bridge_slave_1\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000540)="c571a8186f2d44e90ce32b123996b7c784ce669823a9b13b87c47934d0b0917b6117ba7508c279b7", 0x28, 0x804, &(0x7f00000005c0)={0x11, 0x1, r2, 0x1, 0x6, 0x6, @broadcast}, 0x14)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000085"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000600)='kfree\x00', r3}, 0x10)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r4, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
sendmmsg$inet(r4, &(0x7f0000002880)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000240)="a27abfcbaaa2fc3a1d080c659968f114cf9d89c313d2de02d1b2cab4d5aad12d30667306c41ceec49cc83acad3ad09f74850d41a16877b6f4d2c5befe1acc789e71ab9b610c3a58a126d0c8c3bd145f7728bc76838724569d03d6cb36713dbd8c86cab1f5810dff7ce6f44739486f90f0000000000004d97fe02a9b199d09fe9", 0x80}], 0x1}}], 0x1, 0x8041)
writev(r4, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r4, 0x1)
recvmmsg(r4, &(0x7f0000003e40)=[{{0x0, 0x3, 0x0, 0x0, &(0x7f00000035c0)=""/241, 0xfffffffffffffc93}}, {{&(0x7f0000000540)=@un=@abs, 0x80, &(0x7f0000003780)=[{&(0x7f0000003740)=""/4, 0x7ffff}], 0x0, &(0x7f00000037c0)=""/236, 0xec, 0x20}}, {{0x0, 0x0, &(0x7f0000003bc0)=[{0x0, 0xe00000000000000}, {&(0x7f0000003a00)=""/190, 0xbe}, {&(0x7f0000003ac0)=""/131, 0x83}, {0x0}], 0x4, &(0x7f0000003c00)=""/65, 0x49}}, {{&(0x7f0000003c80)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, 0x0, 0x0, &(0x7f0000003e00)=""/48, 0x30}}], 0x4, 0x40000121, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = socket(0xa, 0x3, 0x3a)
r6 = syz_genetlink_get_family_id$gtp(&(0x7f0000000000), 0xffffffffffffffff)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
tkill(0x0, 0x40)
syz_open_procfs(0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r8=>0x0})
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0x9, 0x100005, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r8}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r9, &(0x7f0000000240), &(0x7f0000000980)=@tcp}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000000c0)={{r9}, 0x0, 0x0}, 0x20)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000240), 0x40000, 0x0)
sendmsg$GTP_CMD_DELPDP(r5, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c020000", @ANYRES16=r6, @ANYBLOB="020025bd7000fbdbdf25010000000600060003000000080002000000000008000400ac14140e"], 0x2c}, 0x1, 0x0, 0x0, 0x4008008}, 0x40000)

4.448642649s ago: executing program 1 (id=5393):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000280)={@initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010100, 0xfffe, "aaa517d60f2811d48c8a2cc60c4380bc23bd0f4eb5000000ff00", 0x401, 0x2000000, 0x10001, 0x4}, 0x3c)

4.44831395s ago: executing program 1 (id=5394):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}}, 0x20)
preadv(0xffffffffffffffff, &(0x7f00000003c0), 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)=""/56, 0x38}], 0x1, 0x8, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ptrace(0x10, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x10)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f00000031c0))

2.417334993s ago: executing program 2 (id=5422):
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
socket$inet_udp(0x2, 0x2, 0x0)
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
syz_io_uring_setup(0x7dca, &(0x7f0000000340), 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c020000", @ANYRES16=<r7=>r5, @ANYBLOB="01000000000000000000010000001400020077673100000000000000000000000000f4010880700000804800098028a25880060001000a00000014000200fe8000000000000000000000000000aa05000300000000001c000080060001000200000008000200e0000001050003000000000024000100000000000000000000000000000000000000000000000000000000000000000080010080200004000a004e2000000005200100000000000000000000000000000800000006000500b01f00000800030006000000060005000500000008000a000100000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff200004000a004e200000040100000000000000000000ffffac14142a06000000240001000000000000000000000000000000000000000000000000000000000000000000d400", @ANYRES16=r4], 0x21c}}, 0x0)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r3}, 0x10)
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x4048890, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'geneve1\x00', <r9=>0x0})
connect$inet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYRESDEC=r7, @ANYRES32=r9, @ANYRESDEC=r8], 0x3c}}, 0x0)

2.254146137s ago: executing program 2 (id=5423):
r0 = fcntl$getown(0xffffffffffffffff, 0x9)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000020240), 0x10010)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46}, r0, 0x0, r1, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0xfffffffd, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = gettid()
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
read(r4, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r4, 0x4040534e, &(0x7f0000000040)={0x1, @time, 0x0, {}, 0x10})
tkill(r3, 0x7)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r4, 0xc058534f, &(0x7f0000000100)={{}, 0x0, 0x0, 0x3, {0x0, 0xff}, 0x5, 0x3})

2.055945564s ago: executing program 2 (id=5428):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000004580)=@deltaction={0x14, 0x31, 0x400, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x1000c884}, 0x4800)
socket$netlink(0x10, 0x3, 0x0)
io_setup(0x20093, &(0x7f0000000040))
r1 = socket(0x2000000015, 0x80005, 0x0)
bind$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
recvfrom$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000140)={0xa, 0x0, 0x0, @private2}, 0x16b34e5ed408bb52)
socket$igmp6(0xa, 0x3, 0x2)
fsmount(0xffffffffffffffff, 0x1, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="723d9877048b20d89a6ef99abe77b04010124f155396573dab45b17184238a4f3506ecfd95978fa84f4c2e64baf9385dbe3a8a04ee9851ffbcff57b277737748ee56bd"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0x101c08a, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x6, 0x2c8, &(0x7f0000002500)="$eJzs3b+LHHUUAPA3d7O74w/YLaxEcEALq5BLa7NBEhCvMmyhFnqYBOR2ERI48AeOqcTOxtK/QBD8H2xt7CwF/wA7IwRGZnbmdtZM9u7k9sTc59PkZb7vzffN7HA3V9y7D15aHN7O4+6Dz3+LLEtiZxrTeJjEJHai9WWsmX4TAMD/2cOyjD/KpZ7lX79+Ql0SEdmWewMAtuOE7/+NdBX+eCFtAQBbdOudd9+6vr9/4+08z+Lm4qujWfWTffXvcv363fgo5nEnrsY4HkXULwqDqN8WqvBmWZZFmlcm8eqiOJpVlYv3f27O/9PzTbAX45jU0fHbRl3/5v6NvXypU19UfTzb7D+t9r8W43jhuHit/lpPfcyG8dornf6vxDh++TA+jnncrptY1X+xl+dvlN/++dl7VXtVfVIczUZ13kq5225eXODnAwAAAAAAAAAAAAAAAAAAAADA0+lKMztnFPX8nupQM39n91H1n0Hkrcn6fJ5lfdKeqDsfqCzLoozv2vk6V/M8L5vEVX0aL6bdwYIAAAAAAAAAAAAAAAAAAABwed3/5NPDg/n8zr1zCdppAGlE/HUr4t+eZ9o58nJsTh41ex7M5ztNuJ6Tdo/EbpuTRGxso7qIc7otJwXPPNZzE3z/Q29VuvbBpdFZyk7edNC/13kG7dN1eJD038PRcc/Z8iGpB0GscoZxyr2GT1oq4yyP37B3aXzmax8+VwfFhpxINjX2+u/LO9ccSf55FcP6rvaWD5qgU76ek53qeY5sWf7414rEtA4AAAAAAAAAAAAAAAAAANiq1W//9iw+2Fi6U4621hYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXKjV3/8/Q1A0xadIHsa9+//xJQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHAJ/B0AAP//eWdglQ==")
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ftruncate(0xffffffffffffffff, 0x2007ffb)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000009)
socket$xdp(0x2c, 0x3, 0x0)
getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, &(0x7f0000002740), &(0x7f0000002780)=0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0xc, 0x8, 0x3}, 0x48)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r3, &(0x7f00000000c0), &(0x7f0000000000)=@udp6=r4}, 0x20)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000080))
ioctl$PPPIOCSMAXCID(r5, 0x40047451, 0x0)
ioctl$PPPIOCSMAXCID(r5, 0x40047451, &(0x7f0000002540))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3576], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x2, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x48)
unshare(0x400)
socket$kcm(0x10, 0x2, 0x4)

1.652261189s ago: executing program 0 (id=5431):
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x0)
setregid(0xee01, 0xee00)
setregid(0x0, 0x0)

1.582641344s ago: executing program 0 (id=5432):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000340)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)

1.582336555s ago: executing program 2 (id=5433):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000000)={{0x0, 0x1, 0x3, 0x0, 0x1}})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue0\x00'})
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c41, 0x0)
flock(r2, 0x5)
r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r3, 0x2)

1.581895655s ago: executing program 0 (id=5434):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = getpgid(0xffffffffffffffff)
r1 = syz_clone3(&(0x7f00000004c0)={0xa690b000, 0x0, 0x0, &(0x7f00000000c0), {}, 0x0, 0x0, &(0x7f0000000200)=""/34, &(0x7f00000001c0)=[r0, r0], 0x2}, 0x58)
syz_clone(0x1c008800, &(0x7f00000002c0)="93f8da62b389a97bcf3c17b811ed84153ec0b1a63a17370a45bad673400925bad8d6ddb8e571d5f7472eb94541bc7550c2ea1b991291391863b1ca61dc10bbed54f7fa45662d2f96c61b6d54ad6f9571b67843fcc78d5e44129c221063bcd03a2c1fefacca584cae6983a739562966db3b645bbbcfb4d38e20903490e4b3a13077ecb897ed85ffda208392b9f4d12f6b04ecaa4e5d8f98dd63d90790428275778d992984a8bab9c84459052b27048a", 0xaf, &(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400)="01d0b1d3821bd0b288d3017f6142c82a77a3f8f4b71eec082500b41afd052ce1273c48bb9e2b6f09388ebc3956d2514e835f2069daffe7d2f10220fad9")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='devices.list\x00', 0x275a, 0x0)
madvise(&(0x7f0000000000/0x4000)=nil, 0x0, 0x8)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x6, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180)}, 0x0, 0x7fffffff}, r1, 0x0, 0xffffffffffffffff, 0x0)
r2 = open(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000800)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000600)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x0, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x1d}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x1}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x7}, @NFT_OBJECT_COUNTER=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x5}}, @NFT_MSG_NEWSET={0xd4, 0x9, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @osf={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_OSF_TTL={0x5, 0x2, 0x3}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x10}]}}}, @NFTA_SET_USERDATA={0x84, 0xd, 0x1, 0x0, "cd7fd249526130463bbb75883152178b4456fadf9d92f02ba9f2f8b394ede09198603dfd1fe125ce444ff05be236eccb8c90faf2409340d1424b64a1203e6d291b99ed57df3ba66d4f16cfe1eba0999dcfe0f640d0b7ed15a18b024caadb749b1ee6615c65657feb79eee6aa857357f0f73f48de3f37c77480efa5e9df3bd682"}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0xe}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWTABLE={0x30, 0x0, 0xa, 0x500, 0x0, 0x0, {0x5}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_FLAGS={0x8}]}], {0x14}}, 0x1a4}, 0x1, 0x0, 0x0, 0x840}, 0x40d1)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$igmp(0x2, 0x3, 0x2)
ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff)
open(&(0x7f0000000580)='./file0\x00', 0x100000001a1540, 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000040)=@v3, 0x18, 0x0)

1.546199387s ago: executing program 0 (id=5435):
r0 = fcntl$getown(0xffffffffffffffff, 0x9)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000020240), 0x10010)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46}, r0, 0x0, r1, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0xfffffffd, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
gettid()
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
close(r3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd8073a46b08b94214d816f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb4147000001000000008f2b9000f22425e4097ed62cbc891061017cfa6f6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe68db8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3542646bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r8, r7, 0x26}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r8}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)
sendmsg$inet(r6, &(0x7f0000000500)={0x0, 0x4003e80, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x20000281}], 0x1}, 0x0)
read(r2, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000040)={0x1, @time, 0x0, {}, 0x10})
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r2, 0xc0105303, &(0x7f0000000080)={{0x2}})

1.465931075s ago: executing program 4 (id=5436):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000500)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000280)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)

1.408666369s ago: executing program 4 (id=5437):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) (async, rerun: 32)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 32)
openat$cgroup_procs(r0, &(0x7f0000000140)='tasks\x00', 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000010c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r2, @ANYBLOB="00001700000000001c0037800b0001006970768a616e08000c0002800600010000000000050027"], 0x44}}, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet(0x2, 0x4000000000000001, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) (async)
socket$packet(0x11, 0x2, 0x300)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10) (async)
sendmsg$tipc(r5, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) (async, rerun: 64)
recvmsg(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000e40)=""/4096, 0x1000}], 0x1}, 0x0) (async, rerun: 64)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) (async)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000710026000000000095000300"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48) (async, rerun: 32)
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (rerun: 32)
socket$packet(0x11, 0x3, 0x300)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) (async, rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90) (async, rerun: 64)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000140)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r9}, 0x10)

1.408391459s ago: executing program 4 (id=5438):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.time\x00', 0x275a, 0x0)
mmap(&(0x7f00003a8000/0x2000)=nil, 0x2000, 0x0, 0x11, r2, 0x0)
setrlimit(0x2, &(0x7f00000000c0)={0x3, 0x5})
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
write$binfmt_script(r3, &(0x7f0000002800)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x4, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @func={0x2}]}, {0x0, [0x0, 0x2e]}}, 0x0, 0x50}, 0x20)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x0, &(0x7f0000a00000/0x600000)=nil)

1.39565297s ago: executing program 4 (id=5439):
syz_open_pts(0xffffffffffffffff, 0x200002)
open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe2$9p(0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f00000002c0)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
mount$9p_fd(0x0, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000000300)=ANY=[])
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_aout(r2, &(0x7f00000002c0)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r2, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x42, &(0x7f0000000000)=0x7, 0x4)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000140))

1.064626729s ago: executing program 3 (id=5448):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = getpid()
r2 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
recvmsg$unix(r3, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2400, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = socket(0x2, 0xa, 0x80000009)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r5, 0x6, 0x21, &(0x7f00000000c0)="6ba12930b41e3ad4e6f932112f21d16d", 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r6}, 0x0, &(0x7f00000002c0)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r8, &(0x7f0000000000)=0x700, 0x12)
getsockname$packet(r5, 0x0, &(0x7f00000004c0))
poll(&(0x7f0000000f40)=[{r4}], 0x1, 0xfff)
ioctl$EVIOCGABS20(r4, 0x40044591, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000000000128009c378bb61a0797655e9650100c98432cb91ec6a5a488f9d"], 0x3c}}, 0x0)

724.106918ms ago: executing program 2 (id=5449):
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYRES64, @ANYRESDEC], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000280)='xprt_ping\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, &(0x7f0000004340)}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0xff, 0x2, 0xf, 0x3002, r1, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x4, 0xb}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, 0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xffffffffffffff3e)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f00000002c0)={&(0x7f0000000340)="111909195aefa2e7fb91ff8fbe59d7c6c6216c4e1a5c78d5c2317fe9da", &(0x7f00000008c0)=""/175, &(0x7f0000000b00)="189c36314299b4f06a67a4300e90fc6a4f516355a7993355f263d953730490ec2ee96a6ffa933b65457a3b9c05f93fd4924e729d9b5355ed81", &(0x7f0000000200)="4d94886bf72aeeb6befc42867a8fd3c227922fb24ca84c8b97547e161adda8665bbe61925c4e4f281ea63c3d3167b92b0f3e19a98a5a586caa76c362", 0x9}, 0x38)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
getpid()
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2000001, &(0x7f00000002c0), 0x1, 0x770, &(0x7f0000000300)="$eJzs3M1rXOUaAPDnnGaSfuTeyYUL9+pChBZaKJ0kzaZdNW7cFQoFtzUkJyHkJBMyk9qJhbauhdpsFARR1y7dCqX+Ae6koOBeEK1xIW5GzmSS2piZJE3asenvB6fnec/X8z4zh7dzIO8J4KX1evFPEjEYEVciotzenkZEfys6GnF7/bi1RzcniyWJZvPqz0lxWqw1y5vXStrrE9E6Jf4fEQ9KEWff+3veWmNlbiLPs6V2e7g+vzhca6ycm52fmMlmsoXRsYsjF8bGLoyM7VjD/3ZZ66m3Lh67982bq6vfflm/+1rfuSTGW3VHu7ZdXmZP1j+TUoxv2b7wLJL1UNJl39Hn2A8AALorfucfiYi+1q/UchxpRQAAAMBh0hxo7ijdOBYAAAB4QSWe6wEAAOCQ2/g7gI25vc9qHmwnP70REUPb5e9rzSGOOBqliDi+ljwxMyFZPw325fadiLg/vvX++7y4w27v89ojW9pPzpHu3+fVOQj3i/FnfLvxJ90cf2Kb8adv490J+9R5/Huc/0iH8e/KLnN89ckrpY7570S82rdd/mQzf9Ih/9utaOdP4e7q+/c67Wt+FnF62/9/kidydXk/xPj0bN7t9QPx4I8zD7vVf7xT/qR7/Ys7Vr7u3bVf5zqNJUX+Myc7fP+3Oucv7okP2v1II+Jee120V7fkODn/3dfd6p+KaD7N9//pLuv/4YuBG7s8FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFrSiBiMJK1sxmlaqUSciIj/xvE0r9bqZ6erywtTxb6IoSil07N5NhIR5fV2UrRHW/Hj9vkt7bGI+M/3x9aTzuZZZbKaT/W6eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADadiIjBSNJKRKQR8Vs5TSuViL5dnDvwHPoHAAAAHJChXncAAAAAeOY8/wMAAMDh97TP/8kB9wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA41K5cvlwszbVHNyeL9tT1xvJc9fq5qaw2V5lfnqxMVpcWKzPV6kyeVSar8ztdL69WF0cvxvKN4XpWqw/XGivX5qvLC/Vrs/MTM9m1rPRcqgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGCvBltLklYiIm3FaVqpRPwrIoailEzP5tlIRPw7Ih6WSwNFe7TXnQYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAODA1RorcxN5ni0JBC9E0N++c/+6ayAiet6xPQW3IuIf0I0uQY8HJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeqLWWJmbyPNsqdbrngAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANBb6Y9JRBTL6fKpwa17+5Pfy611RLzz8dUPb0zU60ujxfZfNrfXP2pvP9+L/gMAAMBL4dJeDt54Tt94jgcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANitWmNlbiLPs6X9BZeisdJMOhzT6xoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICn82cAAAD///s8uqk=")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r4, 0x40086610, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
write$cgroup_subtree(r3, &(0x7f0000000140)=ANY=[], 0xfffffdef)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0xff, 0x0, 0x3ff, 0x820ac, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_pid(r5, &(0x7f0000000980), 0x20000992)

673.095633ms ago: executing program 0 (id=5450):
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
write$binfmt_elf64(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1e1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2002, 0x0)
ioctl$TCSETSW(r2, 0x5403, &(0x7f0000000000)={0x0, 0xfff7fffc, 0x0, 0xffffffff, 0x0, "fb00"})
write$binfmt_aout(r2, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba0700000000ebffffff0000f77fff00"})
r3 = syz_open_pts(r2, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x2, 0x0, "1f00000800"})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
sendmsg$NFC_CMD_START_POLL(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000880)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000300000008281d0053f90cfd6c746afa5a50e2a86839a9337bb0067c7b7a5dc6cef24605ab772203130ad1e72337685fddce74a68f09e17dd32ad27fb8af642d70ae4f2efb2c5cfd8541a1a36724a44180810d5edced2815b53ce69caf644a3a7ba6cc5e3f6a91af2de6ef60f896ccfc04ad68e92f6c4a783e25f15f0e6c5567018c81d276c110d46c3d830a3adfd105ec0ff18b16286d888212d2fbec059a75606ca195aa1b1e17d001fe560433a5052b7df4a40ee69d4e5622e5111484df5f2cb8b0d9a57fba3036aa6aa2a7725bd119fa8202bb499f143a66efda1c1eb99bd6588e279555a6eb738b9be8e0ccd8d2236efa1e50645b6826dae5d3e0ea83caae3c1c9b715878d9300993435445d826da9f11dd9ab51d54bf0a2a6baa90ebc4efde5599817881e9d15b864cd35e4a0ec1c7244b749b5759d33ac91287b73eedae1a4c4ccca0e29dc23946e8a4c9a6ba211ffbc4749698dd1e6fac06fc9a3ddb4e9fa382f670a149b46ddb2cea38a700f1b1464f858db8eae30016a4e0ab0662faa0dd13e83486b05fede90b112f3fc3f5f9d2f3e4f7ca0cf8caa225dac2e162cc356279134de1483dc4f3630b3953e37a927f6bec604bde", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0)
r6 = dup3(r3, r2, 0x0)
read$rfkill(r6, &(0x7f00000002c0), 0x8)
read$watch_queue(r6, &(0x7f0000000e00)=""/4096, 0x1000)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000180))
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, 0x0, 0x0)
r7 = dup(r0)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

552.410192ms ago: executing program 2 (id=5451):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0x64, 0x30, 0x9, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x3}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="b400000000000000611100000000000006000000feffffff9500000000000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0x22, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x76}, 0x28)
r1 = socket$inet(0xa, 0x801, 0x84)
listen(r1, 0x8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x1b, &(0x7f0000000140)=0x2, 0x4)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000340)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @loopback}}}, 0x108)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1203, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
poll(0x0, 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18, 0x8048000}, 0x0)
write$tun(r3, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xb, 0x0, 0x300, 0x0, 0xfde1, {[@window={0x9, 0x3}, @timestamp={0x5, 0x2}, @generic={0x0, 0x2, "d58838068b91"}]}}}}}}, 0xfdef)
r5 = socket(0x200000000000011, 0x3, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r8, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r9=>0x0})
sendto$packet(r8, &(0x7f0000000180)="05030400d3fc02000000ab5d71acedd7c9560385dcb1894f84d7dc049806892f05ce811c88f7", 0xff88, 0x0, &(0x7f0000000140)={0x11, 0x0, r9, 0x1, 0x0, 0x6, @broadcast}, 0x14)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000003c0)=0x14)
sendmsg$NFT_BATCH(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWTABLE={0x14, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x4}}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x2}]}], {0x14}}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x0)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f00000000c0)={<r10=>0x0, 0x7}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r5, 0x84, 0x22, &(0x7f00000001c0)={0x1, 0x6, 0x1, 0x2, r10}, 0x10)

551.981383ms ago: executing program 4 (id=5452):
unshare(0x20000400)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[], 0x0, 0x26}, 0x20)
r0 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000000)='veth0_to_hsr\x00')
r1 = socket(0x11, 0x3, 0x0)
connect(r1, &(0x7f0000000340)=@rxrpc=@in6={0x21, 0xfefb, 0x2, 0x1c, {0xa, 0x4e21, 0x10001, @private2, 0x5}}, 0x80)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000005000000000000000000001801000011af000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000d5030000020000838500000071000000180100002020752500000000806020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
unshare(0x24020400)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
ioctl$TUNSETOFFLOAD(r3, 0xc0286687, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
r4 = open(&(0x7f0000000200)='./bus\x00', 0x1612c2, 0x0)
ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000000040)={0xffffffe1, 0x0, 0x0, 0xfff})
ioctl$TIOCSTI(0xffffffffffffffff, 0x4b47, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000c40), 0x310decfa, 0x1)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_aout(r6, &(0x7f0000000100)=ANY=[], 0xc1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x4, &(0x7f00000001c0)=@framed={{}, [@ldst={0x3, 0x0, 0x0, 0x0, 0x3}]}, &(0x7f0000000000)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x40}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x2c, 0xd, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8000}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x0}, 0x90)
keyctl$instantiate(0x1e, 0x0, 0x0, 0x34, 0xfffffffffffffffa)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000005, 0x12, r6, 0x0)
ioctl$USBDEVFS_CONTROL(r5, 0x80045519, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='ext4_mb_release_inode_pa\x00', r2}, 0x10)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r8, 0x0, 0x32600)

534.446354ms ago: executing program 4 (id=5453):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x7}, 0x48)
socket(0xa, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32, @ANYBLOB="0000000000000000690300000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
listxattr(&(0x7f0000000180)='./file0\x00', &(0x7f0000000440)=""/104, 0x68)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002200000018010000202070250000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x3}, 0x8)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_ALLOW_SUSPEND(0xffffffffffffffff, 0x5522)
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0x5523, 0x0)
ioctl$USBDEVFS_FORBID_SUSPEND(0xffffffffffffffff, 0x5521)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
close(r1)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8000000000000000}, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0}, 0x90)
mkdirat$cgroup(r2, &(0x7f0000000080)='syz0\x00', 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, &(0x7f0000000140)={0x0, <r5=>0x0})
r6 = syz_open_procfs(r5, &(0x7f0000000600)='fd/4\x00')
open_by_handle_at(r6, &(0x7f0000000640)=@shmem={0xc, 0x1, {0x2da, 0x20}}, 0x9e4b)

260.994508ms ago: executing program 3 (id=5454):
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$lock(r2, 0x25, &(0x7f00000002c0)={0x0, 0x300})

238.471339ms ago: executing program 3 (id=5455):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.time\x00', 0x275a, 0x0)
mmap(&(0x7f00003a8000/0x2000)=nil, 0x2000, 0x0, 0x11, r2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d032, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x0, &(0x7f0000a00000/0x600000)=nil) (fail_nth: 3)

450.7µs ago: executing program 3 (id=5456):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000540)=@gettaction={0x88, 0x32, 0x100, 0x0, 0x25dfdbff, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x8}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x60, 0x1, [{0xc, 0x20, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xacb4}}, {0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0x10, 0x12, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0x10, 0x15, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0x10, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0x10, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000006c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000328bd7000fedbdf250100000008003c000000000005002d000100000008003900000000000500370001000000d036e3a4483da17abb1c3d960ef7bfa708dfc0d20796e489e7307ad5a7265f04a1776daf00341ab2382b9bf492d24ba02890066270bda989e30368ef68cf95e41ce2f6747054d7e92f6747fb3f0e0833df06c575b4e90238a018add295817876a0eb4321aeb2cd6b63de0f475eb8d86a5ed7"], 0x34}, 0x1, 0x0, 0x0, 0x20008005}, 0x66f186268380d196)
r2 = socket(0x10, 0x803, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), r0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000a00)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000940)={&(0x7f0000000780)={0x20, r3, 0x300, 0x70bd26, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MAC_HINT={0xa, 0xc8, @random="30f440d52f9d"}]}, 0x20}, 0x1, 0x0, 0x0, 0x4081}, 0x4000044)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x7d}, {&(0x7f00000007c0)=""/154, 0xc4}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x4, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b400000000000000dd0a00000000000063010a00000000009500000000000000271f32b65a302d6ee544f3f5dab604df86880a0cc95487bc6c97941123f05509e927790b0317c1d6dda411e4770c458c26432f0c79af55cd6f5a7a09a1130d136845d14935e683494fef34033c04d5b7fd6f19cd2fbf54a4ffad"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7}, 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000540)=@gettaction={0x88, 0x32, 0x100, 0x0, 0x25dfdbff, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x8}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x60, 0x1, [{0xc, 0x20, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xacb4}}, {0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0x10, 0x12, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0x10, 0x15, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0x10, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0x10, 0xf, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff) (async)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000006c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000328bd7000fedbdf250100000008003c000000000005002d000100000008003900000000000500370001000000d036e3a4483da17abb1c3d960ef7bfa708dfc0d20796e489e7307ad5a7265f04a1776daf00341ab2382b9bf492d24ba02890066270bda989e30368ef68cf95e41ce2f6747054d7e92f6747fb3f0e0833df06c575b4e90238a018add295817876a0eb4321aeb2cd6b63de0f475eb8d86a5ed7"], 0x34}, 0x1, 0x0, 0x0, 0x20008005}, 0x66f186268380d196) (async)
socket(0x10, 0x803, 0x0) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), r0) (async)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000a00)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000940)={&(0x7f0000000780)={0x20, r3, 0x300, 0x70bd26, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MAC_HINT={0xa, 0xc8, @random="30f440d52f9d"}]}, 0x20}, 0x1, 0x0, 0x0, 0x4081}, 0x4000044) (async)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) (async)
recvmmsg(r2, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x7d}, {&(0x7f00000007c0)=""/154, 0xc4}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) (async)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x4, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b400000000000000dd0a00000000000063010a00000000009500000000000000271f32b65a302d6ee544f3f5dab604df86880a0cc95487bc6c97941123f05509e927790b0317c1d6dda411e4770c458c26432f0c79af55cd6f5a7a09a1130d136845d14935e683494fef34033c04d5b7fd6f19cd2fbf54a4ffad"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7}, 0x48) (async)

249.72µs ago: executing program 3 (id=5457):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mbind(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x8000, &(0x7f0000000080)=0x2, 0x400, 0x0)

0s ago: executing program 3 (id=5458):
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x400017e)
r1 = syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
chdir(&(0x7f0000000540)='./file0\x00')
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
lseek(r2, 0x0, 0x2)
getdents(r1, &(0x7f0000000100)=""/123, 0x7b)
getdents(r2, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x34, 0x9, 0xa, 0x401, 0x0, 0x18000000, {0x1}, [@NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x8}]}, @NFT_MSG_NEWSETELEM={0x30, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}], {0x14, 0x10}}, 0xac}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x17, 0x51, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
r8 = dup(r7)
write$P9_RLERRORu(r8, &(0x7f0000000480)=ANY=[@ANYBLOB="530000000700004600f531132067043b2d877e"], 0x53)
r9 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x0)
r10 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r10, 0x560e, 0x0)
fcntl$notify(r9, 0x402, 0x8000003d)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffac1e0001ac1414aa0304907803000000450000000000000042b4f376058534a2e00000010400000000000000"], 0x0)

kernel console output (not intermixed with test programs):

T18938] 9pnet_virtio: no channels available for device syz
[  335.885419][T18944] 9pnet_virtio: no channels available for device syz
[  335.982679][T18954] loop4: detected capacity change from 0 to 2048
[  335.999605][T18954] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  336.053628][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.778973][T18970] 9pnet_virtio: no channels available for device syz
[  337.425520][   T29] kauditd_printk_skb: 1537 callbacks suppressed
[  337.425535][   T29] audit: type=1326 audit(1724981016.249:223551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4ec1e40ea7 code=0x7ffc0000
[  337.457553][   T29] audit: type=1326 audit(1724981016.279:223552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4ec1de5849 code=0x7ffc0000
[  337.481200][   T29] audit: type=1326 audit(1724981016.279:223553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4ec1e40ea7 code=0x7ffc0000
[  337.504740][   T29] audit: type=1326 audit(1724981016.279:223554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4ec1de5849 code=0x7ffc0000
[  337.528344][   T29] audit: type=1326 audit(1724981016.279:223555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f4ec1e49ef9 code=0x7ffc0000
[  337.554370][   T29] audit: type=1326 audit(1724981016.319:223556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4ec1e40ea7 code=0x7ffc0000
[  337.577934][   T29] audit: type=1326 audit(1724981016.319:223557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4ec1de5849 code=0x7ffc0000
[  337.601494][   T29] audit: type=1326 audit(1724981016.319:223558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f4ec1e49ef9 code=0x7ffc0000
[  337.625053][   T29] audit: type=1326 audit(1724981016.319:223559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4ec1e40ea7 code=0x7ffc0000
[  337.648687][   T29] audit: type=1326 audit(1724981016.319:223560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18969 comm="syz.1.5084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4ec1de5849 code=0x7ffc0000
[  337.924388][T18982] loop4: detected capacity change from 0 to 512
[  337.931366][T18982] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  337.945096][T18982] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  337.954566][T18982] System zones: 1-12
[  337.959159][T18982] EXT4-fs (loop4): 1 truncate cleaned up
[  337.965551][T18982] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.990136][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.030514][T18990] loop4: detected capacity change from 0 to 2048
[  338.054215][T18990] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  338.122399][T18998] loop4: detected capacity change from 0 to 164
[  338.358489][T19022] loop2: detected capacity change from 0 to 512
[  338.370295][T19022] ext4 filesystem being mounted at /325/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  338.390622][T19022] FAULT_INJECTION: forcing a failure.
[  338.390622][T19022] name failslab, interval 1, probability 0, space 0, times 0
[  338.403336][T19022] CPU: 0 UID: 0 PID: 19022 Comm: syz.2.5103 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  338.414167][T19022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  338.424254][T19022] Call Trace:
[  338.427543][T19022]  <TASK>
[  338.430466][T19022]  dump_stack_lvl+0xf2/0x150
[  338.435107][T19022]  dump_stack+0x15/0x20
[  338.439274][T19022]  should_fail_ex+0x229/0x230
[  338.443953][T19022]  ? skb_clone+0x154/0x1f0
[  338.448371][T19022]  should_failslab+0x8f/0xb0
[  338.452960][T19022]  kmem_cache_alloc_noprof+0x4c/0x290
[  338.458333][T19022]  skb_clone+0x154/0x1f0
[  338.462578][T19022]  __netlink_deliver_tap+0x2bd/0x4c0
[  338.467869][T19022]  netlink_unicast+0x64a/0x670
[  338.472634][T19022]  netlink_sendmsg+0x5cc/0x6e0
[  338.477399][T19022]  ? __pfx_netlink_sendmsg+0x10/0x10
[  338.482744][T19022]  __sock_sendmsg+0x140/0x180
[  338.487466][T19022]  ____sys_sendmsg+0x312/0x410
[  338.492384][T19022]  __sys_sendmsg+0x1e9/0x280
[  338.497030][T19022]  __x64_sys_sendmsg+0x46/0x50
[  338.501838][T19022]  x64_sys_call+0x2689/0x2d60
[  338.506516][T19022]  do_syscall_64+0xc9/0x1c0
[  338.511035][T19022]  ? clear_bhb_loop+0x55/0xb0
[  338.515794][T19022]  ? clear_bhb_loop+0x55/0xb0
[  338.520470][T19022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.526397][T19022] RIP: 0033:0x7f15f4a89ef9
[  338.530805][T19022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.550404][T19022] RSP: 002b:00007f15f3707038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  338.558873][T19022] RAX: ffffffffffffffda RBX: 00007f15f4c25f80 RCX: 00007f15f4a89ef9
[  338.566833][T19022] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 000000000000000e
[  338.574929][T19022] RBP: 00007f15f3707090 R08: 0000000000000000 R09: 0000000000000000
[  338.583007][T19022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.590974][T19022] R13: 0000000000000000 R14: 00007f15f4c25f80 R15: 00007ffded23a8a8
[  338.598945][T19022]  </TASK>
[  338.606576][T19022] netlink: 'syz.2.5103': attribute type 10 has an invalid length.
[  338.614409][T19022] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5103'.
[  338.626873][T19022] batman_adv: batadv0: Adding interface: veth1_vlan
[  338.633483][T19022] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  338.659516][T19022] batman_adv: batadv0: Interface activated: veth1_vlan
[  338.687557][T14806] EXT4-fs error (device loop2): ext4_readdir:260: inode #12: block 32: comm syz-executor: path /325/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  338.797975][T19028] loop1: detected capacity change from 0 to 2048
[  339.073885][T19035] loop3: detected capacity change from 0 to 164
[  339.111733][T19039] loop1: detected capacity change from 0 to 1024
[  339.134865][T19039] netlink: 108 bytes leftover after parsing attributes in process `syz.1.5109'.
[  339.208206][T19043] loop4: detected capacity change from 0 to 164
[  339.224003][T19051] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5113'.
[  339.243465][T19051] netlink: 'syz.1.5113': attribute type 5 has an invalid length.
[  339.340558][T19062] loop1: detected capacity change from 0 to 2048
[  339.552773][T19063] chnl_net:caif_netlink_parms(): no params data found
[  339.570220][ T3270] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.613672][T19063] bridge0: port 1(bridge_slave_0) entered blocking state
[  339.620839][T19063] bridge0: port 1(bridge_slave_0) entered disabled state
[  339.628261][T19063] bridge_slave_0: entered allmulticast mode
[  339.634835][T19063] bridge_slave_0: entered promiscuous mode
[  339.646221][ T3270] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.659936][T19063] bridge0: port 2(bridge_slave_1) entered blocking state
[  339.667055][T19063] bridge0: port 2(bridge_slave_1) entered disabled state
[  339.674370][T19063] bridge_slave_1: entered allmulticast mode
[  339.680843][T19063] bridge_slave_1: entered promiscuous mode
[  339.701312][T19063] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  339.714095][ T3270] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.727186][T19063] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  339.748347][T19063] team0: Port device team_slave_0 added
[  339.754920][T19063] team0: Port device team_slave_1 added
[  339.770403][ T3270] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.787478][T19063] batman_adv: batadv0: Adding interface: batadv_slave_0
[  339.794443][T19063] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  339.820408][T19063] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  339.834804][T19063] batman_adv: batadv0: Adding interface: batadv_slave_1
[  339.841776][T19063] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  339.867860][T19063] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  339.907602][ T3270] bridge_slave_1: left allmulticast mode
[  339.913350][ T3270] bridge_slave_1: left promiscuous mode
[  339.919097][ T3270] bridge0: port 2(bridge_slave_1) entered disabled state
[  339.927313][ T3270] bridge_slave_0: left allmulticast mode
[  339.932987][ T3270] bridge_slave_0: left promiscuous mode
[  339.938699][ T3270] bridge0: port 1(bridge_slave_0) entered disabled state
[  340.065932][ T3270] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  340.079218][ T3270] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  340.090078][ T3270] bond0 (unregistering): Released all slaves
[  340.135524][T19063] hsr_slave_0: entered promiscuous mode
[  340.141759][T19063] hsr_slave_1: entered promiscuous mode
[  340.147816][T19063] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  340.157360][T19063] Cannot create hsr debugfs directory
[  340.200052][ T3270] hsr_slave_0: left promiscuous mode
[  340.207334][ T3270] hsr_slave_1: left promiscuous mode
[  340.216649][ T3270] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  340.224155][ T3270] batman_adv: batadv0: Removing interface: batadv_slave_0
[  340.231807][ T3270] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  340.239349][ T3270] batman_adv: batadv0: Removing interface: batadv_slave_1
[  340.251156][ T3270] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  340.258286][ T3270] batman_adv: batadv0: Removing interface: veth1_vlan
[  340.290481][ T3270] veth1_macvtap: left promiscuous mode
[  340.295993][ T3270] veth0_macvtap: left promiscuous mode
[  340.301552][ T3270] veth1_vlan: left promiscuous mode
[  340.306842][ T3270] veth0_vlan: left promiscuous mode
[  340.386210][T19097] loop3: detected capacity change from 0 to 164
[  340.436226][T19103] FAULT_INJECTION: forcing a failure.
[  340.436226][T19103] name failslab, interval 1, probability 0, space 0, times 0
[  340.448878][T19103] CPU: 0 UID: 0 PID: 19103 Comm: syz.1.5128 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  340.459663][T19103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  340.469712][T19103] Call Trace:
[  340.473061][T19103]  <TASK>
[  340.476008][T19103]  dump_stack_lvl+0xf2/0x150
[  340.480595][T19103]  dump_stack+0x15/0x20
[  340.484752][T19103]  should_fail_ex+0x229/0x230
[  340.489440][T19103]  ? audit_log_start+0x34c/0x6b0
[  340.494371][T19103]  should_failslab+0x8f/0xb0
[  340.499047][T19103]  kmem_cache_alloc_noprof+0x4c/0x290
[  340.504451][T19103]  audit_log_start+0x34c/0x6b0
[  340.509218][T19103]  audit_seccomp+0x4b/0x130
[  340.513723][T19103]  __seccomp_filter+0x6fa/0x1180
[  340.518689][T19103]  ? proc_fail_nth_write+0x130/0x160
[  340.524224][T19103]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  340.529972][T19103]  ? vfs_write+0x5a5/0x900
[  340.534397][T19103]  __secure_computing+0x9f/0x1c0
[  340.539418][T19103]  syscall_trace_enter+0xd1/0x1f0
[  340.544522][T19103]  do_syscall_64+0xaa/0x1c0
[  340.549040][T19103]  ? clear_bhb_loop+0x55/0xb0
[  340.553713][T19103]  ? clear_bhb_loop+0x55/0xb0
[  340.558381][T19103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.564341][T19103] RIP: 0033:0x7f4ec1e49ef9
[  340.568851][T19103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.588530][T19103] RSP: 002b:00007f4ec0ac7038 EFLAGS: 00000246 ORIG_RAX: 000000000000000a
[  340.596963][T19103] RAX: ffffffffffffffda RBX: 00007f4ec1fe5f80 RCX: 00007f4ec1e49ef9
[  340.604928][T19103] RDX: 000000000000000c RSI: 0000000000002000 RDI: 0000000020000000
[  340.612946][T19103] RBP: 00007f4ec0ac7090 R08: 0000000000000000 R09: 0000000000000000
[  340.620910][T19103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  340.628886][T19103] R13: 0000000000000000 R14: 00007f4ec1fe5f80 R15: 00007ffd0185c8e8
[  340.636899][T19103]  </TASK>
[  340.689330][T19108] loop3: detected capacity change from 0 to 2048
[  340.715602][ T3270] team0 (unregistering): Port device team_slave_1 removed
[  340.733156][ T3270] team0 (unregistering): Port device team_slave_0 removed
[  340.795904][T19120] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19120 comm=syz.3.5133
[  340.846301][T19120] loop3: detected capacity change from 0 to 512
[  340.865744][T19120] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  340.892688][T19120] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec018, mo2=0002]
[  340.902976][T19120] System zones: 1-12
[  340.907736][T19120] EXT4-fs (loop3): 1 truncate cleaned up
[  341.235228][T19063] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  341.262773][T19063] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  341.296972][T19063] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  341.328376][T19063] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  341.427347][T19063] 8021q: adding VLAN 0 to HW filter on device bond0
[  341.453768][T19063] 8021q: adding VLAN 0 to HW filter on device team0
[  341.475677][ T3270] bridge0: port 1(bridge_slave_0) entered blocking state
[  341.482808][ T3270] bridge0: port 1(bridge_slave_0) entered forwarding state
[  341.508494][ T3270] bridge0: port 2(bridge_slave_1) entered blocking state
[  341.515596][ T3270] bridge0: port 2(bridge_slave_1) entered forwarding state
[  341.660636][T19136] loop1: detected capacity change from 0 to 164
[  341.673707][T19063] 8021q: adding VLAN 0 to HW filter on device batadv0
[  341.817701][T19063] veth0_vlan: entered promiscuous mode
[  341.841693][T19063] veth1_vlan: entered promiscuous mode
[  341.874493][T19063] veth0_macvtap: entered promiscuous mode
[  341.892720][T19063] veth1_macvtap: entered promiscuous mode
[  341.897355][T19155] loop1: detected capacity change from 0 to 2048
[  341.907569][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  341.918076][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.927949][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  341.938468][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.948523][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  341.959099][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.969008][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  341.979434][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  341.989256][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  341.999757][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.009554][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  342.020034][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.029938][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  342.040378][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.050199][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  342.060629][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.070438][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  342.080905][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.090794][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  342.101385][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.111386][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  342.121988][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.134675][T19063] batman_adv: batadv0: Interface activated: batadv_slave_0
[  342.146822][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.157397][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.167430][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.178177][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.188089][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.198522][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.208400][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.218824][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.228849][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.239390][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.249326][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.260395][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.262735][T19163] loop1: detected capacity change from 0 to 512
[  342.270456][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.286988][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.296816][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.307239][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.317103][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.327583][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.337439][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.347891][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.357698][T19063] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  342.368115][T19063] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  342.380996][T19063] batman_adv: batadv0: Interface activated: batadv_slave_1
[  342.390172][T19063] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  342.398949][T19063] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  342.407711][T19063] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  342.416456][T19063] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  342.465682][T19165] loop1: detected capacity change from 0 to 1024
[  342.483133][T19165] EXT4-fs: Ignoring removed nomblk_io_submit option
[  342.521620][   T29] kauditd_printk_skb: 1697 callbacks suppressed
[  342.521632][   T29] audit: type=1326 audit(1724981021.360:225256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.559668][T19171] 9pnet_virtio: no channels available for device syz
[  342.570693][   T29] audit: type=1326 audit(1724981021.390:225257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.594425][   T29] audit: type=1326 audit(1724981021.390:225258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.618124][   T29] audit: type=1326 audit(1724981021.390:225259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.641844][   T29] audit: type=1326 audit(1724981021.390:225260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.665525][   T29] audit: type=1326 audit(1724981021.390:225261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.689185][   T29] audit: type=1326 audit(1724981021.390:225262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.712823][   T29] audit: type=1326 audit(1724981021.390:225263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.736466][   T29] audit: type=1326 audit(1724981021.390:225264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.760172][   T29] audit: type=1326 audit(1724981021.390:225265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19170 comm="syz.3.5148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  342.911749][T19186] loop0: detected capacity change from 0 to 164
[  342.939511][T19189] loop4: detected capacity change from 0 to 2048
[  343.245153][T19203] FAULT_INJECTION: forcing a failure.
[  343.245153][T19203] name failslab, interval 1, probability 0, space 0, times 0
[  343.257896][T19203] CPU: 1 UID: 0 PID: 19203 Comm: syz.1.5155 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  343.268719][T19203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  343.278821][T19203] Call Trace:
[  343.282095][T19203]  <TASK>
[  343.285088][T19203]  dump_stack_lvl+0xf2/0x150
[  343.289686][T19203]  dump_stack+0x15/0x20
[  343.293836][T19203]  should_fail_ex+0x229/0x230
[  343.298515][T19203]  ? sidtab_sid2str_get+0xb8/0x140
[  343.303628][T19203]  should_failslab+0x8f/0xb0
[  343.308220][T19203]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[  343.314564][T19203]  kmemdup_noprof+0x2a/0x60
[  343.319068][T19203]  sidtab_sid2str_get+0xb8/0x140
[  343.324082][T19203]  security_sid_to_context_core+0x1eb/0x2f0
[  343.330009][T19203]  security_sid_to_context+0x27/0x30
[  343.335358][T19203]  selinux_secid_to_secctx+0x22/0x30
[  343.340646][T19203]  security_secid_to_secctx+0x4a/0x80
[  343.346068][T19203]  audit_log_task_context+0x8c/0x1b0
[  343.351400][T19203]  audit_log_task+0xfb/0x180
[  343.356018][T19203]  audit_seccomp+0x68/0x130
[  343.360519][T19203]  __seccomp_filter+0x6fa/0x1180
[  343.365493][T19203]  ? __sys_bpf+0x463/0x7a0
[  343.369901][T19203]  __secure_computing+0x9f/0x1c0
[  343.374846][T19203]  syscall_trace_enter+0xd1/0x1f0
[  343.379928][T19203]  ? fpregs_assert_state_consistent+0x83/0xa0
[  343.386039][T19203]  do_syscall_64+0xaa/0x1c0
[  343.390545][T19203]  ? clear_bhb_loop+0x55/0xb0
[  343.395260][T19203]  ? clear_bhb_loop+0x55/0xb0
[  343.399928][T19203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.405857][T19203] RIP: 0033:0x7f4ec1e4893c
[  343.410268][T19203] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  343.429953][T19203] RSP: 002b:00007f4ec0ac7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  343.438409][T19203] RAX: ffffffffffffffda RBX: 00007f4ec1fe5f80 RCX: 00007f4ec1e4893c
[  343.446452][T19203] RDX: 000000000000000f RSI: 00007f4ec0ac70a0 RDI: 0000000000000004
[  343.454473][T19203] RBP: 00007f4ec0ac7090 R08: 0000000000000000 R09: 0000000000000000
[  343.462439][T19203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  343.470486][T19203] R13: 0000000000000000 R14: 00007f4ec1fe5f80 R15: 00007ffd0185c8e8
[  343.478467][T19203]  </TASK>
[  343.526006][T19207] loop1: detected capacity change from 0 to 2048
[  343.580833][T19211] loop1: detected capacity change from 0 to 1024
[  343.592160][T19211] syz.1.5159: attempt to access beyond end of device
[  343.592160][T19211] loop1: rw=2048, sector=0, nr_sectors = 8 limit=0
[  343.713947][T19219] loop0: detected capacity change from 0 to 2048
[  343.770046][T19226] loop0: detected capacity change from 0 to 1024
[  343.777481][T19226] EXT4-fs: Ignoring removed nomblk_io_submit option
[  343.784830][T19226] EXT4-fs (loop0): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  343.815974][T19233] FAULT_INJECTION: forcing a failure.
[  343.815974][T19233] name failslab, interval 1, probability 0, space 0, times 0
[  343.828681][T19233] CPU: 1 UID: 0 PID: 19233 Comm: syz.3.5167 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  343.839465][T19233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  343.849517][T19233] Call Trace:
[  343.852794][T19233]  <TASK>
[  343.855795][T19233]  dump_stack_lvl+0xf2/0x150
[  343.860388][T19233]  dump_stack+0x15/0x20
[  343.864579][T19233]  should_fail_ex+0x229/0x230
[  343.869321][T19233]  ? security_file_alloc+0x32/0xe0
[  343.874479][T19233]  should_failslab+0x8f/0xb0
[  343.879151][T19233]  kmem_cache_alloc_noprof+0x4c/0x290
[  343.884550][T19233]  security_file_alloc+0x32/0xe0
[  343.889538][T19233]  alloc_empty_file+0x121/0x310
[  343.894482][T19233]  path_openat+0x6a/0x1f10
[  343.898986][T19233]  ? xas_load+0x3ae/0x3d0
[  343.903318][T19233]  ? xas_load+0x3ae/0x3d0
[  343.907729][T19233]  ? __rcu_read_unlock+0x4e/0x70
[  343.912668][T19233]  ? should_fail_ex+0xd7/0x230
[  343.917437][T19233]  ? getname_kernel+0x3d/0x1e0
[  343.922212][T19233]  ? should_failslab+0x8f/0xb0
[  343.927038][T19233]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  343.932766][T19233]  do_file_open_root+0x1a4/0x390
[  343.937790][T19233]  file_open_root+0xf9/0x120
[  343.942381][T19233]  kernel_read_file_from_path_initns+0xe7/0x180
[  343.948680][T19233]  _request_firmware+0x654/0x8c0
[  343.953626][T19233]  request_firmware+0x36/0x50
[  343.958417][T19233]  devlink_compat_flash_update+0xaf/0x1b0
[  343.964220][T19233]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  343.970100][T19233]  dev_ethtool+0x138b/0x14c0
[  343.974782][T19233]  ? __rcu_read_unlock+0x4e/0x70
[  343.979717][T19233]  dev_ioctl+0x854/0xab0
[  343.984042][T19233]  sock_do_ioctl+0x11c/0x260
[  343.988645][T19233]  sock_ioctl+0x470/0x640
[  343.992983][T19233]  ? __pfx_sock_ioctl+0x10/0x10
[  343.997893][T19233]  __se_sys_ioctl+0xd3/0x150
[  344.002607][T19233]  __x64_sys_ioctl+0x43/0x50
[  344.007201][T19233]  x64_sys_call+0x15cc/0x2d60
[  344.011877][T19233]  do_syscall_64+0xc9/0x1c0
[  344.016491][T19233]  ? clear_bhb_loop+0x55/0xb0
[  344.021232][T19233]  ? clear_bhb_loop+0x55/0xb0
[  344.025918][T19233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.031943][T19233] RIP: 0033:0x7fd9decb9ef9
[  344.036437][T19233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.056112][T19233] RSP: 002b:00007fd9dd937038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  344.064540][T19233] RAX: ffffffffffffffda RBX: 00007fd9dee55f80 RCX: 00007fd9decb9ef9
[  344.072506][T19233] RDX: 0000000020000000 RSI: 0000000000008946 RDI: 0000000000000003
[  344.080536][T19233] RBP: 00007fd9dd937090 R08: 0000000000000000 R09: 0000000000000000
[  344.088504][T19233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  344.096543][T19233] R13: 0000000000000000 R14: 00007fd9dee55f80 R15: 00007ffe5745caf8
[  344.104598][T19233]  </TASK>
[  344.116049][T19233] netdevsim netdevsim3: loading /lib/firmware/updates/6.11.0-rc5-syzkaller-00081-gd5d547aa7b51/. failed with error -12
[  344.128894][T19233] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  344.137232][T19233] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  344.152312][T19239] loop4: detected capacity change from 0 to 2048
[  344.335338][T19289] loop3: detected capacity change from 0 to 2048
[  344.519936][T19303] 9pnet_virtio: no channels available for device syz
[  344.916780][T19317] syzkaller0: entered promiscuous mode
[  344.922280][T19317] syzkaller0: entered allmulticast mode
[  345.339548][T19326] loop4: detected capacity change from 0 to 512
[  345.360422][T19326] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  345.416807][T19326] EXT4-fs (loop4): 1 orphan inode deleted
[  345.422672][T19326] EXT4-fs (loop4): 1 truncate cleaned up
[  345.426082][T19328] loop3: detected capacity change from 0 to 2048
[  345.434684][T19326] EXT4-fs mount: 17 callbacks suppressed
[  345.434699][T19326] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  345.456017][T19328] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  345.501501][T16009] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.504401][T19337] 9pnet_virtio: no channels available for device syz
[  345.530905][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.588640][T19343] loop4: detected capacity change from 0 to 1024
[  345.607434][T19343] EXT4-fs: Ignoring removed nomblk_io_submit option
[  345.620461][T19343] EXT4-fs (loop4): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  345.647278][T19343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.695307][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.876564][T19354] 9pnet_virtio: no channels available for device syz
[  346.401561][T19361] 9pnet_virtio: no channels available for device syz
[  346.816188][T19367] loop0: detected capacity change from 0 to 512
[  346.833813][T19367] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.5199: Parent and EA inode have the same ino 15
[  346.862494][T19367] EXT4-fs (loop0): Remounting filesystem read-only
[  346.879128][T19367] EXT4-fs (loop0): 1 orphan inode deleted
[  346.896160][T19367] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.925440][T19367] SELinux: (dev loop0, type ext4) getxattr errno 5
[  346.942332][T19367] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.043345][T19365] loop4: detected capacity change from 0 to 512
[  347.060328][T19365] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  347.093128][T19365] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec018, mo2=0002]
[  347.102295][T19365] System zones: 1-12
[  347.121386][T19375] loop0: detected capacity change from 0 to 2048
[  347.122199][T19365] EXT4-fs (loop4): 1 truncate cleaned up
[  347.140568][T19365] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.157183][T19375] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  347.200407][T19063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.234897][T19379] loop1: detected capacity change from 0 to 1024
[  347.252054][T19379] EXT4-fs: Ignoring removed nomblk_io_submit option
[  347.378293][T19399] 9pnet_virtio: no channels available for device syz
[  347.494976][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.521540][   T29] kauditd_printk_skb: 1253 callbacks suppressed
[  347.521555][   T29] audit: type=1326 audit(1724981026.367:226518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4ec1e40ea7 code=0x7ffc0000
[  347.571153][T19405] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  347.579354][T19405] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  347.588772][   T29] audit: type=1326 audit(1724981026.397:226519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4ec1de5849 code=0x7ffc0000
[  347.612590][   T29] audit: type=1326 audit(1724981026.397:226520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4ec1e40ea7 code=0x7ffc0000
[  347.636233][   T29] audit: type=1326 audit(1724981026.397:226521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4ec1de5849 code=0x7ffc0000
[  347.659815][   T29] audit: type=1326 audit(1724981026.397:226522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f4ec1e49ef9 code=0x7ffc0000
[  347.684080][   T29] audit: type=1326 audit(1724981026.407:226523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4ec1e40ea7 code=0x7ffc0000
[  347.696293][T19411] loop4: detected capacity change from 0 to 2048
[  347.707813][   T29] audit: type=1326 audit(1724981026.407:226524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4ec1de5849 code=0x7ffc0000
[  347.737824][   T29] audit: type=1326 audit(1724981026.407:226525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f4ec1e49ef9 code=0x7ffc0000
[  347.761383][   T29] audit: type=1326 audit(1724981026.407:226526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4ec1e40ea7 code=0x7ffc0000
[  347.785323][   T29] audit: type=1326 audit(1724981026.407:226527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19398 comm="syz.1.5209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4ec1de5849 code=0x7ffc0000
[  347.816770][T19411] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  347.856782][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.878444][T19419] Unsupported ieee802154 address type: 0
[  347.878775][T19420] 9pnet_virtio: no channels available for device syz
[  347.890951][T19421] Unsupported ieee802154 address type: 0
[  347.936389][T19426] loop4: detected capacity change from 0 to 1024
[  347.943330][T19426] EXT4-fs: Ignoring removed nomblk_io_submit option
[  347.950475][T19426] EXT4-fs (loop4): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  347.972766][T19426] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.009135][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.286040][T19440] loop1: detected capacity change from 0 to 164
[  348.386691][T19435] loop0: detected capacity change from 0 to 512
[  348.395108][T19435] EXT4-fs: quotafile must be on filesystem root
[  348.498280][T19449] loop0: detected capacity change from 0 to 2048
[  348.513441][T19449] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  348.553658][T19063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.745221][T19459] loop3: detected capacity change from 0 to 1024
[  348.753938][T19459] EXT4-fs: Ignoring removed nomblk_io_submit option
[  348.761240][T19459] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  348.793241][T19459] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  348.887872][T16009] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  348.898288][T19460] chnl_net:caif_netlink_parms(): no params data found
[  348.937123][T19460] bridge0: port 1(bridge_slave_0) entered blocking state
[  348.944357][T19460] bridge0: port 1(bridge_slave_0) entered disabled state
[  348.953720][T19460] bridge_slave_0: entered allmulticast mode
[  348.960344][T19460] bridge_slave_0: entered promiscuous mode
[  348.969058][T19460] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.976226][T19460] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.983417][T19460] bridge_slave_1: entered allmulticast mode
[  348.991202][T19460] bridge_slave_1: entered promiscuous mode
[  348.992222][T14806] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.011311][T19278] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.028454][T19460] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  349.039108][T19460] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  349.062540][T19278] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.074189][T19460] team0: Port device team_slave_0 added
[  349.081003][T19460] team0: Port device team_slave_1 added
[  349.095966][T19460] batman_adv: batadv0: Adding interface: batadv_slave_0
[  349.103097][T19460] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  349.129068][T19460] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  349.143489][T19278] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.154872][T19460] batman_adv: batadv0: Adding interface: batadv_slave_1
[  349.161897][T19460] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  349.187897][T19460] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  349.213076][T19278] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.225478][T19460] hsr_slave_0: entered promiscuous mode
[  349.231635][T19460] hsr_slave_1: entered promiscuous mode
[  349.237641][T19460] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  349.245275][T19460] Cannot create hsr debugfs directory
[  349.308806][T19487] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5231'.
[  349.322935][T19278] bridge_slave_1: left allmulticast mode
[  349.328649][T19278] bridge_slave_1: left promiscuous mode
[  349.332691][T19487] loop1: detected capacity change from 0 to 2048
[  349.334432][T19278] bridge0: port 2(bridge_slave_1) entered disabled state
[  349.348986][T19278] bridge_slave_0: left allmulticast mode
[  349.354803][T19278] bridge_slave_0: left promiscuous mode
[  349.360488][T19278] bridge0: port 1(bridge_slave_0) entered disabled state
[  349.394951][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.402671][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.410415][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.414775][T19491] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  349.418103][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.418133][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.418156][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.418176][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.418196][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.418216][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.436710][T19493] loop0: detected capacity change from 0 to 256
[  349.442122][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.465288][T19493] FAT-fs (loop0): Directory bread(block 64) failed
[  349.465311][T19493] FAT-fs (loop0): Directory bread(block 65) failed
[  349.465334][T19493] FAT-fs (loop0): Directory bread(block 66) failed
[  349.465352][T19493] FAT-fs (loop0): Directory bread(block 67) failed
[  349.465383][T19493] FAT-fs (loop0): Directory bread(block 68) failed
[  349.465401][T19493] FAT-fs (loop0): Directory bread(block 69) failed
[  349.473137][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.481931][T19493] FAT-fs (loop0): Directory bread(block 70) failed
[  349.487094][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.493554][T19493] FAT-fs (loop0): Directory bread(block 71) failed
[  349.493581][T19493] FAT-fs (loop0): Directory bread(block 72) failed
[  349.493599][T19493] FAT-fs (loop0): Directory bread(block 73) failed
[  349.567916][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.575557][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.583248][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.590962][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.598678][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.606316][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.613990][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.621680][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.629449][    T9] hid-generic 0000:1000000:0000.0004: unknown main item tag 0x0
[  349.638680][T19491] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  349.646773][T19277] kworker/u8:28: attempt to access beyond end of device
[  349.646773][T19277] loop0: rw=1, sector=1800, nr_sectors = 4 limit=256
[  349.649530][    T9] hid-generic 0000:1000000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  349.766032][T19278] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  349.776772][T19278] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  349.791865][T19278] bond0 (unregistering): Released all slaves
[  349.828936][T19501] loop3: detected capacity change from 0 to 1024
[  349.835597][T19501] EXT4-fs: Ignoring removed nomblk_io_submit option
[  349.842574][T19501] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  349.860056][T19501] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  349.891057][T19278] hsr_slave_0: left promiscuous mode
[  349.896720][T19278] hsr_slave_1: left promiscuous mode
[  349.902820][T19278] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  349.910292][T19278] batman_adv: batadv0: Removing interface: batadv_slave_0
[  349.917865][T19278] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  349.925290][T19278] batman_adv: batadv0: Removing interface: batadv_slave_1
[  349.933393][T19278] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  349.940705][T19278] batman_adv: batadv0: Removing interface: veth1_vlan
[  349.949679][T19278] veth1_macvtap: left promiscuous mode
[  349.955218][T19278] veth0_macvtap: left promiscuous mode
[  349.960881][T19278] veth1_vlan: left promiscuous mode
[  349.966144][T19278] veth0_vlan: left promiscuous mode
[  349.972213][T16009] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.066017][T19278] team0 (unregistering): Port device team_slave_1 removed
[  350.076828][T19278] team0 (unregistering): Port device team_slave_0 removed
[  350.183990][T19513] loop3: detected capacity change from 0 to 512
[  350.209917][T19517] loop1: detected capacity change from 0 to 512
[  350.211575][T19513] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  350.229767][T19513] ext4 filesystem being mounted at /269/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  350.241727][T19524] 9pnet_virtio: no channels available for device syz
[  350.252712][T19513] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #19: comm syz.3.5241: corrupted inode contents
[  350.264648][T19513] EXT4-fs error (device loop3): ext4_dirty_inode:6014: inode #19: comm syz.3.5241: mark_inode_dirty error
[  350.276125][T19513] EXT4-fs error (device loop3): ext4_do_update_inode:5154: inode #19: comm syz.3.5241: corrupted inode contents
[  350.290847][T19513] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3007: inode #19: comm syz.3.5241: mark_inode_dirty error
[  350.303189][T19513] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3010: inode #19: comm syz.3.5241: mark inode dirty (error -117)
[  350.305480][T19460] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  350.323089][T19513] EXT4-fs warning (device loop3): ext4_evict_inode:271: xattr delete (err -117)
[  350.326250][T19460] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  350.343708][T19460] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  350.353099][T19460] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  350.418871][T19460] 8021q: adding VLAN 0 to HW filter on device bond0
[  350.435282][T19460] 8021q: adding VLAN 0 to HW filter on device team0
[  350.464745][T19277] bridge0: port 1(bridge_slave_0) entered blocking state
[  350.471823][T19277] bridge0: port 1(bridge_slave_0) entered forwarding state
[  350.502078][T19279] bridge0: port 2(bridge_slave_1) entered blocking state
[  350.509177][T19279] bridge0: port 2(bridge_slave_1) entered forwarding state
[  350.579430][T19460] 8021q: adding VLAN 0 to HW filter on device batadv0
[  350.604669][T16009] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.627757][T19542] sctp: [Deprecated]: syz.3.5246 (pid 19542) Use of struct sctp_assoc_value in delayed_ack socket option.
[  350.627757][T19542] Use struct sctp_sack_info instead
[  350.645789][T19542] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5246'.
[  350.657020][T19460] veth0_vlan: entered promiscuous mode
[  350.669192][T19460] veth1_vlan: entered promiscuous mode
[  350.674922][T19546] loop3: detected capacity change from 0 to 512
[  350.682197][T19546] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  350.686215][T19460] veth0_macvtap: entered promiscuous mode
[  350.693733][T19546] EXT4-fs (loop3): 1 orphan inode deleted
[  350.702919][T19460] veth1_macvtap: entered promiscuous mode
[  350.703644][T19546] EXT4-fs (loop3): 1 truncate cleaned up
[  350.714899][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.715693][T19546] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  350.725414][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.747269][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.747281][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.747435][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.747446][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.747512][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.747526][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.747538][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.747696][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.747784][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.747871][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.747913][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.747978][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.748017][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.748028][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.748040][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.748053][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.748065][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.748077][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.748088][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  350.748099][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.750083][T19460] batman_adv: batadv0: Interface activated: batadv_slave_0
[  350.773307][T19546] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, 
[  350.783513][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  350.789174][T19546] block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  350.799569][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.799607][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  350.799619][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.799628][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  350.799639][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  350.799648][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  350.829868][T19546] EXT4-fs (loop3): Remounting filesystem read-only
[  351.053213][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.053228][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.053299][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.053376][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.093911][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.103892][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.114323][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.124334][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.134856][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.144966][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.148990][T19551] loop1: detected capacity change from 0 to 2048
[  351.155650][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.172026][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.182648][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.192489][T19460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  351.202899][T19460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  351.213817][T16009] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.217127][T19460] batman_adv: batadv0: Interface activated: batadv_slave_1
[  351.231828][T19460] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  351.240615][T19460] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  351.249451][T19460] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  351.258259][T19460] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  351.291292][T19556] loop3: detected capacity change from 0 to 1024
[  351.325627][T19556] EXT4-fs: Ignoring removed nomblk_io_submit option
[  351.326422][T19561] batman_adv: batadv0: Interface deactivated: dummy0
[  351.333378][T19554] 9pnet_virtio: no channels available for device syz
[  351.339139][T19561] batman_adv: batadv0: Removing interface: dummy0
[  351.349927][T19556] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  351.362903][T19561] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  351.370479][T19561] batman_adv: batadv0: Removing interface: batadv_slave_0
[  351.378573][T19561] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  351.386041][T19561] batman_adv: batadv0: Removing interface: batadv_slave_1
[  351.394022][T19561] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  351.401133][T19561] batman_adv: batadv0: Removing interface: veth1_vlan
[  351.409924][T19556] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  351.449915][T19561] bond0: (slave batadv0): Releasing backup interface
[  351.505620][T19577] loop0: detected capacity change from 0 to 2048
[  351.525046][T16009] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.535523][T19577] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  351.569696][T19063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.584404][T19582] loop3: detected capacity change from 0 to 512
[  351.600515][T19582] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  351.615730][T19582] ext4 filesystem being mounted at /273/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  351.630678][T19582] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  351.658432][T19582] netlink: 'syz.3.5257': attribute type 2 has an invalid length.
[  351.666185][T19582] netlink: 'syz.3.5257': attribute type 1 has an invalid length.
[  351.674075][T19582] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5257'.
[  351.686479][T19582] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5257'.
[  351.724068][T19589] loop0: detected capacity change from 0 to 512
[  351.730870][T19589] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  351.743291][T19589] EXT4-fs (loop0): 1 orphan inode deleted
[  351.749095][T19589] EXT4-fs (loop0): 1 truncate cleaned up
[  351.754953][T19589] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  351.771121][T19584] syz.0.5258: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0
[  351.785993][T19584] CPU: 1 UID: 0 PID: 19584 Comm: syz.0.5258 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  351.796755][T19584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  351.806876][T19584] Call Trace:
[  351.810141][T19584]  <TASK>
[  351.813109][T19584]  dump_stack_lvl+0xf2/0x150
[  351.817697][T19584]  dump_stack+0x15/0x20
[  351.821840][T19584]  warn_alloc+0x145/0x1b0
[  351.826259][T19584]  ? __schedule+0x5fa/0x950
[  351.830772][T19584]  ? __vmalloc_node_range_noprof+0x88/0xec0
[  351.836664][T19584]  __vmalloc_node_range_noprof+0xaa/0xec0
[  351.842444][T19584]  ? __pfx_futex_wake_mark+0x10/0x10
[  351.847817][T19584]  ? __rcu_read_unlock+0x4e/0x70
[  351.852769][T19584]  ? avc_has_perm_noaudit+0x1cc/0x210
[  351.858208][T19584]  ? xskq_create+0x36/0xd0
[  351.862625][T19584]  vmalloc_user_noprof+0x59/0x70
[  351.867558][T19584]  ? xskq_create+0x79/0xd0
[  351.872044][T19584]  xskq_create+0x79/0xd0
[  351.876328][T19584]  xsk_init_queue+0x82/0xd0
[  351.880829][T19584]  xsk_setsockopt+0x409/0x520
[  351.885540][T19584]  ? __pfx_xsk_setsockopt+0x10/0x10
[  351.890739][T19584]  __sys_setsockopt+0x1d8/0x250
[  351.895583][T19584]  __x64_sys_setsockopt+0x66/0x80
[  351.900650][T19584]  x64_sys_call+0x278d/0x2d60
[  351.905323][T19584]  do_syscall_64+0xc9/0x1c0
[  351.909831][T19584]  ? clear_bhb_loop+0x55/0xb0
[  351.914505][T19584]  ? clear_bhb_loop+0x55/0xb0
[  351.919168][T19584]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.925063][T19584] RIP: 0033:0x7f31bdcd9ef9
[  351.929468][T19584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  351.949065][T19584] RSP: 002b:00007f31bc957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  351.957466][T19584] RAX: ffffffffffffffda RBX: 00007f31bde75f80 RCX: 00007f31bdcd9ef9
[  351.965456][T19584] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000009
[  351.973447][T19584] RBP: 00007f31bdd4793e R08: 0000000000000020 R09: 0000000000000000
[  351.981432][T19584] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000000
[  351.989389][T19584] R13: 0000000000000000 R14: 00007f31bde75f80 R15: 00007ffddf2e0ec8
[  351.997397][T19584]  </TASK>
[  352.001037][T19584] Mem-Info:
[  352.004249][T19584] active_anon:9237 inactive_anon:523 isolated_anon:0
[  352.004249][T19584]  active_file:14087 inactive_file:12496 isolated_file:0
[  352.004249][T19584]  unevictable:0 dirty:460 writeback:0
[  352.004249][T19584]  slab_reclaimable:2911 slab_unreclaimable:23965
[  352.004249][T19584]  mapped:38338 shmem:6149 pagetables:708
[  352.004249][T19584]  sec_pagetables:0 bounce:0
[  352.004249][T19584]  kernel_misc_reclaimable:0
[  352.004249][T19584]  free:1864266 free_pcp:2703 free_cma:0
[  352.049603][T19584] Node 0 active_anon:36948kB inactive_anon:2092kB active_file:56348kB inactive_file:49984kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:153352kB dirty:1376kB writeback:464kB shmem:24596kB writeback_tmp:0kB kernel_stack:3872kB pagetables:2832kB sec_pagetables:0kB all_unreclaimable? no
[  352.078629][T19584] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  352.078768][T19584] lowmem_reserve[]: 0 2866 7844 0
[  352.078789][T19584] Node 0 DMA32 free:2950336kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953968kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  352.137596][T19593] loop4: detected capacity change from 0 to 2048
[  352.139718][T19584] lowmem_reserve[]: 0 0 4978 0
[  352.150966][T19584] Node 0 Normal free:4491208kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:37940kB inactive_anon:2092kB active_file:56348kB inactive_file:50004kB unevictable:0kB writepending:1468kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:6352kB local_pcp:3100kB free_cma:0kB
[  352.158161][T19593] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  352.181495][T19584] lowmem_reserve[]: 0 0 0 0
[  352.181522][T19584] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  352.181638][T19584] Node 0 DMA32: 2*4kB (M) 1*8kB (M) 3*16kB (M) 2*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950336kB
[  352.226848][T19584] Node 0 Normal: 58*4kB (ME) 91*8kB (UME) 297*16kB (UME) 254*32kB (UME) 287*64kB (UME) 152*128kB (UME) 96*256kB (UME) 53*512kB (UME) 29*1024kB (UME) 8*2048kB (UME) 1060*4096kB (UM) = 4491216kB
[  352.245995][T19584] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  352.255377][T19584] 33493 total pagecache pages
[  352.260169][T19584] 523 pages in swap cache
[  352.264514][T19584] Free swap  = 122340kB
[  352.268662][T19584] Total swap = 124996kB
[  352.272871][T19584] 2097051 pages RAM
[  352.276661][T19584] 0 pages HighMem/MovableOnly
[  352.281337][T19584] 80167 pages reserved
[  352.287605][T16009] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.314340][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.343497][T19063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.403210][T19608] 9pnet_virtio: no channels available for device syz
[  352.532339][   T29] kauditd_printk_skb: 1306 callbacks suppressed
[  352.532352][   T29] audit: type=1326 audit(1724981031.382:227834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb069370ea7 code=0x7ffc0000
[  352.562306][   T29] audit: type=1326 audit(1724981031.382:227835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb069315849 code=0x7ffc0000
[  352.585871][   T29] audit: type=1326 audit(1724981031.382:227836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fb069379ef9 code=0x7ffc0000
[  352.612466][   T29] audit: type=1326 audit(1724981031.412:227837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb069370ea7 code=0x7ffc0000
[  352.636061][   T29] audit: type=1326 audit(1724981031.412:227838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb069315849 code=0x7ffc0000
[  352.659713][   T29] audit: type=1326 audit(1724981031.412:227839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fb069379ef9 code=0x7ffc0000
[  352.683374][   T29] audit: type=1326 audit(1724981031.412:227840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb069370ea7 code=0x7ffc0000
[  352.707015][   T29] audit: type=1326 audit(1724981031.412:227841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb069315849 code=0x7ffc0000
[  352.730654][   T29] audit: type=1326 audit(1724981031.412:227842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fb069379ef9 code=0x7ffc0000
[  352.754227][   T29] audit: type=1326 audit(1724981031.442:227843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19607 comm="syz.4.5265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb069370ea7 code=0x7ffc0000
[  352.789882][T19619] loop1: detected capacity change from 0 to 1024
[  352.796874][T19619] EXT4-fs: Ignoring removed nomblk_io_submit option
[  352.894132][T19622] loop0: detected capacity change from 0 to 1024
[  352.901765][T19622] EXT4-fs: Ignoring removed nomblk_io_submit option
[  352.909123][T19622] EXT4-fs (loop0): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  352.926990][T19622] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  353.014417][T19063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.330357][T19643] loop4: detected capacity change from 0 to 2048
[  353.347337][T19643] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  353.389150][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.426764][T19652] loop3: detected capacity change from 0 to 512
[  353.592862][T19659] ieee802154 phy0 wpan0: encryption failed: -22
[  353.609305][T19659] loop3: detected capacity change from 0 to 256
[  353.661668][T19664] loop3: detected capacity change from 0 to 512
[  353.663439][T19657] loop4: detected capacity change from 0 to 512
[  353.674737][T19664] EXT4-fs (loop3): external journal device major/minor numbers have changed
[  353.687617][T19657] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  353.688802][T19664] block device autoloading is deprecated and will be removed.
[  353.709682][T19657] EXT4-fs (loop4): 1 orphan inode deleted
[  353.715151][T19664] syz.3.5278: attempt to access beyond end of device
[  353.715151][T19664] loop75: rw=0, sector=2, nr_sectors = 2 limit=0
[  353.715431][T19657] EXT4-fs (loop4): 1 truncate cleaned up
[  353.734723][T19657] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  353.747052][T19664] EXT4-fs (loop3): couldn't read superblock of external journal
[  353.764506][T19657] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  353.791087][T19669] loop3: detected capacity change from 0 to 512
[  353.791554][T19657] EXT4-fs (loop4): Remounting filesystem read-only
[  353.799035][T19669] EXT4-fs (loop3): external journal device major/minor numbers have changed
[  353.844021][T19669] syz.3.5278: attempt to access beyond end of device
[  353.844021][T19669] loop75: rw=0, sector=2, nr_sectors = 2 limit=0
[  353.890545][T19669] EXT4-fs (loop3): couldn't read superblock of external journal
[  353.928983][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.038907][T19685] loop3: detected capacity change from 0 to 512
[  354.045980][T19685] EXT4-fs (loop3): inodes count not valid: 0 vs 32
[  354.112221][T19686] netlink: 'syz.3.5287': attribute type 4 has an invalid length.
[  354.158724][T19686] loop3: detected capacity change from 0 to 2048
[  354.208707][T19679] loop4: detected capacity change from 0 to 512
[  354.215985][T19686]  loop3: p1 < > p4
[  354.220405][T19686] loop3: p4 size 8388608 extends beyond EOD, truncated
[  354.228021][T19679] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  354.248882][T19679] EXT4-fs (loop4): 1 orphan inode deleted
[  354.254663][T19679] EXT4-fs (loop4): 1 truncate cleaned up
[  354.263176][T19679] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  354.293127][T19679] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  354.307664][T19679] EXT4-fs (loop4): Remounting filesystem read-only
[  354.343894][T19696] loop3: detected capacity change from 0 to 164
[  354.382454][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.435655][T19715] loop2: detected capacity change from 0 to 512
[  354.444997][T19717] 9pnet_virtio: no channels available for device syz
[  354.455780][T19715] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  354.468429][T19715] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  354.488576][T19715] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #19: comm syz.2.5294: corrupted inode contents
[  354.491841][T19722] 9pnet_virtio: no channels available for device syz
[  354.502686][T19715] EXT4-fs error (device loop2): ext4_dirty_inode:6014: inode #19: comm syz.2.5294: mark_inode_dirty error
[  354.520704][T19715] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #19: comm syz.2.5294: corrupted inode contents
[  354.538521][T19715] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3007: inode #19: comm syz.2.5294: mark_inode_dirty error
[  354.561119][T19715] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3010: inode #19: comm syz.2.5294: mark inode dirty (error -117)
[  354.604433][T19715] EXT4-fs warning (device loop2): ext4_evict_inode:271: xattr delete (err -117)
[  354.741948][T19732] loop1: detected capacity change from 0 to 2048
[  354.831596][T19460] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.919229][T19744] loop2: detected capacity change from 0 to 164
[  355.059704][T19738] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5302'.
[  355.070352][T19738] netlink: 64 bytes leftover after parsing attributes in process `syz.1.5302'.
[  355.082212][T19738] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5302'.
[  355.091210][T19738] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5302'.
[  355.416479][T19768] loop4: detected capacity change from 0 to 2048
[  355.446709][T19768] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  355.475441][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  355.528791][T19783] 9pnet_virtio: no channels available for device syz
[  355.545731][T19787] loop4: detected capacity change from 0 to 512
[  355.552423][T19787] FAT-fs (loop4): bogus sectors per cluster 69
[  355.558719][T19787] FAT-fs (loop4): Can't find a valid FAT filesystem
[  355.620332][T19791] 9pnet_virtio: no channels available for device syz
[  355.712768][T19795] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5319'.
[  355.727081][T19794] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5319'.
[  355.741683][T19799] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  355.786885][T19803] loop1: detected capacity change from 0 to 2048
[  355.957638][T19821] 9pnet_virtio: no channels available for device syz
[  356.112342][T19824] loop1: detected capacity change from 0 to 1764
[  356.431889][T19836] FAULT_INJECTION: forcing a failure.
[  356.431889][T19836] name failslab, interval 1, probability 0, space 0, times 0
[  356.444669][T19836] CPU: 1 UID: 0 PID: 19836 Comm: syz.0.5332 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  356.455437][T19836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  356.465490][T19836] Call Trace:
[  356.468770][T19836]  <TASK>
[  356.471695][T19836]  dump_stack_lvl+0xf2/0x150
[  356.476289][T19836]  dump_stack+0x15/0x20
[  356.480488][T19836]  should_fail_ex+0x229/0x230
[  356.485184][T19836]  ? mas_alloc_nodes+0x1d3/0x4a0
[  356.490230][T19836]  should_failslab+0x8f/0xb0
[  356.494838][T19836]  kmem_cache_alloc_noprof+0x4c/0x290
[  356.500240][T19836]  mas_alloc_nodes+0x1d3/0x4a0
[  356.505054][T19836]  mas_preallocate+0x773/0xc30
[  356.509886][T19836]  __split_vma+0x244/0x690
[  356.514400][T19836]  do_vmi_align_munmap+0x227/0xa60
[  356.519531][T19836]  do_vmi_munmap+0x1fb/0x250
[  356.524130][T19836]  do_munmap+0x7a/0xb0
[  356.528255][T19836]  __se_sys_mremap+0xba3/0xf20
[  356.533068][T19836]  ? fput+0x13b/0x180
[  356.537117][T19836]  __x64_sys_mremap+0x67/0x80
[  356.541882][T19836]  x64_sys_call+0x2747/0x2d60
[  356.546554][T19836]  do_syscall_64+0xc9/0x1c0
[  356.551049][T19836]  ? clear_bhb_loop+0x55/0xb0
[  356.555717][T19836]  ? clear_bhb_loop+0x55/0xb0
[  356.560381][T19836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.566274][T19836] RIP: 0033:0x7f31bdcd9ef9
[  356.570742][T19836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.590340][T19836] RSP: 002b:00007f31bc957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  356.598737][T19836] RAX: ffffffffffffffda RBX: 00007f31bde75f80 RCX: 00007f31bdcd9ef9
[  356.606772][T19836] RDX: 0000000000004000 RSI: 000000000000f000 RDI: 0000000020a4c000
[  356.614728][T19836] RBP: 00007f31bc957090 R08: 00000000208dd000 R09: 0000000000000000
[  356.622750][T19836] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002
[  356.630708][T19836] R13: 0000000000000000 R14: 00007f31bde75f80 R15: 00007ffddf2e0ec8
[  356.638671][T19836]  </TASK>
[  356.690404][T19840] loop4: detected capacity change from 0 to 2048
[  356.721310][T19840] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  356.767612][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.888477][T19864] loop2: detected capacity change from 0 to 1024
[  356.910805][T19861] loop4: detected capacity change from 0 to 2048
[  356.913922][T19858] loop3: detected capacity change from 0 to 1024
[  356.929938][T19864] loop2: detected capacity change from 0 to 512
[  356.937372][T19864] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  356.940648][T19858] EXT4-fs: Ignoring removed nomblk_io_submit option
[  356.954954][T19858] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  356.969833][T19861] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  356.977720][T19876] loop2: detected capacity change from 0 to 512
[  356.986485][T19861] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5342: bg 0: block 234: padding at end of block bitmap is not set
[  357.003962][T19861] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 117
[  357.016275][T19861] EXT4-fs (loop4): This should not happen!! Data will be lost
[  357.016275][T19861] 
[  357.017686][T19858] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.026528][T19876] ext4: Unknown parameter 'dont_appraise'
[  357.077489][T18536] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.079840][T19876] netlink: 'syz.2.5346': attribute type 10 has an invalid length.
[  357.094406][T19876] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5346'.
[  357.110222][T19876] ipvlan0: entered promiscuous mode
[  357.115592][T19876] ipvlan0: entered allmulticast mode
[  357.120887][T19876] veth0_vlan: entered allmulticast mode
[  357.130723][T19876] bridge0: port 3(ipvlan0) entered blocking state
[  357.137230][T19876] bridge0: port 3(ipvlan0) entered disabled state
[  357.144891][T19876] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check.
[  357.159785][T19889] loop1: detected capacity change from 0 to 2048
[  357.170580][T16009] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.188067][T19876] netlink: 11 bytes leftover after parsing attributes in process `syz.2.5346'.
[  357.266288][T19903] loop1: detected capacity change from 0 to 164
[  357.300943][T19882] loop0: detected capacity change from 0 to 256
[  357.319883][T19908] loop3: detected capacity change from 0 to 4096
[  357.333886][T19908] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.357220][T19916] FAULT_INJECTION: forcing a failure.
[  357.357220][T19916] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  357.370362][T19916] CPU: 1 UID: 0 PID: 19916 Comm: syz.0.5358 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  357.381122][T19916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  357.391197][T19916] Call Trace:
[  357.394509][T19916]  <TASK>
[  357.397432][T19916]  dump_stack_lvl+0xf2/0x150
[  357.402027][T19916]  dump_stack+0x15/0x20
[  357.406220][T19916]  should_fail_ex+0x229/0x230
[  357.410939][T19916]  should_fail+0xb/0x10
[  357.415091][T19916]  should_fail_usercopy+0x1a/0x20
[  357.420187][T19916]  _copy_to_user+0x1e/0xa0
[  357.424638][T19916]  rng_dev_read+0x3ad/0x6c0
[  357.429159][T19916]  vfs_readv+0x3f1/0x660
[  357.433397][T19916]  ? __pfx_rng_dev_read+0x10/0x10
[  357.438437][T19916]  __x64_sys_preadv+0x100/0x1c0
[  357.443316][T19916]  x64_sys_call+0x1d5c/0x2d60
[  357.447983][T19916]  do_syscall_64+0xc9/0x1c0
[  357.452472][T19916]  ? clear_bhb_loop+0x55/0xb0
[  357.457145][T19916]  ? clear_bhb_loop+0x55/0xb0
[  357.461809][T19916]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.467709][T19916] RIP: 0033:0x7f31bdcd9ef9
[  357.472200][T19916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  357.491898][T19916] RSP: 002b:00007f31bc957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  357.500291][T19916] RAX: ffffffffffffffda RBX: 00007f31bde75f80 RCX: 00007f31bdcd9ef9
[  357.508276][T19916] RDX: 0000000000000001 RSI: 0000000020000240 RDI: 0000000000000003
[  357.516232][T19916] RBP: 00007f31bc957090 R08: 0000000000000000 R09: 0000000000000000
[  357.524186][T19916] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  357.532177][T19916] R13: 0000000000000000 R14: 00007f31bde75f80 R15: 00007ffddf2e0ec8
[  357.540185][T19916]  </TASK>
[  357.562149][   T29] kauditd_printk_skb: 6071 callbacks suppressed
[  357.562162][   T29] audit: type=1400 audit(1724981036.276:233915): avc:  denied  { mounton } for  pid=19904 comm="syz.3.5356" path="/296/file0/bus" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  357.569875][T19922] loop0: detected capacity change from 0 to 1024
[  357.604088][T19922] EXT4-fs: Ignoring removed nomblk_io_submit option
[  357.611979][T19922] EXT4-fs (loop0): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  357.625313][   T29] audit: type=1400 audit(1724981036.476:233916): avc:  denied  { unlink } for  pid=16009 comm="syz-executor" name="file0" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  357.649837][T19922] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.656025][T19925] loop2: detected capacity change from 0 to 2048
[  357.665696][T16009] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.686050][T19925] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  357.728734][T19460] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.739354][   T29] audit: type=1326 audit(1724981036.586:233917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19934 comm="syz.3.5362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  357.763486][   T29] audit: type=1326 audit(1724981036.616:233918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19934 comm="syz.3.5362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  357.787175][   T29] audit: type=1326 audit(1724981036.616:233919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19934 comm="syz.3.5362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  357.810936][   T29] audit: type=1326 audit(1724981036.616:233920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19934 comm="syz.3.5362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  357.834596][   T29] audit: type=1326 audit(1724981036.616:233921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19934 comm="syz.3.5362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9decb9ef9 code=0x7ffc0000
[  357.862821][T19940] loop2: detected capacity change from 0 to 512
[  357.866290][T19936] loop1: detected capacity change from 0 to 164
[  357.878159][T19940] EXT4-fs: Ignoring removed nobh option
[  357.884417][T19940] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  357.901520][T19940] EXT4-fs (loop2): 1 truncate cleaned up
[  357.908809][T19940] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.911044][T19063] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.935705][   T29] audit: type=1400 audit(1724981036.787:233922): avc:  denied  { read write } for  pid=19939 comm="syz.2.5366" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  357.959622][T19947] FAULT_INJECTION: forcing a failure.
[  357.959622][T19947] name failslab, interval 1, probability 0, space 0, times 0
[  357.960553][   T29] audit: type=1400 audit(1724981036.787:233923): avc:  denied  { open } for  pid=19939 comm="syz.2.5366" path="/18/bus/file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  357.972320][T19947] CPU: 1 UID: 0 PID: 19947 Comm: syz.0.5368 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  357.972344][T19947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  357.972356][T19947] Call Trace:
[  357.972364][T19947]  <TASK>
[  357.972372][T19947]  dump_stack_lvl+0xf2/0x150
[  358.002211][T19940] loop2: detected capacity change from 512 to 0
[  358.006102][T19947]  dump_stack+0x15/0x20
[  358.022502][   T29] audit: type=1400 audit(1724981036.877:233924): avc:  denied  { execute } for  pid=19939 comm="syz.2.5366" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  358.026866][T19947]  should_fail_ex+0x229/0x230
[  358.064524][T19947]  ? v9fs_session_init+0x4c/0xda0
[  358.069816][T19947]  should_failslab+0x8f/0xb0
[  358.074404][T19947]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[  358.080761][T19947]  kstrdup+0x3a/0x80
[  358.084644][T19947]  v9fs_session_init+0x4c/0xda0
[  358.089507][T19947]  ? __rcu_read_unlock+0x4e/0x70
[  358.094436][T19947]  ? should_fail_ex+0xd7/0x230
[  358.099257][T19947]  ? v9fs_mount+0x53/0x560
[  358.103668][T19947]  ? should_failslab+0x8f/0xb0
[  358.108427][T19947]  v9fs_mount+0x69/0x560
[  358.112694][T19947]  ? __pfx_v9fs_mount+0x10/0x10
[  358.117539][T19947]  legacy_get_tree+0x77/0xd0
[  358.122191][T19947]  vfs_get_tree+0x56/0x1e0
[  358.126613][T19947]  do_new_mount+0x227/0x690
[  358.131174][T19947]  path_mount+0x49b/0xb30
[  358.135495][T19947]  __se_sys_mount+0x27c/0x2d0
[  358.140198][T19947]  __x64_sys_mount+0x67/0x80
[  358.144776][T19947]  x64_sys_call+0x203e/0x2d60
[  358.149463][T19947]  do_syscall_64+0xc9/0x1c0
[  358.154015][T19947]  ? clear_bhb_loop+0x55/0xb0
[  358.158741][T19947]  ? clear_bhb_loop+0x55/0xb0
[  358.163407][T19947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.169306][T19947] RIP: 0033:0x7f31bdcd9ef9
[  358.173732][T19947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.193399][T19947] RSP: 002b:00007f31bc957038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  358.201861][T19947] RAX: ffffffffffffffda RBX: 00007f31bde75f80 RCX: 00007f31bdcd9ef9
[  358.209823][T19947] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[  358.217790][T19947] RBP: 00007f31bc957090 R08: 0000000020000300 R09: 0000000000000000
[  358.225745][T19947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  358.233703][T19947] R13: 0000000000000000 R14: 00007f31bde75f80 R15: 00007ffddf2e0ec8
[  358.241664][T19947]  </TASK>
[  358.270214][T19460] syz-executor: attempt to access beyond end of device
[  358.270214][T19460] loop2: rw=12288, sector=26, nr_sectors = 2 limit=0
[  358.307352][T19460] syz-executor: attempt to access beyond end of device
[  358.307352][T19460] loop2: rw=524288, sector=10, nr_sectors = 2 limit=0
[  358.323094][T19460] syz-executor: attempt to access beyond end of device
[  358.323094][T19460] loop2: rw=524288, sector=12, nr_sectors = 2 limit=0
[  358.336895][T19460] syz-executor: attempt to access beyond end of device
[  358.336895][T19460] loop2: rw=524288, sector=14, nr_sectors = 2 limit=0
[  358.393883][T19460] syz-executor: attempt to access beyond end of device
[  358.393883][T19460] loop2: rw=524288, sector=18, nr_sectors = 2 limit=0
[  358.418570][T19460] syz-executor: attempt to access beyond end of device
[  358.418570][T19460] loop2: rw=12288, sector=16, nr_sectors = 2 limit=0
[  358.453356][T19460] EXT4-fs error (device loop2): ext4_get_inode_loc:4574: inode #15: block 8: comm syz-executor: unable to read itable block
[  358.479047][T19960] loop0: detected capacity change from 0 to 512
[  358.495139][T19460] syz-executor: attempt to access beyond end of device
[  358.495139][T19460] loop2: rw=145409, sector=2, nr_sectors = 2 limit=0
[  358.508551][T19460] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.536352][T19960] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.556074][T19460] EXT4-fs (loop2): I/O error while writing superblock
[  358.556182][T19960] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  358.562873][T19460] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5810: IO failure
[  358.562904][T19460] syz-executor: attempt to access beyond end of device
[  358.562904][T19460] loop2: rw=145409, sector=2, nr_sectors = 2 limit=0
[  358.595346][T19460] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.604608][T19460] EXT4-fs (loop2): I/O error while writing superblock
[  358.611387][T19460] EXT4-fs error (device loop2): ext4_dirty_inode:6014: inode #15: comm syz-executor: mark_inode_dirty error
[  358.623091][T19460] syz-executor: attempt to access beyond end of device
[  358.623091][T19460] loop2: rw=145409, sector=2, nr_sectors = 2 limit=0
[  358.636495][T19460] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.644851][T19460] EXT4-fs (loop2): I/O error while writing superblock
[  358.651790][T19460] syz-executor: attempt to access beyond end of device
[  358.651790][T19460] loop2: rw=524288, sector=12, nr_sectors = 2 limit=0
[  358.665390][T19460] EXT4-fs error (device loop2): ext4_get_inode_loc:4574: inode #2: block 5: comm syz-executor: unable to read itable block
[  358.733312][T19460] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.750964][T19460] EXT4-fs (loop2): I/O error while writing superblock
[  358.757817][T19460] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5810: IO failure
[  358.766828][T19460] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.775136][T19460] EXT4-fs (loop2): I/O error while writing superblock
[  358.781944][T19460] EXT4-fs error (device loop2): ext4_dirty_inode:6014: inode #2: comm syz-executor: mark_inode_dirty error
[  358.793826][T19460] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.802397][T19460] EXT4-fs (loop2): I/O error while writing superblock
[  358.809495][T19263] EXT4-fs warning (device loop2): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 36)
[  358.820857][T19263] Buffer I/O error on device loop2, logical block 36
[  358.833449][T19263] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4559: inode #15: block 8: comm kworker/u8:14: unable to read itable block
[  358.848870][T19263] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.857235][T19263] EXT4-fs (loop2): I/O error while writing superblock
[  358.865928][T19263] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4559: inode #18: block 9: comm kworker/u8:14: unable to read itable block
[  358.879778][T19263] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.901304][T19263] EXT4-fs (loop2): I/O error while writing superblock
[  358.908361][T19263] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4559: inode #2: block 5: comm kworker/u8:14: unable to read itable block
[  358.922778][T19263] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.931065][T19263] EXT4-fs (loop2): I/O error while writing superblock
[  358.949095][T19460] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  358.996930][T19268] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  359.036169][T19975] 9pnet_virtio: no channels available for device syz
[  359.079428][T19268] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  359.129906][T19268] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  359.150194][T19993] FAULT_INJECTION: forcing a failure.
[  359.150194][T19993] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  359.163520][T19993] CPU: 1 UID: 0 PID: 19993 Comm: syz.3.5382 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  359.174303][T19993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  359.184386][T19993] Call Trace:
[  359.187659][T19993]  <TASK>
[  359.190584][T19993]  dump_stack_lvl+0xf2/0x150
[  359.195270][T19993]  dump_stack+0x15/0x20
[  359.199425][T19993]  should_fail_ex+0x229/0x230
[  359.204105][T19993]  should_fail_alloc_page+0xfd/0x110
[  359.209465][T19993]  __alloc_pages_noprof+0x109/0x360
[  359.214712][T19993]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  359.220217][T19993]  alloc_pages_noprof+0xe1/0x100
[  359.225162][T19993]  pte_alloc_one+0x32/0xf0
[  359.229587][T19993]  ? xas_load+0x3ae/0x3d0
[  359.233924][T19993]  __pte_alloc+0x33/0x270
[  359.238307][T19993]  handle_mm_fault+0x1ae6/0x2a30
[  359.243281][T19993]  ? __rcu_read_unlock+0x4e/0x70
[  359.245616][T19981] chnl_net:caif_netlink_parms(): no params data found
[  359.248211][T19993]  ? mt_find+0x70a/0x880
[  359.259216][T19993]  __get_user_pages+0x499/0x10d0
[  359.264192][T19993]  ? __perf_event_task_sched_out+0x111/0xfe0
[  359.270192][T19993]  __gup_longterm_locked+0xa7b/0x10b0
[  359.275655][T19993]  ? down_read_killable+0x172/0x6b0
[  359.280915][T19993]  ? down_read+0x171/0x4b0
[  359.285390][T19993]  pin_user_pages_remote+0x7f/0xb0
[  359.290498][T19993]  process_vm_rw+0x4f7/0x8c0
[  359.295110][T19993]  ? ksys_write+0x178/0x1b0
[  359.299692][T19993]  __x64_sys_process_vm_writev+0x7a/0x90
[  359.305373][T19993]  x64_sys_call+0x1a4/0x2d60
[  359.305690][    C0] vxcan0: j1939_tp_rxtimer: 0xffff88811044be00: rx timeout, send abort
[  359.309980][T19993]  do_syscall_64+0xc9/0x1c0
[  359.322682][T19993]  ? clear_bhb_loop+0x55/0xb0
[  359.327346][T19993]  ? clear_bhb_loop+0x55/0xb0
[  359.332006][T19993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.337895][T19993] RIP: 0033:0x7fd9decb9ef9
[  359.342331][T19993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.361956][T19993] RSP: 002b:00007fd9dd937038 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[  359.370446][T19993] RAX: ffffffffffffffda RBX: 00007fd9dee55f80 RCX: 00007fd9decb9ef9
[  359.378432][T19993] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000308
[  359.386496][T19993] RBP: 00007fd9dd937090 R08: 000000000000023a R09: 0000000000000000
[  359.394454][T19993] R10: 0000000020121000 R11: 0000000000000246 R12: 0000000000000001
[  359.402410][T19993] R13: 0000000000000000 R14: 00007fd9dee55f80 R15: 00007ffe5745caf8
[  359.410372][T19993]  </TASK>
[  359.440182][T20004] 9pnet_virtio: no channels available for device syz
[  359.448793][T19268] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  359.473667][T19981] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.480951][T19981] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.488350][T19981] bridge_slave_0: entered allmulticast mode
[  359.494985][T19981] bridge_slave_0: entered promiscuous mode
[  359.502803][T19981] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.509924][T19981] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.517192][T19981] bridge_slave_1: entered allmulticast mode
[  359.524889][T19981] bridge_slave_1: entered promiscuous mode
[  359.562069][T19981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  359.586988][T19268] bridge_slave_1: left allmulticast mode
[  359.592753][T19268] bridge_slave_1: left promiscuous mode
[  359.598436][T19268] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.610573][T19268] bridge_slave_0: left allmulticast mode
[  359.616279][T19268] bridge_slave_0: left promiscuous mode
[  359.622169][T19268] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.629419][T20017] loop4: detected capacity change from 0 to 512
[  359.637435][T20017] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  359.648691][T20017] EXT4-fs (loop4): 1 truncate cleaned up
[  359.715151][T19268] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  359.726071][T19268] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  359.737193][T19268] bond0 (unregistering): Released all slaves
[  359.746637][T19981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  359.769800][T19981] team0: Port device team_slave_0 added
[  359.776970][T19981] team0: Port device team_slave_1 added
[  359.792290][T19981] batman_adv: batadv0: Adding interface: batadv_slave_0
[  359.799314][T19981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  359.825288][    C0] vxcan0: j1939_tp_rxtimer: 0xffff88811044be00: abort rx timeout. Force session deactivation
[  359.835516][T19981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  359.846658][T19981] batman_adv: batadv0: Adding interface: batadv_slave_1
[  359.853611][T19981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  359.879819][T19981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  359.890080][T20025] loop0: detected capacity change from 0 to 512
[  359.899288][T19268] hsr_slave_0: left promiscuous mode
[  359.905352][T19268] hsr_slave_1: left promiscuous mode
[  359.906300][T20025] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  359.921310][T19268] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  359.928865][T19268] batman_adv: batadv0: Removing interface: batadv_slave_0
[  359.939428][T19268] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  359.946944][T19268] batman_adv: batadv0: Removing interface: batadv_slave_1
[  359.959587][T19268] veth1_macvtap: left promiscuous mode
[  359.965142][T19268] veth0_macvtap: left promiscuous mode
[  359.970827][T19268] veth1_vlan: left promiscuous mode
[  359.976217][T19268] veth0_vlan: left promiscuous mode
[  360.067662][T19268] team0 (unregistering): Port device team_slave_1 removed
[  360.077827][T19268] team0 (unregistering): Port device team_slave_0 removed
[  360.143423][T19981] hsr_slave_0: entered promiscuous mode
[  360.149514][T19981] hsr_slave_1: entered promiscuous mode
[  360.155772][T19981] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  360.164727][T19981] Cannot create hsr debugfs directory
[  360.203766][T20033] loop0: detected capacity change from 0 to 2048
[  360.225065][T20033] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5390: bg 0: block 234: padding at end of block bitmap is not set
[  360.239683][T20033] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 117
[  360.251997][T20033] EXT4-fs (loop0): This should not happen!! Data will be lost
[  360.251997][T20033] 
[  360.329425][T20037] loop3: detected capacity change from 0 to 2048
[  360.354141][T20037] EXT4-fs error (device loop3): ext4_find_dest_de:2067: inode #2: block 16: comm syz.3.5391: bad entry in directory: inode out of bounds - offset=44, inode=185, rec_len=16, size=2048 fake=0
[  360.520054][T19981] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  360.531598][T19981] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  360.540555][T19981] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  360.549230][T19981] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  360.600131][T19981] 8021q: adding VLAN 0 to HW filter on device bond0
[  360.619572][T19981] 8021q: adding VLAN 0 to HW filter on device team0
[  360.638277][T19263] bridge0: port 1(bridge_slave_0) entered blocking state
[  360.645454][T19263] bridge0: port 1(bridge_slave_0) entered forwarding state
[  360.662513][T19263] bridge0: port 2(bridge_slave_1) entered blocking state
[  360.669766][T19263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  360.682930][T20065] loop3: detected capacity change from 0 to 512
[  360.689876][T20065] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  360.706279][T20065] EXT4-fs (loop3): 1 orphan inode deleted
[  360.712070][T20065] EXT4-fs (loop3): 1 truncate cleaned up
[  360.719986][T20065] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  360.749082][T20065] EXT4-fs (loop3): Remounting filesystem read-only
[  360.771805][T19981] 8021q: adding VLAN 0 to HW filter on device batadv0
[  360.790599][T20078] FAULT_INJECTION: forcing a failure.
[  360.790599][T20078] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.804014][T20078] CPU: 1 UID: 0 PID: 20078 Comm: syz.4.5406 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  360.814890][T20078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  360.824947][T20078] Call Trace:
[  360.828272][T20078]  <TASK>
[  360.831199][T20078]  dump_stack_lvl+0xf2/0x150
[  360.835800][T20078]  dump_stack+0x15/0x20
[  360.839955][T20078]  should_fail_ex+0x229/0x230
[  360.844716][T20078]  should_fail+0xb/0x10
[  360.848873][T20078]  should_fail_usercopy+0x1a/0x20
[  360.853906][T20078]  _copy_to_user+0x1e/0xa0
[  360.858326][T20078]  simple_read_from_buffer+0xa0/0x110
[  360.863772][T20078]  proc_fail_nth_read+0xff/0x140
[  360.868718][T20078]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  360.874311][T20078]  vfs_read+0x1a2/0x6e0
[  360.878460][T20078]  ? __rcu_read_unlock+0x4e/0x70
[  360.883389][T20078]  ? __fget_files+0x1da/0x210
[  360.888131][T20078]  ksys_read+0xeb/0x1b0
[  360.892324][T20078]  __x64_sys_read+0x42/0x50
[  360.896847][T20078]  x64_sys_call+0x27d3/0x2d60
[  360.901519][T20078]  do_syscall_64+0xc9/0x1c0
[  360.906013][T20078]  ? clear_bhb_loop+0x55/0xb0
[  360.910680][T20078]  ? clear_bhb_loop+0x55/0xb0
[  360.915340][T20078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.921294][T20078] RIP: 0033:0x7fb06937893c
[  360.925761][T20078] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  360.945364][T20078] RSP: 002b:00007fb067ff7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  360.953811][T20078] RAX: ffffffffffffffda RBX: 00007fb069515f80 RCX: 00007fb06937893c
[  360.961802][T20078] RDX: 000000000000000f RSI: 00007fb067ff70a0 RDI: 0000000000000006
[  360.969756][T20078] RBP: 00007fb067ff7090 R08: 0000000000000000 R09: 0000000000000000
[  360.977712][T20078] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000000000001
[  360.985671][T20078] R13: 0000000000000000 R14: 00007fb069515f80 R15: 00007fff55c96d68
[  360.993702][T20078]  </TASK>
[  361.002248][T19981] veth0_vlan: entered promiscuous mode
[  361.018854][T19981] veth1_vlan: entered promiscuous mode
[  361.039483][T19981] veth0_macvtap: entered promiscuous mode
[  361.047347][T19981] veth1_macvtap: entered promiscuous mode
[  361.062573][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.073074][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.083076][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.093641][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.103565][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.114048][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.123871][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.134287][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.144140][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.154623][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.164487][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.174914][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.184704][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.195111][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.204982][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.215410][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.225207][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.235622][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.245415][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.255818][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.267730][T19981] batman_adv: batadv0: Interface activated: batadv_slave_0
[  361.276314][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.286775][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.296589][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.307093][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.316918][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.327339][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.328267][T20096] FAULT_INJECTION: forcing a failure.
[  361.328267][T20096] name failslab, interval 1, probability 0, space 0, times 0
[  361.337201][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.337215][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.337227][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.349858][T20096] CPU: 1 UID: 0 PID: 20096 Comm: syz.4.5412 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  361.360232][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.369959][T20096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  361.369972][T20096] Call Trace:
[  361.369979][T20096]  <TASK>
[  361.369988][T20096]  dump_stack_lvl+0xf2/0x150
[  361.380491][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.391173][T20096]  dump_stack+0x15/0x20
[  361.391194][T20096]  should_fail_ex+0x229/0x230
[  361.401041][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.411054][T20096]  ? security_file_alloc+0x32/0xe0
[  361.414324][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.417225][T20096]  should_failslab+0x8f/0xb0
[  361.421814][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.432160][T20096]  kmem_cache_alloc_noprof+0x4c/0x290
[  361.436308][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.440995][T20096]  security_file_alloc+0x32/0xe0
[  361.441017][T20096]  alloc_empty_file+0x121/0x310
[  361.441098][T20096]  alloc_file_pseudo+0xc3/0x140
[  361.441118][T20096]  anon_inode_getfile+0xa3/0x130
[  361.441142][T20096]  do_signalfd4+0x170/0x2e0
[  361.441246][T20096]  __x64_sys_signalfd+0xbc/0xe0
[  361.441274][T20096]  x64_sys_call+0x307/0x2d60
[  361.441300][T20096]  do_syscall_64+0xc9/0x1c0
[  361.441322][T20096]  ? clear_bhb_loop+0x55/0xb0
[  361.441341][T20096]  ? clear_bhb_loop+0x55/0xb0
[  361.441370][T20096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.441426][T20096] RIP: 0033:0x7fb069379ef9
[  361.451318][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.456276][T20096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.466690][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.471204][T20096] RSP: 002b:00007fb067ff7038 EFLAGS: 00000246 ORIG_RAX: 000000000000011a
[  361.471224][T20096] RAX: ffffffffffffffda RBX: 00007fb069515f80 RCX: 00007fb069379ef9
[  361.481005][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.486328][T20096] RDX: 0000000000000008 RSI: 00000000200008c0 RDI: ffffffffffffffff
[  361.496727][T19981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  361.501609][T20096] RBP: 00007fb067ff7090 R08: 0000000000000000 R09: 0000000000000000
[  361.501629][T20096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  361.506446][T19981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.511262][T20096] R13: 0000000000000000 R14: 00007fb069515f80 R15: 00007fff55c96d68
[  361.523850][T19981] batman_adv: batadv0: Interface activated: batadv_slave_1
[  361.525485][T20096]  </TASK>
[  361.686548][T19981] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  361.695450][T19981] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  361.704272][T19981] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  361.712990][T19981] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  361.731411][T19264] bridge_slave_1: left allmulticast mode
[  361.737074][T19264] bridge_slave_1: left promiscuous mode
[  361.742834][T19264] bridge0: port 2(bridge_slave_1) entered disabled state
[  361.752380][T19264] bridge_slave_0: left allmulticast mode
[  361.758034][T19264] bridge_slave_0: left promiscuous mode
[  361.763915][T19264] bridge0: port 1(bridge_slave_0) entered disabled state
[  361.788470][T20105] loop4: detected capacity change from 0 to 512
[  361.797862][T20105] EXT4-fs (loop4): inodes count not valid: 0 vs 32
[  361.867769][T20108] loop4: detected capacity change from 0 to 2048
[  361.882227][T19264] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  361.893002][T19264] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  361.902227][T20108]  loop4: p1 < > p4
[  361.906579][T20108] loop4: p4 size 8388608 extends beyond EOD, truncated
[  361.915004][T19264] bond0 (unregistering): Released all slaves
[  361.966429][T20113] loop2: detected capacity change from 0 to 1024
[  361.974007][T20113] EXT4-fs: Ignoring removed nomblk_io_submit option
[  361.981263][T20113] EXT4-fs (loop2): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  361.994013][T20115] loop4: detected capacity change from 0 to 512
[  362.000962][T20115] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  362.012527][T20115] EXT4-fs (loop4): 1 orphan inode deleted
[  362.018677][T20115] EXT4-fs (loop4): 1 truncate cleaned up
[  362.027278][T20115] FAULT_INJECTION: forcing a failure.
[  362.027278][T20115] name failslab, interval 1, probability 0, space 0, times 0
[  362.040004][T20115] CPU: 0 UID: 0 PID: 20115 Comm: syz.4.5417 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  362.050837][T20115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  362.060901][T20115] Call Trace:
[  362.064159][T20115]  <TASK>
[  362.067186][T20115]  dump_stack_lvl+0xf2/0x150
[  362.071869][T20115]  dump_stack+0x15/0x20
[  362.076062][T20115]  should_fail_ex+0x229/0x230
[  362.080722][T20115]  ? ext4_mb_new_blocks+0x7ad/0x2020
[  362.086002][T20115]  should_failslab+0x8f/0xb0
[  362.090627][T20115]  kmem_cache_alloc_noprof+0x4c/0x290
[  362.096278][T20115]  ext4_mb_new_blocks+0x7ad/0x2020
[  362.101384][T20115]  ? blk_mq_plug_issue_direct+0x2dd/0x530
[  362.107135][T20115]  ? cpuset_cpu_is_isolated+0x30/0x40
[  362.112499][T20115]  ? ext4_inode_to_goal_block+0x197/0x1f0
[  362.118368][T20115]  ext4_ind_map_blocks+0xb3a/0x14f0
[  362.123557][T20115]  ext4_map_blocks+0x6de/0xf50
[  362.128306][T20115]  ? __ext4_get_inode_loc+0x757/0x910
[  362.133676][T20115]  _ext4_get_block+0x104/0x370
[  362.138422][T20115]  ext4_get_block+0x39/0x50
[  362.142904][T20115]  __block_write_begin_int+0x417/0xfa0
[  362.148344][T20115]  ? __pfx_ext4_get_block+0x10/0x10
[  362.153527][T20115]  ? __pfx_ext4_get_block+0x10/0x10
[  362.158777][T20115]  __block_write_begin+0x5e/0x110
[  362.163780][T20115]  ext4_write_begin+0x41e/0xbb0
[  362.168675][T20115]  generic_perform_write+0x1b4/0x580
[  362.173989][T20115]  ext4_buffered_write_iter+0x1f6/0x380
[  362.179519][T20115]  ext4_file_write_iter+0x29f/0xe30
[  362.184752][T20115]  ? kstrtouint+0x77/0xc0
[  362.189131][T20115]  ? kstrtouint_from_user+0xb0/0xe0
[  362.194317][T20115]  ? avc_policy_seqno+0x15/0x20
[  362.199225][T20115]  ? selinux_file_permission+0x22c/0x360
[  362.204841][T20115]  vfs_write+0x78f/0x900
[  362.209131][T20115]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  362.214894][T20115]  ksys_write+0xeb/0x1b0
[  362.219215][T20115]  __x64_sys_write+0x42/0x50
[  362.223800][T20115]  x64_sys_call+0x27dd/0x2d60
[  362.228498][T20115]  do_syscall_64+0xc9/0x1c0
[  362.233042][T20115]  ? clear_bhb_loop+0x55/0xb0
[  362.237696][T20115]  ? clear_bhb_loop+0x55/0xb0
[  362.242412][T20115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.248289][T20115] RIP: 0033:0x7fb069379ef9
[  362.252685][T20115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.272268][T20115] RSP: 002b:00007fb067ff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  362.280656][T20115] RAX: ffffffffffffffda RBX: 00007fb069515f80 RCX: 00007fb069379ef9
[  362.288605][T20115] RDX: 000000000208e24b RSI: 0000000020000d80 RDI: 0000000000000007
[  362.296614][T20115] RBP: 00007fb067ff7090 R08: 0000000000000000 R09: 0000000000000000
[  362.304590][T20115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.312564][T20115] R13: 0000000000000000 R14: 00007fb069515f80 R15: 00007fff55c96d68
[  362.320545][T20115]  </TASK>
[  362.323636][T19264] hsr_slave_0: left promiscuous mode
[  362.331614][T19264] hsr_slave_1: left promiscuous mode
[  362.337973][T19264] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  362.345450][T19264] batman_adv: batadv0: Removing interface: batadv_slave_0
[  362.361571][T19264] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  362.369094][T19264] batman_adv: batadv0: Removing interface: batadv_slave_1
[  362.372905][T20124] loop4: detected capacity change from 0 to 512
[  362.386322][T19264] veth1_macvtap: left promiscuous mode
[  362.392038][T19264] veth0_macvtap: left promiscuous mode
[  362.397642][T19264] veth1_vlan: left promiscuous mode
[  362.402933][T19264] veth0_vlan: left promiscuous mode
[  362.405937][T20124] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  362.518397][T19264] team0 (unregistering): Port device team_slave_1 removed
[  362.528899][T19264] team0 (unregistering): Port device team_slave_0 removed
[  362.569176][T20132] netlink: 'syz.2.5422': attribute type 8 has an invalid length.
[  362.715923][T20147] loop4: detected capacity change from 0 to 512
[  362.722596][T20147] ext4: Unknown parameter 'smackfsroot'
[  362.747446][T20150] loop2: detected capacity change from 0 to 256
[  362.755187][   T29] kauditd_printk_skb: 552 callbacks suppressed
[  362.755200][   T29] audit: type=1326 audit(1724981041.619:234477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20151 comm="syz.4.5429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb069379ef9 code=0x7ffc0000
[  362.767679][T20152] FAULT_INJECTION: forcing a failure.
[  362.767679][T20152] name failslab, interval 1, probability 0, space 0, times 0
[  362.786608][   T29] audit: type=1326 audit(1724981041.619:234478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20151 comm="syz.4.5429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb069378890 code=0x7ffc0000
[  362.797697][T20152] CPU: 0 UID: 0 PID: 20152 Comm: syz.4.5429 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  362.797724][T20152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  362.797734][T20152] Call Trace:
[  362.797741][T20152]  <TASK>
[  362.797748][T20152]  dump_stack_lvl+0xf2/0x150
[  362.821338][   T29] audit: type=1326 audit(1724981041.619:234479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20151 comm="syz.4.5429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb0693789df code=0x7ffc0000
[  362.832041][T20152]  dump_stack+0x15/0x20
[  362.842091][   T29] audit: type=1326 audit(1724981041.619:234480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20151 comm="syz.4.5429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fb069379ef9 code=0x7ffc0000
[  362.845334][T20152]  should_fail_ex+0x229/0x230
[  362.908645][T20152]  ? sidtab_sid2str_get+0xb8/0x140
[  362.913741][T20152]  should_failslab+0x8f/0xb0
[  362.918433][T20152]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[  362.924775][T20152]  kmemdup_noprof+0x2a/0x60
[  362.929256][T20152]  sidtab_sid2str_get+0xb8/0x140
[  362.934194][T20152]  security_sid_to_context_core+0x1eb/0x2f0
[  362.940096][T20152]  security_sid_to_context+0x27/0x30
[  362.945392][T20152]  selinux_secid_to_secctx+0x22/0x30
[  362.950684][T20152]  security_secid_to_secctx+0x4a/0x80
[  362.956074][T20152]  audit_log_task_context+0x8c/0x1b0
[  362.961345][T20152]  audit_log_task+0xfb/0x180
[  362.965917][T20152]  audit_seccomp+0x68/0x130
[  362.970488][T20152]  __seccomp_filter+0x6fa/0x1180
[  362.975505][T20152]  ? __fdget+0x105/0x110
[  362.979791][T20152]  __secure_computing+0x9f/0x1c0
[  362.984713][T20152]  syscall_trace_enter+0xd1/0x1f0
[  362.989732][T20152]  ? fpregs_assert_state_consistent+0x83/0xa0
[  362.995784][T20152]  do_syscall_64+0xaa/0x1c0
[  363.000276][T20152]  ? clear_bhb_loop+0x55/0xb0
[  363.004950][T20152]  ? clear_bhb_loop+0x55/0xb0
[  363.009617][T20152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.015539][T20152] RIP: 0033:0x7fb06937893c
[  363.020000][T20152] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  363.039757][T20152] RSP: 002b:00007fb067ff7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  363.048203][T20152] RAX: ffffffffffffffda RBX: 00007fb069515f80 RCX: 00007fb06937893c
[  363.056151][T20152] RDX: 000000000000000f RSI: 00007fb067ff70a0 RDI: 0000000000000006
[  363.064102][T20152] RBP: 00007fb067ff7090 R08: 0000000000000000 R09: 0000000000000000
[  363.072052][T20152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.080132][T20152] R13: 0000000000000000 R14: 00007fb069515f80 R15: 00007fff55c96d68
[  363.088087][T20152]  </TASK>
[  363.091275][T20152] audit: error in audit_log_task_context
[  363.098626][   T29] audit: type=1326 audit(1724981041.619:234481): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=20151 comm="syz.4.5429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fb06937893c code=0x7ffc0000
[  363.119762][   T29] audit: type=1326 audit(1724981041.949:234482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20151 comm="syz.4.5429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb0693789df code=0x7ffc0000
[  363.143482][   T29] audit: type=1326 audit(1724981041.949:234483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20151 comm="syz.4.5429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb069378b8a code=0x7ffc0000
[  363.167178][   T29] audit: type=1326 audit(1724981041.949:234484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20151 comm="syz.4.5429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb069379ef9 code=0x7ffc0000
[  363.191184][   T29] audit: type=1326 audit(1724981041.949:234485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20151 comm="syz.4.5429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb069379ef9 code=0x7ffc0000
[  363.244020][T20154] loop4: detected capacity change from 0 to 1024
[  363.251865][T20154] EXT4-fs: Ignoring removed nomblk_io_submit option
[  363.264995][T20154] EXT4-fs (loop4): stripe (4) is not aligned with cluster size (16), stripe is disabled
[  363.269536][T20163] 9pnet_virtio: no channels available for device syz
[  363.402344][T20172] netlink: 'syz.4.5437': attribute type 1 has an invalid length.
[  363.410179][T20172] netlink: 'syz.4.5437': attribute type 2 has an invalid length.
[  363.437420][T20178] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  363.521992][T20182] 9pnet_fd: Insufficient options for proto=fd
[  363.706982][T20199] loop3: detected capacity change from 0 to 2048
[  363.796203][T20204] bio_check_eod: 27 callbacks suppressed
[  363.796216][T20204] syz.3.5448: attempt to access beyond end of device
[  363.796216][T20204] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  363.866219][T20204] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5448'.
[  364.132463][T20208] loop2: detected capacity change from 0 to 2048
[  364.231972][T20213] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5450'.
[  364.345251][ T4913] kernel write not supported for file /uhid (pid: 4913 comm: kworker/0:7)
[  364.607106][T20225] FAULT_INJECTION: forcing a failure.
[  364.607106][T20225] name failslab, interval 1, probability 0, space 0, times 0
[  364.619765][T20225] CPU: 1 UID: 0 PID: 20225 Comm: syz.3.5455 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  364.630523][T20225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  364.640565][T20225] Call Trace:
[  364.643968][T20225]  <TASK>
[  364.646905][T20225]  dump_stack_lvl+0xf2/0x150
[  364.651481][T20225]  dump_stack+0x15/0x20
[  364.655643][T20225]  should_fail_ex+0x229/0x230
[  364.660309][T20225]  ? mas_alloc_nodes+0x1d3/0x4a0
[  364.665308][T20225]  should_failslab+0x8f/0xb0
[  364.669941][T20225]  kmem_cache_alloc_noprof+0x4c/0x290
[  364.675368][T20225]  mas_alloc_nodes+0x1d3/0x4a0
[  364.680126][T20225]  mas_preallocate+0x773/0xc30
[  364.684935][T20225]  __split_vma+0x244/0x690
[  364.689351][T20225]  do_vmi_align_munmap+0x1a5/0xa60
[  364.694461][T20225]  do_vmi_munmap+0x1fb/0x250
[  364.699127][T20225]  __se_sys_mremap+0x699/0xf20
[  364.703955][T20225]  __x64_sys_mremap+0x67/0x80
[  364.708620][T20225]  x64_sys_call+0x2747/0x2d60
[  364.713390][T20225]  do_syscall_64+0xc9/0x1c0
[  364.717904][T20225]  ? clear_bhb_loop+0x55/0xb0
[  364.722580][T20225]  ? clear_bhb_loop+0x55/0xb0
[  364.727266][T20225]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.733205][T20225] RIP: 0033:0x7fd9decb9ef9
[  364.737671][T20225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.757271][T20225] RSP: 002b:00007fd9dd937038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  364.765726][T20225] RAX: ffffffffffffffda RBX: 00007fd9dee55f80 RCX: 00007fd9decb9ef9
[  364.773695][T20225] RDX: 0000000000200000 RSI: 0000000000600a00 RDI: 0000000020000000
[  364.781654][T20225] RBP: 00007fd9dd937090 R08: 0000000020a00000 R09: 0000000000000000
[  364.789679][T20225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.797655][T20225] R13: 0000000000000000 R14: 00007fd9dee55f80 R15: 00007ffe5745caf8
[  364.805644][T20225]  </TASK>
[  364.852459][T20234] loop3: detected capacity change from 0 to 2048
[  364.882408][T20234] ==================================================================
[  364.890485][T20234] BUG: KCSAN: data-race in sg_common_write / sg_finish_rem_req
[  364.898046][T20234] 
[  364.900348][T20234] write to 0xffff88811542d31d of 1 bytes by task 35 on cpu 1:
[  364.907779][T20234]  sg_finish_rem_req+0x117/0x270
[  364.912702][T20234]  sg_rq_end_io_usercontext+0x36/0x1c0
[  364.918145][T20234]  process_scheduled_works+0x483/0x9a0
[  364.923598][T20234]  worker_thread+0x526/0x6e0
[  364.928169][T20234]  kthread+0x1d1/0x210
[  364.932216][T20234]  ret_from_fork+0x4b/0x60
[  364.936613][T20234]  ret_from_fork_asm+0x1a/0x30
[  364.941355][T20234] 
[  364.943660][T20234] read to 0xffff88811542d31d of 1 bytes by task 20234 on cpu 0:
[  364.952981][T20234]  sg_common_write+0x659/0x8d0
[  364.957764][T20234]  sg_new_write+0x82b/0x8e0
[  364.962252][T20234]  sg_ioctl+0xe28/0x1870
[  364.966477][T20234]  __se_sys_ioctl+0xd3/0x150
[  364.971044][T20234]  __x64_sys_ioctl+0x43/0x50
[  364.975616][T20234]  x64_sys_call+0x15cc/0x2d60
[  364.980272][T20234]  do_syscall_64+0xc9/0x1c0
[  364.984753][T20234]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.990647][T20234] 
[  364.992946][T20234] value changed: 0x01 -> 0x00
[  364.997593][T20234] 
[  364.999888][T20234] Reported by Kernel Concurrency Sanitizer on:
[  365.006007][T20234] CPU: 0 UID: 0 PID: 20234 Comm: syz.3.5458 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0
[  365.016753][T20234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  365.026833][T20234] ==================================================================
[  366.561692][T19265] bridge_slave_1: left allmulticast mode
[  366.567353][T19265] bridge_slave_1: left promiscuous mode
[  366.573046][T19265] bridge0: port 2(bridge_slave_1) entered disabled state
[  366.580737][T19265] bridge_slave_0: left allmulticast mode
[  366.586430][T19265] bridge_slave_0: left promiscuous mode
[  366.592091][T19265] bridge0: port 1(bridge_slave_0) entered disabled state
[  366.700187][T19265] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  366.710699][T19265] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  366.721726][T19265] bond0 (unregistering): Released all slaves
[  366.859485][T19265] hsr_slave_0: left promiscuous mode
[  366.865181][T19265] hsr_slave_1: left promiscuous mode
[  366.870814][T19265] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  366.878392][T19265] batman_adv: batadv0: Removing interface: batadv_slave_0
[  366.885976][T19265] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  366.893435][T19265] batman_adv: batadv0: Removing interface: batadv_slave_1
[  366.902259][T19265] veth1_macvtap: left promiscuous mode
[  366.907808][T19265] veth0_macvtap: left promiscuous mode
[  366.913436][T19265] veth1_vlan: left promiscuous mode
[  366.918647][T19265] veth0_vlan: left promiscuous mode
[  367.004354][T19265] team0 (unregistering): Port device team_slave_1 removed
[  367.015511][T19265] team0 (unregistering): Port device team_slave_0 removed